So I've been struggling with a few problems for the last week or so. I started out with being infected by the 'Vista Internet Security 2011' virus, and downloaded a whole raft of things to get rid of it - and Malewarebytes seems to have done the job. (although i'm concerned that it's going to come back from the dead somehow as that already happened once).
It took me ages to find this forum, before which I also downloaded in a bit of a panicked spree: Avira, AVG free version 2011, spyware doctor and prevex3.0.
My remaining problem at the moment is a browser redirect when i click on google search results - it happens every time. Also, not sure if this is relevant, but I tried to end a program I had running through the task manager and was unable to and the error statement was that "the handle is invalid".
Anyways,
Here are my DDS and attach logs -
.
DDS (Ver_11-05-19.01) - NTFSx86
Internet Explorer: 7.0.6000.17037 BrowserJavaVersion: 1.6.0_22
Run by Harj Narulla at 10:50:42 on 2011-05-21
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.61.1033.18.3581.1204 [GMT 10:00]
.
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\FsUsbExService.Exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\PC Tools Security\pctsAuxs.exe
C:\Program Files\PC Tools Security\pctsSvc.exe
C:\Windows\system32\STacSV.exe
C:\Program Files\PC Tools Security\pctsGui.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\D-Link\DWA-131 revA\WlanWpsSvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Dell\Dell WUSB\WQ_Tray2.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Prevx\prevx.exe
C:\Program Files\Prevx\prevx.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\program files\avira\antivir desktop\avscan.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\System32\svchost.exe -k netsvcs
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\msiexec.exe
C:\Program Files\AVG\AVG10\avgchsvx.exe
C:\Program Files\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Program Files\AVG\AVG10\avgui.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Users\Harj Narulla\Desktop\dds.scr
C:\Windows\system32\WSCRIPT.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
uWinlogon: Shell=Explorer.exe, c:\program files\microsoft office\WINWORD.EXE
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: SafeOnline BHO: {69d72956-317c-44bd-b369-8e44d4ef9801} - c:\windows\system32\PxSecure.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe"
mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NVHotkey] rundll32.exe c:\windows\system32\nvHotkey.dll,Start
mRun: [DELL Webcam Manager] "c:\program files\dell\dell webcam manager\DellWMgr.exe" /s
mRun: [dellsupportcenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P dellsupportcenter
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [NPSStartup]
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [ISTray] "c:\program files\pc tools security\pctsGui.exe" /hideGUI
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
dRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\ultraw~1.lnk - c:\program files\dell\dell wusb\WQ_Tray2.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\wirele~1.lnk - c:\program files\d-link\dwa-131 reva\wirelesscm.exe
dPolicies-explorer: HideSCAHealth = 1 (0x1)
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Free YouTube to Mp3 Converter - c:\users\harj narulla\appdata\roaming\dvdvideosoftiehelpers\youtubetomp3.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\harj narulla\appdata\roaming\mozilla\firefox\profiles\nrqpvciz.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.unsw.edu.au/
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\users\harj narulla\appdata\roaming\facebook\npfbplugin_1_0_3.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2011-5-20 239168]
R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [2011-5-20 338880]
R0 pxscan;pxscan;c:\windows\system32\drivers\pxscan.sys [2011-5-21 32008]
R1 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwd6x.sys [2010-7-12 54112]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-1-7 248656]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-5 297168]
R1 pxrts;pxrts;c:\windows\system32\drivers\pxrts.sys [2011-5-21 76696]
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\drivers\RtlProt.sys [2010-7-1 25896]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-5-21 61960]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-4-14 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 28624]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-5-17 36608]
R3 pxkbf;pxkbf;c:\windows\system32\drivers\pxkbf.sys [2011-5-21 26096]
R3 RTL8192su;%RTL8192su.DeviceDesc.DispName%;c:\windows\system32\drivers\RTL8192su.sys [2010-7-1 503808]
R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-5-20 38224]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
S3 DM9USB;DM9601 USB To Fast Ethernet Adapter;c:\windows\system32\drivers\dm9usb.sys [2010-7-2 54272]
S3 PCD5SRVC{3F6A8B78-EC003E00-05040104};PCD5SRVC{3F6A8B78-EC003E00-05040104} - PCDR Kernel Mode Service Helper Driver;c:\progra~1\dellsu~1\hwdiag\bin\PCD5SRVC.pkms [2008-11-5 22904]
S3 USB-100;Swann USB Fast Ethernet Adapter;c:\windows\system32\drivers\RTL8150.SYS [2010-5-2 22528]
.
=============== Created Last 30 ================
.
2011-05-21 00:48:03 -------- d-----w- c:\users\harj narulla\appdata\roaming\AVG10
2011-05-21 00:44:18 -------- d--h--w- c:\programdata\Common Files
2011-05-21 00:40:32 -------- d-----w- c:\windows\system32\drivers\AVG
2011-05-21 00:40:32 -------- d-----w- c:\programdata\AVG10
2011-05-21 00:39:37 -------- d-----w- c:\program files\AVG
2011-05-21 00:28:06 -------- d-----w- c:\programdata\MFAData
2011-05-20 23:34:52 -------- d-----w- c:\users\harj narulla\appdata\roaming\Avira
2011-05-20 23:14:06 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-05-20 23:13:53 -------- d-----w- c:\programdata\Avira
2011-05-20 23:13:53 -------- d-----w- c:\program files\Avira
2011-05-20 21:37:45 71880 ----a-w- c:\windows\system32\PxSecure.dll
2011-05-20 21:37:43 76696 ----a-w- c:\windows\system32\drivers\pxrts.sys
2011-05-20 21:37:43 32008 ----a-w- c:\windows\system32\drivers\pxscan.sys
2011-05-20 21:37:41 26096 ----a-w- c:\windows\system32\drivers\pxkbf.sys
2011-05-20 21:37:41 -------- d-----w- c:\program files\Prevx
2011-05-20 21:37:23 -------- d-----w- c:\programdata\PrevxCSI
2011-05-20 13:53:52 -------- d-----w- c:\users\harj narulla\appdata\roaming\Malwarebytes
2011-05-20 13:53:49 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-20 13:53:49 -------- d-----w- c:\programdata\Malwarebytes
2011-05-20 13:53:46 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-20 13:53:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-05-20 12:57:44 656320 ----a-w- c:\windows\system32\drivers\pctEFA.sys
2011-05-20 12:57:44 338880 ----a-w- c:\windows\system32\drivers\pctDS.sys
2011-05-20 12:57:44 251560 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2011-05-20 12:57:44 103232 ----a-w- c:\windows\system32\drivers\pctwfpfilter.sys
2011-05-20 12:57:41 239168 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2011-05-20 12:57:41 160448 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2011-05-20 12:57:38 70536 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2011-05-20 12:57:35 -------- d-----w- c:\users\harj narulla\appdata\roaming\PC Tools
2011-05-20 12:57:35 -------- d-----w- c:\program files\PC Tools Security
2011-05-20 12:57:35 -------- d-----w- c:\program files\common files\PC Tools
2011-05-20 12:53:15 -------- d-----w- c:\programdata\PC Tools
2011-05-19 07:06:57 -------- d-----w- c:\users\harj narulla\appdata\roaming\Jagao
2011-05-19 07:06:57 -------- d-----w- c:\users\harj narulla\appdata\roaming\Guit
2011-05-15 14:32:26 11264 ----a-w- c:\windows\DCEBoot.exe
2011-05-15 14:00:19 189520 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2011-05-15 13:41:52 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2011-05-15 13:41:52 781272 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2011-05-15 13:41:52 465880 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2011-05-15 13:41:52 1892184 ----a-w- c:\program files\mozilla firefox\d3dx9_42.dll
2011-05-15 13:41:52 1874904 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2011-05-15 13:41:52 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2011-05-15 13:41:52 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-05-15 13:41:51 1974616 ----a-w- c:\program files\mozilla firefox\D3DCompiler_42.dll
2011-05-15 13:39:31 7071056 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{01d78f15-512e-4028-897d-1b1e33554545}\mpengine.dll
2011-05-15 13:21:51 -------- d-----w- c:\programdata\oG02400IhPcB02400
.
==================== Find3M ====================
.
2011-04-14 11:28:18 134480 ----a-w- c:\windows\system32\drivers\AVGIDSDriver.sys
2011-04-04 14:59:56 297168 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2011-03-26 12:19:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-03-16 06:03:20 32592 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2011-02-21 22:12:38 22992 ----a-w- c:\windows\system32\drivers\AVGIDSEH.sys
.
============= FINISH: 10:53:42.93 ===============
.
.
DDS (Ver_11-05-19.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 6/04/2010 7:44:07 PM
System Uptime: 21/05/2011 7:34:07 AM (3 hours ago)
.
Motherboard: Dell Inc. | | 0R387D
Processor: Intel(R) Core(TM)2 Duo CPU T9300 @ 2.50GHz | Microprocessor | 1600/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 295 GiB total, 107.197 GiB free.
D: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Ethernet Controller
Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_022E1028&REV_12\4&1C4E7770&0&00E0
Manufacturer:
Name: Ethernet Controller
PNP Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_022E1028&REV_12\4&1C4E7770&0&00E0
Service:
.
Class GUID:
Description: Network Controller
Device ID: PCI\VEN_8086&DEV_4229&SUBSYS_11208086&REV_61\4&2E66C02C&0&00E1
Manufacturer:
Name: Network Controller
PNP Device ID: PCI\VEN_8086&DEV_4229&SUBSYS_11208086&REV_61\4&2E66C02C&0&00E1
Service:
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.1
Advanced Audio FX Engine
Advanced Video FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
µTorrent
AVG 2011
Avira AntiVir Personal - Free Antivirus
BitZipper 2010
Bonjour
ClocX (1.5b1)
Compatibility Pack for the 2007 Office system
D-Link DWA-131 Wireless N Nano USB Adapter
Dell Resource CD
Dell Support Center (Support Software)
Dell Webcam Center
Dell Webcam Manager
Dell Wireless WLAN Card
Dell WUSB
Facebook Plug-In
Free Audio CD Burner version 1.4
Free YouTube to MP3 Converter version 3.7
Graboid Video 1.73
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
iTunes
Java Auto Updater
Java(TM) 6 Update 22
Live! Cam Avatar Creator
Live! Cam Avatar v1.0
Malwarebytes' Anti-Malware
MediaDirect
Microsoft .NET Framework 3.5 SP1
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Excel Viewer
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable - KB2467175
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Modem Diagnostics Tool
Mozilla Firefox 4.0.1 (x86 en-GB)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Drivers
OutlookAddinSetup
PC Connectivity Solution
Pod to PC 2.6
Prevx
QuickSet
QuickTime
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
Samsung New PC Studio USB Driver Installer
SAMSUNG SYMBIAN USB Download Driver
SAMSUNG USB Mobile Device Software
SamsungConnectivityCableDriver
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2466156)
Security Update for 2007 Microsoft Office System (KB2509488)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft Office Excel 2007 (KB2464583)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
SigmaTel Audio
Skype Toolbars
Skype™ 5.1
Spyware Doctor with AntiVirus 8.0
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office OneNote 2007 (KB980729)
VLC media player 1.0.1
Windows Driver Package - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
.
==== Event Viewer Messages From Past Week ========
.
21/05/2011 10:19:46 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Server service, but this action failed with the following error: An instance of the service is already running.
21/05/2011 10:16:37 AM, Error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
20/05/2011 7:44:25 AM, Error: EventLog [6008] - The previous system shutdown at 9:38:28 PM on 19/05/2011 was unexpected.
20/05/2011 10:57:36 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
20/05/2011 10:40:46 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Remote Access Connection Manager service, but this action failed with the following error: An instance of the service is already running.
19/05/2011 6:06:49 PM, Error: Microsoft-Windows-WPD-MTPClassDriver [15300] - MTP WPD Driver has failed to start. Error 0x80070005.
18/05/2011 11:52:45 AM, Error: EventLog [6008] - The previous system shutdown at 11:49:33 AM on 18/05/2011 was unexpected.
18/05/2011 11:14:44 AM, Error: EventLog [6008] - The previous system shutdown at 5:52:26 AM on 18/05/2011 was unexpected.
17/05/2011 9:36:44 AM, Error: EventLog [6008] - The previous system shutdown at 12:51:01 AM on 17/05/2011 was unexpected.
16/05/2011 7:29:17 AM, Error: EventLog [6008] - The previous system shutdown at 4:16:57 AM on 16/05/2011 was unexpected.
16/05/2011 12:58:25 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.
15/05/2011 11:44:32 PM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
15/05/2011 11:43:46 PM, Error: EventLog [6008] - The previous system shutdown at 11:42:30 PM on 15/05/2011 was unexpected.
15/05/2011 11:39:31 PM, Error: Microsoft-Windows-Windows Defender [2004] - Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x8050a001 Error description: The program can't find definition files that help detect unwanted software. Check for updates to the definition files, and then try again. For information on installing updates, see Help and Support. Signatures loading: Backup Loading signature version: 1.103.1349.0 Loading engine version: 1.1.6802.0
15/05/2011 11:35:57 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service iPod Service with arguments "" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}
15/05/2011 11:33:23 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
15/05/2011 11:30:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
15/05/2011 11:30:06 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
15/05/2011 11:29:32 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
15/05/2011 11:29:31 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
15/05/2011 11:29:31 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
15/05/2011 11:29:31 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
15/05/2011 11:29:23 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
15/05/2011 11:29:13 PM, Error: EventLog [6008] - The previous system shutdown at 11:27:17 PM on 15/05/2011 was unexpected.
15/05/2011 11:26:35 PM, Error: EventLog [6008] - The previous system shutdown at 11:25:28 PM on 15/05/2011 was unexpected.
15/05/2011 11:24:43 PM, Error: EventLog [6008] - The previous system shutdown at 11:23:37 PM on 15/05/2011 was unexpected.
.
==== End Of File ===========================
Thanks for the help!