Inactive [InActive] Generic Host Process For Win32 & DCOM Launcher Problems

I use Windows XP. About 30mins after I log in I have started getting a message saying Generic Host Process For Win32 has encountered a problem and needs to close. If I choose to End Now then immediately a DCOM Service Launcher box opens telling me that my computer will be shut down in 60 seconds. If I just leave the Win32 error box up without clicking anything then I can still use the computer for 5-10mins before this DCOM box appears of its own accord anyway.
I have googled the problem a few times and it seems people had problems similar to this but they were all in 2005-7 rather than anything recently; the main solutions to their problems were to get a Windows Update which I've had for some time now so it doesn't work for me.
I regularly run AVG 8.0 and Malwarebytes Anti-Malware and get rid of any infections that they find yet I still have the problem everytime I turn the computer on.

Any help would be greatly appreciated. Thanks.

 

Here are my DDS Logs also:


DDS (Ver_09-02-01.01) - NTFSx86
Run by Andrew's at 18:03:19.71 on 10/02/2009
Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.375 [GMT 0:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Dell Network Assistant\hnm_svc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Kontiki\KService.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Creative\Mixer\CTSVolFE.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\btbb_wcm\McciTrayApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\NetWaiting\netWaiting.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Dell Network Assistant\ezi_hnm2.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Andrew's\My Documents\My Received Files\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.facebook.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=5060912
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mSearch Page =
mSearch Bar = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
uInternet Connection Wizard,ShellNext = hxxp://www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=5060912
uInternet Settings,ProxyOverride = 127.0.0.1;*.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/su/*http://uk.search.yahoo.com/
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: {0ba7593a-d246-4ead-8d76-46e9640338e3} - c:\windows\system32\nudunuhi.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\DLASHX_W.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {77ffcdf3-f61c-48bf-842d-d853e701e022} - c:\windows\system32\ssqRKebB.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\bae\BAE.dll
BHO: {d199f606-4c8b-4ba7-9cba-e6c73e836d68} - c:\windows\system32\ssqNExxX.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
uRun: [ModemOnHold] c:\program files\netwaiting\netWaiting.exe
uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup
uRun: [MsnMsgr] "c:\program files\windows live\messenger\MsnMsgr.Exe" /background
uRun: [SsAAD.exe] c:\progra~1\sony\sonics~1\SsAAD.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [kdx] c:\program files\kontiki\KHost.exe -all
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [DMXLauncher] c:\program files\dell\media experience\DMXLauncher.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe "
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [CTSVolFE.exe] "c:\program files\creative\mixer\CTSVolFE.exe" /r
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [DLA] c:\windows\system32\dla\DLACTRLW.EXE
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb08.exe
mRun: [HP Software Update] c:\program files\hewlett-packard\hp software update\HPWuSchd.exe
mRun: [DeviceDiscovery] c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe "
mRun: [btbb_wcm_McciTrayApp] c:\program files\btbb_wcm\McciTrayApp.exe
mRun: [4oD] "c:\program files\kontiki\KHost.exe" -all
mRun: [MSKDetectorExe] c:\program files\mcafee\spamkiller\MSKDetct.exe /uninstall
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [Axarad] rundll32.exe "c:\windows\Sropuyiwogilimel.dat ",e
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [RelevantKnowledge] c:\program files\relevantknowledge\rlvknlg.exe -boot
mRun: [NPSStartup]
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [realtecss] "c:\documents and settings\andrew's\application data\google\phtrc345015.exe" 2
mRun: [Framework Windows] frmwrk32.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\alarmc~1.lnk - c:\program files\alarmclock\AlarmClock.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\dellne~1.lnk - c:\windows\installer\{0240bdfb-2995-4a3f-8c96-18d41282b716}\Icon0240BDFB3.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
mPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
dPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Transfer by Image Converter 2 - c:\program files\sony\image converter 2\menu.htm
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader3.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab
DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - hxxp://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} -
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
Notify: opnmMdCR - opnmMdCR.dll
AppInit_DLLs: c:\windows\system32\hirajuyi.dll,c:\windows\system32\doyanavo.dll,mqmtyw.dll,c:\windows\system32\verarupo.dll,ozvpeo.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
LSA: Notification Packages = scecli c:\windows\system32\verarupo.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\andrew's\applic~1\mozilla\firefox\profiles\2di874gu.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.facebook.com/
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\veetle\vlc\npvlc.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - HiddenExtension: XUL Cache: {852234AD-3E73-47D2-A709-25134BCF76E6} - c:\documents and settings\andrew's\local settings\application data\{852234AD-3E73-47D2-A709-25134BCF76E6}

============= SERVICES / DRIVERS ===============

R0 AVG Anti-Rootkit;AVG Anti-Rootkit;c:\windows\system32\drivers\avgarkt.sys [2007-1-31 5632]
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;c:\windows\system32\drivers\AvgArCln.sys [2009-2-8 3968]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-1-23 325128]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-1-23 27656]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-1-23 298264]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-1-21 233472]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2008-1-6 24652]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-1-21 36608]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2008-12-3 38496]
S0 dcbzvrj;dcbzvrj;c:\windows\system32\drivers\sflrdww.sys --> c:\windows\system32\drivers\sflrdww.sys [?]
S0 zirgvkki;zirgvkki;c:\windows\system32\drivers\tlcfweyq.sys []
S2 vvdsvc;VJVodServices;c:\windows\system32\svchost.exe -k vvdsvc [2004-8-10 14336]

=============== Created Last 30 ================

2009-02-10 17:44 1 a------- c:\windows\system32\uniq.tll
2009-02-10 17:44 24,064 a------- c:\windows\system32\frmwrk32.exe
2009-02-10 17:44 24,064 a------- c:\windows\system32\998.exe
2009-02-08 22:39 3,968 a------- c:\windows\system32\drivers\AvgArCln.sys
2009-01-23 16:56 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-01-23 16:08 <DIR> --d----- c:\windows\i386
2009-01-23 15:51 10,520 a------- c:\windows\system32\avgrsstx.dll
2009-01-23 15:51 325,128 a------- c:\windows\system32\drivers\avgldx86.sys
2009-01-23 15:50 <DIR> --d----- c:\windows\system32\drivers\Avg
2009-01-21 21:32 114,304 a------- c:\windows\system32\drivers\sscdmdm.sys
2009-01-21 21:32 87,936 a------- c:\windows\system32\drivers\sscdbus.sys
2009-01-21 21:32 14,976 a------- c:\windows\system32\drivers\sscdmdfl.sys
2009-01-21 21:32 12,160 a------- c:\windows\system32\drivers\sscdwhnt.sys
2009-01-21 21:32 12,160 a------- c:\windows\system32\drivers\sscdwh.sys
2009-01-21 21:32 12,160 a------- c:\windows\system32\drivers\sscdcmnt.sys
2009-01-21 21:32 12,160 a------- c:\windows\system32\drivers\sscdcm.sys
2009-01-21 20:15 <DIR> --d----- c:\program files\MarkAnyContentSAFER
2009-01-21 16:47 233,472 a------- c:\windows\system32\FsUsbExService.Exe
2009-01-21 16:47 110,592 a------- c:\windows\system32\FsUsbExDevice.Dll
2009-01-21 16:47 36,608 a------- c:\windows\system32\FsUsbExDisk.Sys
2009-01-21 16:45 <DIR> --d----- c:\program files\Samsung
2009-01-15 12:56 <DIR> --d----- c:\docume~1\andrew's\applic~1\Spotify
2009-01-15 12:56 <DIR> --d----- c:\program files\Spotify
2009-01-13 16:35 1,104 a------- c:\windows\zirgvkki

==================== Find3M ====================

2009-02-10 17:15 98,304 a------- c:\windows\DUMP79f2.tmp
2009-01-21 20:13 5,632 a------- c:\windows\system32\drivers\StarOpen.sys
2008-12-23 18:14 71,168 a------- c:\windows\inform.dat
2008-12-23 18:14 14,369 a------- c:\windows\system32\edl.dat
2008-12-15 12:38 410,984 a------- c:\windows\system32\deploytk.dll
2008-12-14 17:52 6,822 a------- c:\windows\ivaqobox.dll
2008-12-03 15:19 14,336 a------- c:\windows\system32\svchost.exe
2008-12-03 15:19 14,336 a------- c:\windows\system32\dllcache\svchost.exe
2008-11-21 14:37 799,200 a--sh--- c:\windows\system32\XxxENqss.ini2
2008-11-20 16:17 47,598 a------- c:\windows\system32\bpmzdrmjhffws.exe
2007-11-22 14:01 450 a------- c:\docume~1\andrew's\applic~1\wklnhst.dat
2007-07-02 14:58 87,608 a------- c:\docume~1\andrew's\applic~1\inst.exe
2007-07-02 14:58 47,360 a------- c:\docume~1\andrew's\applic~1\pcouffin.sys
2005-07-29 16:24 472 a--shr-- c:\windows\qw5kcmv3j3m\kqc4wApaLag.vbs
2008-01-04 22:43 88 a--shr-- c:\windows\system32\614B575CD3.sys
2007-11-06 22:56 56 a--shr-- c:\windows\system32\D35C574B61.sys
2008-01-04 22:43 6,580 a--sh--- c:\windows\system32\KGyGaAvL.sys
2008-08-27 18:00 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008082720080828\index.dat

============= FINISH: 18:05:18.45 ===============

 

DDS Attach Log:


DDS (Ver_09-02-01.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 15/09/2006 12:04:53
System Uptime: 02/10/2009 17:28:51 (-5615 hours ago)

Motherboard: Dell Inc. | | 0MG532
Processor: Genuine Intel(R) CPU T2300 @ 1.66GHz | Microprocessor | 1664/166mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 39 GiB total, 12.551 GiB free.
D: is FIXED (NTFS) - 13 GiB total, 12.484 GiB free.
E: is CDROM (UDF)

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP500: 13/01/2009 16:36:07 - System Checkpoint
RP501: 13/01/2009 16:36:08 - System Checkpoint
RP502: 13/01/2009 16:36:08 - Installed Java(TM) 6 Update 7
RP503: 13/01/2009 16:36:08 - Installed iTunes
RP504: 13/01/2009 16:36:08 - Software Distribution Service 3.0
RP505: 13/01/2009 16:36:09 - System Checkpoint
RP506: 13/01/2009 16:36:09 - System Checkpoint
RP507: 13/01/2009 16:36:09 - System Checkpoint
RP508: 13/01/2009 16:36:09 - System Checkpoint
RP509: 13/01/2009 16:36:09 - System Checkpoint
RP510: 13/01/2009 16:36:10 - System Checkpoint
RP511: 13/01/2009 16:36:10 - System Checkpoint
RP512: 13/01/2009 16:36:11 - System Checkpoint
RP513: 13/01/2009 16:36:11 - System Checkpoint
RP514: 13/01/2009 16:36:12 - System Checkpoint
RP515: 13/01/2009 16:36:12 - System Checkpoint
RP516: 13/01/2009 16:36:13 - System Checkpoint
RP517: 13/01/2009 16:36:13 - System Checkpoint
RP518: 13/01/2009 16:36:13 - System Checkpoint
RP519: 13/01/2009 16:36:13 - System Checkpoint
RP520: 13/01/2009 16:36:13 - System Checkpoint
RP521: 13/01/2009 16:36:14 - System Checkpoint
RP522: 13/01/2009 16:36:14 - Software Distribution Service 3.0
RP523: 13/01/2009 16:36:14 - System Checkpoint
RP524: 13/01/2009 16:36:14 - System Checkpoint
RP525: 13/01/2009 16:36:14 - System Checkpoint
RP526: 13/01/2009 16:36:15 - System Checkpoint
RP527: 13/01/2009 16:36:15 - System Checkpoint
RP528: 13/01/2009 16:36:15 - System Checkpoint
RP529: 13/01/2009 16:36:15 - Software Distribution Service 3.0
RP530: 13/01/2009 16:36:16 - System Checkpoint
RP531: 13/01/2009 16:36:16 - System Checkpoint
RP532: 13/01/2009 16:36:17 - System Checkpoint
RP533: 13/01/2009 16:36:17 - System Checkpoint
RP534: 13/01/2009 16:36:17 - System Checkpoint
RP535: 13/01/2009 16:36:17 - System Checkpoint
RP536: 13/01/2009 16:36:17 - System Checkpoint
RP537: 13/01/2009 16:36:18 - Installed DirectX
RP538: 13/01/2009 16:36:18 - System Checkpoint
RP539: 13/01/2009 16:36:18 - System Checkpoint
RP540: 13/01/2009 16:36:18 - System Checkpoint
RP541: 13/01/2009 16:36:19 - System Checkpoint
RP542: 13/01/2009 16:36:19 - System Checkpoint
RP543: 13/01/2009 16:36:19 - System Checkpoint
RP544: 13/01/2009 16:36:20 - System Checkpoint
RP545: 13/01/2009 16:36:20 - Software Distribution Service 3.0
RP546: 13/01/2009 16:36:20 - System Checkpoint
RP547: 13/01/2009 16:36:20 - System Checkpoint
RP548: 13/01/2009 16:36:20 - Installed DirectX
RP549: 13/01/2009 16:36:21 - System Checkpoint
RP550: 13/01/2009 16:36:21 - Last known good configuration
RP551: 13/01/2009 16:36:22 - System Checkpoint
RP552: 13/01/2009 16:36:22 - System Checkpoint
RP553: 13/01/2009 16:36:23 - System Checkpoint
RP554: 13/01/2009 16:36:24 - System Checkpoint
RP555: 13/01/2009 16:36:24 - Removed AVG 7.5
RP556: 13/01/2009 16:36:25 - Installed AVG 7.5
RP557: 13/01/2009 16:36:25 - Installed AVG Free 8.0
RP558: 13/01/2009 16:36:26 - System Checkpoint
RP559: 13/01/2009 16:36:27 - System Checkpoint
RP560: 13/01/2009 16:36:27 - System Checkpoint
RP561: 13/01/2009 16:36:28 - System Checkpoint
RP562: 13/01/2009 16:36:29 - System Checkpoint
RP563: 13/01/2009 16:36:30 - System Checkpoint
RP564: 13/01/2009 16:36:30 - System Checkpoint
RP565: 13/01/2009 16:36:31 - System Checkpoint
RP566: 13/01/2009 16:36:31 - System Checkpoint
RP567: 13/01/2009 16:36:32 - System Checkpoint
RP568: 13/01/2009 16:36:32 - System Checkpoint
RP569: 13/01/2009 16:36:33 - System Checkpoint
RP570: 13/01/2009 16:36:34 - Installed Java(TM) 6 Update 11
RP571: 13/01/2009 16:36:36 - System Checkpoint
RP572: 13/01/2009 16:36:37 - System Checkpoint
RP573: 13/01/2009 16:36:38 - System Checkpoint
RP574: 13/01/2009 16:36:40 - System Checkpoint
RP575: 13/01/2009 16:36:40 - System Checkpoint
RP576: 13/01/2009 16:36:41 - Installed DirectX
RP577: 13/01/2009 16:36:41 - System Checkpoint
RP578: 13/01/2009 16:36:42 - System Checkpoint
RP579: 13/01/2009 16:36:42 - System Checkpoint
RP580: 13/01/2009 16:36:43 - System Checkpoint
RP581: 13/01/2009 16:36:44 - System Checkpoint
RP582: 13/01/2009 16:36:45 - System Checkpoint
RP583: 13/01/2009 16:36:46 - System Checkpoint
RP584: 21/01/2009 21:31:41 - Last known good configuration
RP585: 23/01/2009 23:07:48 - System Checkpoint
RP586: 24/01/2009 15:15:54 - Avg8 Update
RP587: 25/01/2009 18:49:36 - System Checkpoint
RP588: 26/01/2009 22:59:49 - System Checkpoint

==== Installed Programs ======================

2007 Microsoft Office Suite Service Pack 1 (SP1)
4oD
Adobe Flash Player ActiveX
Adobe Flash Player Plugin
Adobe Reader 7.0.8
Adobe Shockwave Player
Advertisement Service
Alarm Clock
Alarm Clock (C:\Program Files\AlarmClock\)
AOL Uninstaller (Choose which Products to Remove)
Apple Mobile Device Support
Apple Software Update
ARTEuro
AVG Anti-Rootkit Free
AVG Free 8.0
Bonjour
Broadcom Management Programs
BT Home Hub
BT Wireless Connection Manager
CinepPlayer 30 Update
Conexant HDA D110 MDC V.92 Modem
Dell CinePlayer
Dell Driver Reset Tool
Dell Media Experience
Dell Network Assistant
Dell Support 3.2
Dell System Restore
Digital Line Detect
Football Manager 2009
Free YouTube to Mp3 Converter version 3.1
Google Toolbar for Internet Explorer
High Definition Audio Driver Package - KB835221
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
hp deskjet 3600
HP Memories Disc
HP Photo and Imaging 2.0 - Deskjet Series
hp print screen utility
Image Converter 2
Intel(R) Graphics Media Accelerator Driver
Intel(R) PROSet/Wireless Software
iPod for Windows 2006-06-28
iPod To Computer Transfer 3.5
iTunes
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
Java(TM) 6 Update 11
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6 Update 1
Learn2 Player (Uninstall Only)
LiveUpdate 2.6 (Symantec Corporation)
Malwarebytes' Anti-Malware
mCore
MCU
mDrWiFi
mHlpDell
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft ActiveX Control Pad
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
mIWA
Mixer
mLogView
mMHouse
MobileMe Control Panel
Modem Helper
Mozilla Firefox (3.0.6)
mPfMgr
mPfWiz
mProSafe
mSSO
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
mWlsSafe
mWMI
mXML
mZConfig
NetWaiting
OpenMG AAC Add-on Module 1.0.00
OpenMG Limited Patch 4.5-06-05-12-01
OpenMG Secure Module 4.5.01
QuickSet
QuickTime
RelevantKnowledge
RON Tool Netupbanner
Roxio DLA
Roxio MyDVD LE
Roxio RecordNow Audio
Roxio RecordNow Copy
Roxio RecordNow Data
SAMSUNG Mobile Composite Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
Samsung PC Studio
Samsung PC Studio 3 USB Driver Installer
SearchAssist
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB955936)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft Office Excel 2007 (KB955470)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Security Update for Microsoft Office system 2007 (KB951808)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office Word 2007 (KB950113)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Visio 2007 (KB947590)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Sonic Activation Module
Sonic Update Manager
Sony MP4 Shared Library
SopCast 3.0.3
Sound Blaster Audigy ADVANCED MB Demo
Spotify
SPVOD Player1.8
Synaptics Pointing Device Driver
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Office 2007 (KB946691)
Update for Outlook 2007 Junk Email Filter (kb957829)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
URL Assistant
Veetle TV Player 0.9.9
Viewpoint Media Player
VLC media player 0.9.4
Vodafone 804SS USB driver Software
WebFldrs XP
Windows Driver Package - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
Windows Driver Package - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Live installer
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
WinRAR archiver
Zattoo 3.3.1 Beta

==== Event Viewer Messages From Past Week ========

04/02/2009 19:34:58, error: NetBT [4321] - The name "THOMSON :0" could not be registered on the Interface with IP address 192.168.1.66. The machine with the IP address 192.168.1.253 did not allow the name to be claimed by this machine.
04/02/2009 21:37:09, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: zirgvkki
04/02/2009 21:58:55, error: Service Control Manager [7031] - The DCOM Server Process Launcher service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.
04/02/2009 21:58:55, error: Service Control Manager [7034] - The Terminal Services service terminated unexpectedly. It has done this 1 time(s).
05/02/2009 17:02:56, error: DCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {BA126AD1-2166-11D1-B1D0-00805FC1270E} to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.
10/02/2009 00:21:52, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070002: Automatic Updates.

==== End Of File ===========================

 

I also ran a ComboFix scan as per your instructions to another user who had a pretty much identical problem to me, here is that log:

ComboFix 09-02-10.01 - Andrew's 2009-02-10 19:49:56.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.640 [GMT 0:00]
Running from: C:\Documents and Settings\Andrew's\My Documents\My Received Files\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Andrew's\Application Data\Google\updovl32.dll
C:\Documents and Settings\Andrew's\Application Data\inst.exe
C:\Documents and Settings\Andrew's\Local Settings\Temporary Internet Files\fbk.sts
C:\Documents and Settings\LocalService\Application Data\twain_32
C:\Documents and Settings\LocalService\Application Data\twain_32\user.ds
C:\Documents and Settings\NetworkService\Application Data\twain_32
C:\Documents and Settings\NetworkService\Application Data\twain_32\user.ds
C:\Temp\1cb
C:\Temp\1cb\syscheck.log
C:\temp\FT62
C:\temp\FT62\teTU.log
C:\WINDOWS\system32\apataruw.ini
C:\WINDOWS\system32\bb1.dat
C:\WINDOWS\system32\dPI19
C:\WINDOWS\system32\drivers\seneka.sys
C:\WINDOWS\system32\drivers\senekakdaeoepk.sys
C:\WINDOWS\system32\emejufij.ini
C:\WINDOWS\system32\emurijak.ini
C:\WINDOWS\system32\npevwrgy.ini
C:\WINDOWS\system32\ntnet.drv
C:\WINDOWS\system32\onodijed.ini
C:\WINDOWS\system32\rpuhkcpb.ini
C:\WINDOWS\system32\s2
C:\WINDOWS\system32\senekabaqgkcme.dat
C:\WINDOWS\system32\senekalog.dat
C:\WINDOWS\system32\senekantbufyot.dll
C:\WINDOWS\system32\uniq.tll
C:\WINDOWS\system32\XxxENqss.ini
C:\WINDOWS\system32\XxxENqss.ini2
C:\WINDOWS\Tasks\djmsouah.job

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_SENEKA
-------\Legacy_FCI
-------\Legacy_PACKET
-------\Service_Packet


((((((((((((((((((((((((( Files Created from 2009-01-10 to 2009-02-10 )))))))))))))))))))))))))))))))
.

2009-02-08 22:39 . 2007-01-18 12:00 3,968 --a------ C:\WINDOWS\system32\drivers\AvgArCln.sys
2009-01-23 16:56 . 2009-02-05 14:26 <DIR> d--h----- C:\$AVG8.VAULT$
2009-01-23 16:08 . 2009-01-23 16:08 <DIR> d-------- C:\WINDOWS\i386
2009-01-23 15:51 . 2009-02-04 12:13 325,128 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys
2009-01-23 15:51 . 2009-02-04 12:13 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll
2009-01-23 15:50 . 2009-02-10 10:13 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg
2009-01-21 21:32 . 2008-02-22 15:33 114,304 --a------ C:\WINDOWS\system32\drivers\sscdmdm.sys
2009-01-21 21:32 . 2008-02-22 15:33 87,936 --a------ C:\WINDOWS\system32\drivers\sscdbus.sys
2009-01-21 21:32 . 2008-02-22 15:33 14,976 --a------ C:\WINDOWS\system32\drivers\sscdmdfl.sys
2009-01-21 21:32 . 2008-02-22 15:33 12,160 --a------ C:\WINDOWS\system32\drivers\sscdwhnt.sys
2009-01-21 21:32 . 2008-02-22 15:33 12,160 --a------ C:\WINDOWS\system32\drivers\sscdwh.sys
2009-01-21 21:32 . 2008-02-22 15:33 12,160 --a------ C:\WINDOWS\system32\drivers\sscdcmnt.sys
2009-01-21 21:32 . 2008-02-22 15:33 12,160 --a------ C:\WINDOWS\system32\drivers\sscdcm.sys
2009-01-21 16:47 . 2008-09-12 09:24 233,472 --a------ C:\WINDOWS\system32\FsUsbExService.Exe
2009-01-21 16:47 . 2009-01-21 20:13 110,592 --a------ C:\WINDOWS\system32\FsUsbExDevice.Dll
2009-01-21 16:47 . 2009-01-21 20:13 36,608 --a------ C:\WINDOWS\system32\FsUsbExDisk.Sys
2009-01-21 16:45 . 2009-01-21 21:31 <DIR> d-------- C:\Program Files\Samsung
2009-01-15 12:56 . 2009-01-15 12:56 <DIR> d-------- C:\Program Files\Spotify
2009-01-15 12:56 . 2009-02-05 16:11 <DIR> d-------- C:\Documents and Settings\Andrew's\Application Data\Spotify
2009-01-13 16:35 . 2009-02-10 19:48 1,104 --a------ C:\WINDOWS\zirgvkki

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-10 19:58 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2009-02-10 19:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kontiki
2009-02-10 17:15 98,304 ----a-w C:\WINDOWS\DUMP79f2.tmp
2009-02-05 14:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg8
2009-01-23 15:59 --------- d-----w C:\Documents and Settings\Andrew's\Application Data\Sports Interactive
2009-01-22 16:38 --------- d-----w C:\Program Files\LimeWire
2009-01-22 16:38 --------- d-----w C:\Program Files\DivX
2009-01-21 21:31 --------- d--h--w C:\Program Files\InstallShield Installation Information
2009-01-21 20:13 5,632 ----a-w C:\WINDOWS\system32\drivers\StarOpen.sys
2009-01-21 17:22 --------- d-----w C:\Program Files\DIFX
2009-01-21 16:45 --------- d-----w C:\Documents and Settings\Andrew's\Application Data\Samsung
2009-01-21 16:39 --------- d-----w C:\Program Files\Nokia
2009-01-21 16:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\Downloaded Installations
2009-01-06 18:00 --------- d-----w C:\Program Files\DVDVideoSoft
2009-01-06 18:00 --------- d-----w C:\Program Files\Common Files\DVDVideoSoft
2009-01-06 17:30 --------- d-----w C:\Program Files\Google
2008-12-15 12:37 --------- d-----w C:\Program Files\Java
2008-12-14 17:52 6,822 ----a-w C:\WINDOWS\ivaqobox.dll
2007-11-22 14:01 450 ----a-w C:\Documents and Settings\Andrew's\Application Data\wklnhst.dat
2007-07-02 14:58 47,360 ----a-w C:\Documents and Settings\Andrew's\Application Data\pcouffin.sys
2005-07-29 16:24 472 --sha-r C:\WINDOWS\QW5kcmV3J3M\kqc4wApaLag.vbs
2008-01-04 22:43 88 --sha-r C:\WINDOWS\system32\614B575CD3.sys
2007-11-06 22:56 56 --sha-r C:\WINDOWS\system32\D35C574B61.sys
2008-01-04 22:43 6,580 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-08-27 18:00 32,768 --sha-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008082720080828\index.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ModemOnHold "= "C:\Program Files\NetWaiting\netWaiting.exe" [2003-09-10 01:24 20480]
"DellSupport "= "C:\Program Files\Dell Support\DSAgnt.exe" [2006-07-16 20:29 389120]
"MsnMsgr "= "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"ctfmon.exe "= "C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 00:12 15360]
"kdx "= "C:\Program Files\Kontiki\KHost.exe" [2007-11-27 11:58 1032376]
"swg "= "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-06 17:30 39408]
"AutoStartNPSAgent "= "C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" [2009-01-21 20:13 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray "= "C:\WINDOWS\system32\igfxtray.exe" [2005-12-13 08:44 98304]
"igfxhkcmd "= "C:\WINDOWS\system32\hkcmd.exe" [2005-12-13 08:41 77824]
"igfxpers "= "C:\WINDOWS\system32\igfxpers.exe" [2005-12-13 08:45 118784]
"SunJavaUpdateSched "= "C:\Program Files\Java\jre6\bin\jusched.exe" [2008-12-15 12:38 136600]
"DMXLauncher "= "C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [2005-11-01 02:12 94208]
"SynTPEnh "= "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-08 17:48 761947]
"IntelZeroConfig "= "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" [2006-05-01 08:28 667718]
"IntelWireless "= "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [2006-05-01 08:28 602182]
"CTSVolFE.exe "= "C:\Program Files\Creative\Mixer\CTSVolFE.exe" [2005-02-23 14:57 57344]
"ISUSPM Startup "= "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 09:44 249856]
"ISUSScheduler "= "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 09:44 81920]
"DLA "= "C:\WINDOWS\System32\DLA\DLACTRLW.EXE" [2005-09-08 04:20 122940]
"HPDJ Taskbar Utility "= "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe" [2003-03-11 10:08 172032]
"HP Software Update "= "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2002-12-17 10:40 49152]
"DeviceDiscovery "= "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe" [2002-12-02 19:56 40960]
"GrooveMonitor "= "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 06:00 33648]
"btbb_wcm_McciTrayApp "= "C:\Program Files\btbb_wcm\McciTrayApp.exe" [2006-12-08 06:45 543232]
"4oD "= "C:\Program Files\Kontiki\KHost.exe" [2007-11-27 11:58 1032376]
"MSKDetectorExe "= "C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" [2006-11-07 14:49 1121280]
"AppleSyncNotifier "= "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-09-03 19:12 111936]
"QuickTime Task "= "C:\Program Files\QuickTime\QTTask.exe" [2008-11-04 10:30 413696]
"iTunesHelper "= "C:\Program Files\iTunes\iTunesHelper.exe" [2008-11-20 13:20 290088]
"AVG8_TRAY "= "C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2009-02-04 12:13 1601304]
"SigmatelSysTrayApp "= "stsystra.exe" [2006-03-24 22:30 282624 C:\WINDOWS\stsystra.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE "= "C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 00:12 15360]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 21:05:26 29696]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSetActiveDesktop "= 1 (0x1)
"NoActiveDesktopChanges "= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-02-04 12:13 10520 C:\WINDOWS\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MSACM.MSNAUDIO "= msnaudio.acm
"aux3 "= sysaudio.sys

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify "=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe "=
"C:\\Program Files\\Messenger\\msmsgs.exe "=
"%windir%\\Network Diagnostic\\xpnetdiag.exe "=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE "=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE "=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE "=
"C:\\Program Files\\Kontiki\\KService.exe "=
"C:\\Program Files\\SopCast\\adv\\SopAdver.exe "=
"C:\\Program Files\\SopCast\\SopCast.exe "=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe "=
"C:\\Program Files\\Dell Network Assistant\\ezi_hnm2.exe "=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe "=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe "=
"C:\\Program Files\\Zattoo\\zattood.exe "=
"C:\\Program Files\\Zattoo\\Zattoo2.exe "=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe "=
"C:\\Program Files\\Zattoo\\Zattoo.exe "=
"C:\\Program Files\\iTunes\\iTunes.exe "=
"C:\\Program Files\\QuickTime\\QTTask.exe "=
"C:\\Program Files\\Intel\\Wireless\\Bin\\Dot1XCfg.exe "=
"C:\\Program Files\\Sports Interactive\\Football Manager 2009\\fm.exe "=
"C:\\Program Files\\Spotify\\spotify.exe "=
"C:\\Program Files\\Samsung\\Samsung New PC Studio\\npsasvr.exe "=
"C:\\Program Files\\Samsung\\Samsung New PC Studio\\npsvsvr.exe "=
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe "=
"%windir%\\system32\\drivers\\svchost.exe "=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"10421:UDP "= 10421:UDP:SingleClick Discovery Protocol
"10426:UDP "= 10426:UDP:SingleClick ICC
"88:UDP "= 88:UDP:Kerberos
"3074:UDP "= 3074:UDP:Xbox Live
"3074:TCP "= 3074:TCP:Xbox Live 2

R1 AvgLdx86;AVG Free AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [2009-01-23 15:51:01 325128]
R2 avg8wd;AVG Free8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-01-23 15:50:41 298264]
R2 FsUsbExService;FsUsbExService;C:\WINDOWS\system32\FsUsbExService.Exe [2009-01-21 16:47:33 233472]
R2 Viewpoint Manager Service;Viewpoint Manager Service;C:\Program Files\Viewpoint\Common\ViewpointService.exe [2008-01-06 22:14:46 24652]
R3 FsUsbExDisk;FsUsbExDisk;C:\WINDOWS\system32\FsUsbExDisk.Sys [2009-01-21 16:47:33 36608]
S0 dcbzvrj;dcbzvrj;C:\WINDOWS\system32\drivers\sflrdww.sys --> C:\WINDOWS\system32\drivers\sflrdww.sys [?]
S0 zirgvkki;zirgvkki;C:\WINDOWS\system32\drivers\tlcfweyq.sys []
S2 vvdsvc;VJVodServices;C:\WINDOWS\System32\svchost.exe -k vvdsvc [2004-08-10 11:51:26 14336]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{01BE3276-1420-45b5-9762-172C5C184EB7}]
rundll32 svchstb.dll,InitO
.
Contents of the 'Scheduled Tasks' folder

2009-02-03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
.
- - - - ORPHANS REMOVED - - - -

BHO-{0ba7593a-d246-4ead-8d76-46e9640338e3} - C:\WINDOWS\system32\nudunuhi.dll
BHO-{77FFCDF3-F61C-48BF-842D-D853E701E022} - C:\WINDOWS\system32\ssqRKebB.dll
BHO-{D199F606-4C8B-4BA7-9CBA-E6C73E836D68} - C:\WINDOWS\system32\ssqNExxX.dll
Toolbar-SITEguard - (no file)
HKCU-Run-SsAAD.exe - C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
HKLM-Run-Axarad - C:\WINDOWS\Sropuyiwogilimel.dat
HKLM-Run-realtecss - C:\Documents and Settings\Andrew's\Application Data\Google\phtrc345015.exe
HKLM-Run-NPSStartup - (no file)
Notify-opnmMdCR - opnmMdCR.dll


.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.facebook.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mSearch Bar = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
uInternet Connection Wizard,ShellNext = hxxp://www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=5060912
uInternet Settings,ProxyOverride = 127.0.0.1;*.local
uSearchURL,(Default) = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/su/*http://uk.search.yahoo.com/
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Transfer by Image Converter 2 - C:\Program Files\Sony\Image Converter 2\menu.htm
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
FF - ProfilePath - C:\Documents and Settings\Andrew's\Application Data\Mozilla\Firefox\Profiles\2di874gu.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.facebook.com/
FF - component: C:\Program Files\AVG\AVG8\Firefox\components\avgssff.dll
FF - plugin: C:\Program Files\Veetle\plugins\npVeetle.dll
FF - plugin: C:\Program Files\Veetle\VLC\npvlc.dll
FF - plugin: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll

 

Welcome to WindowsBBS pevra3

Disable any realtime protection applications. Highlight and copy the contents of the code box below and paste it into a blank notepad, then save it to your desktop as;

Filename: CFScript.txt
Save As Type: All Files (*.*)

Code:

File::
C:\WINDOWS\zirgvkki
C:\WINDOWS\system32\614B575CD3.sys
C:\WINDOWS\system32\D35C574B61.sys
C:\WINDOWS\system32\sysaudio.sys
Rootkit::
C:\WINDOWS\system32\drivers\sflrdww.sys
Folder::
C:\WINDOWS\QW5kcmV3J3M
Registry::
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
 "NoSetActiveDesktop "=-
 "NoActiveDesktopChanges "=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
 "aux3 "=-
[-HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{01BE3276-1420-45b5-9762-172C5C184EB7}]
Driver::
dcbzvrj
zirgvkki
DDS::
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com
Trusted Zone: antimalwareguard.com
Trusted Zone: gomyhit.com

Close all other windows and programs. Now drag the CFScript.txt onto ComboFix.exe and drop it, using the left mouse button. Combofix should run and may reboot the computer when it's done. A log will open when it's complete. Post the contents of that log.

Please do not click on the ComboFix window while it is running a scan. This can cause it to stall.


Please be sure to copy the entire log ..... your last one was cut off at the bottom.

Let me know if you're still getting the Generic Host Process error.

 

hi
any suggestions about this issue
pleeeeease




Logfile of HijackThis v1.99.1




Scan saved at 01:18:59 م, on 25/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\DOCUME~1\PC\LOCALS~1\Temp\الدليل المؤقت 1 لـ HijackThis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://192.168.0.201/mabco_poss/mabco_common/login.aspx
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe "
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0FO\adialhk.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe" -r (file missing)

 

Hi mabhamdi

Welcome to Windowsbbs.
Please start a topic of your own and do the following.

Please download DDS, Run a scan and post the logs in the thread you start.
Links and instructions here.

Thanks
Geri