1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

My computer has started to run horribly slow and come up with numerous small problems

Discussion in 'Virus & Other Malware Removal' started by azuzephyr, Feb 4, 2013.

Thread Status:
Not open for further replies.
  1. azuzephyr

    azuzephyr Thread Starter

    Feb 4, 2013
    So yeah, terribly slow running speed, although it usually starts off fine but after maybe 10 minutes of useage starts to drag. There are lots of tiny problem such as the task manager pane doesn't have a top bar or the info about what % your cpu is running at etc, mozilla frequently crashes which it never did before, stuff like that. There are also some 'new' features to my mozilla like toolbars and little popup help thingys that I didn't install myself and can't seem to find/uninstall.

    Here's the hijack log;

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:30:43, on 05/01/2012
    Platform: Unknown Windows (WinNT 6.01.3504)
    MSIE: Internet Explorer v8.00 (8.00.7600.16869)
    Boot mode: Normal

    Running processes:
    C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
    C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
    C:\Program Files\ASUS\EPU\EPU.exe
    C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
    C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
    C:\Program Files\Razer\Nostromo\RazerNostromoSysTray.exe
    C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Steam\Steam.exe
    C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\Norton Internet Security\Engine\\ccSvcHst.exe
    C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
    C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
    C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Program Files\OpenOffice.org 3\program\soffice.bin
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Common Files\Java\Java Update\jucheck.exe
    C:\Program Files\IObit\Game Booster\gbtray.exe
    C:\Program Files\IObit\Advanced SystemCare 5\ASC.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Google\Chrome\Application\chrome.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
    R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
    O2 - BHO: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\\coIEPlg.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\\IPSBHO.DLL
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\\coIEPlg.dll
    O3 - Toolbar: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
    O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
    O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU\EPU.exe" -b
    O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
    O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
    O4 - HKLM\..\Run: [Razer Nostromo Driver] C:\Program Files\Razer\Nostromo\RazerNostromoSysTray.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
    O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
    O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10o_Plugin.exe -update plugin
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - Startup: CurseClientStartup.ccip
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
    O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O13 - Gopher Prefix:
    O16 - DPF: {C044CD87-DFB0-4130-A5E4-49361106FBC8} (HanSetupCtrl1010 Class) - http://www.tera.hangame.com/common/activex/HanSetup1040.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
    O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe
    O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
    O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
    O23 - Service: BecHelperService - Unknown owner - C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\ASUS.SYS\config\DVMExportService.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
    O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\\ccSvcHst.exe
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

    End of file - 11480 bytes

    The attach file:

    DDS (Ver_2012-11-20.01)
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 01/04/2011 13:59:52
    System Uptime: 04/02/2013 09:33:45 (2 hours ago)
    Motherboard: ASUSTeK Computer INC. | | M4A87TD/USB3
    Processor: AMD Athlon(tm) II X2 260 Processor | AM3 | 3200/200mhz
    ==== Disk Partitions =========================
    C: is FIXED (NTFS) - 466 GiB total, 249.319 GiB free.
    D: is CDROM (CDFS)
    ==== Disabled Device Manager Items =============
    ==== System Restore Points ===================
    RP185: 08/01/2013 20:00:37 - Scheduled Checkpoint
    RP186: 21/01/2013 11:13:17 - Scheduled Checkpoint
    RP187: 21/01/2013 16:23:44 - Removed Babylon Chrome Toolbar
    RP188: 03/02/2013 18:47:48 - Installed QuickTime
    RP189: 03/02/2013 18:50:13 - Installed Java 7 Update 13
    RP190: 03/02/2013 19:24:16 - Installed AVG 2013
    RP191: 03/02/2013 19:25:42 - Installed AVG 2013
    ==== Installed Programs ======================
    Update for Microsoft Office 2007 (KB2508958)
    Adobe AIR
    Adobe Download Assistant
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader XI (11.0.01)
    Advanced Combat Tracker (remove only)
    Akamai NetSession Interface
    AMD APP SDK Runtime
    AMD USB Filter Driver
    AMD VISION Engine Control Center
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Ask Toolbar
    Ask Toolbar Updater
    ASUS VGA Driver
    ASUS Xonar U3 Audio
    ATI AVIVO Codecs
    ATI Catalyst Install Manager
    AVG 2013
    Bloodline Champions
    Browser Configuration Utility
    Catalyst Control Center - Branding
    Catalyst Control Center Graphics Previews Common
    Catalyst Control Center InstallProxy
    Catalyst Control Center Localization All
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Czech
    CCC Help Danish
    CCC Help Dutch
    CCC Help English
    CCC Help Finnish
    CCC Help French
    CCC Help German
    CCC Help Greek
    CCC Help Hungarian
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Norwegian
    CCC Help Polish
    CCC Help Portuguese
    CCC Help Russian
    CCC Help Spanish
    CCC Help Swedish
    CCC Help Thai
    CCC Help Turkish
    Curse Client
    Device Doctor v2.1
    devolo dLAN Configuration Wizard
    devolo Informer
    Diablo II
    Diablo III
    Diablo III Beta
    Driver Detective
    Express Gate
    FINAL FANTASY XI: Ultimate Collection - Abyssea Edition
    Google Chrome
    Google Update Helper
    Guild Wars
    Guild Wars 2
    Hardware Helper
    HijackThis 2.0.2
    IObit Toolbar v4.9
    Java 7 Update 13
    Java Auto Updater
    Java(TM) 6 Update 30
    Malwarebytes Anti-Malware version
    McAfee Security Scan Plus
    Microsoft Application Error Reporting
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Groove MUI (English) 2007
    Microsoft Office Groove Setup Metadata MUI (English) 2007
    Microsoft Office InfoPath MUI (English) 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Silverlight
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft XNA Framework Redistributable 3.1
    Mozilla Firefox 18.0.1 (x86 en-US)
    Mozilla Maintenance Service
    Mumble 1.2.3
    NC Launcher (GameForge)
    NCsoft Launcher
    Norton PC Checkup
    OpenOffice.org 3.3
    Picasa 3
    Portal 2
    Razer Lycosa
    Razer Nostromo
    Realm of the Mad God
    Realtek Ethernet Controller Driver For Windows 7
    Renesas Electronics USB 3.0 Host Controller Driver
    Revo Uninstaller 1.93
    Security Update for 2007 Microsoft Office System (KB2288621)
    Security Update for 2007 Microsoft Office System (KB2288931)
    Security Update for 2007 Microsoft Office System (KB2345043)
    Security Update for 2007 Microsoft Office System (KB2553074)
    Security Update for 2007 Microsoft Office System (KB2553089)
    Security Update for 2007 Microsoft Office System (KB2553090)
    Security Update for 2007 Microsoft Office System (KB2584063)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for CAPICOM (KB931906)
    Security Update for Microsoft Office Access 2007 (KB979440)
    Security Update for Microsoft Office Excel 2007 (KB2553073)
    Security Update for Microsoft Office Groove 2007 (KB2552997)
    Security Update for Microsoft Office InfoPath 2007 (KB2510061)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
    Security Update for Microsoft Office Publisher 2007 (KB2284697)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2344993)
    Skype Click to Call
    Skype™ 6.0
    Spybot - Search & Destroy
    System Requirements Lab CYRI
    TeamSpeak 3 Client
    TP-LINK Wireless Client Utility
    TurboV EVO
    Unknown Device Identifier 8.00
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft Office 2007 Help for Common Features (KB963673)
    Update for Microsoft Office 2007 System (KB2539530)
    Update for Microsoft Office Access 2007 Help (KB963663)
    Update for Microsoft Office Excel 2007 Help (KB963678)
    Update for Microsoft Office Infopath 2007 Help (KB963662)
    Update for Microsoft Office OneNote 2007 (KB980729)
    Update for Microsoft Office OneNote 2007 Help (KB963670)
    Update for Microsoft Office Outlook 2007 (KB2583910)
    Update for Microsoft Office Outlook 2007 Help (KB963677)
    Update for Microsoft Office Powerpoint 2007 Help (KB963669)
    Update for Microsoft Office Publisher 2007 Help (KB963667)
    Update for Microsoft Office Script Editor Help (KB963671)
    Update for Microsoft Office Word 2007 Help (KB963665)
    Update for Outlook 2007 Junk Email Filter (KB2596560)
    Ventrilo Client
    VIA Platform Device Manager
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Messenger
    Windows Live Photo Common
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    World of Warcraft
    World of Warcraft Beta
    World of Warcraft Public Test
    ==== End Of File ===========================

    And the dds log:

    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.13.2
    Run by Chris at 11:05:54 on 2013-02-04
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1033.18.2046.98 [GMT 0:00]
    AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
    ============== Running Processes ================
    C:\Program Files\AVG\AVG2013\avgcsrvx.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
    C:\Program Files\AVG\AVG2013\avgidsagent.exe
    C:\Program Files\AVG\AVG2013\avgwdsvc.exe
    C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
    C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Norton PC Checkup\Engine\\SymcPCCULaunchSvc.exe
    C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    C:\Program Files\AVG\AVG2013\avgnsx.exe
    C:\Program Files\AVG\AVG2013\avgemcx.exe
    C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
    C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
    C:\Program Files\ASUS\EPU\EPU.exe
    C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
    C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Razer\Nostromo\RazerNostromoSysTray.exe
    C:\Program Files\Ask.com\Updater\Updater.exe
    C:\Program Files\Razer\Lycosa\razerhid.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\AVG\AVG2013\avgui.exe
    C:\Program Files\Razer\Lycosa\razertra.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\McAfee Security Scan\3.0.313\SSScheduler.exe
    C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Program Files\OpenOffice.org 3\program\soffice.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\OpenOffice.org 3\program\soffice.bin
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Guild Wars 2\Gw2.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    ============== Pseudo HJT Report ===============
    uStart Page = about:blank
    uWindow Title = Internet Explorer, optimized for Bing and MSN
    uSearch Bar = hxxp://www.google.com/ie
    uSearch Page = hxxp://www.google.com
    uDefault_Search_URL = hxxp://www.google.com/ie
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dll
    uURLSearchHooks: SearchHook Class: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - c:\program files\devicevm\browser configuration utility\AddressBarSearch.dll
    uURLSearchHooks: {472734EA-242A-422b-ADF8-83D1E48CC825} - <orphaned>
    BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.0.313\McAfeeMSS_IE.dll
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: QuickShare WidgetEngine: {31ad400d-1b06-4e33-a59a-90c2c140cba0} -
    BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
    BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll
    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll
    TB: QuickShare Widget: {ae07101b-46d4-4a98-af68-0333ea26e113} -
    uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    uRun: [Steam] "c:\program files\steam\Steam.exe" -silent
    uRun: [Device Doctor] c:\program files\device doctor\DDLauncher.exe
    uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
    uRun: [Akamai NetSession Interface] "c:\users\chris\appdata\local\akamai\netsession_win.exe"
    uRun: [Browser Infrastructure Helper] c:\users\chris\appdata\local\smartbar\application\QuickShare.exe startup
    uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
    mRun: [HDAudDeck] c:\program files\via\viaudioi\vdeck\VDeck.exe -r
    mRun: [TurboV EVO] "c:\program files\asus\turbov evo\TurboV_EVO.exe" -b
    mRun: [Six Engine] "c:\program files\asus\epu\EPU.exe" -b
    mRun: [BCU] "c:\program files\devicevm\browser configuration utility\BCU.exe"
    mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
    mRun: [Razer Nostromo Driver] c:\program files\razer\nostromo\RazerNostromoSysTray.exe
    mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe"
    mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
    mRun: [Lycosa] "c:\program files\razer\lycosa\razerhid.exe"
    mRun: [Cm112Sound] RunDll32 cm112.cpl,CMICtrlWnd
    mRun: [Cm112GX] c:\windows\system\HsMgr.exe Envoke
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
    mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
    StartupFolder: c:\users\chris\appdata\roaming\microsoft\windows\start menu\programs\startup\CurseClientStartup.ccip
    StartupFolder: c:\users\chris\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
    StartupFolder: c:\users\chris\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.0.313\SSScheduler.exe
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
    LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
    DPF: {C044CD87-DFB0-4130-A5E4-49361106FBC8} - hxxp://www.tera.hangame.com/common/activex/HanSetup1040.cab
    DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
    DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab
    TCP: NameServer =
    TCP: Interfaces\{7558C782-9BC8-42E0-ACE5-1065EAA934E3} : DHCPNameServer =
    TCP: Interfaces\{7558C782-9BC8-42E0-ACE5-1065EAA934E3}\4514C4B44514C4B4D2535334436373 : DHCPNameServer =
    TCP: Interfaces\{99B0175D-3080-4CBD-B808-40605F85629D} : DHCPNameServer =
    Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
    AppInit_DLLs= c:\progra~2\browse~1\261070~1.41\{c16c1~1\browse~1.dll
    SSODL: WebCheck - <orphaned>
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\24.0.1312.57\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    ================= FIREFOX ===================
    FF - ProfilePath - c:\users\chris\appdata\roaming\mozilla\firefox\profiles\sypgx8gi.default\
    FF - prefs.js: browser.search.defaulturl -
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
    FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
    FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
    FF - plugin: c:\program files\google\update\\npGoogleUpdate3.dll
    FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: c:\program files\mcafee security scan\3.0.313\npMcAfeeMSS.dll
    FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_146.dll
    FF - plugin: c:\windows\system32\npDeployJava1.dll
    FF - plugin: c:\windows\system32\npmproxy.dll
    FF - ExtSQL: 2013-01-16 21:18; [email protected]; c:\users\chris\appdata\roaming\mozilla\firefox\profiles\sypgx8gi.default\extensions\[email protected]
    ---- FIREFOX POLICIES ----
    FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=4c44f7f9000000000000bcaec5325283&q=
    FF - user.js: extensions.BabylonToolbar.id - 4c44f7f9000000000000bcaec5325283
    FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
    FF - user.js: extensions.BabylonToolbar.instlDay - 15720
    FF - user.js: extensions.BabylonToolbar.vrsn -
    FF - user.js: extensions.BabylonToolbar.vrsni -
    FF - user.js: extensions.BabylonToolbar_i.vrsnTs -
    FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
    FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
    FF - user.js: extensions.BabylonToolbar.aflt - babsst
    FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
    FF - user.js: extensions.BabylonToolbar.tlbrId - base
    FF - user.js: extensions.BabylonToolbar.instlRef - sst
    FF - user.js: extensions.BabylonToolbar.dfltLng - en
    FF - user.js: extensions.BabylonToolbar_i.excTlbr - false
    FF - user.js: extensions.BabylonToolbar.excTlbr - false
    FF - user.js: extensions.BabylonToolbar.admin - false
    FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=117166&tt=0313_2
    FF - user.js: extensions.BabylonToolbar_i.babExt -
    FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
    FF - user.js: extensions.BabylonToolbar.autoRvrt - false
    FF - user.js: extensions.BabylonToolbar.rvrt - false
    FF - user.js: extensions.BabylonToolbar_i.newTab - false
    ============= SERVICES / DRIVERS ===============
    R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
    R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
    R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-11-15 94048]
    R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
    R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2012-1-21 239168]
    R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [2012-1-21 338880]
    R0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA.sys [2012-1-21 656320]
    R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
    R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
    R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
    R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
    R2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\system32\drivers\npf_devolo.sys [2010-6-10 35840]
    R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-3-30 100880]
    R3 LycoFltr;Lycosa Keyboard;c:\windows\system32\drivers\Lycosa.sys [2008-1-18 16128]
    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-4-27 64904]
    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-4-27 146568]
    S3 ASUSU1;ASUS Xonar U3 Audio Interface;c:\windows\system32\drivers\cm112.sys [2012-4-18 1518592]
    S3 athur;Wireless Network Adapter Service;c:\windows\system32\drivers\athur.sys [2011-8-19 1500160]
    S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
    S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2011-5-7 9216]
    =============== Created Last 30 ================
    2013-02-04 11:04:24 -------- d-----w- c:\users\chris\appdata\local\{69148033-2DBB-4EDD-8EBC-3DBF8ADE501E}
    2013-02-03 23:03:30 -------- d-----w- c:\users\chris\appdata\local\{8B66749B-00C4-4653-BBBB-31C639A21EB7}
    2013-02-03 19:32:59 -------- d-----w- c:\users\chris\appdata\roaming\AVG2013
    2013-02-03 19:29:35 -------- d-----w- c:\users\chris\appdata\roaming\TuneUp Software
    2013-02-03 19:27:38 -------- d--h--w- C:\$AVG
    2013-02-03 19:27:38 -------- d-----w- c:\programdata\AVG2013
    2013-02-03 19:25:22 -------- d-----w- c:\program files\AVG
    2013-02-03 19:25:20 28240 ----a-w- c:\windows\system32\drivers\mssmbios.sys
    2013-02-03 19:22:30 -------- d--h--w- c:\programdata\Common Files
    2013-02-03 19:22:30 -------- d-----w- c:\users\chris\appdata\local\MFAData
    2013-02-03 19:22:30 -------- d-----w- c:\users\chris\appdata\local\Avg2013
    2013-02-03 19:22:30 -------- d-----w- c:\programdata\MFAData
    2013-02-03 18:52:05 -------- d-----w- c:\programdata\Ask
    2013-02-03 18:51:06 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
    2013-02-03 18:50:47 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
    2013-02-03 18:49:52 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
    2013-02-03 18:49:27 -------- d-----w- c:\users\chris\appdata\local\Macromedia
    2013-02-03 18:45:22 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2013-02-03 11:02:06 -------- d-----w- c:\users\chris\appdata\local\{08F6E0CB-15D2-402E-AD8F-32E7A28D146D}
    2013-02-02 11:34:57 -------- d-----w- c:\users\chris\appdata\local\{C59410E5-3261-4D90-B347-D4D54EF01039}
    2013-02-01 21:37:49 -------- d-----w- c:\users\chris\appdata\local\{029755E8-5965-4224-8B1F-B7CE6C3C2105}
    2013-02-01 09:37:22 -------- d-----w- c:\users\chris\appdata\local\{E020B12A-5B7B-4F76-A9E2-F633392DB9A5}
    2013-01-31 14:05:36 -------- d-----w- c:\users\chris\appdata\local\{3627B291-EA3C-4624-B781-E588397AD799}
    2013-01-30 17:14:40 -------- d-----w- c:\users\chris\appdata\local\{C03E9825-B42D-486F-B780-AD836C93EA47}
    2013-01-29 22:01:04 -------- d-----w- c:\users\chris\appdata\local\{857833C9-03F1-4D1C-9BF1-3E3355C35FE6}
    2013-01-29 10:00:36 -------- d-----w- c:\users\chris\appdata\local\{1B3E7788-E720-4243-8848-CF93F80A84F2}
    2013-01-28 21:08:59 -------- d-----w- c:\users\chris\appdata\local\{10F3415D-170B-4D94-A23F-5105CF639B37}
    2013-01-28 19:38:27 -------- d-----w- c:\users\chris\appdata\local\Programs
    2013-01-28 09:08:34 -------- d-----w- c:\users\chris\appdata\local\{3A3D0CF5-9FC1-49E8-AA4E-BFAE31CA9BA9}
    2013-01-27 12:06:21 -------- d-----w- c:\users\chris\appdata\local\{6EDD856E-9AFB-4355-8970-EC2B51CF141B}
    2013-01-27 00:05:55 -------- d-----w- c:\users\chris\appdata\local\{D2F32C6B-6BA7-404E-B9FE-657B59977BBD}
    2013-01-26 10:21:51 -------- d-----w- c:\users\chris\appdata\local\{E9370BC9-CE02-4920-A132-9DBF4DC347A9}
    2013-01-25 20:50:07 -------- d-----w- c:\users\chris\appdata\local\{86B4BE2C-53B1-4B0B-9CF4-6491EAD91ABB}
    2013-01-24 22:06:59 -------- d-----w- c:\users\chris\appdata\local\{0446BB6C-D7C6-4953-A806-ED6D2C87B4FD}
    2013-01-23 18:04:09 -------- d-----w- c:\users\chris\appdata\local\{F1BFD24A-C655-4205-8D7F-90D386630D6A}
    2013-01-21 10:37:34 -------- d-----w- c:\users\chris\appdata\local\{19D24CDF-62C4-42EF-A98A-849FC1BEF4BA}
    2013-01-20 19:48:10 -------- d-----w- c:\users\chris\appdata\local\{CE398186-CED3-481E-A3C4-8753E7382696}
    2013-01-20 07:47:40 -------- d-----w- c:\users\chris\appdata\local\{10D7C6B6-2D3C-4E7F-82FB-3BCBBCE7B06E}
    2013-01-19 07:45:16 -------- d-----w- c:\users\chris\appdata\local\{0EAA1205-19E9-4D4D-B1C1-547BD0F71277}
    2013-01-17 18:02:45 -------- d-----w- c:\users\chris\appdata\local\{319261C8-4518-4B79-8012-147FC957F4B4}
    2013-01-16 21:16:48 -------- d-----w- c:\users\chris\appdata\local\{EC3C8AC0-2B63-4190-9226-F59BEA8845BA}
    2013-01-15 19:08:13 -------- d-----w- c:\program files\Optimizer Pro
    2013-01-15 19:07:29 -------- d-----w- c:\users\chris\appdata\local\Smartbar
    2013-01-15 18:24:01 -------- d-----w- c:\users\chris\appdata\local\{25C4A056-0BDB-47C0-82A6-AA4FF09E950E}
    2013-01-14 21:51:53 -------- d-----w- c:\users\chris\appdata\local\{3642B7D5-0D38-4964-9A49-03C5C503EB12}
    2013-01-13 20:06:56 -------- d-----w- c:\users\chris\appdata\local\{6A23D0B9-D1F5-4C98-97C2-825DF1BE959C}
    2013-01-12 10:45:14 -------- d-----w- c:\users\chris\appdata\local\{6D00BD4F-F442-4DD9-9EF9-58650C30BBAD}
    2013-01-11 21:52:19 -------- d-----w- c:\users\chris\appdata\local\{E0064002-44B3-4787-9CF8-9092B7DFF988}
    2013-01-10 17:57:29 -------- d-----w- c:\users\chris\appdata\local\{398D6FE0-3877-47AC-A923-97074B41DD9E}
    2013-01-09 18:05:40 -------- d-----w- c:\users\chris\appdata\local\{87DAE056-83D7-4359-B3CD-A7DB0B61E30A}
    2013-01-08 18:15:31 -------- d-----w- c:\users\chris\appdata\local\{ADADB7DC-DDF6-4C9A-BB98-6E936DB90FBE}
    2013-01-06 11:41:36 -------- d-----w- c:\users\chris\appdata\local\{8A22BDF1-EBB6-4CB6-BC10-343C98BF89A1}
    2013-01-05 14:53:15 -------- d-----w- c:\program files\PC Tools Registry Mechanic
    2013-01-05 12:51:22 -------- d-----w- c:\windows\system32\Adobe
    2013-01-05 11:09:12 -------- d-----w- c:\users\chris\appdata\local\{4EE77C2A-E457-49A5-9DFF-335AE21525F9}
    ==================== Find3M ====================
    2013-02-03 18:50:42 782240 ----a-w- c:\windows\system32\deployJava1.dll
    2013-02-03 18:45:22 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-12-14 16:49:28 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
    ============= FINISH: 11:08:02.96 ===============
  2. Mark1956


    May 7, 2011
    Before we start on a clean up, your OS has been installed since April 2011, can you please explain why it does not have Service Pack 1 installed.

    In view of this we need to check your Windows licence, please follow these instructions.

    • To run the tool, click on this link: MGADiag
    • In the File Download - Security Warning dialog box, click Run.
    • In the Internet Explorer - Security Warning dialog box, click Run.
    • In the Microsoft Genuine Advantage Diagnostic Tool dialog box, click Continue.
    • When the MGADIAG tool finishes, ensure it is displaying the information under the Windows tab and click Copy.
    • Come back to this thread and right click on the message box and select Paste from the pop up menu and the results will appear, then submit the message.
  3. azuzephyr

    azuzephyr Thread Starter

    Feb 4, 2013
    Here's what it said:

    Diagnostic Report (1.9.0027.0):
    Windows Validation Data-->

    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-9P9RR-DQXHY-PDPW3
    Windows Product Key Hash: k589zwaGdQHHNJ8Ji4FQq1BMApU=
    Windows Product ID: 00359-113-4579073-85804
    Windows Product ID Type: 5
    Windows License Type: Retail
    Windows OS version: 6.1.7600.2.00010300.0.0.003
    ID: {0E79369E-FDAE-4D9B-AA1C-218C74799226}(1)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: Windows 7 Home Premium
    Architecture: 0x00000000
    Build lab: 7600.win7_gdr.111025-1503
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 103 Blocked VLK
    Microsoft Office Enterprise 2007 - 103 Blocked VLK
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files\Mozilla Firefox\firefox.exe
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{0E79369E-FDAE-4D9B-AA1C-218C74799226}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7600.2.00010300.0.0.003</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-PDPW3</PKey><PID>00359-113-4579073-85804</PID><PIDType>5</PIDType><SID>S-1-5-21-296622832-1134853242-2641594781</SID><SYSTEM><Manufacturer>System manufacturer</Manufacturer><Model>System Product Name</Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>1101 </Version><SMBIOSVersion major="2" minor="6"/><Date>20101025000000.000000+000</Date></BIOS><HWID>A9BB3607018400F4</HWID><UserLCID>0809</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>GMT Standard Time(GMT+00:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM/><GANotification/></MachineData><Software><Office><Result>103</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>103</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>ACD7202654E586</Val><Hash>fFic3JgCreGGRxyF8uMWB4R4Jcg=</Hash><Pid>89388-707-1528066-65170</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="103"/><App Id="16" Version="12" Result="103"/><App Id="18" Version="12" Result="103"/><App Id="19" Version="12" Result="103"/><App Id="1A" Version="12" Result="103"/><App Id="1B" Version="12" Result="103"/><App Id="44" Version="12" Result="103"/><App Id="A1" Version="12" Result="103"/><App Id="BA" Version="12" Result="103"/></Applications></Office></Software></GenuineResults>

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.1.7600.16385

    Name: Windows(R) 7, HomePremium edition
    Description: Windows Operating System - Windows(R) 7, RETAIL channel
    Activation ID: 2e7d060d-4714-40f2-9896-1e4f15b612ad
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 00359-00170-113-457907-00-2057-7600.0000-0912011
    Installation ID: 011740703452920214276760754631303375388236359862063402
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
    Partial Product Key: PDPW3
    License Status: Licensed
    Remaining Windows rearm count: 3
    Trusted time: 04/02/2013 14:56:12

    Windows Activation Technologies-->
    HrOffline: 0x00000000
    HrOnline: 0x00000000
    HealthStatus: 0x0000000000000000
    Event Time Stamp: 11:8:2012 18:12
    ActiveX: Registered, Version: 7.1.7600.16395
    Admin Service: Registered, Version: 7.1.7600.16395
    HealthStatus Bitmask Output:

    HWID Data-->

    OEM Activation 1.0 Data-->

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: yes, but no SLIC table
    Windows marker version: N/A
    OEMID and OEMTableID Consistent: N/A
    BIOS Information:
    ACPI Table Name OEMID Value OEMTableID Value
    APIC 102510 APIC2049
    FACP 102510 FACP2049
    HPET 102510 OEMHPET
    MCFG 102510 OEMMCFG
    OEMB 102510 OEMB2049

    In regards to service pack 1, I dont know what that is or whether or not I should have it [I'm guessing yes]
  4. Mark1956


    May 7, 2011
    You're copy of Windows 7 appears to be genuine and licensed but your copy of Office is using a Volume Licence that has been blocked by Microsoft. A volume licence should only appear on PC's used in an office environment where the company has purchased a volume licence to validate all of its PC's.

    Please uninstall the entire Office product.

    Please then click on Start > Control Panel > Windows Update. Click on Change Settings and in the box just below Important Updates click on the small arrow on the right of the box and select Install Updates Automatically (recommended). Then click on OK at the bottom of the window.

    Back on the Windows Update window click on Check for Updates, allow it to complete the check and let it download and install all available updates. Service Pack 1 will be included along with many other updates so the process may take quite a long time to complete.

    When finished, please reboot the PC, run DDS again and post both the new logs so I can see it has successfully updated and that you have removed the non-genuine copy of Office. We will then proceed with cleaning your PC.
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1088132

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice