MBAM & PC Issues

[EPL]

I was given the option to post here. Please read the following 4 posts

to see what my MBAM & PC Issue is & please have a fix for it please.

1)http://forums.malwarebytes.org/index.php?showtopic=115891&hl=&fromsearch=1

2)http://forums.malwarebytes.org/index.php?showtopic=115848&hl=&fromsearch=1

3)http://forums.malwarebytes.org/index.php?showtopic=115442&hl=&fromsearch=1

4)http://forums.malwarebytes.org/index.php?showtopic=108319&hl=&fromsearch=1

[TheDarkKnight]

I am TheDarkKnight and will be assisting you. Please ask questions if anything is unclear.

Please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF).

Please go here to see a list of programs that need to be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.**

**Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.**

Please include the C:\ComboFix.txt in your next reply for further review.

[EPL]

I'm sorry sir but ComboFix cut my internet & had to restore my PC to get back online. Iolo System Shield alerted me that the ComboFix Test File is a Virus & Quaratined it.

I'm not saying for sure but I think ComboFix is a Virus/Malware.

[TheDarkKnight]

Good morning EPL.

I'm sorry sir but ComboFix cut my internet & had to restore my PC to get back online. Iolo System Shield alerted me that the ComboFix Test File is a Virus & Quaratined it.

As mentioned in my last post, you will need disable your antivirus program in order to use ComboFix. As for ComboFix cutting your internet, please see below.

I'm not saying for sure but I think ComboFix is a Virus/Malware.

Not quite. ComboFix and other tools I may have you run are often flagged as malware by antivirus programs because some of the techniques these tools use are similar to those used by malware. I can assure you, ComboFix is not malware. Neither are any of the other tools I may ask you to run. So please do not be alarmed.

Please download OTL.exe by OldTimer to your Desktop.

• Close all windows and double click OTL.exe.
  
• In the "Custom Scans/Fixes" window (under the light green bar) paste the following in bold:
  netsvcs
  drivers32
  %SYSTEMDRIVE%\*.*
  %systemroot%\*. /mp /s
  CREATERESTOREPOINT
  HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
  
• Click Run Scan and let the program run uninterrupted.
  
• When the scan completes, it will open two Notepad windows. OTL.txt and Extras.txt. These are saved in the same location as OTL. Post both logs in this thread.
  
• You may need to use two posts to get it all.
  

[EPL]

I reinstalled my OS reinstalled Iolo System Mechanic Pro, MBAM & enabled the RTP Modual & so far, no problems . I hope it stays that way .

[EPL]

For some reason MBAM still froze my PC . I wonder why ?

[screen317]

Hi EPL,

The Dark Knight is having connection issues so I will be helping you. Are you running any other security software besides Iolo?

[EPL]

Nope. Just Iolo System Mechanic Professional w/ Iolo System Shield.

[screen317]

If you temporarily uninstall all Iolo products, is the issues resolved? Reinstall them afterward. If so, we may be able to use exclusions to make the programs play nicely with one another.

[EPL]

I'm currently using COMODO Internet Security Premium & I did the same thing as I had w/ System Shield & MBAM RTP Module still froze my entire PC.

I think it might be MBAM's RTP Module itself causing the problem. <(That's just a guess)

[screen317]

Hi EPL,

Open MBAM. Click the Ignore List tab.

Click Add.

Navigate to C:\Program Files, and add any Comodo folders that you see. Do the same for Iolo folders.

Reboot and see if the conflict persists.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

[EPL]

I got the latest Beta Version of your software, reactivated the RTP Module, & so far, I haven't had any problem.

Has the "PC Freeze" issue been fixed in the 1.65.1 version ?

[EPL]

MBAM still froze my entire PC. . Please have this issue fixed ASAP please.

[screen317]

EPL did you see my post on October 1st??

[EPL]

Once COMODO AV gets done scanning, I'll give it a whirl (Try).

[screen317]

Okay thanks for the update.

[EPL]

I tried the suggestion you posted, restatred my PC, & >it was taking a long time to log on<(Result of the suggestion I tried)

I turned my PC Off, turned it back on, booted to safe mode, unchecked "Start RTP Module" With Windows, restarted my PC, & Did the "DDS Test"

The "DDS Results" are attached to this post.

DDS & DDS Logs.zip

[screen317]

Hi,

In Normal Mode, open MBAM and click the Ignore List tab. Take a screenshot and post it here.

Post DDS.txt directly into your reply without attaching it please.

[EPL]

Attach:

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 9/24/2012 8:06:30 AM

System Uptime: 10/4/2012 12:50:24 PM (1 hours ago)

.

Motherboard: Hewlett-Packard | | 1425

Processor: Intel® Pentium® CPU P6000 @ 1.87GHz | CPU | 1866/1066mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 582 GiB total, 482.661 GiB free.

D: is FIXED (NTFS) - 14 GiB total, 7.266 GiB free.

E: is FIXED (FAT32) - 0 GiB total, 0.093 GiB free.

F: is CDROM ()

G: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP24: 10/2/2012 9:16:25 AM - Iolo Protected PC

RP25: 10/2/2012 11:46:44 AM - System Checkpoint #1

RP26: 10/2/2012 11:13:38 PM - System Checkpoint #2

RP27: 10/3/2012 8:17:19 PM - Installed AVG PC TuneUp

RP28: 10/3/2012 9:43:25 PM - System Checkpoint #3

RP29: 10/4/2012 9:09:52 AM - Installed GeekBuddy.

RP30: 10/4/2012 9:13:05 AM - Device Driver Package Install: COMODO Network Service

RP31: 10/4/2012 11:15:13 AM - Removed AVG PC TuneUp

RP32: 10/4/2012 11:17:25 AM - Removed AVG PC TuneUp Language Pack (en-US)

.

==== Installed Programs ======================

.

Adobe Flash Player 11 Plugin

Adobe Reader X (10.1.4)

Adobe Shockwave Player 11.6

Bible Study Pro

Bing Bar

Bing Bar Platform

Bugs Bunny in Double Trouble

COMODO GeekBuddy

Comodo IceDragon

Compatibility Pack for the 2007 Office system

Coupon Printer for Windows

CrossLoop 2.82

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

Desert Demolition 1.0

DNSCrypt

Dynamite Headdy 1.0

ECCO 1.0

ECCO 2 The Tidesof Time 1.0

GeekBuddy

HP Photo Creations

HP Photosmart Plus B210 series Help

HP Update

Inbox.com Toolbar

Java 7 Update 7

Java Auto Updater

Justice League Task Force 1.0

Malwarebytes Anti-Malware version 1.65.1.1000

Mickeys Ultimate Challenge 1.0

Microsoft Default Manager

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2010

Microsoft Office Access Setup Metadata MUI (English) 2010

Microsoft Office Excel MUI (English) 2010

Microsoft Office Home and Student 2010

Microsoft Office OneNote MUI (English) 2010

Microsoft Office Outlook MUI (English) 2010

Microsoft Office PowerPoint MUI (English) 2010

Microsoft Office PowerPoint Viewer 2007 (English)

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2010

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (English) 2010

Microsoft Office Publisher MUI (English) 2010

Microsoft Office Shared MUI (English) 2010

Microsoft Office Shared Setup Metadata MUI (English) 2010

Microsoft Office Single Image 2010

Microsoft Office Word MUI (English) 2010

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft Works

Monopoly Here & Now SDR

Mozilla Firefox 15.0 (x86 en-US)

Mozilla Firefox 16.0 (x86 en-US)

Mozilla Maintenance Service

Ms Pacman 1.0

OpenDNS Updater 2.2.1

Pac Man 2 The New Adventures 1.0

Project64 1.6

Realtek High Definition Audio Driver

RocketDock 1.3.5

Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition

Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553091)

Security Update for Microsoft Office 2010 (KB2553096)

Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition

Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition

Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)

Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition

Smart Defrag 2

Sonic 3 DBlast 1.0

Sonic Spinball 1.0

Sonicthe Hedgehog 1.0

Sonicthe Hedgehog 2 1.0

Sonicthe Hedgehog 3 1.0

Spotflux

swMSM

Unity Web Player

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Update Installer for WildTangent Games App

VLC media player 2.0.3

WeatherBug®

WildTangent Games App

Wise Care 365 version 2.02

Wise Game Booster 1.07

XMen 1.0

.

==== Event Viewer Messages From Past Week ========

.

9/29/2012 8:54:17 AM, Error: Service Control Manager [7034] - The AVG PC TuneUp Service service terminated unexpectedly. It has done this 2 time(s).

9/29/2012 6:45:06 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={6F7126FA-FC61-4E33-BA91-CCA4C74D5B7C}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/29/2012 6:44:27 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={01E4B274-D1F0-42AD-A1E5-DA7CC3B6E605}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/29/2012 6:44:06 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={BA500F74-3F3A-47AE-BEA0-3F97835059E5}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/29/2012 10:19:07 AM, Error: Service Control Manager [7034] - The Windows Firewall Control Service service terminated unexpectedly. It has done this 1 time(s).

9/28/2012 7:19:39 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wlidsvc service.

9/28/2012 4:16:23 PM, Error: Service Control Manager [7034] - The AVG PC TuneUp Service service terminated unexpectedly. It has done this 1 time(s).

9/28/2012 3:47:45 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:44 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

9/28/2012 3:47:44 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

9/28/2012 3:47:15 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CFRMD cmdGuard cmdHlp DfsC discache inspect NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

9/28/2012 3:47:15 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

9/28/2012 2:56:38 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070422'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

9/27/2012 9:35:55 AM, Error: Microsoft-Windows-RasSstp [1] - CoId={EED020F6-9C7F-4BD3-B343-837D0F9AEE6E}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. The requested name is valid, but no data of the requested type was found.

9/27/2012 9:35:54 AM, Error: Microsoft-Windows-RasSstp [1] - CoId={E67C3DCD-638E-4E57-997B-65201F188067}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. The requested name is valid, but no data of the requested type was found.

9/27/2012 9:35:50 AM, Error: Microsoft-Windows-RasSstp [1] - CoId={436972DD-146C-4817-B02B-23124CF58C17}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. The requested name is valid, but no data of the requested type was found.

9/27/2012 5:31:19 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={7E739786-AFD7-465D-B5F0-B210A8C98BDD}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

9/27/2012 5:21:11 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={F5AD734F-90B1-4E2E-9085-4E27556C7ACE}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

9/27/2012 5:00:32 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={DCAC4D1C-F68F-4FEE-9A71-1872D84C0E4F}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

9/27/2012 4:56:06 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={3C583634-E48F-4E9C-9BB0-5F5B96F55D1E}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/27/2012 4:55:57 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={C78297C7-0AE1-41BF-BA65-19E81509C7C7}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/27/2012 4:55:43 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={212F1B49-8E89-49A9-AEC0-415AAC763D17}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/27/2012 4:55:33 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={692B4A64-0ABC-4990-BAC2-42578E42F1FF}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/27/2012 4:54:48 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={53EA9B84-8256-4602-BC54-68EA37FEB022}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

9/27/2012 12:56:58 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={10D0E480-9A6E-42AE-89D3-EAE69183D999}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

10/4/2012 9:24:19 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: An instance of the service is already running.

10/4/2012 9:13:00 AM, Error: Service Control Manager [7030] - The COMODO Internet Security Helper Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

10/4/2012 9:05:11 AM, Error: Service Control Manager [7003] - The iolo System Service service depends the following service: vseamps. This service might not be installed.

10/4/2012 9:03:57 AM, Error: Service Control Manager [7034] - The iolo System Service service terminated unexpectedly. It has done this 1 time(s).

10/4/2012 12:56:11 PM, Error: Service Control Manager [7024] - The HomeGroup Listener service terminated with service-specific error %%-2147023143.

10/4/2012 12:52:21 PM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

10/4/2012 12:52:21 PM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.

10/4/2012 12:52:10 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: CFRMD

10/4/2012 12:51:17 PM, Error: volmgr [46] - Crash dump initialization failed!

10/4/2012 12:50:30 PM, Error: Application Popup [1060] - \SystemRoot\system32\DRIVERS\CFRMD.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

10/4/2012 12:45:34 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

10/4/2012 12:45:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

10/4/2012 12:45:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

10/4/2012 12:45:30 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

10/4/2012 12:45:22 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

10/4/2012 12:45:06 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: CFRMD cmdGuard discache spldr Wanarpv6

10/4/2012 12:45:06 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

10/4/2012 10:28:52 AM, Error: Service Control Manager [7030] - The Wise Boot Assistant service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

10/3/2012 7:07:13 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={8F4DADD5-37BB-4D1F-8265-81CC1FD2C0EC}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

10/3/2012 7:06:27 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={EAAD9B62-1941-4E56-B670-7C726D2AB22C}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

10/3/2012 7:05:38 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={143B1574-06CB-4077-9EE7-F430A445AFDE}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. No connection could be made because the target machine actively refused it.

10/3/2012 11:01:09 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: FileDisk

10/2/2012 9:11:10 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR3.

10/2/2012 8:59:56 PM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{F53DD5E6-654D-4930-A615-6FD620787EF8} because another computer on the network has the same name. The server could not start.

10/2/2012 8:59:07 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={1FD263B7-CB7E-4AF8-93AB-E55E8B8BFA94}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

10/2/2012 8:58:48 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={F1ED68D0-3889-4A6C-A4AA-0206B8EC7099}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

10/2/2012 8:58:34 PM, Error: Microsoft-Windows-RasSstp [1] - CoId={5ABE2431-B5AE-4B20-8FB2-24532E2D029F}:The initial Secure Socket Tunneling Protocol request could not be successfully sent to the server. This can be due to network connectivity issues or certificate (trust) issues. The detailed error message is provided below. Correct the problem and try again. An attempt was made to access a socket in a way forbidden by its access permissions.

10/2/2012 6:31:23 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR2.

10/1/2012 4:50:41 PM, Error: Service Control Manager [7034] - The COMODO IceDragon Update Service service terminated unexpectedly. It has done this 1 time(s).

10/1/2012 2:48:33 PM, Error: Service Control Manager [7000] - The TuneUp Theme Extension service failed to start due to the following error: The executable program that this service is configured to run in does not implement the service.

10/1/2012 1:38:38 PM, Error: Service Control Manager [7034] - The AdvancedSystemCareAntivirus service terminated unexpectedly. It has done this 1 time(s).

10/1/2012 1:22:12 PM, Error: Service Control Manager [7030] - The Advanced SystemCare Service 5 service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

.

==== End Of File ===========================

DDS

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.7.2

Run by Eddie Lucas at 12:57:39 on 2012-10-04

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3894.2524 [GMT -4:00]

.

AV: COMODO Antivirus *Enabled/Updated* {458BB331-2324-0753-3D5F-1472EB102AC0}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: COMODO Defense+ *Enabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}

FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe

C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe

C:\Prey\platform\windows\cronsvc.exe

C:\Users\Eddie Lucas\AppData\Local\CrossLoop\CrossLoopService.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\sppsvc.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe

C:\Program Files (x86)\Wise\Wise Memory Optimizer\WiseMemoryOptimzer.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\spotflux\.\spotflux.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UAC Controller Tool v1.0.exe

C:\HFS Secure Backup\Host File System\hfs282.exe

C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\My Lockbox\mylbx.exe

C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

C:\Program Files\COMODO\COMODO Internet Security\cfp.exe

C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe

C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe

C:\Program Files (x86)\RocketDock\RocketDock.exe

C:\Users\Eddie Lucas\AppData\Local\CrossLoop\CrossLoopConnect.exe

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\PROGRA~2\Inbox\CToolbar.exe

C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe

C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe

c:\PROGRA~2\Inbox\CMail.exe

C:\Program Files (x86)\OpenDNS\DNSCrypt\OpenDNSInterface.exe

C:\Program Files (x86)\COMODO\GeekBuddy\unit_manager.exe

C:\Program Files (x86)\COMODO\GeekBuddy\unit.exe

C:\Program Files (x86)\OpenDNS\DNSCrypt\OpenDNSCryptService.exe

C:\Program Files (x86)\OpenDNS\DNSCrypt\dnscrypt-proxy.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files (x86)\Java\jre7\bin\javaw.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

TB: @C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [WeatherBug] C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe

uRun: [OpenDNS Updater] "C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe" /autostart

uRun: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"

uRun: [CrossLoop] "C:\Users\Eddie Lucas\AppData\Local\CrossLoop\CrossLoopConnect.exe" -ap=crossloop -port=5910 -udp=www.CrossLoop.com -webserver=server.crossloop.com -webservice=www.crossloop.com -startup=server -noprompts -minimize

uRun: [CrawlerMail] c:\progra~2\inbox\cmail.exe /startup

mRun: [<NO NAME>]

mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

mRun: [bing Bar] "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe"

mRun: [tvncontrol] "C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe" -controlservice -slave

mRun: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe

mRun: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENDN~1.LNK - C:\Windows\Installer\{DEF3592F-0751-4632-9875-8BF9AD602898}\_60ADE4ADDDB9C7178BB901.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARTG~1.LNK - C:\Program Files (x86)\COMODO\GeekBuddy\launcher.exe

StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UAC Controller Tool v1.0.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

mPolicies-system: SoftwareSASGeneration = 3 (0x3)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

TCP: DhcpNameServer = 192.168.1.1

TCP: Interfaces\{2ACDFDF2-5E36-4CB4-8FCF-3B5F87AC9F45} : NameServer = 8.26.56.26,156.154.70.22

TCP: Interfaces\{3FB5DADB-8043-44DE-BA88-E5992D3058EF} : NameServer = 127.0.0.1

TCP: Interfaces\{3FB5DADB-8043-44DE-BA88-E5992D3058EF} : DhcpNameServer = 192.168.1.1

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

AppInit_DLLs: C:\Windows\SysWOW64\guard32.dll

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

BHO-X64: Search Helper - No File

BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

BHO-X64: URLRedirectionBHO - No File

BHO-X64: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

TB-X64: @C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

mRun-x64: [(Default)]

mRun-x64: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

mRun-x64: [bing Bar] "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe"

mRun-x64: [tvncontrol] "C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe" -controlservice -slave

mRun-x64: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe

mRun-x64: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe

AppInit_DLLs-X64: C:\Windows\SysWOW64\guard32.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Eddie Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\xsgjzh77.default\

FF - prefs.js: browser.startup.homepage - search.mywot.com

FF - prefs.js: network.proxy.gopher -

FF - prefs.js: network.proxy.gopher_port - 0

FF - prefs.js: network.proxy.type - 0

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

FF - plugin: C:\Program Files (x86)\Unity\WebPlayer\loader\npUnity3D32.dll

FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll

FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll

FF - plugin: C:\Windows\SysWOW64\npmproxy.dll

.

---- FIREFOX POLICIES ----

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: nglayout.initialpaint.delay - 600

FF - user.js: content.notify.interval - 600000

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.switch.threshold - 600000

.

============= SERVICES / DRIVERS ===============

.

R0 cumon;cumon;C:\Windows\system32\drivers\cumon.sys --> C:\Windows\system32\drivers\cumon.sys [?]

R0 Evdd;Evdd;C:\Windows\system32\drivers\evdd.sys --> C:\Windows\system32\drivers\evdd.sys [?]

R0 FSProFilter;FSPro File Filter;C:\Windows\system32\Drivers\FSPFltd.sys --> C:\Windows\system32\Drivers\FSPFltd.sys [?]

R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\system32\DRIVERS\cmderd.sys --> C:\Windows\system32\DRIVERS\cmderd.sys [?]

R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\system32\DRIVERS\cmdguard.sys --> C:\Windows\system32\DRIVERS\cmdguard.sys [?]

R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\system32\DRIVERS\cmdhlp.sys --> C:\Windows\system32\DRIVERS\cmdhlp.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]

R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2012-9-24 98208]

R2 CLPSLauncher;COMODO LPS Launcher;C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe [2012-8-23 70352]

R2 CLPSLS;COMODO livePCsupport Service;C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2011-11-23 1267000]

R2 CPMService;COMODO Programs Manager Service;C:\Program Files\COMODO\COMODO Programs Manager\CPMservice.exe [2011-10-4 116032]

R2 CronService;Cron Service for Prey;C:\Prey\platform\windows\cronsvc.exe [2011-2-15 19968]

R2 CrossLoopService;CrossLoop Service;C:\Users\Eddie Lucas\AppData\Local\CrossLoop\CrossLoopService.exe [2012-9-24 569072]

R2 DNSCrypt;OpenDNSCrypt;C:\Program Files (x86)\OpenDNS\DNSCrypt\OpenDNSCryptService.exe [2012-8-3 14336]

R2 IceDragonUpdater;COMODO IceDragon Update Service;C:\Program Files (x86)\COMODO\IceDragon\icedragon_updater.exe [2012-9-10 446664]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-24 399432]

R2 tvnserver;TightVNC Server;C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe [2012-1-27 828944]

R3 HECIx64;Intel® Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

S1 CFRMD;CFRMD;C:\Windows\system32\DRIVERS\CFRMD.sys --> C:\Windows\system32\DRIVERS\CFRMD.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-24 676936]

S2 WiseBootAssistant;Wise Boot Assistant;C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [2012-10-4 580648]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-9-24 250288]

S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-9-24 114656]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 wfcs;Windows Firewall Control Service;C:\Program Files\Windows Firewall Control\wfcs.exe [2012-9-24 143536]

.

=============== File Associations ===============

.

batfile=NOTEPAD.EXE %1

cmdfile=NOTEPAD.EXE %1

comfile=NOTEPAD.EXE %1

JSEFile=NOTEPAD.EXE %1

piffile=NOTEPAD.EXE %1

regfile=NOTEPAD.EXE %1

scrfile=NOTEPAD.EXE %1

VBEFile=NOTEPAD.EXE %1

VBSFile=NOTEPAD.EXE %1

.

=============== Created Last 30 ================

.

2012-10-04 15:41:06 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\Wise Game Booster

2012-10-04 13:44:40 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\Comodo

2012-10-04 13:44:40 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\Comodo

2012-10-04 13:15:03 -------- d-----w- C:\Windows\pss

2012-10-04 13:10:11 -------- d-----w- C:\Program Files (x86)\COMODO

2012-10-04 13:10:11 -------- d-----w- C:\Program Files (x86)\Common Files\Comodo

2012-10-04 11:48:31 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\TuneUp Software

2012-10-03 12:05:42 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll

2012-10-03 12:05:39 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2012-09-29 21:29:03 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\Wise Care 365

2012-09-29 18:25:31 -------- d-----w- C:\ProgramData\Comodo

2012-09-28 20:13:10 27968 ----a-w- C:\Windows\System32\cpmnat.exe

2012-09-28 17:48:47 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\AVG

2012-09-28 17:47:57 -------- d-----w- C:\ProgramData\AVG

2012-09-28 17:45:44 -------- d-sh--w- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}

2012-09-28 17:45:43 -------- d--h--w- C:\ProgramData\Common Files

2012-09-28 15:11:58 205512 ----a-w- C:\Windows\System32\drivers\cumon.sys

2012-09-28 15:11:56 19568 ----a-w- C:\Windows\System32\drivers\evdd.sys

2012-09-28 02:13:59 -------- d-----w- C:\Program Files (x86)\Wise

2012-09-28 01:07:47 -------- d-----w- C:\Program Files (x86)\WildTangent Games

2012-09-28 01:06:44 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\WildTangent

2012-09-28 01:06:43 -------- d-----w- C:\ProgramData\WildTangent

2012-09-27 17:34:12 -------- d-----w- C:\Program Files (x86)\SNATCHDATA

2012-09-27 15:41:01 337168 ----a-w- C:\Program Files\Microsoft Games\spacecadet\PINBALL.EXE

2012-09-26 21:13:40 -------- d-----w- C:\Program Files (x86)\XMen

2012-09-26 21:13:14 -------- d-----w- C:\Program Files (x86)\Sonicthe Hedgehog 3

2012-09-26 21:12:49 -------- d-----w- C:\Program Files (x86)\Sonicthe Hedgehog 2

2012-09-26 21:12:22 -------- d-----w- C:\Program Files (x86)\Sonicthe Hedgehog

2012-09-26 21:11:20 -------- d-----w- C:\Program Files (x86)\Sonic Spinball

2012-09-26 21:06:29 -------- d-----w- C:\Program Files (x86)\Sonic 3 DBlast

2012-09-26 21:05:57 -------- d-----w- C:\Program Files (x86)\Pac Man 2 The New Adventures

2012-09-26 21:05:21 -------- d-----w- C:\Program Files (x86)\Ms Pacman

2012-09-26 21:04:30 -------- d-----w- C:\Program Files (x86)\Mickeys Ultimate Challenge

2012-09-26 21:02:32 -------- d-----w- C:\Program Files (x86)\Justice League Task Force

2012-09-26 20:58:50 -------- d-----w- C:\Program Files (x86)\ECCO 2 The Tidesof Time

2012-09-26 20:58:35 -------- d-----w- C:\Program Files (x86)\ECCO

2012-09-26 20:58:21 -------- d-----w- C:\Program Files (x86)\Dynamite Headdy

2012-09-26 20:58:06 -------- d-----w- C:\Program Files (x86)\Desert Demolition

2012-09-26 20:52:09 -------- d-----w- C:\Program Files (x86)\Bugs Bunny in Double Trouble

2012-09-26 20:51:22 40960 ----a-r- C:\Users\Eddie Lucas\AppData\Roaming\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\NewShortcut1_9559F7CA5E344237A2D9D856464AD727.exe

2012-09-26 20:51:22 40960 ----a-r- C:\Users\Eddie Lucas\AppData\Roaming\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\ARPPRODUCTICON.exe

2012-09-26 20:51:20 -------- d-----w- C:\Program Files (x86)\Project64 1.6

2012-09-26 17:16:06 29 ----a-w- C:\Windows\SysWow64\TempWmicBatchFile.bat

2012-09-26 17:04:23 -------- d-----w- C:\Prey

2012-09-26 14:44:46 -------- d-----w- C:\Users\Eddie Lucas\.swt

2012-09-26 14:44:38 -------- d-----w- C:\ProgramData\Caphyon

2012-09-26 14:44:37 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin

2012-09-26 14:43:36 -------- d-----w- C:\Program Files (x86)\spotflux

2012-09-26 14:43:35 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\.spotflux

2012-09-26 14:41:40 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\Spotflux

2012-09-26 00:19:34 610304 ----a-w- C:\Windows\System32\sspipes.scr

2012-09-26 00:10:01 14336 ----a-w- C:\Windows\System32\ssstars.scr

2012-09-26 00:00:21 478128 ----a-w- C:\Windows\3D Maze.scr

2012-09-26 00:00:21 471040 ----a-w- C:\Windows\KERNEL32.DLL

2012-09-25 21:12:10 -------- d-----w- C:\Program Files (x86)\Microsoft

2012-09-25 21:12:08 -------- d-----w- C:\Program Files (x86)\MSN Toolbar

2012-09-25 21:10:57 -------- d-----w- C:\Program Files (x86)\Bing Bar Installer

2012-09-25 21:10:51 -------- d-----w- C:\ProgramData\HP Photo Creations

2012-09-25 21:10:51 -------- d-----w- C:\Program Files (x86)\HP Photo Creations

2012-09-25 21:10:45 -------- d-----w- C:\Program Files (x86)\Coupons

2012-09-25 21:10:26 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\HpUpdate

2012-09-25 21:09:42 361320 ------w- C:\Windows\System32\HPDiscoPM8e11.dll

2012-09-25 21:08:56 -------- d-----w- C:\Program Files (x86)\HP

2012-09-25 21:07:37 -------- d-----w- C:\Program Files\HP

2012-09-25 21:06:39 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\HP

2012-09-25 20:34:54 -------- d-----w- C:\Windows\PCHEALTH

2012-09-25 20:29:37 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services

2012-09-25 20:28:50 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\Microsoft Help

2012-09-25 02:35:35 100352 ----a-w- C:\Windows\System32\dfboottime.exe

2012-09-24 20:48:56 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\BibleStudyPro.com

2012-09-24 19:44:41 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\OpenDNS Updater

2012-09-24 19:44:39 -------- d-----w- C:\Program Files (x86)\OpenDNS Updater

2012-09-24 18:40:42 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\WeatherBug

2012-09-24 18:40:34 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\IsolatedStorage

2012-09-24 18:39:16 -------- d-----w- C:\Program Files\Earth Networks

2012-09-24 18:38:52 -------- dc-h--w- C:\ProgramData\{D20EC2FE-F8FA-400A-9FC4-C912462D1666}

2012-09-24 18:37:19 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\PackageAware

2012-09-24 18:24:32 -------- d-----w- C:\Program Files (x86)\Inbox

2012-09-24 18:05:40 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\Macromedia

2012-09-24 18:00:35 -------- d--h--w- C:\d3e21c6b6288ce5ef36a93af

2012-09-24 17:40:37 -------- d--h--w- C:\55a9fce312f1b7442f27aca3d427

2012-09-24 17:32:54 267264 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCEnhancer\CCEnhancer-3.5.exe

2012-09-24 17:32:27 256512 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UAC Controller Tool v1.0.exe

2012-09-24 17:14:40 1657216 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2012-09-24 17:14:39 2566144 ----a-w- C:\Windows\System32\esent.dll

2012-09-24 17:14:39 187264 ----a-w- C:\Windows\System32\drivers\storport.sys

2012-09-24 17:14:39 1686016 ----a-w- C:\Windows\SysWow64\esent.dll

2012-09-24 17:14:39 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys

2012-09-24 17:14:39 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys

2012-09-24 17:14:39 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys

2012-09-24 17:14:38 96768 ----a-w- C:\Windows\System32\fsutil.exe

2012-09-24 17:14:38 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe

2012-09-24 17:14:38 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys

2012-09-24 17:14:38 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys

2012-09-24 17:13:31 52224 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2012-09-24 17:13:31 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2012-09-24 17:13:31 324608 ----a-w- C:\Windows\System32\drivers\usbport.sys

2012-09-24 17:13:29 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2012-09-24 17:13:29 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys

2012-09-24 17:13:29 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2012-09-24 17:13:29 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2012-09-24 16:24:35 32600 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe

2012-09-24 16:24:11 17720 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys

2012-09-24 16:24:11 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\IObit

2012-09-24 16:24:01 -------- d-----w- C:\Program Files (x86)\IObit

2012-09-24 16:05:03 367104 ----a-w- C:\Windows\System32\wcncsvc.dll

2012-09-24 16:05:03 276992 ----a-w- C:\Windows\SysWow64\wcncsvc.dll

2012-09-24 16:01:07 311808 ----a-w- C:\Windows\System32\msv1_0.dll

2012-09-24 16:01:07 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll

2012-09-24 15:50:12 -------- d-----w- C:\Windows\Panther

2012-09-24 15:49:38 -------- d-----w- C:\Windows\System32\oem

2012-09-24 15:29:00 54848 ----a-w- C:\Windows\System32\drivers\FSPFltd.sys

2012-09-24 15:28:59 -------- d-----w- C:\Program Files\My Lockbox

2012-09-24 15:21:26 -------- d-----r- C:\HFS Secure Backup

2012-09-24 14:55:48 73136 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-09-24 14:55:48 696240 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-09-24 14:49:59 15840 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll

2012-09-24 14:46:05 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\Mozilla

2012-09-24 14:43:17 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\BiniSoft.org

2012-09-24 14:43:15 -------- d-----w- C:\Program Files\Windows Firewall Control

2012-09-24 14:34:05 -------- d-----w- C:\Windows\SysWow64\Wat

2012-09-24 14:34:05 -------- d-----w- C:\Windows\System32\Wat

2012-09-24 14:26:36 511328 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\CAPICOM\CAPICOM.DLL

2012-09-24 14:26:22 69000 ----a-w- C:\Windows\System32\offreg.dll

2012-09-24 14:26:22 56200 ----a-w- C:\Windows\SysWow64\offreg.dll

2012-09-24 14:21:51 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\iolo

2012-09-24 14:21:51 -------- d-----w- C:\ProgramData\iolo

2012-09-24 14:08:12 -------- d-----w- C:\Program Files\Defraggler

2012-09-24 14:07:51 -------- d-----w- C:\Program Files\CCleaner

2012-09-24 14:02:00 -------- d-----w- C:\Users\Eddie Lucas\AppData\Roaming\Malwarebytes

2012-09-24 14:01:47 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-09-24 14:01:47 -------- d-----w- C:\ProgramData\Malwarebytes

2012-09-24 14:01:45 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-09-24 13:39:22 -------- d-----w- C:\Program Files (x86)\RocketDock

2012-09-24 13:32:08 176128 ----a-r- C:\Users\Eddie Lucas\AppData\Roaming\Microsoft\Installer\{DD092138-0F62-4E9B-9278-D3820A92B884}\Bible.BibleStudyPr_19D8158FCE5744EBAE335BBBBAFFA512_1.exe

2012-09-24 13:32:08 176128 ----a-r- C:\Users\Eddie Lucas\AppData\Roaming\Microsoft\Installer\{DD092138-0F62-4E9B-9278-D3820A92B884}\Bible.BibleStudyPr_19D8158FCE5744EBAE335BBBBAFFA512.exe

2012-09-24 13:32:05 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\BibleStudyPro

2012-09-24 13:32:05 -------- d-----w- C:\Program Files (x86)\BibleStudyPro

2012-09-24 13:31:56 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\Downloaded Cashe

2012-09-24 13:31:17 -------- d-----w- C:\Program Files (x86)\Unity

2012-09-24 13:30:41 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service

2012-09-24 13:28:56 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\CrossLoop

2012-09-24 13:26:52 14336 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys

2012-09-24 13:21:54 -------- d-----w- C:\Users\Eddie Lucas\AppData\Local\OpenDNS

2012-09-24 13:21:41 -------- d-----w- C:\ProgramData\OpenDNS

2012-09-24 13:21:30 -------- d-----w- C:\Program Files (x86)\OpenDNS

2012-09-24 13:20:31 -------- d-----w- C:\Program Files\COMODO

2012-09-24 13:20:19 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll

2012-09-24 13:20:19 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll

2012-09-24 13:20:19 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll

2012-09-24 13:19:32 -------- d-----w- C:\Program Files (x86)\VideoLAN

2012-09-24 13:19:16 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll

2012-09-24 13:19:16 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll

2012-09-24 13:19:16 48960 ----a-w- C:\Windows\System32\netfxperf.dll

2012-09-24 13:19:16 444752 ----a-w- C:\Windows\System32\mscoree.dll

2012-09-24 13:19:16 320352 ----a-w- C:\Windows\System32\PresentationHost.exe

2012-09-24 13:19:16 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll

2012-09-24 13:19:16 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe

2012-09-24 13:19:16 1942856 ----a-w- C:\Windows\System32\dfshim.dll

2012-09-24 13:19:16 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll

2012-09-24 13:19:16 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll

2012-09-24 13:04:25 -------- d-----w- C:\Windows\SysWow64\RTCOM

2012-09-24 13:03:59 1706640 ----a-w- C:\Windows\RtlExUpd.dll

2012-09-24 13:03:59 -------- d--h--w- C:\Program Files (x86)\Temp

2012-09-24 13:03:58 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe

2012-09-24 13:03:58 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll

2012-09-24 13:03:58 204800 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll

2012-09-24 13:03:57 757760 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll

2012-09-24 13:03:57 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll

2012-09-24 13:03:57 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe

2012-09-24 13:03:57 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll

2012-09-24 13:03:56 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll

2012-09-24 13:03:55 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll

2012-09-24 12:59:48 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-09-24 12:59:47 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll

2012-09-24 12:59:39 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2012-09-24 12:57:21 -------- d-----w- C:\Program Files\Synaptics

2012-09-24 12:51:59 80896 ----a-w- C:\Windows\System32\imagehlp.dll

2012-09-24 12:51:59 5120 ----a-w- C:\Windows\SysWow64\wmi.dll

2012-09-24 12:51:59 5120 ----a-w- C:\Windows\System32\wmi.dll

2012-09-24 12:51:59 22896 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2012-09-24 12:51:59 220672 ----a-w- C:\Windows\System32\wintrust.dll

2012-09-24 12:51:59 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll

2012-09-24 12:51:59 158720 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2012-09-24 12:48:40 243712 ----a-w- C:\Windows\System32\drivers\ks.sys

2012-09-24 12:48:40 184832 ----a-w- C:\Windows\System32\drivers\usbvideo.sys

2012-09-24 12:46:21 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe

2012-09-24 12:46:21 31232 ----a-w- C:\Windows\System32\prevhost.exe

2012-09-24 12:46:14 43520 ----a-w- C:\Windows\System32\csrsrv.dll

2012-09-24 12:46:12 574464 ----a-w- C:\Windows\System32\d3d10level9.dll

2012-09-24 12:46:12 490496 ----a-w- C:\Windows\SysWow64\d3d10level9.dll

2012-09-24 12:46:03 5505392 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-09-24 12:46:01 3958128 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-09-24 12:46:01 3902320 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-09-24 12:43:17 3138048 ----a-w- C:\Windows\System32\mstscax.dll

2012-09-24 12:43:17 2690560 ----a-w- C:\Windows\SysWow64\mstscax.dll

2012-09-24 12:43:16 1097216 ----a-w- C:\Windows\System32\mstsc.exe

2012-09-24 12:43:16 1034240 ----a-w- C:\Windows\SysWow64\mstsc.exe

2012-09-24 12:43:14 1425408 ----a-w- C:\Program Files\Common Files\System\ado\msado15.dll

2012-09-24 12:43:13 987136 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msado15.dll

2012-09-24 12:41:43 1135104 ----a-w- C:\Windows\System32\FntCache.dll

2012-09-24 12:41:13 902656 ----a-w- C:\Windows\System32\d2d1.dll

2012-09-24 12:41:13 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll

2012-09-24 12:41:13 1837568 ----a-w- C:\Windows\System32\d3d10warp.dll

2012-09-24 12:41:13 1170944 ----a-w- C:\Windows\SysWow64\d3d10warp.dll

2012-09-24 12:41:12 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll

2012-09-24 12:41:12 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll

2012-09-24 12:41:12 197120 ----a-w- C:\Windows\System32\d3d10_1.dll

2012-09-24 12:41:12 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll

2012-09-24 12:41:12 1541120 ----a-w- C:\Windows\System32\DWrite.dll

2012-09-24 12:41:12 1074176 ----a-w- C:\Windows\SysWow64\DWrite.dll

2012-09-24 12:41:02 1895280 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2012-09-24 12:39:56 503808 ----a-w- C:\Windows\System32\srcore.dll

2012-09-24 12:38:54 -------- d-sh--w- C:\Windows\Installer

2012-09-24 12:37:58 720896 ----a-w- C:\Windows\System32\odbc32.dll

2012-09-24 12:37:58 573440 ----a-w- C:\Windows\SysWow64\odbc32.dll

2012-09-24 12:37:58 495616 ----a-w- C:\Program Files\Common Files\System\ado\msadox.dll

2012-09-24 12:37:58 466944 ----a-w- C:\Program Files\Common Files\System\ado\msadomd.dll

2012-09-24 12:37:58 258048 ----a-w- C:\Program Files\Common Files\System\msadc\msadco.dll

2012-09-24 12:37:57 372736 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadox.dll

2012-09-24 12:37:57 352256 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadomd.dll

2012-09-24 12:37:57 208896 ----a-w- C:\Program Files (x86)\Common Files\System\msadc\msadco.dll

2012-09-24 12:37:55 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

2012-09-24 12:37:54 157696 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

2012-09-24 12:37:54 126464 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

2012-09-24 12:36:49 102400 ----a-w- C:\Windows\System32\drivers\dfsc.sys

2012-09-24 12:32:36 -------- d-----w- C:\Windows\SysWow64\Adobe

2012-09-24 12:29:05 515584 ----a-w- C:\Windows\System32\timedate.cpl

2012-09-24 12:29:05 478208 ----a-w- C:\Windows\SysWow64\timedate.cpl

2012-09-24 12:28:29 148992 ----a-w- C:\Windows\System32\t2embed.dll

2012-09-24 12:28:29 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll

2012-09-24 12:27:47 77312 ----a-w- C:\Windows\System32\packager.dll

2012-09-24 12:27:47 67072 ----a-w- C:\Windows\SysWow64\packager.dll

2012-09-24 12:12:14 139264 ----a-w- C:\Windows\System32\cabview.dll

2012-09-24 12:12:14 132608 ----a-w- C:\Windows\SysWow64\cabview.dll

2012-09-24 12:12:11 826368 ----a-w- C:\Windows\SysWow64\rdpcore.dll

2012-09-24 12:12:11 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2012-09-24 12:12:11 1031680 ----a-w- C:\Windows\System32\rdpcore.dll

2012-09-24 12:07:37 2622464 ----a-w- C:\Windows\System32\wucltux.dll

2012-09-24 12:07:28 99840 ----a-w- C:\Windows\System32\wudriver.dll

2012-09-24 12:07:15 36864 ----a-w- C:\Windows\System32\wuapp.exe

2012-09-24 12:07:15 186752 ----a-w- C:\Windows\System32\wuwebv.dll

2012-09-16 10:55:46 38624 ----a-w- C:\Windows\System32\drivers\tap0901.sys

.

==================== Find3M ====================

.

2012-08-03 14:23:28 35064 ----a-w- C:\Windows\System32\drivers\CFRMD.sys

2012-08-03 14:23:28 35064 ----a-w- C:\Windows\inf\lps-ca\cfrmd.sys

2012-07-18 17:31:12 3146752 ----a-w- C:\Windows\System32\win32k.sys

.

============= FINISH: 13:00:47.41 ===============

[EPL]

I hope this was you was wanting, if not, I'm sorry.

[screen317]

EPL,

My apologies for the delay.

I am consulting with my colleagues and will be back with you as soon as possible.

[screen317]

Hi EPL,

Comodo and MBAM generally play nice with one-another. What I would like to confirm is that it is Comodo that MBAM is conflicting with, and not some other program.

Could you please temporarily uninstall all Comodo products, enable realtime protection in MBAM, reboot, and see if the issue persists. Does it?

[screen317]

Are you still with us? This topic will be closed in a few days if we do not hear back from you.

[screen317]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!