The BullGuard products and services are part of NortonLifeLock Inc., a global leader in consumer Cyber Safety with a portofolio of brands including Norton, Avira and more. Learn more at NortonLifeLock.com

Win32:Trojan-gen in System Restore/mysterious black screens

Posted 12/14/2009 1:14 AM
#80923
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Yes, what we are doing is a process of elimination, so although step-by-step is the best way to verify non-involvement these first ones we have discussed are less likely to be causes. More often replacing the video card brings the improvement, and one having problems would not be related to anything you did.

Daemon Tools recently added a more rootkit-like method to confuse copy protection software, including tampering with boot level driver files and functions. I have one other thread where USB problems have occurred, and I suspect Daemon Tools involvement. Let's see.


If the option is there uninstall Daemon Tools, and/or Alcohol depending what it present.

Then click here to download Duplex Secure's SPTD installer SPTDinst-v162-x86.exe to your desktop, then click the downloaded file to start the installer. When the option appears select Uninstall, and allow the tool to uninstall SPTD from your system. Be sure to reboot after to complete the removal of the SPTD settings.

Run and post back a new Gmer scan log please.
Posted 12/14/2009 1:23 AM
#80924
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
I see, about the process of elimination.

The rootkits are out of my realm of knowledge, also.

I don't know what Daemon Tools and Alcohol are or where they're located.
Posted 12/15/2009 2:05 AM
#80961
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Then go ahead and run the SPTD uninstaller, reboot and then run and post the new Gmer log please.
Posted 12/15/2009 8:12 AM
#80989
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
Installing a program just to have it uninstalled seems pointless, but you're the tech. I did that and, after the second Gmer scan, my system froze dead again as i was opening Notepad to paste the log. So there have been no changes, except that some functions now freeze if I remove tray icons as quick as I used to.
Posted 12/15/2009 5:27 PM
#80997
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Not sure what you meant by installing to uninstall. Usually the uninstallers for softwares are the installers, running the uninstall log created during the initial install. As I mentioned, Daemon Tools has been doing alterations to boot level drivers it hadn't done in the past, and may be causing problems with some of those. Did ComboFix install the Recovery Console boot option? It would show there as a new screen as you first bootup. You are describing events now that may reflect some type of disk or file system issues, and running a Chkdsk from the Recovery Console prompt might correct those.
Posted 12/15/2009 8:35 PM
#80999
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
"Jintan" wrote: then click the downloaded file to start the installer. When the option appears select Uninstall, and allow the tool to uninstall SPTD from your system.


But I see what you mean now.
I've had that screen for a long time, since way before this issue started. It's black and has two options and a timer to make the choice on which option the user wants. It now has a third option, since I made the mistake of trying to install the notebook disc of MS Windows XP then backing out, before I was led to this forum, but that's another story.
I once tried to use Recovery, but it asked for an admin password and I never set one because I don't log in to the Admin section.
Posted 12/16/2009 12:33 AM
#81003
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
If you did not set an Administrator password hitting Enter should allow the access. You can, for now, try loading chkdsk in normal mode, which will then run next startup there.

Then Go to Start - Run, type cmd (and Enter). At the prompt type the following, then press Enter after each:

cd\
chkdsk /r
exit


You should be told the volume is in use, so be sure to allow it to run checkdisk on the next reboot. Then go ahead and reboot the system.
Posted 12/16/2009 12:46 AM
#81004
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
I thought pressing Enter would do it, but with each press, it popped

on my screen, til I gave up on that and just went to the power button.

Previous ChkDsk tries revealed nothing, but I'll try again.




All clear. Nothing wrong there.
Posted 12/16/2009 11:19 PM
#81036
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Think we are jumping back and forth between Recovery Console steps and normal mode - my fault in part. If you are willing and have the access to the Recovery Console C:\Windows\> prompt, we could also just check what drivers show before Windows loads. On the outside chance it shows something we can address.

In normal mode, do this:

[code]listsvc
dir c:\windows\system32\drivers[/code]

Open Notepad (Start - Run, type notepad and press Enter).

Copy/paste the above text (inside the Code box) into the open text box, then save this to your C:\Windows folder as "servcheck.bat"

It should then be C:\Windows\servcheck.bat (important)

----------------

Reboot to the Recovery Console C:\Windows\> prompt.

At the prompt type the following, pressing Enter after each:

batch servcheck.bat c:\windows\servicelook.txt

exit


When you hit Enter after typing exit your computer will reboot. Do Not press any key until the system has completely rebooted, then after the reboot be sure to remove your XP CD from the CD-ROM drive.

Then locate and post back here the contents of c:\windows\servicelook.txt please.
Posted 12/17/2009 12:32 AM
#81043
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
This system came with no Windows XP disc. It was a backup disc for the notebook I mistook for one for the tower. Sorry about that.

As for the servicelook.txt, there was no file by that name in the Windows folder after following your instructions.
Posted 12/17/2009 2:42 AM
#81044
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
If you ran that batch in normal mode it would not have worked. It relies on a command only available at the Recovery Console prompt.

If you don't have have an XP CD, you can also Go here and create a Recovery Console CD. Just click the link (the "Download the package here" link) provided there to download the recovery_console_cd.zip and unzip that to your desktop.

Then inside the recovery_console_cd folder that created locate and click on the IE icon titled Readme. This will open a webpage, which will provide the simple steps you will need to follow, as well as a clickable link to go to the MS download page where you can select the BootDisk file download appropriate for your operating system. For example, for an XP SP2 Home Edition you would be downloading WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe.

For emergency boot disk uses, as well as to access the Recovery Console, the SP2 version can also be used on systems that have the SP3 upgrade.
Posted 12/17/2009 2:48 AM
#81045
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
I thought I was doing that in the Recovery Console.

It seems that my disc drive no longer recognizes discs, no matter if it's a CD or DVD. When I play a CD, I need to manually run the tracks by opening the drive using My Computer. But I can try it. And if I do, what will happen to all the files and programs that HP pre-installed on this system? Will they stay intact?
Posted 12/17/2009 4:15 AM
#81063
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
That servcheck.bat file only creates a list of all the services showing, and make no changes at all to the system.

For the CD's, one of the scan tools we ran there disabled autoplay on all drives, as a security measure. Do this and see if you can then get the CD to autoplay:

[CODE]REGEDIT4

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoDriveAutoRun"=dword:00000000
"NoDriveTypeAutoRun"=dword:00000095[/CODE]
Open Notepad and copy and paste the above text (inside the box) into the text file. Now go to File > Save As and call it autofix.reg. Where it says "Files of Type", select All Files and click on Save. Exit Notepad, double-click on the file and ok the prompt asking if you wish to merge the file with your registry.

A reboot will be needed to complete those changes.
Posted 12/17/2009 5:15 AM
#81070
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
I thought it would create the said file.

And the CD plays automatically now. Thanks. I wonder if that's how techs pull April Fools pranks on each other.
Anyway, recording is another matter. I can only hope for the best on that.
In any case, I've heard varying results on what a full re-install of an OS is: will it destroy my project, portfolio, etc. files or will it leave them be? I've heard that it can possibly terminate them, so I'll back them up to online storage.
One question I have is: IF I am able to burn the XP files, will re-installing the full OS retain the pre-installed-by-HP programs and files?
Posted 12/18/2009 1:22 AM
#81091
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Not real sure what you are seeking right now.

A Repair Install, using an XP CD, is basically an update to XP, but done on an existing XP install. So just like an update leaves all user files and data intact.

A full install using an XP CD will overwrite everything, including the built-in recovery partition and information.

And of course using the built-in recovery option also overwrites everything. The great advantage of using that is that it will install all the necessary drivers and hardware supporting softwares.
Posted 12/18/2009 1:28 AM
#81092
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
Oh. I thought you were suggesting that I re-install XP.

But I see the differences now. Thanks.
Posted 12/18/2009 1:38 AM
#81094
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
I would still suggest you do the Recovery Console batch servcheck.bat step. Just need to create and make sure that servcheck.bat file is in your Windows folder, then boot to the Recovery Console prompt, make sure you are at the C:\Windows\> prompt (to be in the same folder where the servcheck.bat file is located), and do those commands:\


batch servcheck.bat c:\windows\servicelook.txt

exit
Posted 12/18/2009 1:45 AM
#81095
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
Ok, I want to be sure of something: is the prompt the one that shows up after I press Enter for the Admin password request on the black text-only screen?
Posted 12/18/2009 11:21 PM
#81120
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Yes, that's the one. Just be sure it shows:

C:\Windows\>
Posted 12/18/2009 11:26 PM
#81121
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
Ok, I'll try that again. And how do I find the log once I do that, since I couldn't find it in the Windows folder last time?
Posted 12/19/2009 4:06 AM
#81130
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
If you do it by the numbers the log will be in the Windows folder. Just make sure of the following:

1 - This is the exact name and location of the batch file you create to use:

C:\Windows\servcheck.bat <----

2 - You are at this prompt in the Recovery Console when you do the batch command:

C:\Windows\>

3 - And you do this exact command at that prompt (note the space between ".bat" and "c"):

batch servcheck.bat c:\windows\servicelook.txt
Posted 12/19/2009 4:38 AM
#81138
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
On the first attempt, when it failed, the text that was supposed to appear in the log scrolled on the same screen as the prompt. Whether that's strange or normal, I don't know. But this time, it gave me the log you wanted. Here it is:

Aavmker4 System
avast! Asynchronous Virus Monitor
Abiosdsk Disabled

abp480n5 Disabled

ACPI Boot
Microsoft ACPI Driver
ACPIEC Disabled

adpu160m Disabled

aec Manual
Microsoft Kernel Acoustic Echo Canceller
AFD System
AFD Networking Support Environment
AFS2K System
AFS2k
agp440 Boot
Intel AGP Bus Filter
Aha154x Disabled

aic78u2 Disabled

aic78xx Disabled

ALCXWDM Manual
Service for Realtek AC97 Audio (WDM)
Alerter Disabled
Alerter
ALG Manual
Application Layer Gateway Service
AliIde Disabled

AmdK7 System
AMD K7 Processor Driver
amsint Disabled

Apple Mobile Device Auto
Apple Mobile Device
AppMgmt Manual
Application Management
Arp1394 Manual
1394 ARP Client Protocol
asc Disabled

asc3350p Disabled

asc3550 Disabled

aspnet_state Manual
ASP.NET State Service
aswFsBlk Auto
aswFsBlk
aswMon2 Auto
avast! Standard Shield Support
aswRdr Manual
aswRdr
aswSP System
avast! Self Protection
aswTdi System
avast! Network Shield Support
aswUpdSv Auto
avast! iAVS4 Control Service
AsyncMac Manual
RAS Asynchronous Media Driver
atapi Boot
Standard IDE/ESDI Hard Disk Controller
Atdisk Disabled

Atmarpc Manual
ATM ARP Client Protocol
AudioSrv Auto
Windows Audio
audstub Manual
Audio Stub Driver
avast! Antivirus Auto
avast! Antivirus
avast! Mail Scanner Manual
avast! Mail Scanner
avast! Web Scanner Manual
avast! Web Scanner
Beep System

BITS Manual
Background Intelligent Transfer Service
Bonjour Service Auto
Bonjour Service
Browser Auto
Computer Browser
catchme Manual

cbidf2k Disabled

CCDECODE Manual
Closed Caption Decoder
cd20xrnt Disabled

Cdaudio System

Cdfs Disabled

Cdrom System
CD-ROM Driver
Changer System

CiSvc Manual
Indexing Service
ClipSrv Manual
ClipBook
clr_optimization_v2.0.50727_32 Manual
.NET Runtime Optimization Service v2.0.50727_X86
CmdIde Disabled

COMSysApp Manual
COM+ System Application
Cpqarray Disabled

CryptSvc Auto
CryptSvc
dac2w2k Disabled

dac960nt Disabled

DcomLaunch Auto
DCOM Server Process Launcher
Dhcp Auto
DHCP Client
Disk Boot
Disk Driver
dmadmin Manual
Logical Disk Manager Administrative Service
dmboot Disabled

dmio Disabled

dmload Disabled

dmserver Manual
Logical Disk Manager
DMusic Manual
Microsoft Kernel DLS Syntheiszer
Dnscache Auto
DNS Client
Dot3svc Manual
Wired AutoConfig
dpti2o Disabled

drmkaud Manual
Microsoft Kernel DRM Audio Descrambler
EapHost Manual
Extensible Authentication Protocol Service
ERSvc Auto
Error Reporting Service
Eventlog Auto
Event Log
EventSystem Manual
COM+ Event System
Fastfat Disabled

fasttx2k Boot

FastUserSwitchingCompatibility Manual
Fast User Switching Compatibility
Fax Manual
Fax
Fdc Manual
Floppy Disk Controller Driver
Fips System

Flpydisk Manual
Floppy Disk Driver
FltMgr Boot
FltMgr
FontCache3.0.0.0 Manual
Windows Presentation Foundation Font Cache 3.0.0.0
Fs_Rec System

Ftdisk Boot
Volume Manager Driver
GEARAspiWDM Manual
GEAR ASPI Filter Driver
Gpc Manual
Generic Packet Classifier
gupdate1c9e2eddafb0902 Auto
Google Update Service (gupdate1c9e2eddafb0902)
gusvc Auto
Google Software Updater
helpsvc Auto
Help and Support
HidServ Auto
HID Input Service
HidUsb Manual
Microsoft HID Class Driver
hkmsvc Manual
Health Key and Certificate Management Service
hpn Disabled

HPZid412 Manual
IEEE-1284.4 Driver HPZid412
HPZipr12 Manual
Print Class Driver for IEEE-1284.4 HPZipr12
HPZius12 Manual
USB to IEEE-1284.4 Translation Driver HPZius12
HTTP Manual
HTTP
HTTPFilter Manual
HTTP SSL
i2omgmt System

i2omp Disabled

i8042prt System
i8042 Keyboard and PS/2 Mouse Port Driver
ialm Manual

idsvc Manual
Windows CardSpace
IKFileSec Manual
File Security Driver
IKSysFlt Manual
System Filter Driver
IKSysSec Manual
System Security Driver
Imapi System
CD-Burning Filter Driver
ImapiService Manual
IMAPI CD-Burning COM Service
ini910u Disabled

IntelIde Disabled
IntelIde
intelppm System
Intel Processor Driver
ip6fw Manual
IPv6 Windows Firewall Driver
IpFilterDriver Manual
IP Traffic Filter Driver
IpInIp Manual
IP in IP Tunnel Driver
IpNat Manual
IP Network Address Translator
iPod Service Manual
iPod Service
IPSec System
IPSEC driver
IRENUM Manual
IR Enumerator Service
isapnp Boot
PnP ISA/EISA Bus Driver
JavaQuickStarterService Auto
Java Quick Starter
Kbdclass System
Keyboard Class Driver
kbdhid System
Keyboard HID Driver
kmixer Manual
Microsoft Kernel Wave Audio Mixer
KSecDD Boot

lanmanserver Auto
Server
lanmanworkstation Auto
Workstation
lbrtfdc System

LmHosts Auto
TCP/IP NetBIOS Helper
LPDSVC Manual
TCP/IP Print Server
ltmodem5 Manual
Agere Modem Driver
MBackMonitor Manual
MBackMonitor
mcmscsvc Auto
McAfee Services
McNASvc Auto
McAfee Network Agent
McODS Manual
McAfee Scanner
McProxy Auto
McAfee Proxy Service
McShield Auto
McAfee Real-time Scanner
McSysmon Manual
McAfee SystemGuards
Messenger Disabled
Messenger
mfeavfk Manual
McAfee Inc. mfeavfk
mfebopk Manual
McAfee Inc. mfebopk
mfehidk System
McAfee Inc. mfehidk
mferkdk Manual
McAfee Inc. mferkdk
mfesmfk Manual
McAfee Inc. mfesmfk
mnmdd System

mnmsrvc Manual
NetMeeting Remote Desktop Sharing
Modem Manual

Mouclass System
Mouse Class Driver
mouhid Manual
Mouse HID Driver
MountMgr Boot
Mount Point Manager
MPFP System
MPFP
MpfService Auto
McAfee Personal Firewall Service
mraid35x Disabled

MRxDAV Manual
WebDav Client Redirector
MRxSmb System
MRXSMB
MSDTC Manual
Distributed Transaction Coordinator
Msfs System

MSIServer Manual
Windows Installer
MSKSSRV Manual
Microsoft Streaming Service Proxy
MSPCLOCK Manual
Microsoft Streaming Clock Proxy
MSPQM Manual
Microsoft Streaming Quality Manager Proxy
mssmbios Manual
Microsoft System Management BIOS Driver
MSTEE Manual
Microsoft Streaming Tee/Sink-to-Sink Converter
Mup Boot
Mup
NABTSFEC Manual
NABTS/FEC VBI Codec
napagent Manual
Network Access Protection Agent
NDIS Boot
NDIS System Driver
NdisIP Manual
Microsoft TV/Video Connection
NdisTapi Manual
Remote Access NDIS TAPI Driver
Ndisuio Manual
NDIS Usermode I/O Protocol
NdisWan Manual
Remote Access NDIS WAN Driver
NDProxy Manual
NDIS Proxy
NetBIOS System
NetBIOS Interface
NetBT System
NetBT
NetDDE Disabled
Network DDE
NetDDEdsdm Disabled
Network DDE DSDM
Netlogon Manual
Net Logon
Netman Manual
Network Connections
NetTcpPortSharing Disabled
Net.Tcp Port Sharing Service
NIC1394 Manual
1394 Net Driver
Nla Manual
Network Location Awareness (NLA)
nmservice Auto
Pure Networks Platform Service
Npfs System

Ntfs Disabled

NtLmSsp Manual
NT LM Security Support Provider
NtmsSvc Manual
Removable Storage
Null System

nv Manual

NVSvc Auto
NVIDIA Driver Helper Service
nv_agp Boot
NVIDIA nForce AGP Bus Filter
NwlnkFlt Manual
IPX Traffic Filter Driver
NwlnkFwd Manual
IPX Traffic Forwarder Driver
ohci1394 Boot
Texas Instruments OHCI Compliant IEEE 1394 Host Controller
ose Manual
Office Source Engine
Parport Manual
Parallel port driver
PartMgr Boot
Partition Manager
ParVdm Auto

PCI Boot
PCI Bus Driver
PCIDump System

PCIIde Boot

Pcmcia Disabled

PDCOMP Manual

PDFRAME Manual

PDRELI Manual

PDRFRAME Manual

perc2 Disabled

perc2hib Disabled

pfc Manual
Padus ASPI Shell
PlugPlay Auto
Plug and Play
Pml Driver HPZ12 Manual
Pml Driver HPZ12
pnarp Auto
Pure Networks Device Discovery Driver
PolicyAgent Auto
IPSEC Services
PptpMiniport Manual
WAN Miniport (PPTP)
Processor System
Processor Driver
ProtectedStorage Auto
Protected Storage
ProtexisLicensing Auto
ProtexisLicensing
Ps2 Manual
PS2
PSched Manual
QoS Packet Scheduler
PSI_SVC_2 Auto
Protexis Licensing V2
Ptilink Manual
Direct Parallel Link Driver
purendis Auto
Pure Networks Wireless Driver
PxHelp20 Boot

ql1080 Disabled

Ql10wnt Disabled

ql12160 Disabled

ql1240 Disabled

ql1280 Disabled

RasAcd System
Remote Access Auto Connection Driver
RasAuto Disabled
Remote Access Auto Connection Manager
Rasl2tp Manual
WAN Miniport (L2TP)
RasMan Manual
Remote Access Connection Manager
RasPppoe Manual
Remote Access PPPOE Driver
Raspti Manual
Direct Parallel
Rdbss System
Rdbss
RDPCDD System

RDPWD Manual

RDSessMgr Manual
Remote Desktop Help Session Manager
redbook System
Digital CD Audio Playback Filter Driver
RemoteAccess Disabled
Routing and Remote Access
RpcLocator Manual
Remote Procedure Call (RPC) Locator
RpcSs Auto
Remote Procedure Call (RPC)
RSVP Manual
QoS RSVP
RTL8023xp Manual
Realtek 10/100/1000 PCI NIC Family NDIS XP Driver
rtl8139 Manual
Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver
S3Psddr Manual

SamSs Auto
Security Accounts Manager
SCardSvr Manual
Smart Card
Schedule Auto
Task Scheduler
sdAuxService Manual
PC Tools Auxiliary Service
sdCoreService Manual
PC Tools Security Service
SeaPort Auto
SeaPort
Secdrv Manual
Secdrv
seclogon Auto
Secondary Logon
SENS Auto
System Event Notification
Serenum Manual
Serenum Filter Driver
Serial System
Serial port driver
Sfloppy System

SharedAccess Auto
Windows Firewall/Internet Connection Sharing (ICS)
ShellHWDetection Auto
Shell Hardware Detection
Simbad Disabled

SiS315 Manual

SISAGP Boot
SiS AGP Filter
SiSkp System

SLIP Manual
BDA Slip De-Framer
SNMP Auto
SNMP Service
SNMPTRAP Manual
SNMP Trap Service
Sparrow Disabled

splitter Manual
Microsoft Kernel Audio Splitter
Spooler Auto
Print Spooler
sptd Disabled

sr Boot
System Restore Filter Driver
srservice Auto
System Restore Service
Srv Manual
Srv
SSDPSRV Manual
SSDP Discovery Service
stisvc Auto
Windows Image Acquisition (WIA)
streamip Manual
BDA IPSink
SunkFilt Manual
Alcor Micro Corp - 9360
Sunkfiltp Manual
HP && Alcor Micro Corp for Phison
swenum Manual
Software Bus Driver
swmidi Manual
Microsoft Kernel GS Wavetable Synthesizer
SwPrv Manual
MS Software Shadow Copy Provider
symc810 Disabled

symc8xx Disabled

sym_hi Disabled

sym_u3 Disabled

sysaudio Manual
Microsoft Kernel System Audio Device
SysmonLog Manual
Performance Logs and Alerts
TapiSrv Manual
Telephony
Tcpip System
TCP/IP Protocol Driver
TDPIPE Manual

TDTCP Manual

TermDD System
Terminal Device Driver
TermService Manual
Terminal Services
Themes Auto
Themes
TosIde Disabled

TrkWks Auto
Distributed Link Tracking Client
TVICHW32 Manual
TVICHW32
Udfs Disabled

ultra Disabled

Update Manual
Microcode Update Driver
upnphost Manual
Universal Plug and Play Device Host
UPS Manual
Uninterruptible Power Supply
USBAAPL Manual
Apple Mobile USB Driver
usbccgp Manual
Microsoft USB Generic Parent Driver
usbehci Manual
Microsoft USB 2.0 Enhanced Host Controller Miniport Driver
usbhub Manual
USB2 Enabled Hub
usbohci Manual
Microsoft USB Open Host Controller Miniport Driver
usbprint Manual
Microsoft USB PRINTER Class
usbscan Manual
USB Scanner Driver
USBSTOR Manual
USB Mass Storage Driver
usbuhci Manual
Microsoft USB Universal Host Controller Miniport Driver
usnjsvc Manual
Messenger Sharing Folders USN Journal Reader service
VgaSave System
VGA Display Controller.
viaagp1 Boot
VIA AGP Filter
viagfx Manual
viagfx
ViaIde Disabled
ViaIde
VolSnap Boot

VSS Manual
Volume Shadow Copy
W32Time Auto
Windows Time
Wanarp Manual
Remote Access IP ARP Driver
WDICA Manual

wdmaud Manual
Microsoft WINMM WDM Audio Compatibility Driver
WebClient Auto
WebClient
winmgmt Auto
Windows Management Instrumentation
Winsock Manual

wlidsvc Auto
Windows Live ID Sign-in Assistant
WmdmPmSN Manual
Portable Media Serial Number Service
WmiApSrv Manual
WMI Performance Adapter
WMPNetworkSvc Manual
Windows Media Player Network Sharing Service
WS2IFSL System
Windows Socket 2.0 Non-IFS Service Provider Support Environment
wscsvc Auto
Security Center
WSearch Auto
Windows Search
WSTCODEC Manual
World Standard Teletext Codec
wuauserv Auto
Automatic Updates
WudfPf Manual
Windows Driver Foundation - User-mode Driver Framework Platform Driver
WudfRd Manual
Windows Driver Foundation - User-mode Driver Framework Reflector
WudfSvc Manual
Windows Driver Foundation - User-mode Driver Framework
WZCSVC Auto
Wireless Zero Configuration
xmlprov Manual
Network Provisioning Service
{6080A529-897E-4629-A488-ABA0C29B635E} Manual
Intel(R) Graphics Platform (SoftBIOS) Driver
{D31A0762-0CEB-444e-ACFF-B049A1F6FE91} Manual
Intel(R) Graphics Chipset (KCH) Driver
Posted 12/19/2009 10:03 PM
#81159
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Very good - that's the right log. Not seeing any malware drivers in that, but it does show both Avast and McAfee drivers. Having more than one antivirus software installed can cause many different corruption and slowness issues. Which of those antivirus softwares would you plan to keep?
Posted 12/19/2009 10:10 PM
#81160
User avatar

IceDog Chill Advanced member

Date Joined Nov 2016
Total Posts: 50
I didn't know malware had drivers.

I'm hoping to keep McAfee's Firewall and Avast's AV. I have McAfee AV shut off.

The thing that still bothers me is that the issues started days before i installed Avast.
Posted 12/19/2009 10:36 PM
#81163
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
McAfee likely has enough components that it would conflict with another antivirus software. The issues you are experiencing there always "might" involve security softwares like an antivirus software. Actually, a good move is to just uninstall all security software, to eliminate things you can just undo later. The earlier logs also showed Spyware Doctor, so if all three of these are there then that setup could just be the issue there.
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Sunday, August 14, 2022, 5:43 PM (GMT +2)
There are a total of 61,974 posts in 13,697 threads.
In the last 3 days there were 0 new threads and 0 reply posts.

Who's online

This forum has 38,573 registered members. Please welcome our newest member, iAwake.
67 Guest(s), 0 Registered Member(s) are currently online.