bizzare "Weather Report" virus - ID now?

Hi all,

I've not worked my way through the sticky's yet on malware removal. After I do, I'll update this post.

I was hoping if anyone can ID this problem: I was downloading a large torrent and when it was done, a generic "broadcast" of a few ambiguous weather reports starts coming out of my speakers. The reports come in succession for about 3 minutes and then stop. Every 20 minutes or so, the same "broadcast" starts coming out of my speakers again. There is no program running (that I can easily see) that would cause this and I have never installed any weather software.

I've run CC Cleaner and Spybot Search and Destroy and AdAware and rebooted. The broadcasts are still coming. I will work my way through the sticky's tonight.

I find this to be quite an odd thing to happen after downloading a torrent. When I download torrents, I run PC Tools Firewall Plus and Peerblocker.

Has anyone heard of this "virus" before? Can anyone ID it?

 

Most likely a Whistler rootkit.

You can do the below step either before or after the Malware Removal Guide.

http://img196.imageshack.us/img196/3557/tdsskiller.gif I want you to read and follow these instructions: TDSSKiller - How to run

 

I ran TDSSkiller and nothing malicious was found. The report is attached. Please advise.

 

Read and follow these directions: READ & RUN ME FIRST Malware Removal Guide

 

Here is the Hijack This log (attached): please advise.

 

Here are the results of the Malwarebytes scan: Please advise.

Malwarebytes' Anti-Malware 1.41
Database version: 2775

 

Read and follow these directions: READ & RUN ME FIRST Malware Removal Guide

 

Here is the UPDATED result of the malwarebye scan: Please advise.

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.11.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.13
Owner :: POWERSLAVE2 [administrator]

4/11/2012 8:52:57 PM
mbam-log-2012-04-11 (20-52-57).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 181899
Time elapsed: 3 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

Sorry for the stutter step. Did you get my updated malwarebytes log?

ATTACHED is my rootrepeal log. Is it helpful?

 

UPDATED correct version of malwarebytes log attached:

 

Keep on going through the instructions. I would prefer if you would attach the remaining logs in one post.