Something freaky is going on.

Recently, I've noticed folders disappearing under Users/Aimee and the Quick Launch being rearranged when I'm not at the computer. I know mom isn't using it as I have the monitor covered with a piece of paper saying "DO NOT TOUCH" and she would have to move it to get to it, and it hasn't been moved.

This morning I woke up to find the music player (I play music on computer at night) was on repeat.

My antivirus/Windows Update is up-to-date. I noticed in the Event Viewer a few failed VSS's and Windows Update stuff.

Any ideas? It's almost as though somebody is accesssing my computer and f***ing around with it.

 

I was looking at the Event Viewer and doing some googling and it seems all the weird stuff is to do with something called VSS. Could that be messing around with the computer?

 

Got another blue screen upon inserting a game CD. Something about kernel inpage something (didn't see the entire thing, fastest reboot yet.) Windows troubleshooting thingy says it was unable to access the HDD, but the crash dump debugger says volsnap.sys did it.

Here's the crash dump if you're interested:
http://www.mediafire.com/?m0yzdungm4g

Also in event viewer just before the screen, it says
4:24:06 p.m.
The Volume Shadow Copy service entered the stopped state.

 

Sorry for the double-post, I just had an idea and it's past the 10-minute limit.

If I replace volsnap.sys, would it do anything? And where can I get a copy (without reinstalling the whole friggen OS)?

 

Debug info

 

I know nothing about bugcheck analyses, ok .

Hmm, that doesn't look good.
But,

was the game originally installed from a different drive?

None of that seems to be related to your original post, which smacks of a Subseven type trojan.

 

I never got to install the game. Explorer froze up when I inserted the CD. Didn't notice any scratches on it, but the disc drive light was flickering like it does sometimes if there is.

I don't know where I would have gotten a trojan, as I've only installed software that I used before and came out clean. Unless it's one of those drive-by ones.

 

Drive-bys and cross-site scripting on hacked websites probably account for the majority of infections nowadays

 

Funny thing is, I only used I.E. once, to get the latest version of Firefox (I find it buggers up when trying to update from within the software).

Here's all software installed (if you wonder about something, ask):

http://img9.imageshack.us/img9/1746/installd.png

Please don't make fun of me for all the horse games :-o

 

Hmm, it's possible to become infected using almost any web browser, Firefox with NoScript is the least I'd recommend. I don't see Spywareblaster, Spybot or Superantispyware listed either, the first 2 should be prerequisites for a level of passive protection.

I'd like to see an Hjt log to see what's loaded/running.

I wouldn't make fun on an open forum unless the edit button stayed live for a few hours judging by the amount of simulators, I'd have guessed the user was female though

 

I created an Hjt log yesterday.

I know that the HP software update (got an HP printer), Unlocker, AVGTray, ClipGuru, WordWeb, the debugging tools, Revo Uninstaller, Paint.net, Firefox, and HijackThis are all programs I had running at the time.

 

Something weird just happened: The S.M.A.R.T. information is now missing. I can't get it in *any* program, including CrystalDiskInfo.

 

I have no idea.

I notice in Task Manager, the service VSS is stopped.

 

Should I try a reinstall?

If so, would it help any to wipe the disk before doing so? If so, what's a recommended tool?

 

Another idea: The way the computer is set up, the cables are a bit tight. Could it be the power cable wiggling loose?