Strange happenings

Discussion in 'Malware Help (A Specialist Will Reply)' started by vinney22, Mar 19, 2008.

  1. vinney22

    vinney22 Private E-2

    Hi, Strange things have been happening on my pc the past few days. Nothing has been added nor any new programs installed. Symptoms include system freezing and having to restart, Internet explorer freezing and\or producing error message that it encountered an error and then closes and wont open again until I restart. Incredimail refuses to open at all. Blue screen of death several times.
    My AVG is up to date and so is spybot, though spybot has taken several attempts to run a scan
    I ran the try this first proceedure and the logs are attached.

    Asus motherboard K8V SE Deluxe
    AMD Athlon 64 3200
    Primary HDD Seagate 80gig SATA
    Sec HDD 250gig SATA
    1024mb Kingston ram
    O\S Windows XP SP2
     

    Attached Files:

    vinney22, Mar 19, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Now this statement does not quite agree with what I see in your logs. All of the below is new or modified on 3/19/2008. Some but not all, may be related to running the READ ME.
    Code:
    2008-03-19 19:14 . 2008-03-19 19:14 <DIR> d-------- C:\Program Files\Marvell
2008-03-19 19:14 . 2008-03-19 13:15 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2008-03-19 19:13 . 2004-01-28 09:21 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2008-03-19 19:13 . 2008-03-19 19:13 4,201 --a------ C:\WINDOWS\Ascd_tmp.ini
2008-03-19 14:26 . 2008-03-19 14:26 <DIR> d-------- C:\unzipped
2008-03-19 14:26 . 2008-03-19 14:26 360,704 --a------ C:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-03-19 14:22 . 2008-03-19 14:24 <DIR> d-------- C:\Downloads
2008-03-19 14:21 . 2008-03-19 14:21 <DIR> d-------- C:\Program Files\uTorrent
2008-03-19 14:21 . 2008-03-19 18:07 <DIR> d-------- C:\Documents and Settings\Admin\Application Data\uTorrent
2008-03-19 14:20 . 2006-06-14 09:50 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2008-03-19 14:20 . 2006-06-14 09:50 172,416 --a--c--- C:\WINDOWS\system32\dllcache\kmixer.sys
2008-03-19 14:20 . 2004-08-03 23:07 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2008-03-19 14:20 . 2004-08-03 23:07 52,864 --a--c--- C:\WINDOWS\system32\dllcache\dmusic.sys
2008-03-19 14:20 . 2004-08-03 23:07 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2008-03-19 14:20 . 2004-08-03 23:07 2,944 --a--c--- C:\WINDOWS\system32\dllcache\drmkaud.sys
2008-03-19 14:19 . 2005-05-28 00:14 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys
2008-03-19 14:19 . 2005-05-28 00:14 142,464 --a--c--- C:\WINDOWS\system32\dllcache\aec.sys
2008-03-19 14:19 . 2004-08-03 23:15 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2008-03-19 14:19 . 2004-08-03 23:15 60,800 --a--c--- C:\WINDOWS\system32\dllcache\sysaudio.sys
2008-03-19 14:19 . 2001-08-17 14:00 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2008-03-19 14:19 . 2001-08-17 14:00 54,272 --a--c--- C:\WINDOWS\system32\dllcache\swmidi.sys
2008-03-19 14:19 . 2006-06-14 09:50 6,272 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2008-03-19 14:19 . 2006-06-14 09:50 6,272 --a--c--- C:\WINDOWS\system32\dllcache\splitter.sys
2008-03-18 21:34 . 2008-03-19 03:46 576,733,184 --a------ C:\BBC.1996.Cold.Lazarus.1of4.tvrip.xvid-colinhunt_TMindTV.avi
 
2008-03-19 17:55 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-19 17:53 --------- d-----w C:\Program Files\Windows Plus
2008-03-19 17:42 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-03-19 13:26 360,704 ----a-w C:\WINDOWS\system32\drivers\TCPIP.SYS
2008-03-19 12:45 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-03-19 12:42 --------- d-----w C:\Program Files\Seagate
2008-03-19 12:24 --------- d-----w C:\Documents and Settings\Admin\Application Data\AVG7
2008-03-19 12:23 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
2008-03-19 12:23 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll
2008-03-19 12:23 --------- d-----w C:\Documents and Settings\LocalService\Application Data\AVG7
2008-03-19 12:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Grisoft
2008-03-19 12:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2008-03-19 12:15 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-19 12:15 --------- d-----w C:\Program Files\Analog Devices
 
2008-03-19 14:26  360704  a11391be25035570ae4b8970920f2c74 C:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-03-19 14:26  360704  a11391be25035570ae4b8970920f2c74 C:\WINDOWS\system32\drivers\TCPIP.SYS
    However your problems are not malware related. I suggest that you start a thread in the Software Forum.
     
    chaslang, Mar 20, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds