|
fireworks_god
Sexy.Butt.McDanger



Registered: 03/12/02
Posts: 24,855
Loc: Pandurn
Last seen: 1 year, 3 months
|
Virus Hiding A File From The Computer?
#8859054 - 09/01/08 04:03 AM (15 years, 8 months ago) |
|
|
All right, so, in a nutshell, this is what is going on with this computer. The other day, no sound. Everything like Winamp says bad sound driver, the computer says no sound device even though Soundmax was still listed in the System, etc. Now, I've had this happen before, and the answer was to simply install the driver again. This time, however, it doesn't work like that.
First, I found three different sources for the Soundmax driver that is for our ASUS P5PL2 on the net. Installing all of them didn't work, because it couldn't find the file "CleanUp.exe" in order to complete installation. Then, we found the motherboard installation cd. Aha, we thought, there's no way the file could be missing from the hard disk. Of course, when we tried installing it, it said it couldn't find the file and asked us for its location.
Then, we actually found the file in question in a folder on there. Told it right where it should be, and it couldn't locate it. We tried opening the file up in Run and copying it to the desktop, and it said it couldn't find it both times.
The sound disappeared about the time we had downloaded, but not installed, some different VST plugins through eMule. Is it possible that a virus changed a registry or something to make the computer specifically not find a file that clearly exists? I've read up on CleanUp.exe and, besides SoundMax, another thing that is named that is a cleaner for cookies, etc. etc. etc., so maybe the virus benefits from blocking that file name or something.
Any clues as to how to go about resolving this, short of reinstalling Windows? Any system stuff that could be checked to find out if I can change a value or something? We're sitting with no sound when we are usually making music, so any help is appreciated.
--------------------
If I should die this very moment I wouldn't fear For I've never known completeness Like being here Wrapped in the warmth of you Loving every breath of you
|
Dark_globe
Stranger



Registered: 05/02/07
Posts: 250
Loc: NSW
Last seen: 13 years, 10 months
|
Re: Virus Hiding A File From The Computer? [Re: fireworks_god]
#8859099 - 09/01/08 05:07 AM (15 years, 8 months ago) |
|
|
have you ran a virus scan on the file you dl or on your comp? I would do that 1st and if no results then try a system restore
|
zouden
Neuroscientist


Registered: 11/12/07
Posts: 7,091
Loc: Australia
Last seen: 14 years, 7 months
|
Re: Virus Hiding A File From The Computer? [Re: Dark_globe]
#8859109 - 09/01/08 05:21 AM (15 years, 8 months ago) |
|
|
What's the size of the file? And will it open in notepad? What about the command prompt?
And why does a sound driver need an exe file?
Also, if the driver suddenly doesn't work, it could be a corrupted driver OR it could actually be a hardware fault.
-------------------- I know... that just the smallest part of the world belongs to me You know... I'm not a blind man but truth is the hardest thing to see
|
fireworks_god
Sexy.Butt.McDanger



Registered: 03/12/02
Posts: 24,855
Loc: Pandurn
Last seen: 1 year, 3 months
|
Re: Virus Hiding A File From The Computer? [Re: zouden]
#8859129 - 09/01/08 05:55 AM (15 years, 8 months ago) |
|
|
We downloaded AVG and ran it. It found a hell of a lot of stuff, some trojans and worms, but after they were removed, this still doesn't work. Reinstalling Windows definitely seems like it should fix the problem, but we have to go get another copy first and it would be nice to avoid that anyways.
Zouden, it needs the file as part of the installation process. Soundmax was completely removed and then we haven't been able to reinstall it, so the corrupted driver isn't an option... I guess hardware fault could be responsible, but it seems unlikely because, every time we start Windows, it would still make that sound. Not to mention, it doesn't explain why the computer cannot find a file on the cd, not to mention the same exact file on different rar files we downloaded, even though it is clearly there.
--------------------
If I should die this very moment I wouldn't fear For I've never known completeness Like being here Wrapped in the warmth of you Loving every breath of you
|
zouden
Neuroscientist


Registered: 11/12/07
Posts: 7,091
Loc: Australia
Last seen: 14 years, 7 months
|
Re: Virus Hiding A File From The Computer? [Re: fireworks_god]
#8859131 - 09/01/08 05:58 AM (15 years, 8 months ago) |
|
|
Hmm... try searching the registry for "cleanup"?
-------------------- I know... that just the smallest part of the world belongs to me You know... I'm not a blind man but truth is the hardest thing to see
|
SkekTek
Lurker


Registered: 03/21/08
Posts: 287
Loc: South Florida
Last seen: 14 years, 9 months
|
Re: Virus Hiding A File From The Computer? [Re: zouden]
#8859178 - 09/01/08 06:54 AM (15 years, 8 months ago) |
|
|
Sounds like you could have a corrupt driver. I've had the same thing happen, only with the graphics driver instead of the sound.
Try using system restore, that always works for me.
|
Dark_globe
Stranger



Registered: 05/02/07
Posts: 250
Loc: NSW
Last seen: 13 years, 10 months
|
Re: Virus Hiding A File From The Computer? [Re: SkekTek]
#8859199 - 09/01/08 07:14 AM (15 years, 8 months ago) |
|
|
if you do use system restore make sure you burn a cd of avg and run it again after
|
fireworks_god
Sexy.Butt.McDanger



Registered: 03/12/02
Posts: 24,855
Loc: Pandurn
Last seen: 1 year, 3 months
|
Re: Virus Hiding A File From The Computer? [Re: Dark_globe]
#8859632 - 09/01/08 10:19 AM (15 years, 8 months ago) |
|
|
Nothing came up during the registry search. Again, I really don't think it is a corrupt driver, as it was deleted and its only when we go to install from different sources that the computer says it cannot find a file that actually exists. It lists it in the folder and everything, and when you go to open it or move it or find it with the installation program, it says it cannot find it.
System restore sounds like the only way to go, or just reinstalling Windows since we don't have a disc for this one anyways, unless anyone else has some good thoughts on the matter!
--------------------
If I should die this very moment I wouldn't fear For I've never known completeness Like being here Wrapped in the warmth of you Loving every breath of you
|
Shroomism
Space Travellin


Registered: 02/13/00
Posts: 66,015
Loc: 9th Dimension
|
Re: Virus Hiding A File From The Computer? [Re: fireworks_god]
#8860415 - 09/01/08 12:58 PM (15 years, 8 months ago) |
|
|
If AVG found several trojans and worms.. it is quite likely you have others hiding on your system that will take more aggressive negotiations to get rid of.
Download HijackThis! - Run a scan, save a log file.. and do not change anything. Doing so without knowledge of what you are doing could hurt your system. You will want to register, and post your log here, and follow their instructions once someone responds with what measures to take. Be patient, it could take a day or two.. or an hour.
--------------------
|
zouden
Neuroscientist


Registered: 11/12/07
Posts: 7,091
Loc: Australia
Last seen: 14 years, 7 months
|
Re: Virus Hiding A File From The Computer? [Re: fireworks_god]
#8861306 - 09/01/08 03:43 PM (15 years, 8 months ago) |
|
|
I'd run chkdsk to see if there's any filesystem errors.
-------------------- I know... that just the smallest part of the world belongs to me You know... I'm not a blind man but truth is the hardest thing to see
|
poof
Stranger
Registered: 08/07/07
Posts: 209
Last seen: 15 years, 8 months
|
Re: Virus Hiding A File From The Computer? [Re: zouden]
#8863807 - 09/01/08 11:56 PM (15 years, 8 months ago) |
|
|
Reinstall windows. Once you get a virus theres no telling what damage has been done, or what still is lurking on your system. Especially considering how prominent rootkits are. Next time, if your using questionable .exe's, open them up inside a virtual machine.
|
Aiko Aiko



Registered: 05/13/05
Posts: 6,426
Loc: Lazy River Road
Last seen: 15 hours, 33 minutes
|
Re: Virus Hiding A File From The Computer? [Re: fireworks_god]
#8864364 - 09/02/08 05:17 AM (15 years, 8 months ago) |
|
|
...or at least scan it first. Like others have said, once you get a bad infection and system files start getting corrupt, even if you remove the malware, the damage is done. It's a good idea when you run scans to pay attention to the location of the infected files. When you see a bunch of system32 directories infected it's time to back up your data and reinstall windows. Were you not running any virus SW to begin with?
-------------------- Easily test the dosage of your tabs at home! qtests.org Man says, "God, show me and I will believe." God says, "Believe and I will show you."
|
delta9
Active Ingredient


Registered: 10/28/04
Posts: 5,390
Loc: California
Last seen: 13 years, 6 months
|
Re: Virus Hiding A File From The Computer? [Re: Shroomism]
#8873769 - 09/03/08 08:39 PM (15 years, 8 months ago) |
|
|
Quote:
Shroomism said: If AVG found several trojans and worms.. it is quite likely you have others hiding on your system that will take more aggressive negotiations to get rid of.
Download HijackThis! - Run a scan, save a log file.. and do not change anything. Doing so without knowledge of what you are doing could hurt your system. You will want to register, and post your log here, and follow their instructions once someone responds with what measures to take. Be patient, it could take a day or two.. or an hour.
Unfortunately, if he had a variety of trojans and worms AND there is a kernel level rootkit hiding various files, then there is nothing that can be done with ANY user space tool. A reinstall is the most sure remedy in this case.
HOWEVER I don't think there is ample evidence of a kernel rootkit hiding specific files, especially since you can actively view the files. Usually a well written rootkit when it hides a file that file is HIDDEN COMPLETELY from the OS. It might possibly be a rootkit that is intercepting calls to anything called CleanUp and aborting them, though.
-------------------- delta9
|
|