Sign in to follow this  
Followers 0
forcesorcery

Two Files in C:\windows worries me, and KAV's File-AV temporarily disabled by itself recently.

7 posts in this topic

Hello,

 

1. I found two file called jautoexp.dat and imsins.bak in C:\windows

I sent jautoexp.dat to Kaspersky on April 1st, but haven't get RE until now. :blink:

And imsins.bak seems respawning after deletion.

 

2. I played Warcraft3 all the afternoon, with foobar2000 playing my music file.

Minutes ago, I took a break and checked the log of KAV's File-AV.

KAV always scans the mp3 file played by foobar.

But almost half an hour ago, KAV seems sunddenly stopped it's scanning.

(File-AV still showed "Running", but nothing logged near 30 mins)

 

Part of my File-AV log looks like this:

 

07:16:47--Frozen Tears.m4a ok scanned

07:21:24--1-15 Duo.m4a ok scanned

07:25:24--03 Summer's Blue.m4a ok scanned

07:30:08--Autumn Rose.m4a ok scanned

07:33:43--First Snowflakes 1.m4a ok scanned

07:36:58--Song From A Secret Garden.m4a ok scanned

*07:41:00--Nocturne.m4a ok scanned

*08:13:59--system32\OLEACCRC.DLL ok iChecker

 

The time between 7:41:00 to 8:13:59 seems temporarily disable of File-AV.

(I was still playing music in that 30 mins, but no music file logged.)

And I also open Comodo and mmc.exe to see if there's something suspicious.

File-AV didn't scan Comodo and mmc.exe either.

 

After I pause and restart the File-AV, It seems becomes enabled again...

Would File-AV act like this? (I use the maximum setting)

Is my KAV File-AV changed by some remote attacking?

 

Thanks very much in advanced.

Edited by forcesorcery

Share this post


Link to post
Share on other sites

send them for analysis.

did you add some exe's to the trusted applications list perhaps? that can be a cause for not scanning, or maybe you added some programs to settings>file-av settings>additional (pause file anti-virus when...)

Share this post


Link to post
Share on other sites

Thanks very much for helping,

 

I've sent jautoexp.dat on April 1st, and no response from Kaspersky until now.

I sent imsins.bak today.

 

And my "additional", the scanning mode is "smart mode"

Share this post


Link to post
Share on other sites

Thanks,

 

Those two boxes are unenabled.

 

My File-AV didn't showed "paused" during that 30 mins, I think.

It still "running", but just nothing logged in the log file...

I was playing music files during that time.

File-AV should scan them.

Edited by forcesorcery

Share this post


Link to post
Share on other sites

thne it's possible nothing was scanned.

Share this post


Link to post
Share on other sites

Ok, thanks very much again, Master Lucian.

Maybe File-AV will skip those music file I've played them in early time today.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0