I don’t think is a infection. But I downloaded a video of a site (owned by onnuetral about the blaster worm the format is .avi. I like there videos because they show real time demos of different malware. The thing is it would only play the music, not the video. So I tried opening it with quicktime. The header said blaster worm, but I was watching a video called In action… zlob trojan!!! Does anyone think I’m infected? I did a memory scan (not a complete doing it now) and no infections were spotted.
Do you think this is an infection?
I don’t think the video is to balme, but the 100% CPU usage is suspicious.
Have you tried a reboot?
Have you tried a boot time scan with avast!
If still having problems, post a HijackThis! log.
I tried to open other videos, and we’ll I didn’t have the problem.
I do find it suspicious, I will do a boot time scan.
If nothing is found, I will follow your other steps.
A boot time scan found nothing… a weird thing happened though, my computer stopped making noise and the monitor didn’t show anything. I noticed my power buton was blinking tellign me the computer was hibernating and I had to press the button. So I went and pressed it… but the monitor stopped recieving a signal, 10 min later (I think it was still scanning) and my computer made alot of noise and vista started up it was weird. I posted my hijackthis log with this post.
Try using MSConfig to disable all but essential startup items: if your computer runs normally, you’ll know one of the startup items is causing a problem.
Actually, I forgot, that my computer doesn’t recieve mouse signals, while in BIOS or booting up. and since I can’t move the mouse it went into hibernation.
I also forgot, (…I’m losing my marbles) it could not scan one file I can’t remeber the full message but it said C:/Program Files/Scansoft/omni-pages…
could not be opened because it’s CHM is corrupt
That was not word by word it said… that’s all I remember do you think I should use blacklight rootkit revealer?
Here are some you can try:
Panda Antirootkit
Blacklight
Trend Micro Rootkit Buster
McAfee Rootkit Detective
Sophos AntiRootki
I checked my network usage every so often through the Task Manager, I got no suspicous network usage.
I’m still waiting for the Blacklight scan to finish.
So what do you think… Do you think I got some malware? or just some weird things going on?
I’m using Blacklight and well… nothing was dected?! there has to be, Windows comes with rootkits to protect some files… I’m going to rescan with it as admin (which I forgot to do slaps myself)
I’m using Windows Vista SP1 Home Premium
Here are the list of programs I scanned with:
Avast! Normal + Archive Files -Nothing
Avast! Boot time scan + Archive Files -Nothing
SUPERantispyware (complete scan) Nothing (never had a tracking cookies for ages)
MBAM (Complete Scan) Zip zero
F-Secure BlackLight -Zero.
Trying another Blacklight scan…
I did another scan… No rootkits… What the **** is going on with my computer?! Also every so often e recovery (built into my acer aspire computer) agent pops up when I start and the last option is in Japanese? Anyone know what’s going on I really need help I don’t have an install disk because Acer didn’t give me one and not even a restore disk :o :o :o
Acer, HP… some other manufacturers, does not give the original CD but only the ability of creating the restore disks, not even the disk themselves, but the ability of creating them… it’s not what I’ve said it’s a good thing.
Did you try the general cleaning procedure?
- Disable System Restore and reenable it after step 3.
- Clean your temporary files.
- Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
- Use SUPERantispyware, MBAM or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
- Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
- Make a HijackThis log to post here or, better, submit the RunScanner log to to on-line analysis.
- Immunize your system with SpywareBlaster or Windows Advanced Care.
- Check if you have insecure applications with Secunia Software Inspector.
Acer, HP... some other manufacturers, does not give the original CD but only the ability of creating the restore disks, not even the disk themselves, but the ability of creating them... it's not what I've said it's a good thing.
I did make a factory default… but I don’t know if it’s a repair cd, or a restore disk.
1. Disable System Restore and reenable it after step 3.I didn't do it, because I never found any infections.
2. Clean your temporary files.Yes
3. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.Done, no infections found.
4. Use SUPERantispyware, MBAM or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.Scanned with SAS and MBAM no infections, not even a tracking cookie.
5. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.Used Blacklight, no hidden objects, files, processes found.
6. Make a HijackThis log to post here or, better, submit the RunScanner log to to on-line analysis.Done, No harmful entries found.
7. Immunize your system with SpywareBlaster or Windows Advanced Care.Already did a few months back.
8. Check if you have insecure applications with Secunia Software Inspector.No...
Is there any other steps I can do? Or do you think I’m clean?
I think it’s a restore disk (generally).
Full computer on-line scanning:
Kaspersky (very good detection rates)
ESET NOD32
Trendmicro housecall
F-Secure
BitDefender (free removal of the malware)