possible virus with no popups .. need to make sure ..

Posted on 2006-04-29
Last Modified: 2013-12-04
i have a windows xp system sp2. didnt hear my friend's advice when i visited crack sites. my antivirus program is avast home edition and it says it is up to date. after going to the sites i got popups of trojans from the antivirus program. delting them didnt work. so i refuged to restoring the system to an earlier point which did not work. windows firewall was turned off and could not be enabled. so i used recovery console. almost everything is back to normal. except that once i got the msblaster popup that the computer will shut down in 59 seconds . i scanned for viruses but nothing was there. i downloaded the windows update that stops malicios software, but couldnt find anything..

the symptoms are that the windows movie maker wont work due to "potential virus". the windows meda player is acting sluggish. and the song is not shut after the app is closed. and ofcourse the one time that the blaster appeared.

my question is does recovery console solve everything? and how come windoes media player is acting sluggish althogh i re-installed it. note that the ram is 1GB so there should be no reason for windows media player not to respond :s

how do i know that i am not infected?
Question by:noha-kandil
    LVL 47

    Accepted Solution

    Recovery console doesn't solve everything.

    To make sure that you're not infected, scan your system for viruses and trojans.
    Download and install the free version of Ewido anti-malware.
    Update first then scan in safe mode.

    In normal cases, we could usually see the bad entries in your Hijackthis log.
    Please download HijackThis 1.99.1
    Open Hijackthis, click "Do a system scan and save a logfile" don't fix anything yet, just upload the logfile created, go here and paste your Hijackthis log,
    then at the bottom left corner click "paste"
    Copy the address/url and post it here:

    Or copy and paste the log at;
    and click "Analyse", click "Save".  Post the link to the saved list here.

    Author Comment

    ok here is what i did:

    i got ad-aware and i scanned. components from alexa appeared and some malicious registry entries. all was fixed.

    i used hijak this and i analyzed it at the site given. the only nasty thing that appeared was for realtek. they get info from users. fixed that.

    used the geekstogo thingy and nothing happened. finished scanning in around 2 mins.  and nothing happened.

    now this is whats going on. i have spyware docotr working as on gaurd. i have ad are and regestry cleanup to clean up after i am using te net. and avast for viruses. ithink bill gates should stop making money and fix his software.

    i need to know more about alexa because it keeps appearing after i remove it.
    LVL 17

    Expert Comment

    Scan viruses in safe mode without network.

    BR Dushan
    LVL 23

    Expert Comment

    This is not malicious, unless it relates to the Alexa toolbar, which you may have installed.
    This link is helpful:

    As is this:

    If you have the Alexa toolbar installed, you should look at this:

    If all Adaware and Spybot find is Alexa, you don't have much to worry about.

    Author Comment

    everything was sluggish and i couldnt resolve it. i formatted the pc and reinstalled windows. thanks everyone fo rthe help...

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
    No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now