W32/Blasterworm Attack Help Please?!?

[Pryncez]

Ok, so my laptop has been attacked by this virus and a program called Spy Protect. None of my applications will open, i tried to put in a disk that have avg, but it won't execute the file. I even tried going to the task manager and shutting down defend or the msblast.exe process, but the virus closes it before I can even click on it... Idk what to do or what tool to use, since this stupid virus stops everything from running. Can anybody help me get rid of this without having to pay $50??

 

[hangdawg]

heres a free tool from norton with instructions http://www.symantec.com/security_response/writeup.jsp?docid=2003-081119-5051-99

 

[sreedhav]

Dear pryncez,
Download this to a One GB usb stick( from the pc you are viewing) and run the program >>> Kaspersky Virus Removal Tool Link : Virus Removal Tools. How to manually disinfect : How to manually disinfect your computer using Kaspersky Virus Removal Tool 2010?

regards,
Sreedhav

 

[Pryncez]

Thanks so much guys! Trying again now. Do i need to run my pc in safemode??

 

[sreedhav]

Dear pryncez,
the Symantec tool and the Kaspersky tool can be used in "safemode",if you can get there! Restart the computer and as soon as you see the F12 appearing at the bottom of the screen, start tapping on F8 key and you will be offered a menu from which you can choose "safemode".

In my laptop, i have to press F5 first and later F8! Kindly get back and tell us how it went so that i and others can be benefitted.

Regards,
Sreedhav.

 

[Pryncez]

The virus couldnt be detected in safemode, so im gonna try running windows normally. i'll let u know how it works out. *crosses fingers*

 

[Pryncez]

I can't get any of those things to work. I must have some other kind of virus. A program called spy protection or defender or something is the problem, but I cant find the program or anything. Im just going to do a system restore.

 

[sreedhav]

Thanks so much guys! Trying again now. Do i need to run my pc in safemode??

No, you may try first in normal mode and if the pc is shutting down on it's own ,so very frequently,then you may choose safe mode!

regards,
Sreedhav

 

[hangdawg]

here's a guide on using super anti spyware portable complete how to make it and use it SUPERAntiSpyware Portable is the Must-Have Spyware Removal Tool You Need - How-To Geek

its free and very good

 

[Carolyn]

Hello Pryncez,


Rkill
Note: If your security software warns about Rkill, ignore & allow the download to continue.
Download RKill by Grinler from Here & save it to your Desktop.
Alternate download links:
Two
Three
Four

• Double click Rkill to run it
• A command window will open then disappear upon completion, this is normal
  • If this does not happen... delete the file, then download & use the next link provided
  • If it does not work, repeat the process & attempt to use one of the remaining links until the tool runs
• Do not reboot your machine until asked to do so. If no version of Rkill would run, please let me know
• When finished, Notepad will open with a log file, automatically saved at C:\rkill.log
• Copy/paste the contents of the rkill.log file in your next reply
• Leave Rkill on the Desktop unless instructed otherwise

Note: If you get an alert that Rkill is infected, ignore it. The alert is a fake warning given by rogue software, trying to "protect" itself from being terminated or removed. If you see such a warning, leave the warning on the screen, then run Rkill again. By not closing the warning, this sometimes allows you to bypass the malware's attempt to protect itself, so that Rkill can perform its routine.

========================

Malwarebytes Anti-Malware:

Please download Malwarebytes' Anti-Malware to your desktop.

• Double-click mbam-setup.exe and select then follow the prompts to install the program.
• At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select Perform full scan, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is checked, and click Remove Selected.
• When completed, a log will open in Notepad. Please post that log in your next reply.

The log can also be found here:

1. Launch Malwarebytes' Anti-Malware
2. Click on the Logs radio tab.

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.

========================

Download DDS and save it to your desktop from here or here or here.
Disable any script blocker, and then double click dds.scr to run the tool.

• When done, DDS will open two (2) logs:
  1. DDS.txt
  2. Attach.txt
• Save both reports to your desktop.

========================

Please post the following for my review:

• The Rkill log
• The Malwarebytes' log
• DDS.txt and Attach.txt