help me get rid of this virus!!!!!!!!!!!!!!!!!

its called C:\WINDOWS\system32\blawin3.exe. mcafee can't quarintine it or delete it. please help me.

 

Have you tried getting rid of it in safe mode?

 

its not showing in safe mode aaahhhh this is horrible

 

I just searched network associates knowledge base on malware and can not find your malware. you need to do an online scan and see if it might be a false positive. click on my signature (online scans and more) and you will find a list of online scans. I would try at least two of them, I would recomend one of them be trend micros house call online scan here

 

will the free online scans work with mcafee or another anti virus software on the computer?

 

it found it again and it still can't get rid of it.

 

I see an alert at Symantec's site for a backdoor trojan called bla. And if affects the system folder. Could it be that? What are they symptoms, or how does it affect your computer? Symantec says you get so many illegal operation errors that sometimes you can't even shut down the computer. It also says it will cause your computer to display the blue warning screen. Does this sound familiar?

 

nope how do i delete it in safe mode? i know how to get safe mode not to delte files. and if it is a false positive what damage can happen if i delete it? oh and my virus files are up to date so i don't need to update it.

 

Assuming you can find the file in Safe Mode, you can move it to a removable disk [CD, Zip, floppy] so that you have backup in case it is a false positive. But if both McAfee and one of the online scanners are flagging the file, it is probably real malware [not false]. You can probably also manually add it to McAfee's Quarantine while in Safe Mode, if you want to do that. Files in Quarantine are encrypted and thus isolated from the rest of your filesystem. Good Luck ..

 

I don't find any information on blawin3 on any of the major antivirus sites. What symptoms is it having on your system?Have you tried running adaware or Spybot SD? Sometimes those have picked up and cleaned files that my antivirus software couldn't. If McAfee can't clean it then it's probably in use and McAfee may be able to quarantine it in safe mode. Good luck. I just spent almost a week getting rid of a stubborn worm that kept hiding and coming back.

 

spybot,adaware SE, microsoft anti spyware, spywaredoctor can't find it and mcafee can't find it in safe mode only in non safe mode. and it can't delete or quarintine its annoying

 

Well this may not work and it's a shot in the dark. But one of the things I finally did to get rid of the worm I had was I downloaded the trial copy of Panda Titanium antivirus, started to install it and uninstalled my Norton antivirus when prompted and ran Panda. Panda picked it up and cleaned most of it. Then it gave me enough information about the files left so that I could go into safe mode and remove them. Also had to use the "find" feature in the registry to make sure there was nothing there. One of the problems with yours is that I can't find any information on it to know what files it has dumped, if any, on your PC. Plus, we haven't heard what the symptoms have been for you. Also, Adaware had a bunch of updates in the last 12 hours so you may want to try updating that and running it again. AFter I updated adaware this morning, it picked up some lingering effects in my system restore. Maybe it won't work.... but maybe it will! Many of these tips, I had gotten from mod Jooske here and I just had to try everything suggested and in different combinations as well.

 

this is the family laptop and i don't think they would like me to uninstall mcafee. so am i screwed now?

 

if you are sure you want to delete the file! go to diamondcs.com.au and download (dellater). remember where you save the download to as you will need to go to a command prompt and change directories to this location. then just type dellater (path):\(filename) and hit enter. exit from command window. then reboot machine it will be deleted before OS gets loaded. Note: there is a read me text file included with the download in case you get confused. Hope this helps.