Hello to all.
I’ve got a problem with my computer,
it is infected with the cool.vbs virus.

I’ve found a lot of threads on here but noticed this is more of a personal thing, each with his own solution.
I’m attaching the logs as requested.

Attached log: AdwCleaner

attached Malware bytes log

OTL log

ASWMBR

Please don’t hesitate to tell me if you need anything else

did you get this after using a removable drive?

if so, also Follow MCShield instructions and attach logs

http://forum.avast.com/index.php?topic=53253.msg998925#msg998925

Hello,
I’ve attached the log you requested.

malware removers are notified, it may take some hours befor one arrive.

no problem,
thanks a lot for your time.
It’s not my main computer.
I’ve downloaded MCShield on the other ones aswel. Hop that will protect me in the future.

Hi,

Start Adwcleaner, but this time make sure to press Clean button after scanning. Attach me that report…

Also make sure to rescan with MalwareBytes, but now remove all entries found…

Then…

Please download GMER, the AntiRootKit tool from the link below and save it to your Desktop:

Gmer download link
Note: file will be random named

Double-clicking to run GMER.

[*]Wait for initial scan to finish - if there is any query, click No;
[*]Click [ Scan ] button and wait until the full scan is complete;
[*]Click [ Save … ] button - save the report to the Desktop (named ARK );

Please attach here Gmer’s (ARK.txt) logreports.

Then…

Please download Farbar Recovery Scan Tool (
http://www.mcshield.net/personal/magna86/Images/FRST_canned.png
) by Farbar and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
Only one of them will run on your system, that will be the right version.

[*]Double-click to run it. When the tool opens click Yes to disclaimer.
[*]Under Optional Scan ensure “List BCD” and “Driver MD5” are ticked.
[*]Press Scan button.
[*]It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
[*]The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

I've downloaded MCShield on the other ones aswel. Hop that will protect me in the future.

TwinHeadedEagle will do the rest.

Hope i did everything right…

MBAM

ARK

FRST

tha addition from frst

Hello,

Sorry for the delay

Download TDSSKiller and save it to your desktop

Execute TDSSKiller.exe by doubleclicking on it.
Confirm “End user Licence Agreement” and “KSN Statement” dialog box by clicking on Accept button.

[*] Press Start Scan
[*] If Suspicious object is detected, the default action will be Skip, click on Continue.
[*] If Malicious objects are found, select Cure.

Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt

Please post the contents of that log in your next reply.

No problem,
as i’ve said it’ not my main PC, so no hurry
I’m not at the site atm, i will do this first thing in the morning.

Thanks already for everything.
Is there a way to prevent this? with mcshield?

As I’ve said, i’ve installed it on the rest of the computers, and two of the 4 students who came in today had a detection on their USB drive.

Yes, MCShield will protect you 99.9% (100%, but we never tell it :P)

They are probably infected too, I don’t know for sure. Install MCShield on every computer, you will prevent further infection.

About your computer you’re indeed infected with multiple threats, so we need to clean it. I will wait, we will continue when you’re ready

Do not use any USB on this computer until we clean it…

Well with 5PC’s and two Mac’s in my office with students coming in daily with their USB drives, I knew something like this was going to happen.

Let’s clean this PC first, then if you wish you can start separate topics for all of them…