Win XP Pro - SP3 - Norton360 - Norton firewall enabled - windows firewall disabled and popup alerts disabled in the windows secrity center.
Getting a popup from Windows Security Center stating the Windows firewall (which is not on) had blocked some features of this program - Win32.Zafi.B.
I do not see in scan results that Norton 360 has ever detected this worm. Downloaded and ran a Symantec removal tool for it and ran it just incase and it found nothing.
In the security alert window, Keep blocking and Unblock are greyed out. The only option is "Enable protection" The text reads "Click to Download and activate protection". Perfect Defender 2009 is what it is recommending to download and activate. Not doing that.
First, am I correct that Win32.Zafi.B is not infecting this computer? That this is a false alert to get you to downoad Perfet Defender.
You have got a Mis-leading Application on your computer, or it could be the recent Trojan discovered as that Displays Fake Security Alerts.
Please follow these instructions exactly:
01. Download and Install Malwarebytes' Anti-Malware. Then, Update. Web Link provided below.
02. Re-start in Safe Mode; instructions provided below.
03. Make sure you are Dis-connected from the Internet.
04. Run a Full Scan with Malwarebytes' Anti-Malware of all Drives.
05. Once that Scan is Complete, re-start in to Normal Mode, and do another Full Scan with Malwarebytes of all Drives. Please do not Connect to the Internet un-til this second Full Scan is Done.
Thank you for the excellent instructions. Just finished. The safe mode scan found a file and a registry value and removed both. The full scan in normal mode found nothing.
I have the same problem, pop up warning of worm with the only option to buy the defender 2009 software.
But the fix described below didn't work for me, though I followed them to the letter. I'm desperate to get this pop up off my machine, any other suggestions?
I downloaded Anti-Malware, updated it, restarted in safe mode, ran both complete and quick scans, but Anti Malware found nothing. I rebooted in normal mode, re ran both scans, but the Malwarebytes scanner still found nothing.
Let em know if you have any other ideas to get this thing to go away.
This pop up thing has wreaked havoc across the web, I think it's curious there isn't an official Norton removal tool by now as more and more people get infected.
Manual removal requires a start in safe mode and the deletion of at least six files, but there was no other option for me after both Norton and Malwarebytes Anti-Malware scans found nothing.
Thanks for your reply, and best of luck to those who are unlucky enough to get this.