07-10-2012 08:58 PM
I get these messages from NIS saying that Auto Protect could not handle Trojan.Zeroaccess.B, or Trojan.Gen, or Trojan.Gen.2
Trojan.Zeroaccess.B is in my Unresolved Security Risks, the others are in Recent History as Blocked.
Symantec recommended I seek help with the required manual removal of .Zeroaccess so I downloaded the Fix Zero Access tool from Symantec. I run it and it tells me that no infections were found.
Browsing here I see several people with the same problem. But as instructed, I'm seeking a personalized solution.
I'm running Windows XP Professional
Service Pack 3
And I'm pretty sure I'm 32 bit.
Thanks for your help and patience. I know just enough about computers to be dangerous to myself.
RELATED: Any ideas where I (or my wife) might have picked these fun things up?
Solved! Go to Solution.
07-10-2012 10:22 PM
ANY other user other than the thread starter is not to use any instructions, scripts or proceedures, The work though in cleaning a system is individual and only for that system due to a number of factors.
Please do not run any tools unless instructed to do so.
4. Cleanup (including system as a whole)
Please read every post completely before doing anything.
Please download SystemLook from one of the links below and save it to your Desktop.
http://jpshortstuff.247fixes.com/SystemLook.html the 32 bit version
Disable Norton for say 30 mins
Double-click SystemLook.exe to run it.
Copy the content of the following codebox into the main textfield: (don't forget the : in front of :filefind)
Click the Look button to start the scan.
When finished, a notepad window will open with the results of the scan. Please post this log in your next reply (attach to message).
Note: The log can also be found on your Desktop entitled SystemLook.txt
07-11-2012 08:01 PM
Download OTL http://www.bleepingcomputer.com/download/otl/ to the Desktop
Disable Norton for say 30 minutes
Start OTL, under Copy and paste the custom script attached which you open in for instance Notepad,(include the : at the start of :OTL and all the way to the end / bottom) and run the script. (Red Run Fix Button)
The output log, should be placed in the C:\ _OTL folder after.
07-12-2012 04:46 AM
OK. I got I think half a dozen error messages at the end saying such and such registry file is corrupted and it directed me to run a disk cleanup utility.
07-12-2012 07:11 PM
I think we're all set. I ran a registry cleaner and two reboots and a Norton scan later, no trace or warnings (as far as I can tell) of our Trojan friend remain. Windows opens normally and all is well so far.
Thanks again Quads! If we ever meet, beverages of your choice are definitely on me!
07-15-2012 01:48 PM
Please read carefully Read all of this message first
Download Combofix http://www.bleepingcomputer.com/download/anti-viru
Right click the combofix.exe on the desktop and select from the menu "Run as Administrator"
****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****
Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.