Alright, thak you a lot, i doubted because you said it could take 20 minutes or so, but when i click on the checkbox of system restore it takes 5 seconds once i press YES.

Thank you very much,

i will count with you if i have any further problems (hope not), i'm new here but i guess i have to clic on that SOLUTION boton, i will do it.

Don't forget the "CleanUp" button then OTL will delete itself and it's folders (_OTL) with the removed files inside Or I should say it should.

Other than that, Good luck.

Quads

Yes, i did that, click the CLEANUP button, restart the computer with SYSTEM RESTORE OFF. Then i restarted again with SYSTEM RESTORE ON.

I ran a scan over the WINDOWS folder, the system32 folder and finally an active scan and it didn't find any risks.

The only thing that really surprised me is that when doing the active scan i can see that it scans the file NTOS (which i could not see), that file is the one that had the virus, but it doesn't says anything. Anything to worry about?

thank you.

I can only see one called ntoskrnl.

Seems that someone has been using bad the computer because i got three zeroaccess (and other problems) with new names all located at the system32 folder.

Do i have to run combofix or something like that or it's better that i post some logs from otl or fss?

Once i get rid of this i am considering to put windows firewall at 100%.

PD: Other problems feature the google redirect stuff.

Hi,

I have this virus too and need help removing it from my system. I am only able to operate my computer in safe mode. Every time I try to boot in normal mode, the computer crashes and goes back to safe mode. The windows restore option is not working and, I am getting a message saying that there has not been a restore point set on my computer. I have Norton security. Should I reinstall windows altogether (have the original discs)? Or should I  try the removal solutions suggested here to see if the virus will be cleared. Please, walk me through the steps because I am not a comp expert.

thanks