Possibly new version of an existing virus.....

I received an email yesterday that seemed to be from ADP saying that it was about a payroll invoice..... The text said:

"A copy of your ADP TotalSource Payroll Invoice for the following payroll is is attached in PDF file and available for viewing."

 

When you click on the file it ran and installed the virus.

 

I was running Norton 360 (the version that comes with xfinity). This did detect a virus. I didn't look what it discovered...........as in the past, Norton has been very effective at completely removing virus'....

 

I looked this virus up on the internet and it said that it was this Trojan: Trojan.Generic.KD.887560

 

However, even though Norton removed something, there was clearly something left behind. I could not  right click on the start button (running windows Vista) without hanging. Also right click on filenames causes hangs too. Also I cannot download utilities to remove or help as it has the windows firewall forced to detect all downloads as with virus, so it won't download anything. In addition it has disabled all the windows security apps so you can't disable the download features. You actually see the windows detect find a virus on all files downloaded and then Norton says that the file was safe, but by then it's too late and the file isn't downloaded.

 

After a while, Norton auto-scan found Trojan.Zeroaccess.C and removed it. The virus had corrupted googleupdate in the start process.

I also downloaded fixzeroaccess.exe and ran that (to make sure).

 

Then I downloaded Norton Power Erasor and it found a bad rootkit entry and removed it..

 

The right click problems and download issues still remain, and there may be some startup issues still. A blank window popw up on powerup that is associated with the ASUSFlatPanel process. Note that my laptop is an Acer but I have Asus utilities installed as I have an android tablet made by ASUS.

 

It's unclear what virus is present or if there are multiple viruses.

 

Please email me at webmasterpdx at gmail dot com or donm at ippub dot com letting me know if you have a solution for this ADP virus.....or what else I can do to fix my system. I am a Software Engineer so I'll understand your technical talk.

 

Thank you very much

-Donald Murray BSEE

 

Thank you.