This stubborn virus just won't go away!

My Norton 360 keeps finding Trojan.Gen.2 and Trojan.ZeroAccess.C  in the recycle bin about every couple of minutes. The reason I am asking for help is that I am trying to stop these notifications from appearing. I understand that while these are being continually blocked, and are probable not hurting me, I just would prefer some help with eradicating this from my system. I have attached a few images as well. The name of virus seems to change. Any help would be greatly appreciated.

 

Operating System: Windows 7 Ultimate SP1 - 64 bit


 

 

8000000.cb

 



 

00000001.@.PNG




 

 

 

800000000.@.PNG

 

 

 

 

 

 

 

 

 

 

 

My Norton 360 keeps finding Trojan.Gen.2 and Trojan.ZeroAccess.C  in the recycle bin about every couple of minutes. The reason I am asking for help is that I am trying to stop these notifications from appearing. I understand that while these are being continually blocked, and are probable not hurting me, I just would prefer some help with eradicating this from my system. I have attached a few images as well. The name of virus seems to change. Any help would be greatly appreciated.

 

Operating System: Windows 7 Ultimate SP1 - 64 bit


 

 

8000000.cb

 



 

00000001.@.PNG




 

 

 

800000000.@.PNG

 

 

 

 

 

 

 

 

 

 

 

Alright, I do appreciate your help with this! I have downloaded the two programs and I await my next instructions.

 

Thanks

Are they on the Desktop??

 

Quads

Yes, they are on the desktop.

Download the 2 attached .txt files, and remove the .txt extension so that you have the files end in .reg (ZAFix1.reg) etc.

 

Then click to run the files and then the system should ask if you want the data added to the registry, answer = yes.  A cofirmation message should them appear saying that the data has been added..

 

The other way is to right click the files and choose "Open With" from the menu, and you should see Registry Editor as an option to choose.

 

For me this repaired the 2 Windows registry keys in question.  So then I could after deal with the rest and also repair broken services.

 

After success in adding the registry data, restart your system.

 

Quads

Ok, I just finished adding the 2, and then I restarted my system.

Now the restart has been done.

 

Run FSS.exe, ( Disable Norton if need be) Tick all the boxes before running the scan and post back a log by attaching to message.

 

Quads

Alright, I have attached the log.

 

 

OK

 

Download the attached .txt files, and remove the .txt extension so that you have the files end in .reg (like earlier)

 

Then click to run the files and then the system should ask if you want the data added to the registry, answer = yes.  A cofirmation message should them appear saying that the data has been added..

 

The other way is to right click the files and choose "Open With" from the  menu, and you should see Registry Editor as an option to choose.

 

There are more to come in the next post below.

 

Quads

The rest attached

 

After adding to the registry all those, restart the system and Run FSS like the first time, ticking all the boxes, like before

 

Quads

I was able to successfully add everything to my registry except for the file "BITS.reg" the error message is below.

 

Capture.PNG

 

Also below is a picture of my task manager showing all of my processes currently if it could help.

 

taskmanager.PNG

That's OK,

 

Restart the system and do another FSS log like previously.

 

Quads

Ok, I attached the log below.

OK the services are now created and set correctly ready

 

 

Please read carefully Read all of this message first

 

Already Downloaded.


  • Ensure that Combofix is saved directly to the Desktop <--- Very important  (Not in the Download(s) or Temp folders)

  • Disable all security programs as they will have a negative effect on Combofix, Disabled for say 1 hour or more.
  • Close any open browsers and any other programs you might have running

 

Right click the combofix.exe on the desktop and select from the menu "Run as Administrator"

 

  • If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?" Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
  • When finished, it will produce a report for you. Please post the "C:\ComboFix.txt" for further review


****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.

*EXTRA NOTES*

  • If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
  • If Combofix reboot's due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
  • If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

 

Quads

Ok, I have finished the scan and it generated a log for you to view below.

What is ESET doing on your system??

 

Quads

Hmmm...The only way it could have been on there is through an online scan. I do recall doing that a while back, however, when I pulled up the program you told me to run, I had disabled all of my antivirus software, and it didn't seem to interfere.

How long ago??  To try and get rid of this infection.

 

Quads

Not long ago at all, I believe 2 days ago. I just uninstalled it, would you like me to repeat that step you provided

 

Edit: And yes, I did the online scan to try and get rid of the infection.