Hi - Have been having issues for a couple of weeks now, and this morning I discover that Norton 360 (v5) has an alert up:
TrojanZeroaccess!kmem requires manual removal- Review - get help
c:\windows\system32\ntos
Full Path: c:\windows\system32\ntos ____________________________ ____________________________ On computers as of: Not Available Last Used: 1/21/2012 at 10:24:07 AM Startup Item: No Launched: No ____________________________ ____________________________ Unknown Number of users in the Norton Community that have used this file: Unknown ____________________________ High This file risk is high. ____________________________ Threat Details Threat type: Virus. Programs that infect other programs, files, or areas of a computer by
inserting themselves or attaching themselves to that medium. ____________________________ Origin Downloaded from URL Not Available
____________________________ File Actions Infected file: c:\windows\system32\ntos No fix attempted Infected file: c:\windows\system32\ntos Manual removal required ____________________________ File Thumbprint - SHA: Not Available ____________________________ File Thumbprint - MD5: Not Available ____________________________
If I'm linking the dots right - this may be associated with other issues plaguing my computer - svchost crashes, maljava cropping up in my temp directory, Vista Home Security 2012 infection (which was resolved, but not completely) - contacted Live Chat and they offered me the options of NPE or having remote help at $99.99 - not pleased - I did find it written up Trojan Zero Access with a removal tool found here Trojan.Zeroaccess Removal Tool
Apparently this hides itself well in the root and perpetuates (those popups that have to be closed by clicking on their button?) - takes over security and other local processes and has a back door function (svchost crashes and other high CPU usage?)
Any experience with this or ideas? I'm afraid I may have to do a system restore yet. Lost print spooler, USB drivers, all Windows security access, etc. This must be fairly new, since a search produced no matches at first - not very confident with Chat assistance - but I'm willing to try just about anything before undertaking a full restore (yuck!) Need to handle this quick, though.
Thanks