Share via

ZeroAccess

Anonymous
2013-10-10T22:40:52+00:00

I have 4 viruses which McAfee cannot remove.I have also scan with Microsoft download which has not detected them.Can these be removed?

ZeroAccess-FAT!06ACC1F60B70

ZeroAccess-FAT!CBB5F2DB64C0

ZeroAccess-FAT!06ACC1F60B70

ZeroAccess-FAT!CBB5F2DB64C0

all in C:\windows\assembly\GAC

Windows for home | Previous Windows versions | Security and privacy

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

Answer accepted by question author

  1. quietman7 MVP Alumni 19,735 Reputation points Volunteer Moderator
    2013-10-10T23:08:15+00:00

    ZEROACCESS rootkit is a serious malware infection. Disinfection will probably require the use of more powerful toolsthan we recommend in this forum. To receive individual assistance with malware disinfection from an expert you would need to visit a site with a dedicated forum for posting comprehensive logs for review. In most cases they will have a Preparation Guide with instructions for you to read and follow. See the section Get Expert Analysis near the bottom of the Malware Removal Guide for a list of sites which offer such assistance.

    0 comments

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2013-10-11T00:54:42+00:00

    You need to download Hitman Pro Kickstart on an uninfected computer, copy it to a USB flash drive and use it to remove the root kit virus, ZeroAccess/Sirefef.

    Instructions and download here: http://www.surfright.nl/en/kickstart

    1 person found this answer helpful.
    0 comments
  2. quietman7 MVP Alumni 19,735 Reputation points Volunteer Moderator
    2013-10-10T23:40:18+00:00

    Symantec's Zeroaccess Removal Tool (FixZeroAccess.exe) has not been updated in a while so it probably won't be of much help against these newer variants.

    0 comments
  3. Anonymous
    2013-10-10T23:27:47+00:00

    Symantec offers a stand-alone removal tool for removal of the Trojan.ZeroAccess and Trojan.ZeroAccess.B malware.

    Trojan.Zeroaccess Removal Tool

    As mentioned, this is pretty serious malware and it may have created a hidden partition on your physical drive where it hides. It may also be necessary to reinstall infected drivers that were removed and/or quarantined during the removal process. Read of the Summary removal information carefully. Print a copy if possible for reference.

    Fortunately (for me at least) I've never had to use this particular removal tool but I have used other Symantec dedicated removal tools in the past with confidence and successful results.

    0 comments