I read, with great interest a thread where the various log generation utilities were run, resulted submitted and analyzed, leading to a successful removal.
I'm afraid, I tried ComboFix before I even thought to read through this forum to see what the experience on this was.
Bottom line, after many attempts to run ComboFix, it finally ran through stage 50 and generated a log file - ending successfully (without crashing like it had on earlier runs). However, that successful run was preceded by the message saying that "rootkit.zeroaccess is detected". After the successful run, I rebooted and ran it again hoping not to get the message, unfortunately, I gave me the same message, but ran through the 50 stages very quickly, again, resulting in a log file and success.
My Symantec endpoint protection software seems to have been clobbered, so I just uninstalled that, and everything else that looks to be wasted electrons.
I have now, after the fact, run the prescribed sequence of utilities and I'm hoping someone wouldn't mind taking a quick look to see if I've slain the monster. GMER is running (10 items listed) as I type this, and I don't know what it's telling me.
Thanks in advance
I've attached the log files. Just for kicks I re-ran combofix to see it the infection was gone, it pops up with "There's a newer version of ComboFix available, Would you like to update ComboFix?"
Not sure what this is all about...
EDIT: Posts merged ~Budapest
Edited by Budapest, 20 July 2011 - 05:15 PM.