Help me Remove Zero Access Rootkit
I’m pretty sure that my computer is infected with Zero Access Rootkit. Based on the findings when I posted HJT logs on a forum, members analyzed it as another hard to remove rootkit.
This started after I visited website referred on FaceBook. Since then, my browser is often redirected to various web sites; actually most of them are already unavailable. For some reasons, those site might have been removed by their individual administrators for being infected. I noticed that my Norton Internet Security was not working anymore, where in fact it has to block those malicious redirects. When opening the console, my antivirus is not responding. Luckily, I was able to run MalwareBytes, got it updated but few seconds after starting the scan, it closes on itself. Maybe Zero Access Rootkit causes it to shut down.
Tried other programs to my knowledge will be able to identify Zero Access Rootkit files including SuperAntiSpyware, Combofix and finally TDSS Killer but to no avail. The first program was also shut down right away. While Combofix hangs in the middle of the scan progress. TDSS Killer appears to find nothing but a dozens of Trojans and removed them directly. Still the rootkit remains. Browser redirected, PC is very slow and antivirus not working to protect my system.
I have managed to fix viruses and other types of malware previously using the same tools, but Zero Access Rootkit is one of the most horrible computer virus I encountered. It looks that it can resist most if not all of security programs available. Hope to find resolution for this virus sooner.