So McAfee has been flagging the Generic Dropper.P virus in C\Windows\Assembly\Desktop.ini for me and i have been attempting to kill it off. Upon further digging to kill it I found the ZeroAccess Rootkit. I followed the instructions i found to remove ZeroAccess and was successful. Now I have the problem of being unable to get rid of Generic Dropper.P, which brought ZeroAccess onto my computer in the first place I believe. I have found and followed the instructions on other posts, including the disbaling of system restore, use of the rootkit killer and stinger, and hitman pro. Hitman was actually the program which pixked up ZeroAccess and got rid of it after my McAfee said it was removed. Apparently there were about 7 different versions of it that were all found on my machine. Anyways I still cant figure out how to delete the virus. I have also tried Rkill and Tdss killer in an attempt to kill this virus. I am out of options at this point. Any help would be appreciated.
System Restore to a point before all this happened would have been your first move but that's disabled so can't be done.
Try running Stinger and Malwarebytes Free which are both linked in my signature, last link. The latter can be downloaded, updated and run all in 'Safe Mode with Networking' if necessary.Message was edited by: Ex_Brit on 26/07/12 6:43:51 EDT AM
I have run stinger with no luck in removing this virus. I am going to attempt malewarebytes now. What I read in the virus profile said that I need to resotre my MBR, which i tried to do but my windows xp cd is a recovery disc and doesnt allow me to access the recovery console. Ive been trying to find a means of restoring the MBR without the disc, but to no avail as of yet.
MBAM can be downloaded in Safe Mode with Networking if necessary, also updated and run in that mode even.
I'm not too sure what else to suggest except perhaps download Hijackthis as per the link near the bottom of the page in the last link in my sugnature and posting its log on one of those specialist forums.
If the infection wont allow you to install anything you could try using the 'Save as' option to save the installer to your desktop and rename it in the process which might fool the malware.
Or try saving it to a removable flash drive first and installing it from there.
Malewarebytes was able to pick up additional trojan like symptons, such as registry value problems, but that is all. I have tried right click scanning the file that the Dropper virus is in, yet neither mcafee nor malewarebytes detects anyhting. Only when i run a full Mcafee scan does it find the virus. everything installs just fine, but i dont trust the Generic Dropper virus to just let it sit without it putting more junk on my computer. Sigh...
p.s. I have hijackthis and no luck there either (ive used it for about 2 years now)