Names virus 00000004.@ , 800000032.@ , 800000064.@ , 000000cb.@
these four virus in 2 days were detected about 50 times
I have done a full scan with avast but even if it delete, they reappear
help me, what can I do?
You could start here: http://forum.avast.com/index.php?topic=53253.0 
This needs further analysis by a malware removal specialist:
Go to this topic http://forum.avast.com/index.php?topic=53253.0 for information on Logs to assist in cleaning malware. Use the information about getting and using the tools attach the logs here, not in the LOGS topic.
I followed the procedure, I hope good
also attach AdwCleaner and Malwarebytes quick scan log
you seem to have a ZeroAccess rootkit… Essexboy is notified
@ Avadon
A malware removal specialist has been informed of your topic.
There may be some delay due to differing time zones and availability of the volunteer malware removal specialists.
thanks
Hi there lets get to work
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
Run OTL
[*]Under the Custom Scans/Fixes box at the bottom, paste in the following
https://dl.dropbox.com/u/73555776/OTL_Fix.GIF
:OTL
O3 - HKU\S-1-5-21-3679817895-744135499-805891834-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-3679817895-744135499-805891834-1000\..\Toolbar\WebBrowser: (no name) - {4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1} - No CLSID value found.
O3 - HKU\S-1-5-21-3679817895-744135499-805891834-1000\..\Toolbar\WebBrowser: (no name) - {CD90BF73-20F6-44EF-993D-BB920303BD2E} - No CLSID value found.
[2013/04/23 19:46:44 | 000,004,608 | -HS- | M] () -- C:\Windows\assembly\GAC_32\Desktop.ini
[2013/04/23 19:46:44 | 000,006,144 | -HS- | M] () -- C:\Windows\assembly\GAC_64\Desktop.ini
:Files
C:\Windows\Installer\{25c88286-e6ad-1811-973e-49273ea74c4e}
:Commands
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN
Download and Install Combofix
Download ComboFix from one of the following locations:
Link 1
Link 2
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
- IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks
http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png
http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png
[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.
Notes:
- Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
- Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
- If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.
Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
it finally worked
I was losing hope
thanks very much
Could you attach the combofix log please
ok
Looks good, any further problems before I tidy up ?
I have the option of deleting the virus. Does this mean the virus is actually deleted or is it just deleted from the chest?
delete means delete
Using the Virus Chest
https://support.avast.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=1406