Problem: Had the Windows 7 Antivirus 2012/Trojan.zeroaccess/consrv.dll virus. It wasn’t letting any antivirus/antimalware programs run so I deleted it manually. Now, however, the User Account Control is running rampant and I’m not sure if the virus is still lurking, despite not being detected by any programs, or whether I ruined something during manual deletion efforts. The little blue and yellow shield is popping up all over the place and not letting me do such things as a) update Windows, b) update/run/install some of the antivirus/antispyware programs, c) turn the volume on, or d) change the User Account Control settings or account settings.
So I’m rather worried. Any help is much appreciated.
So the bad news is, I basically couldn’t get any of the suggested scans to run.
Malwarebytes found nothing. It wouldn’t run in normal mode so the log is from a scan done in safe mode.
I couldn’t download any of the programs directly to the desktop as I kept being told I didn’t have access to modify the desktop folder. This is not entirely true as I could save other things to the desktop.
OTL and aswMBR gave errors saying they were not valid Win32 programs. The RogueKiller error was longer but boiled down to the same thing. So those wouldn’t run at all.
I do have a HijackThis log. That program was denied access to the hosts file. Also the log is a little funny - it claims to be in safe mode but was in normal mode, the date is wrong, and it couldn’t identify the version of Windows.
Another clue is that on start up in normal mode an error message says that 8476789.exe cannot be found.
Here are the Malwarebytes and HijackThis logs. I really hope someone can help somehow.