zeroaccess corrupting ie10

[kwest]

I had three of these yesterday. Removed virus with malwarebytes and maybe combofix if needed and all downloads are still marked as containing a virus. I have reset settings and it still occurs.

I have done one of the two things to resolve this.
restore the computer to a previous date.
uninstall ie10

Then everything works great. I can reinstall ie10 and it still works.

Have you come across this yet?

Kevin

 

[mr m]

I think it was nyjimbo and foolishit who first reported this symptom. Then I experienced it a day or two later after 0access removal. No matter what browser is used, downloads are reported as infected. If you try to open this folder: c:\program files\windows defender\en-us, you get an access denied error.

1 rename the infected/original Widows Defender folder to Windows Defender.old

2 copy a clean windows defender\en-us folder into C:\program files\windows defender\en-us.

I inadvertently copied a 32 bit version into a 64 bit system and it worked. I would still use a clean Vista source for Vista an a clean Win 7 source for Win 7.

 

[kwest]

interesting. I got it to work by uninstalling ie10.

 

[HCHTech]

Thought I would dredge this post back up - I have had this symptom twice in the last week. Zeroaccess infection, removed quickly with Killza. Followed with additional scans with MBAR / MBAM / Kaspersky Rescue Disk, plus a regular cleanup / update routine.

In both cases, after the infection was cleared, all downloads were flagged as containing a virus. Renaming followed by replacing the Windows Defender folders in both the x86 and x64 Program Files directories did not fix. Rolling back to IE9 did not help.

In both cases, the computers had originally been running Microsoft Security Essentials, and a corruption there seems to have been the fault. MSE would uninstall, but attempted reinstalls would fail.

The "fix" involved manually searching through the registry and deleting as many "Microsoft Security" and "Microsoft Antimalware" keys as possible (after having backed up the registry, of course). In all, I deleted 30-40 keys, I'd guess.

After a reboot, MSE would reinstall and downloading worked fine.

If I get this again, I might try cleaning MSE with Revo before manually spelunking through the registry...

 

[ComputerRepairTech]

Correct the issue with windows defender has an identical issue with microsoft security essentials. Since I do remote support I walk the customer through renaming the windows defender folder and Microsoft Security Essential folder and that allows them to download. Once im connected i rename them back and replace windows defender folder with a good one. I don't use MSSE these days so I uninstall it, sometimes that goes bad and I use the windows clean up utility (the fixit one, not the old school one) sometimes that works sometimes it doesnt. If it doesnt I do have to delete some registry keys previously mentioned to install some AVs that check for existing AV installation.

Be advised before you transfer some huge collection of utilities in a zip file that the zero access effect on microsoft security essentials also some how makes compressed folders (windows built in zip utility) fail to extract files. You can install something like winzip or whatever to extract them though.