ZeroAccess Removal Process (remove Zero Access)

August 23, 2011

ZeroAccess is an extremely dangerous malware parasite also known to be a rootkit. ZeroAccess may infiltrate a computer through security holes or vulnerability within outdated software. Once a system is infected with ZeroAccess, it may open it up to remote sources where additional malware may be ported onto the computer. Because ZeroAccess has rootkit capabilities, it may hide from detection applications and spread other fake applications. ZeroAccess may be detected and removed only through a spyware removal tool that has the ability to destroy rootkit applications.

Are you getting popups from ZeroAccess? Have you identified that you have ZeroAccess installed on your computer? Do you wish to remove ZeroAccess completely from your computer?

Why should you remove ZeroAccess?

If ZeroAccess resides on your computer, it can potentially damage your personal files or you may end up losing data stored on your system. Research has shown that ZeroAccess may have the ability to make your computer vulnerable to remote attacks which could result, initially, in loss of money, possibly identity theft, and, eventually, a painstaking ZeroAccess removal process.

How can you manually remove ZeroAccess

Manual removal of ZeroAccess may not be for everyone. Each manual ZeroAccess removal step must be followed delicately to completely remove all related files and registry entries from your computer. If you are unsure or have doubts about editing your system registry, then we recommend that you use the automatic ZeroAccess removal process.

ZeroAccess can be removed manually by following the steps below.

  1. With all programs closed, click the Start Menu and go to the Control Panel.
  2. Locate the Add/Remove Programs icon and double click it.
  3. Locate ZeroAccess in the list of programs. If you find it, select it and remove it. If you cannot find ZeroAccess, you can continue to step 5.
  4. Restart your computer.
  5. Close all open programs and windows on your desktop.
  6. Open your registry editor (regedit) program by going to Start Menu, type in regedit, and click OK.
  7. Find all of the following registry entries and delete them. If you do not know how to do this, then you can read how to edit the registry in Windows.

  8. You may need to return to this removal process for removing ZeroAccess. You can do this easily by bookmarking or adding a favorite to this page by clicking here. If you are using the FireFox web browser you can press the keys Ctrl and D simultaneously to bookmark this page.

    Image 1. Bookmark PCHubs removal process


  9. Delete all of the following files that are associated with ZeroAccess from your computer.

    If you need a better understanding on how to search for these files then you can read how to find and search for files and folders here.

    If you have issues deleting any of the previously listed files that are associated with ZeroAccess, you can try rebooting your computer into safe mode. Booting into safe mode may allow certain malicious files to be deleted. If you are wondering how to boot into safe mode, you can read our process for starting a computer in safe mode here.

    Image 2. Select "Safe Mode with Networking"


  10. After locating and deleting the previous files you must remove all directories associated with ZeroAccess by going to the C:\ProgramFiles\ZeroAccess folder, select it, and delete it. In some cases you may not be able to find this directory. You can still continue to the next step.

  11. Restart your computer. You do not need to boot into safe mode at this point. You should have removed ZeroAccess completely from your computer. If you find that ZeroAccess is still on your computer, you can repeat the steps again or go to the automatic ZeroAccess removal process.


Leave a Reply

IMPORTANT! To be able to proceed, you need to solve the following simple math.
Please leave these two fields as is:
What is 7 + 4 ?