My Bitdefender
  • 0 Shopping Cart

SHARE
THIS ON

Facebook Twitter Google Plus

Free Virus Removal Tools

PC infected with a specific virus? Get rid of it now, for free! Simply browse through our database of known viruses below and hit the download button to start the virus removal process!

Bitdefender Tech-Assist
Virus activity

threat level

Alert level : medium
Latest news
Hackers Breach NASA Database, Leak Account Credentials, Emails and Passwords
The GrenXPaRTa hackers group breached the systems of National Aeronautics and Space Admini [...]
Read More
Backdoor Still Hidden in Patch for Wi-Fi Routers
The backdoor affecting Sercomm wireless DSL routers has not been fixed, and lays hidden in [...]
Read More
Scam Easter Basket Packed with Fake Vouchers, Viagra and Religious Fraud
Cyber-criminals are hiding dangerous goodies among the Easter eggs and chocolate bunnies t [...]
Read More
Hackers attempt to blackmail cosmetic surgery firm, after stealing up to 500,000 patients’ records
The personal details of nearly half a million people, considering cosmetic surgery, may ha [...]
Read More
Are You Ready to Vote for HotforSecurity?
We’re excited to share with you that HotforSecurity and Bitdefender Labs have been nomin [...]
Read More
Bitdefender Blocks .rtf Exploit
Bitdefender has added detection to all products for code exploiting the recently revealed [...]
Read More
Trojan Promises Naked Videos of Facebook Friends
More than 2,000 people have been tricked into installing a Trojan after clicking on a new [...]
Read More
Digging into Facebook ads: finding clues that indicate a scam pattern
The paper by Bitdefender developer Andrei Serbanoiu, titled Digging into Facebook ads: fin [...]
Read More
Icepol MDN – A Server Snapshot
Bitdefender researchers have gained access on September 26, 2013 to the disk images of a s [...]
Read More
On the Cryptolocker Takedown #fail
Bitdefender researchers have identified a number of domains which are still hosting Crypto [...]
Read More
Featured removal tool

Rootkit.Sirefef.Gen

HIGH
MEDIUM
2.7 MB
11/20/12

ZeroAccess/Sirefef is a sophisticated kernel-mode rootkit that gets installed when a ZeroAccess dropper gets executed. Initially, the dropper checks to see whether it is running on a 32- or a 64-bit machine by querrying the ZWQueryInformationProcess api. If it runs on a system that has UAC enabled, the malware manipulates the system to make a legit application look as if it requires escalation. This is achieved by loading a clean copy of the FlashPlayer installer that is dropped to a temporary directory. The Windows Firewall is turned off and the malware will try to disable a series of security sub-systems such as WinDefend (Windows Defender service), wscsvc (Windows Security Center service), WinHttpAutoProxySvc (Proxy Auto Discovery service). If the dropper runs on a 32-bit operating system, ZeroAccess installs a kernel-mode rootkit. If it runs on a 64-bit machine, it executes its code directly from the memory. [...]

load more results