My Bitdefender
  • 0 Shopping Cart


Facebook Twitter Google Plus

Free Virus Removal Tools

PC infected with a specific virus? Get rid of it now, for free! Simply browse through our database of known viruses below and hit the download button to start the virus removal process!

Bitdefender Tech-Assist
Virus activity

threat level

Alert level : medium
Latest news
We Heart It Network Turned off Twitter Sharing after Diet Spam Attacks; Bitdefender Offers Security Advice
The image sharing social network We Heart It has turned off Twitter sharing after a large [...]
Read More
US Healthcare Sector Vulnerable to Cyber-Attacks, Says FBI
The Federal Bureau of Investigation has warned that the US healthcare sector is vulnerable [...]
Read More
Android users offered $5 refund for useless anti-virus app
Earlier this month it was revealed that well over 10,000 Android users had bought an anti- [...]
Read More
Latest Facebook Survey Questions Users about Privacy, Annoying Posts
Facebook is curious about privacy, annoying posts and the overall experience on the platfo [...]
Read More
Hackers Breach NASA Database, Leak Account Credentials, Emails and Passwords
The GrenXPaRTa hackers group breached the systems of National Aeronautics and Space Admini [...]
Read More
Bitdefender Blocks .rtf Exploit
Bitdefender has added detection to all products for code exploiting the recently revealed [...]
Read More
Trojan Promises Naked Videos of Facebook Friends
More than 2,000 people have been tricked into installing a Trojan after clicking on a new [...]
Read More
Digging into Facebook ads: finding clues that indicate a scam pattern
The paper by Bitdefender developer Andrei Serbanoiu, titled Digging into Facebook ads: fin [...]
Read More
Icepol MDN – A Server Snapshot
Bitdefender researchers have gained access on September 26, 2013 to the disk images of a s [...]
Read More
On the Cryptolocker Takedown #fail
Bitdefender researchers have identified a number of domains which are still hosting Crypto [...]
Read More
Featured removal tool


2.7 MB

ZeroAccess/Sirefef is a sophisticated kernel-mode rootkit that gets installed when a ZeroAccess dropper gets executed. Initially, the dropper checks to see whether it is running on a 32- or a 64-bit machine by querrying the ZWQueryInformationProcess api. If it runs on a system that has UAC enabled, the malware manipulates the system to make a legit application look as if it requires escalation. This is achieved by loading a clean copy of the FlashPlayer installer that is dropped to a temporary directory. The Windows Firewall is turned off and the malware will try to disable a series of security sub-systems such as WinDefend (Windows Defender service), wscsvc (Windows Security Center service), WinHttpAutoProxySvc (Proxy Auto Discovery service). If the dropper runs on a 32-bit operating system, ZeroAccess installs a kernel-mode rootkit. If it runs on a 64-bit machine, it executes its code directly from the memory. [...]

load more results