Remove ZAccess Rootkit and Other Malware / Virus Infections From Computer

Remove ZAccess Rootkit and Other Malware / Virus Infections From Computer by Britec

ZeroAccess rootkit, also known as Max++, is a nasty piece of malware which is designed to start its persistent campaign just after infiltration. The infiltration of this malware is quite simple and done through security holes together with infected downloads, often Adobe Reader or Java fake updates. It can be said that additional purpose of ZeroAccess rootkit is to set up a stealthy, undetectable and un-removable platform which should help to download malware into the target PC. As you can see, it’s a rootkit which is advanced and sophisticated.

ZeroAccess rootkit is quite similar to TDSS rootkit, and shares both functionality and even some portions of code. They both hide from anti-malware program scans, stop legitimate programs from working by killing their processes or stopping them from execution. In fact, it is quite hard to distinguish between these two trojans for the victim without a scan. Zero Access is one of the trojans responsible for hijacked Google results. The symptoms are search engine search results and various other pages redirecting to pages promoting various products, unrelated to searches. Additionally, 0Access might block legitimate anti-malware and antivirus vendor sites.

Zero Access is used for multiple malicious purposes. The first purpose is stopping legitimate anti-virus programs from execution and thus limiting chances for removal. The second purpose is making money for malware makers by redirecting your searches to their partners. Note, that some websites are victims too: they are not aware that the visitors on website are forced to see their content by help of ZeroAccess. Lastly, this rootkit will download additional programs like trojans, adware or fake antiviruses. ZeroAccess might download semi-legitimate software as well, and try to gain money by charging unsuspecting software makers for “software installs”. All these things make this rootkit extremely dangerous. You should scan and remove ZeroAccess under first symptoms of its presence.

Remember, ZeroAccess rootkit uses advanced rootkit technology to hide its presence in a system. It will try to block legitimate software from being downloaded and launched. Depending on ZeroAccess version, there are different things to do.





More info about ZAccess:

Leave a Reply