Tag Archives: zeroaccess

ZeroAccess/Siresef Update

Until last week ZeroAccess/Siresef Infected hosts contacting C&C domain on ports 16464, 16465, 16470 and 16471. Currently it switched to port 34354 is now going on wild. Watch out your network for machines going on to internet ips on this … Continue reading

Posted in Uncategorized | Tagged | Leave a comment

ZeroAccess Rootkit Detection

Hi, A quick short overview of ZeroAccess Rootkit, The malware Propagates via Exploit packs (blackhole) and Keygens. It escalates priveliges by faking UAC for Flash Player installer where in it drops malicious dll filer in the flashplayer installer directory which … Continue reading

Posted in Uncategorized | Tagged , , | Leave a comment