he ZeroAccess rootkit is a dangerous threat that has been circulating for several years. In the time that ZeroAccess has been in the wild there have been a number of revisions, with modifications to its functionality, infection strategy and its persistence mechanisms on an infected machine. However, the core purpose has remained: to assume full control of the machine by adding it to the ZeroAccess botnet and to monetize the new asset by downloading additional malware.
We have seen a few of these viruses spring up this fall. We highly recommend students to run manual scans with their updated AV software as well as run an anti-spyware scan. We also recommend students to change their school account password.
2 Responses to The ZeroAccess rootkit