Zeroaccess.dr.gen.d
Posted: March 12, 2012
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 1/10 |
|---|---|
| Infected PCs: | 58 |
| First Seen: | March 12, 2012 |
|---|---|
| OS(es) Affected: | Windows |
Zeroaccess.dr.gen.d is a component of a multiple-component rootkit that installs other PC threats onto your computer, with the default payload often including a rogue anti-malware program. By itself, Zeroaccess.dr.gen.d is solely responsible for launching other components of a ZeroAccess rootkit and has few symptoms or other functions, but Zeroaccess.dr.gen.d's presence is always indicative of the existence of other malicious files that should be deleted along with Zeroaccess.dr.gen.d. SpywareRemove.com malware analysts recommend that you make yourself comfortable with using dedicated anti-malware applications to remove Zeroaccess.dr.gen.d, since Zeroaccess.dr.gen.d is difficult to detect by conventional methods and is unlikely to be visible to casual inspection. Allowing Zeroaccess.dr.gen.d and related PC threats to remain on your computer is, naturally, ill-advised, since related ZeroAccess components will attack your computer's firewall and other PC security programs.
Zeroaccess.dr.gen.d – the Starter Key for a Machine That Means Ill for Your PC
Zeroaccess.dr.gen.d is a component of a ZeroAccess Rootkit (also known as Sirefef) that's responsible for launching ZeroAccess's primary components without your consent or notice. As part of a rootkit that includes multiple components, Zeroaccess.dr.gen.d will launch automatically and should be assumed to be active unless you've disabled Zeroaccess.dr.gen.d with appropriate PC security measures. Aliases that Zeroaccess.dr.gen.d may also be identified by include Trojan.Zeroaccess!inf and Trojan:Win32/Sirefef.AA. Once active, Zeroaccess.dr.gen.d will insure that other parts of the ZeroAccess infection, such as ZeroAccess.a, ZeroAccess.b and ZeroAccess.v are up and running as expected.
Because ZeroAccess rootkits can be reconfigured for variant attacks, their symptoms may not always be the same. However, SpywareRemove.com malware research team has found that common features included in a Zeroaccess.dr.gen.d-related infection will commonly consist of the following attacks:
- Browser redirects attacks. Redirects may force your browser to load unsafe sites, stay away from safe ones, change your search results or be used in Pay-Per-Click scams.
- The installation of fake anti-malware programs like Antivirus 2010. Rogue AV products will display inaccurate warning messages and fake system scans to deceive you about your computer's health.
How Zeroaccess.dr.gen.d Keeps a Whole Army of PC Threats Beneath Your Notice
PC threats that are linked to a Zeroaccess.dr.gen.d attack will use a variety of techniques to avoid being seen. Some components, such as TrojanDropper:Win32/Sirefef.B, will insert their code into preexisting Windows drivers, while others will exist on specially-created volumes as separate files. Although you may be able to find some of the symptoms of a ZeroAccess rootkit's payload, SpywareRemove.com malware researchers recommend that you use appropriate anti-malware products to detect all aspects of a Zeroaccess.dr.gen.d attack and remove all associated components.
Rootkit components that are linked to Zeroaccess.dr.gen.d can update themselves and circumvent your computer's security to upload or download via remote servers. Due to these features and the sophisticated nature of Zeroaccess.dr.gen.d's rootkit family, it's suggested that you update your anti-malware programs before you try to detect Zeroaccess.dr.gen.d. If possible, you should also try to disable any PC threats by using an alternate method of starting Windows – or by launching a non-Windows OS, which SpywareRemove.com malware experts note that Zeroaccess.dr.gen.d isn't designed to attack.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.