YouTube home Comedy Week on YouTube
Upload

ZeroAccess rootkit kills security software

eraserPX eraserPX·18 videos
52
18,949
Like     Dislike 3

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to like eraserPX's video.

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to dislike eraserPX's video.

Sign in to YouTube

Sign in with your Google Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to add eraserPX's video to your playlist.

Uploaded on Jul 9, 2011

A short video that shows how the last ZeroAccess update is able to kill running security software and prevent them from working again. Link to the blog post: http://blog.webroot.com/2011/07/08/ze...

Ratings have been disabled for this video.
Rating is available when the video has been rented.
This feature is not available right now. Please try again later.

Uploader Comments (eraserPX)

  • Nithin Thomas

    Nithin Thomas 1 year ago

    FYI, it seems to be a Virut and not Trojan.Zeroaccess.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Nithin Thomas's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Nithin Thomas's comment.
  • eraserPX

    eraserPX 1 year ago

    Not sure where you see the similarity to Virut, anyway it's not ;)

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.
    in reply to Nithin Thomas (Show the comment)
  • Giulio Franco

    Giulio Franco 1 year ago

    L'antivirus deve essere installato PRIMA del virus, perché è relativamente facile individuare un virus prima che venga eseguito, ma è molto difficile toglierlo una volta installatosi. Inoltre, come si evince dal video, i virus sono in grado di prevenire l'installazione di antivirus, così come l'antivirus è in grado di prevenire l'installazione di virus. Magari, una scansione del virus prima di eseguirlo ne avrebbe rivelato la pericolosità.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Giulio Franco's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Giulio Franco's comment.
  • eraserPX

    eraserPX 1 year ago

    Non è relativamente facile individuare un virus prima che venga eseguito, anzi è molto più difficile di quello che può sembrare. Questo esempio era per dimostrare le capacità degli antivirus di reagire ad un attacco di malware che non è stato individuato preventivamente. Giusto per dovere di cronaca, quel sample all'inizio era riconosciuto da 2 antivirus su oltre 40, questo per dimostrare come con molta facilità avrebbe bypassato gli antivirus tradizionali inizialmente

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.
    in reply to Giulio Franco (Show the comment)
  • Giulio Franco

    Giulio Franco 1 year ago

    relativamente facile in rapporto all'eliminarlo una volta che ha infettato il computer. Lo so che è difficile.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Giulio Franco's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Giulio Franco's comment.
    in reply to eraserPX (Show the comment)
  • eraserPX

    eraserPX 1 year ago

    Non è strettamente vero, molte volte è più semplice rimuoverlo. Ci sono trojan utilizzanti packer preconfezionati ed altamente polimorfici che poi alla fine non fanno niente nel sistema. Dipende molto da caso a caso. In generale, in linea puramente teorica, sì, in una scala di difficoltà è più facile intercettarlo prima che dopo. Un antivirus deve essere in grado non solo di individuare prima un malware, ma gli viene chiesto anche di essere in grado di riparare ad eventuali danni

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate eraserPX's comment.
    in reply to Giulio Franco (Show the comment)

All Comments (32)

Sign in now to post a comment!
  • emily bryyson

    emily bryyson 6 months ago

    I checked mine & it says @sys swearware in it.Do I just delete it or type sys does not exist? Can you make a video on this please?I'm coming to sub to you for sure!!

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate emily bryyson's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate emily bryyson's comment.
    in reply to Ivan Savov (Show the comment)
  • skywalkerthunderbold

    skywalkerthunderbold 7 months ago

    Restart it Norton needs it

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate skywalkerthunderbold's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate skywalkerthunderbold's comment.
  • mywtfmp3

    mywtfmp3 1 year ago

    this is fierce. 

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate mywtfmp3's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate mywtfmp3's comment.
  • Ivan Savov

    Ivan Savov 1 year ago

    Yep. And what about exploits in many of the services in Ubuntu ? I am not defending Windows OS. I am just saying that more pepople use Windows, and if you want to get paid for your services you will have to know how to defend there machines..

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.
    in reply to BigBananaMan (Show the comment)
  • Ivan Savov

    Ivan Savov 1 year ago

    @feesww

    REGEDIT4

    [HKEY_LOCAL_MACHINE\SOFTWARE\M­icrosoft\Windows NT\CurrentVersion\IniFileMappi­ng\Autorun.inf]

    @="@SYS:DoesNotExist"

    Save it in a .reg file. Run it. That it, you are secure from any autorun USB virus.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.
    in reply to feesww (Show the comment)
  • Ivan Savov

    Ivan Savov 1 year ago

    U are funny ... And stupid.

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Ivan Savov's comment.
    in reply to Tom Smith (Show the comment)
  • feesww

    feesww 1 year ago

    how do you do that..

    

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate feesww's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate feesww's comment.
    in reply to Ivan Savov (Show the comment)
  • Tom Smith

    Tom Smith 1 year ago

    Are you trying to act stupid? Or were you born that way? Never heard of a Java exploit or a Flash exploit I take it...

    ·

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Tom Smith's comment.

    Sign in to YouTube

    Sign in with your YouTube Account (YouTube, Google+, Gmail, Orkut, Picasa, or Chrome) to rate Tom Smith's comment.
    in reply to Ivan Savov (Show the comment)
  • Loading comment...
Loading...
Loading...
Working...
Sign in to add this to Watch Later