United States
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Tech Outpost

Reply
Topic Options
Super Trojan Terminator
Super Trojan Terminator
Krusty13
Posts: 3,452
Registered: ‎05-31-2011

Re: Zeroaccess and Norton / Symantec

Options

‎06-14-2012 11:00 PM

Hahahahahahahaha  -  Ya think?!

 

Dave.

Windows 7 x64 SP1    N360v20.4.0.40    NU16    Secunia PSI    SpywareBlaster    NoScript    MBAM free    SAS free   Hitman Pro

Report Inappropriate Content
Message 11 of 43 (1,584 Views)
Reply
0 Kudos
dickevans
Posts: 9,529
Registered: ‎04-08-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-15-2012 06:44 AM

Quads wrote:

hahaha the log attached shows I give my system kittens on what I do to it

 

Quads

Only kittens? :smileylol:

Dick
Win7x64 SP1 current NIS V20
Report Inappropriate Content
Message 12 of 43 (1,573 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-17-2012 08:19 PM

I have noticed a massive slow down, to next to nothing on the forum of the CLSID variants of zeroaccess (Trojan.Gen, Trojan.Gen.2)  and not being able to delete.  YAY!!!

 

Go Norton / Symantec  this time.

 

Quads

Report Inappropriate Content
Message 13 of 43 (1,557 Views)
Reply
0 Kudos
dickevans
Posts: 9,529
Registered: ‎04-08-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-18-2012 05:15 AM

Quads wrote:

I have noticed a massive slow down, to next to nothing on the forum of the CLSID variants of zeroaccess (Trojan.Gen, Trojan.Gen.2)  and not being able to delete.  YAY!!!

 

Go Norton / Symantec  this time.

 

Quads

On a good day we may break even. Let's hope for more good days

Dick
Win7x64 SP1 current NIS V20
Report Inappropriate Content
Message 14 of 43 (1,550 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-21-2012 01:39 AM

infected services.exe on x32 - 2 / 42 - Virus:Win32/Sirefef.R https://www.virustotal.com/file/4c1096f ... 340263629/
infected services.exe on x64 - 9 / 42 - Virus:Win64/Sirefef.B https://www.virustotal.com/file/e647717 ... 340263662/
PE extracted from e32 - 27 / 42 - Trojan:Win32/Sirefef.P https://www.virustotal.com/file/92532a2 ... 340264328/
PE extracted from e64 - 11 / 42 - Trojan:Win64/Sirefef.M https://www.virustotal.com/file/98d44fc ... 340264859/
Shellcode extracted from e32 - 3 / 42 - Trojan:Win32/Sirefef.AH https://www.virustotal.com/file/bb9695e ... 340265078/
Shellcode extracted from e64 - 2 / 42 - Trojan:Win64/Sirefef.Y https://www.virustotal.com/file/c19dd75 ... 340265355/
n32 component 29 / 42 - Trojan:Win32/Sirefef.P https://www.virustotal.com/file/2c4f807 ... 340265544/
n64 component 31 / 42 - Trojan:Win64/Sirefef.Y https://www.virustotal.com/file/073b1f9 ... 340265554/

 

Quads

Report Inappropriate Content
Message 15 of 43 (1,522 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-29-2012 01:24 PM

Zeroaccess CLSID variant with patching  http://artemonsecurity.blogspot.co.nz/2012/06/zeroaccess-new-steps-in-evolution.html

 

Quads

Report Inappropriate Content
Message 16 of 43 (1,443 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎06-29-2012 11:30 PM

Quads wrote:

Just a Note,

 

Some variants of Zeroaccess can or will shut down Norton and other security products or Stop scans from occuring /won't start.

 

Quads

 

Here ia one http://community.norton.com/t5/Norton-360/Error-Found-Error-5013-3/td-p/748176

 

Quads

Report Inappropriate Content
Message 17 of 43 (1,428 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎07-07-2012 11:21 AM

Another file  https://www.virustotal.com/file/06585ab07dce50acb56d2afa4cccee7012e760a5be4b3062063f565244844f4d/ana...

 

Quads

Report Inappropriate Content
Message 18 of 43 (1,315 Views)
Reply
0 Kudos
Versus
Contributor
Versus
Posts: 17
Registered: ‎07-31-2012

Re: Zeroaccess and Norton / Symantec

Options

‎07-31-2012 09:32 PM

The variant I had just got rid of wouldn't even let me go to antivirus websites! I would keep getting redirected; even going to Wikipedia sent me to some "You have been randomly selected by Wikipedia to complete this survey" page. No more clicking on update popups for me, gonna do things the hard way from now on...

 

:smileysad:

Report Inappropriate Content
Message 19 of 43 (1,141 Views)
Reply
0 Kudos
Quads
Bot Obliterator
Quads
Posts: 13,938
Registered: ‎07-21-2008

Re: Zeroaccess and Norton / Symantec

Options

‎08-10-2012 06:35 PM

AFFBA411A853948FEACB50E75EA18DC4 - https://www.virustotal.com/file/a54fd0d ... /analysis/
DC68B058868FC998D775A4922D8CD44C - https://www.virustotal.com/file/1d16b57 ... /analysis/
EF2F92E2E543F57EE40A1DB37C111D73 - https://www.virustotal.com/file/5d71358 ... /analysis/

 

Still coming out

 

Quads

Report Inappropriate Content
Message 20 of 43 (983 Views)
Reply
0 Kudos

Products

Services

Support

Norton on Facebook
Norton on Twitter
Norton's YouTube Channel
Symantec on Linked In
Norton on Google+