How to completely remove ZeroAccess/Sirefef rootkit (Removal Guide)What is ZeroAccess/Sirefef rootkit?
ZeroAccess is a family of Rootkits, capable of infecting the Windows Operating System.On infection, it replaces Windows System Files and installs Kernel Hooks in an attempt to remain stealthy. Once the hooks are installed, the target operating system falls under control of the rootkit, which is then able to hide processes, files, networks connections, as well as to kill any security tools trying to access its files or processes. This rootkit is known to infect both 32 and 64 bit Windows operating systems.
ZeroAccess also patches system files to load its malicious code. The original file name is then kept inside an encrypted virtual file system the rootkit creates. The virtual file system is stored in a file on disk.
You can find more details
here and
here.
Continue here for removal instructions :
http://malwaretips.com/Thread-How-to-completely-remove-ZeroAccess-Sirefef-rootkit-Removal-Guide?highlight=zeroaccess