Sirefef Removal!


  1. Posts : 158
    Windows 7 Ultimate x64 Service Pack 1
       #1

    Sirefef Removal!


    Help guys, BitDefender just alerted me about being infected by the Sirefef trojan. These are the two particular variants BitDefender can't seem to remove:

    *Sirefef.A - C:/Windows/System32/services.exe
    *Sirefef.GY - C:/Windows/Installer/{84d3bf12-3c1a-e026-8b4e-76a071be099b}/U/00000004.@

    Any idea how I can remove this bugger? Running Windows 8 Consumer Preview x64
      My Computer


  2. Posts : 7,781
    Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
       #2

    Since this is a rootkit, the best/safest option would be a clean install.

    You can try this tool - TDSSKiller

    Anti-rootkit utility TDSSKiller

    When the removal tool first launches, make sure to click on "Change parameters" & check all the boxes.

    You could try the Windows 8 Recovery Options also:

    http://www.dedoimedo.com/computers/w...-recovery.html
      My Computer


  3. Posts : 2,963
    Windows 7 Professional SP1 64-bit
       #3

    I would take a look here: sirefef dot com :: virus removal instructions

    It has specific instructions for manually removing sirefef. According to them TDSSKiller will not remove competely by itself.

    Personally, I recommend a clean install, or if you have a system image, restore that.
      My Computer


  4. Posts : 1
    32 bit Windows 7 Home Premium
       #4

    sirefe!cfg Virus


    The particuarly viscious virus named sierfe!cfg totally locked me out of my computer. I got around it by using Windows SAFE boot and then did a complete system scan using Microsoft Security Essentials and it foune and deleted the Trojan Virus named sirefe!cfg All is OK now. However I am concerned that Microsoft Security Essentials permitted the virus to enter my computer ???? !!!!

    The upon system lockout the virus present a screen that appears to be from the FBI telling me that I have violated some federal regulation and that the only way to unlock my computer is to purchase a Green Dot Money Card and then enter the ID number of that card into the "FBI" screen. The Gree Dot Card was to cost $200.00

    I sent everything to the FBI and to Microsoft hopiing they can prevent this from happening to others.

    E3
      My Computer


  5. Posts : 8,608
    Windows 7 Ultimate 32bit SP1
       #5

    ernesteengle, this is 'ransom' ware .... don't send any money!!
      My Computer


  6. Posts : 25,847
    Windows 10 Pro. 64/ version 1709 Windows 7 Pro/64
       #6

    To be safe I recommend changing all passwords using a computer that has not been infected.
      My Computer


  7. Posts : 350
    Windows 7 Ultimate x64
       #7

    ernesteengle said:
    The particuarly viscious virus named sierfe!cfg totally locked me out of my computer. I got around it by using Windows SAFE boot and then did a complete system scan using Microsoft Security Essentials and it foune and deleted the Trojan Virus named sirefe!cfg All is OK now. However I am concerned that Microsoft Security Essentials permitted the virus to enter my computer ???? !!!!

    The upon system lockout the virus present a screen that appears to be from the FBI telling me that I have violated some federal regulation and that the only way to unlock my computer is to purchase a Green Dot Money Card and then enter the ID number of that card into the "FBI" screen. The Gree Dot Card was to cost $200.00

    I sent everything to the FBI and to Microsoft hopiing they can prevent this from happening to others.

    E3
    GOod Job that you contact microsoft .I hope they will update about this trojan in their updates....... Thanks for sharing the info with us .
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 02:54.
Find Us