Author Topic: win64.sirefef-a(trj)  (Read 4083 times)

0 Members and 1 Guest are viewing this topic.

jlcsunshine20

  • Guest
win64.sirefef-a(trj)
« on: July 31, 2012, 07:45:08 PM »
I have a horrible trojan and i dont know how to remove it. I cant open regedit. It won't allow me too. It says i dont have administrator access. Im at a lose here. Please help. I have windows xp pro. and my avast is up to date. I have done 3 boot scans and it finds it but doesnt stop it.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76037
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: win64.sirefef-a(trj)
« Reply #1 on: July 31, 2012, 07:45:55 PM »
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

jlcsunshine20

  • Guest
Re: win64.sirefef-a(trj)
« Reply #2 on: July 31, 2012, 07:52:06 PM »
it said access denied. it wont let me download.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88900
  • No support PMs thanks
Re: win64.sirefef-a(trj)
« Reply #3 on: July 31, 2012, 07:59:45 PM »
What are you trying to download ?
The link given is to an information topic, in that topic are the instructions and links to the various tools used to gather information to help the malware removal specialist compile a fix for your system.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

jlcsunshine20

  • Guest
Re: win64.sirefef-a(trj)
« Reply #4 on: July 31, 2012, 08:02:59 PM »
Malwarebytes Anti-Malware it lets it upload and go through the first part of the process but then stops and says access denied. That link of info says download this first. I tried from both sites.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
Re: win64.sirefef-a(trj)
« Reply #5 on: July 31, 2012, 08:23:09 PM »
continue with OTL and aswMBR

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: win64.sirefef-a(trj)
« Reply #6 on: July 31, 2012, 08:36:10 PM »
Monitoring

Try the roguekiller programme first then follow with OTL, aswMBR

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: win64.sirefef-a(trj)
« Reply #7 on: July 31, 2012, 08:49:36 PM »
If that fails then download this special copy of OTL.  Right click the link and select save as

Download OTL  to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

  • Select All Users
  • Under the Custom Scan box paste this in
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s
CREATERESTOREPOINT

  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Post both logs