Author Topic: win64.sirefef-a(trj)  (Read 3511 times)

0 Members and 1 Guest are viewing this topic.

Offline jlcsunshine20

  • Newbie
  • *
  • Posts: 4
win64.sirefef-a(trj)
« on: July 31, 2012, 07:45:08 PM »
I have a horrible trojan and i dont know how to remove it. I cant open regedit. It won't allow me too. It says i dont have administrator access. Im at a lose here. Please help. I have windows xp pro. and my avast is up to date. I have done 3 boot scans and it finds it but doesnt stop it.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 67444
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: win64.sirefef-a(trj)
« Reply #1 on: July 31, 2012, 07:45:55 PM »
Win 8.1 [x64] - Avast PremSec 20.9.2435.Beta#3 [UI.575] - CC 5.73 - EEK - FF ESR 78.4 [NS/AOS/uBO/PB] - TB 78.4 - SB/CP/SL/DU.B
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline jlcsunshine20

  • Newbie
  • *
  • Posts: 4
Re: win64.sirefef-a(trj)
« Reply #2 on: July 31, 2012, 07:52:06 PM »
it said access denied. it wont let me download.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83965
  • No support PMs thanks
Re: win64.sirefef-a(trj)
« Reply #3 on: July 31, 2012, 07:59:45 PM »
What are you trying to download ?
The link given is to an information topic, in that topic are the instructions and links to the various tools used to gather information to help the malware removal specialist compile a fix for your system.
Windows 10 Home 2004 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.8.2432 (build 20.8.5684.602) UI-1.0.566/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline jlcsunshine20

  • Newbie
  • *
  • Posts: 4
Re: win64.sirefef-a(trj)
« Reply #4 on: July 31, 2012, 08:02:59 PM »
Malwarebytes Anti-Malware it lets it upload and go through the first part of the process but then stops and says access denied. That link of info says download this first. I tried from both sites.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 36762
Re: win64.sirefef-a(trj)
« Reply #5 on: July 31, 2012, 08:23:09 PM »
continue with OTL and aswMBR

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40631
  • Dragons by Sasha
    • Malware fixes
Re: win64.sirefef-a(trj)
« Reply #6 on: July 31, 2012, 08:36:10 PM »
Monitoring

Try the roguekiller programme first then follow with OTL, aswMBR

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40631
  • Dragons by Sasha
    • Malware fixes
Re: win64.sirefef-a(trj)
« Reply #7 on: July 31, 2012, 08:49:36 PM »
If that fails then download this special copy of OTL.  Right click the link and select save as

Download OTL  to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

  • Select All Users
  • Under the Custom Scan box paste this in
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s
CREATERESTOREPOINT

  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Post both logs