Trojan:Win32/Sirefef.AB

Discussion in 'How-to Video Tutorials' started by KevinL, Jan 3, 2013.

  1. KevinL Administrator

    Encyclopedia entry
    Updated: Oct 30, 2012 | Published: Mar 16, 2012

    Aliases
    Backdoor/Win32.ZAccess (AhnLab)
    BackDoor.Maxplus.90 (Dr.Web)
    Win32/Sirefef.DL trojan (ESET)
    Backdoor.Win32.ZAccess (Ikarus)
    Backdoor.Win32.ZAccess.aug (Kaspersky)
    Mal/Sirefef-AA (Sophos)
    BKDR_ZACCESS.FP (Trend Micro)

    Alert Level
    Severe

    Antimalware protection details
    Microsoft recommends that you download the latest definitions to get protected.
    Detection last updated:
    Definition: 1.141.329.0
    Released: Nov 23, 2012Detection initially created:
    Definition: 1.121.566.0
    Released: Feb 28, 2012

    On this page
    Summary|Symptoms|Technical Information|Prevention|Recovery



    Summary
    Trojan:Win32/Sirefef.AB is a component of Win32/Sirefef - a multi-component family of malware that moderates an affected user's Internet experience by modifying search results, and generates pay-per-click advertising revenue for its controllers. The family consists of multiple parts that perform different functions, such as downloading updates and additional components, hiding existing components, or performing the payload.

    Caution: Win32/Sirefef is a dangerous threat that uses advanced stealth techniques in order to hinder its detection and removal. As a consequence of being infected with this threat, you may need to repair and reconfigure some Windows security features. Please see Additional remediation steps in this entry for more information.



    Symptoms
    There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptoms.


    Technical Information (Analysis)
    Trojan:Win32/Sirefef.AB is a component of Win32/Sirefef - a multi-component family of malware that moderates an affected user's Internet experience by modifying search results, and generates pay-per-click advertising revenue for its controllers. The family consists of multiple parts that perform different functions, such as downloading updates and additional components, hiding existing components, or performing the payload.

    Trojan:Win32/Sirefef.AB is a component most likely installed by Win32/Sirefef. It may be used to establish network connections.

Share This Page