“Attempting to close IE window (IE 8), got a fake Windows message – your computer is infected. I went to Task Manager, ended the IE and Message programs and immediately shut the PC down…”—- A victim describes how he get infected Trojan:Win32/Sirefef.K Virus. People often don’t know how to start to clean such Trojan virus. Here, a practical solution is stated as follows.
Nature of Trojan:Win32/Sirefef.K
If have to give a classification of such Trojan as Trojan:Win32/Sirefef.K, it belongs to rootkit that is bundled with Trojan:Win32/Sirefef.AG. A rootkit is a collection of one or more tools designed to covertly gain control authority of a computer. Trojan:Win32/Sirefef.K is a component of Win32/Sirefef – a multi-component family of malware Trojan.Win32.Sirefef (Ikarus); Mal/Sirefef-K (Sophos); TROJ_SIREFEF.CL (Trend Micro) that moderates an affected user’s computer performance and picked up by Microsoft Security essentials(MSE). Initially rootkits appeared on the UNIX operating systems (including Linux) and were a collection of one or more tools which allowed an attacker to gain and keep access to the most privileged user on the computer (on UNIX systems this user is called ‘root’ – hence the name) On Windows based systems, rookits have more commonly been associated with tools used for hiding programs or processes from the users. Trojan:Win32/Sirefef.K also belongs to a Trojan dropper. A dropper Trojan contains malicious or potentially unwanted software which it ‘drops’ and installs on the affected system. Commonly, the dropper installs a backdoor which allows remote, surreptitious access to infected systems. This Trojan:Win32/Sirefef.K backdoor may then be used by remote attackers to upload and install further malicious or potentially unwanted software on the system. This threat is detected by the Microsoft antivirus engine. Technical details are not currently available.When installed a Windows rootkit uses functions in the operating system to hide itself, so as not to be detected, and is often used to hide other malicious programs such as keystroke loggers. The use of rootkits is not necessarily malicious, but they have come to be increasingly associated with undesirable behavior and malicious software. All bundled malware and these malicious dropping codes can hide in your system, processes, program files, dll files and folders to damage your PC system seriously. In such cases, it is very difficult for antivirus tools to detect all infected items and eliminate them from your PC completely. If your PC has been infected Trojan:Win32/Sirefef.K virus, please spare no effort in seeking solutions to delete is forever!
Note: To save your computer, Live Chat with YooSecurity Expert Now, or you can follow the manual removal guide below to get your problem fixed. (For advanced computer users)
Common Symptoms of Trojan:Win32/Sirefef.K Trojan Infection:
1. This virus relocates your internet connection and informs you browsing activity is unsafely.
2. Desktop background image and Browser homepage settings are changed, the same as almost all Trojan infections.
3. This virus slows down your computer speed considerably. This includes opening program, shutting down your computer, and slowing down Internet.
4. This virus pops up annoying advertisements while you surfing the internet.
5. This virus will shut down your anti-virus and anti-spyware programs. This virus will also infect and corrupt your registry, making your computer totally bareness.
6. This virus will disable the proper running of many different programs, including such harmless ones as Notepad. This may include actual anti-malware software that you need to maintain system security.
7. This virus may reveal your personal information, which can lead to personal and property in unsafe condition.
Best Way to Remove Trojan:Win32/Sirefef.K Trojan Manual Removal manually Step by Step?
Please follow these steps to get rid of the Trojan:Win32/Sirefef.K Trojan manually:
Step 1: Press CTRL+ALT+DEL or CTRL+SHIFT+ESC. Open the Windows Task Manager.
If that didn’t work, try another way. Press the Start button and click on the Run option. This will start the Run tool. Type in taskmgr and press OK. This should start the Windows Task Manager
Step 2: Within the Windows Task Manager click on the Processes tab. Find the process by name. random.exe. Then scroll the list to find required process. Select it with your mouse or keyboard and click on the End Process button. This will kill the process.
Step 3: Delete malicious registry entries.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\Trojan:Win32/Sirefef.K
Step 4?Remove malicious files of Trojan:Win32/Sirefef.K Virus
win32rundll.exe
dwm.exe
audiohd.exe
waudiohd.exe
Video of Key Steps on How to Modify or Change Windows Registry:
Based on various situations and computer skills, you can choose the following solutions fit for you.
1. Follow the steps we provide to manually remove the virus.
2. If you failed to remove Trojan:Win32/Sirefef.K Trojan with the method above, please consult YooSecurity certified professionals to remove it completely. Live chat with professionals now
Published by Tony Shepherd & last updated on November 13, 2012 11:35 am
Leave a Reply
You must be logged in to post a comment.