Trojan:Win32/Sirefef.P
Posted: November 21, 2011
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 370 |
| First Seen: | November 18, 2011 |
|---|---|
| OS(es) Affected: | Windows |
Trojan:Win32/Sirefef.P is a dangerous Trojan that states it is able to detect malware infections and is related to a fake security application. Trojan:Win32/Sirefef.P makes changes to critical system files. Trojan:Win32/Sirefef.P may display fake security alerts and annoying advertisements. Trojan:Win32/Sirefef.P needs rather long time to execute its payload of installing the bogus software, therefore, it is quite possible to uninstall Trojan:Win32/Sirefef.P on time to block the malicious download. Use a legitimate and eefective security tool to remove Trojan:Win32/Sirefef.P immediately after detection.
Aliases
Generic26.BURO [AVG]Generic.bfr!dp [McAfee-GW-Edition]Rogue:W32/FakeAv.IS [F-Secure]Gen:Variant.Graftor.12984 [BitDefender]Win32:FakeAlert-BWQ [Trj] [Avast]a variant of Win32/Kryptik.ZDH [NOD32]Generic27.AGLV [AVG]W32/Yakes.QKQ!tr [Fortinet]TR/Sirefef.P.563 [AntiVir]Trojan.Win32.Yakes.qkq [Kaspersky]Win32:Dropper-gen [Drp] [Avast]Trojan-FABT!632A5A2DA285 [McAfee]Trojan.Win32.FakeAV.kmhh [Kaspersky]Trj/Xpacked.A [Panda]Cryptic.EGO [AVG]
More aliases (503)
More aliases (503)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%USERPROFILE%\Application Data\345qhXMkV.exe
File name: 345qhXMkV.exeSize: 355.84 KB (355840 bytes)
MD5: 9a88403b27cd6339c28c223064c6d066
Detection count: 96
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Application Data
Group: Malware file
Last Updated: March 13, 2012
%USERPROFILE%\Local Settings\Application Data\brmyi.exe
File name: brmyi.exeSize: 304.64 KB (304640 bytes)
MD5: f2b8c07b759d56360ebf243bc65c88cd
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 19, 2012
%USERPROFILE%\Local Settings\Application Data\byotrow.exe
File name: byotrow.exeSize: 302.08 KB (302080 bytes)
MD5: 0a715203c0609980202822bd93e39411
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: April 13, 2012
%USERPROFILE%\Local Settings\Application Data\vlqp.exe
File name: vlqp.exeSize: 354.3 KB (354304 bytes)
MD5: ff8ac3e6760ee1b00cf3684173a1235e
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 23, 2012
%APPDATA%\JJwCi5yuOteCLIC3dkzz.exe
File name: JJwCi5yuOteCLIC3dkzz.exeSize: 199.68 KB (199680 bytes)
MD5: e78668e7c6d0b7e298eec58a8ebd7f5c
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: January 23, 2013
%APPDATA%\nMN5325325325325325e30p5ev.exe
File name: nMN5325325325325325e30p5ev.exeSize: 192 KB (192000 bytes)
MD5: 0bf2101859e0d4e58383850f7d4149a7
Detection count: 51
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: February 6, 2013
%USERPROFILE%\Local Settings\Application Data\tpqdda.exe
File name: tpqdda.exeSize: 346.62 KB (346624 bytes)
MD5: e357e895d1685d5d2280b712b669c431
Detection count: 40
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 19, 2012
%TEMP%\Low\wV54UvO7.exe
File name: wV54UvO7.exeSize: 352.76 KB (352768 bytes)
MD5: 8ecab031b39d91430d86f85053904142
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\Low
Group: Malware file
Last Updated: March 19, 2012
%USERPROFILE%\Local Settings\Application Data\aiuyxhs.exe
File name: aiuyxhs.exeSize: 301.56 KB (301568 bytes)
MD5: 6573f0f2b7c1bc0c504bd094e50cc3d0
Detection count: 31
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 30, 2012
%SystemDrive%\Users\<username>\Local Settings\Application Data\iyr.exe
File name: iyr.exeSize: 363 KB (363008 bytes)
MD5: 9645c5fa045afcbf7cf8579e61ff15b6
Detection count: 25
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\Local Settings\Application Data
Group: Malware file
Last Updated: January 23, 2012
%USERPROFILE%\Local Settings\Application Data\ivbr.exe
File name: ivbr.exeSize: 303.61 KB (303616 bytes)
MD5: 4d432bbc631ae2f9f3699cd6b625f855
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 23, 2012
%WINDIR%\System32\drivers\afd.sys
File name: afd.sysSize: 138.49 KB (138496 bytes)
MD5: ac40039acdb5aff46ad7b3e6cd01aa9f
Detection count: 9
File type: System file
Mime Type: unknown/sys
Path: %WINDIR%\System32\drivers
Group: Malware file
Last Updated: November 24, 2011
%USERPROFILE%\Application Data\1728F1lBc.exe
File name: 1728F1lBc.exeSize: 366.08 KB (366080 bytes)
MD5: 8b77f66d38ff544df2b1ee32a5c39e05
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Application Data
Group: Malware file
Last Updated: February 20, 2012
%LOCALAPPDATA%\b229734f\X
File name: XSize: 54.78 KB (54784 bytes)
MD5: a9e77eca9277e5e9d010b3166c0429e0
Detection count: 5
Path: %LOCALAPPDATA%\b229734f
Group: Malware file
Last Updated: December 11, 2012
%USERPROFILE%\Local Settings\Application Data\ipql.exe
File name: ipql.exeSize: 332.8 KB (332800 bytes)
MD5: 87976aefc36279766b61fa4c042bb01c
Detection count: 1
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 23, 2012
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.