sirefef.R and sirefef.AH Removal Help

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by luv2golf67, Jul 2, 2012.

  1. luv2golf67

    luv2golf67 Private E-2

    I am working on a system that reports having the sirefef.R and sirefef.AH trojan. I have removed the drive and scanned it with another computer with several different AV removal software programs until it reported the drive was clean. Once I put the drive back into the computer and booted, I get the same trojans reported and the computer keeps rebooting.

    I ran FRST.exe and below are the results. Please Help!!

    [edit] Inline log attached.[/edit]
     

    Attached Files:

    Last edited by a moderator: Jul 2, 2012
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Please see number 5 in the below link.

    Forum Rules and Guidelines

    We require all logs to be attachments. Also please don't use such a small font. We read tons of messages and logs per day and our eyes take a beating. ;)

    The were all incorrect.

    We need to get some additional information inorder to work up a proper fix as we need to replace at least one system file. Also make sure that all scans are run on the drive having the problem ( i.e., do not put the drive into another PC to run any scans unless requested. ).

    Please run MGtools as requested in the below and attach the C:\MGlogs.zip file we need.

    Using MGtools

     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds