is a trojan component of Win32/Sirefef - a multi-component family of malware that disturbs your Internet experience by changing search results, and generates pay-per-click advertising revenue for its controllers. The family consists of multiple parts that do different functions, like downloading updates and additional components, hiding existing components, or running payload routines.
is installed by other malware and may have the file name wpbt0.dll. The trojan component is responsible for downloading other malicious components.
In the wild, we have observed some variants of Trojan:Win32/Sirefef.P installed with other malware, including those detected as Win32/Vobfus and Win32/Cycbot.
Analysis by Jireh Sanico
Alerts from your security software may be the only symptom.