Aliases: Win32/Sirefef.BH (ESET) Mal/FakeAV-EA (Sophos) Trojan.Win32.Generic.pak!cobra (Sunbelt Software) TROJ_BURNIX.SMEP (Trend Micro)
Trojan:Win32/Sirefef.M is a component of Win32/Sirefef - a multi-component family of malware that moderates your Internet experience by changing search results and generating pay-per-click advertising revenue for its controllers. The family consists of multiple parts that perform different functions, such as downloading updates and additional components, hiding existing components, or performing a payload.
Win32/Sirefef is a dangerous threat that uses advanced stealth techniques to hinder its detection and removal. If you are infected with Sirefef, we recommend you take the following steps to remove it.
Download and run the Microsoft Safety Scanner
Before you begin you will need:
After running the scanner, make sure your antivirus software is up-to-date. You can update Microsoft security software by downloading the latest definitions.
The following Microsoft products detect and remove this threat:
Note that as part of the cleaning, our software might change some Windows services back to their default settings. If you had previously changed these settings, you might need to change them again.
The services that are reset include: