Published Nov 03, 2011|Updated Sep 15, 2017


Severe |Detected with Windows Defender Antivirus

Aliases: Win32/Sirefef.DK (ESET) Trojan.Win32.Jorik.ZAccess.qe (Kaspersky) FakeAlert-GA.gen.r (McAfee) Trojan.Gen.2 (Symantec) Cryp_FakeAV-56 (Trend Micro)


Microsoft security software detects and removes this threat.

This family of malware uses stealth to hide itself. Trojans in this family can do different things, including:

  • Downloading and running other files
  • Contacting remote hosts
  • Disabling security features

Members of the family can also change search results, which can generate money for the attackers who use Sirefef.

Variants of Win32/Sirefef may be installed by other malware, including variants of the Trojan:Win32/Necurs family.

See the Win32/Sirefef family description for more information.


Latest news