Win32/Sirefef.DT

Win32/Sirefef.DT Description

Type: Trojan

Win32/Sirefef.DT is a hazardous Trojan which aims at generating income on creating forced traffic to certain web pages. Win32/Sirefef.DT tries to obtain control over web browsing to close access to applications that are able to remove Win32/Sirefef.DT. Win32/Sirefef.DT restrains genuine software programs in favor of illegal ones. Win32/Sirefef.DT adds rogue security applications into Windows PCs and satisfies its installation and post-installation needs. Remove Win32/Sirefef.DT before it harms your machine.

Technical Information

File System Details

Win32/Sirefef.DT creates the following file(s):
# File Name Detection Count
1 %TEMP%\.exe N/A
2 %UserProfile%\Start Menu\Programs\Win32/Sirefef.DT\Uninstall Win32/Sirefef.DT.lnk N/A
3 %UserProfile%\Start Menu\Programs\Win32/Sirefef.DT\ N/A
4 %UserProfile%\Desktop\Win32/Sirefef.DT.lnk N/A
5 %UserProfile%\Start Menu\Programs\Win32/Sirefef.DT\Win32/Sirefef.DT.lnk N/A

Registry Details

Win32/Sirefef.DT creates the following registry entry or registry entries:
Registry key
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Use FormSuggest" = 'yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "CertificateRevocation" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = '/{hq:/s's:/ogn:/uyu:/dyd:/c'u:/bnl:/ble:/sdf:/lrh:/iul:/iulm:/fhg:/clq:/kqf:/'wh:/lqf:/lqdf:/lnw:/lq2:/l2t:/v'w:/rbs:'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "ShowSuperHidden" = 0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop "NoChangingWallPaper" = '1'
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "Hidden" = '0'

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.