Best way to get rid of Trojan.Patched.Sirefef.B

Posted on 2012-08-25
Last Modified: 2013-11-22
I have a client that was infected by Trojan.Patched.Sirefef.B  That's the bad part, the good part is both Bitdefender and MBAM is keeping it from doing it's dirty work, BUT it is still there.  I have read different methods to get rid of it, but I wanted to ask EE which the best one to use to get rid of it for good.
Question by:ArtG2521
    LVL 29

    Accepted Solution

    Trojan.Patched.Sirefef.B also know as ZeroAcess is hard to remove but it is possible to get rid of it.

    I would recommend to scan the system with the tools mentioned below and in the sequence they are mentioned and post the logs

    Make sure you DO NOT REBOOT the system after running tools in point 1 & 2.

    1. RogueKiller/TheKiller
    2. MalwareBytes
    3. TDSSKIller

    I would also recommend you to go through the articles from Younghv and RPG for the links of the tools and for the future reference

    Basic Malware Troubleshooting



    Run MalwareBytes in Quick Mode and if that required reboot, then reboot the system and run tools mentioned in point 1 and 2 but this time run MalwareBytes in Full Systen Scan.

    So in your next reply post the RogueKiller logs, MBAM logs and TDSSKIller Logs

    LVL 50

    Assisted Solution

    ArtG2521--Ways to remove manually
    (I do not recommend you use the removal tool offered)

    Note there is one difference between the two references.

    It is always best to back up the Registry before making changes.

    Author Comment

    Thanks, I will use these methods.
    LVL 50

    Expert Comment

    ArtG2521--You are welcome.

    Featured Post

    Courses: Start Training Online With Pros, Today

    Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

    Join & Write a Comment

    Suggested Solutions

    Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
    This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
    This Micro Tutorial will give you a introduction in two parts how to utilize Windows Live Movie Maker to its maximum capability. This will be demonstrated using Windows Live Movie Maker on Windows 7 operating system.
    The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now