BSOD error 0x80040201, Rootkit.Sirefef.spy

annalee50

New Member
Messages
6
Upon visiting My Fitness Pal's website, I received a warning that said: BSOD: DLL Register Server failed with the error code 0x80040201. Then it gave an IP address, listed my browser which is IE, my OS which is Windows 8.1 and said my windows firewall was infected. It then told me that Rootkit.Sirefef.spy and trojan virus were found in System 32 NT (Network Threat Protection) Kernel. Virus source: free games (which I play on Facebook), porn websites (which I do not use), and third party internet search. Please visit (a website which I did not get) or call 1-888-528-3804.

I did a few searches and read up on this virus. I also made all files and folders to be seen and went and checked around in my registry, checked my processes and have not found anything close to Rootkit.Sirefef.spy. Avast did not turn up anything. Malewarebytes turned up 144 issues but not this one. View attachment 62157From everything I read, this can be a bad virus so I want to make sure if I have it or not. So I came here to get some expert advise. Can you help me please to find out if I have this or not.
 

My Computer

System One

  • OS
    Windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Dell Inspirion 15
    CPU
    Intel core i5-4200u CPU @ 1.60Hz 2.36Hz
    Memory
    6.00GB Ram 5.88 Usuable
    Browser
    Internet Explorer
    Antivirus
    Avast
Hi,

I am extremely sorry that this thread was not attended to. There are not many people in this field :(

In case you still require help, kindly respond to this thread and I will be notified via email and you should expect a response from me in 48 hours.

Regards,
Pranav
 

My Computer

System One

  • OS
    Windows 8.1 Industry Pro B-)
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba
    CPU
    Core I5 2430M @ 2.4GHz
    Memory
    8 GB DDR3 @ 1600MHz Dual Channel ^_^
    Graphics Card(s)
    Intel HD 3000 B-)
    Screen Resolution
    1366x768
    Hard Drives
    Toshiba 500 GB
    Browser
    Google Chrome
    Antivirus
    Windows Defender & Common Sense!
I got the same message from a website tonight on my surface tablet. I cleared the browsing history , cookies, and cache. Then I was able to close the tab by turning off the tablets wifi. I am running a windows defender scan and the full scan has stopped twice now mid way through. I have the same question as annalee, do I have this Virus or not?
 

My Computer

System One

  • OS
    Windows 8 rt
I got the same message from a website tonight on my surface tablet. I cleared the browsing history , cookies, and cache. Then I was able to close the tab by turning off the tablets wifi. I am running a windows defender scan and the full scan has stopped twice now mid way through. I have the same question as annalee, do I have this Virus or not?

Please make a screenshot of this message.
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
I do not have the tab open any more but the message was the same as the first post from annalee. I just finished a windows defender full scan and it found no threats. I can surf the web through the app currently. I do not see any sign of a virus. When the message first popped up I was not able to close the tab because a pop up window would appear saying I was infected and to call this number for help. just like the message the orginal post. when I clicled the okay button the window would close and then same window would appear again. after I cleared my history I closed the tab by truning off the tablets wifi.
 

My Computer

System One

  • OS
    Windows 8 rt
If it looked like the BSOD in this thread Fake BSOD in IE, then its fake
64293d1438263210-fake-bsod-ie-fakebsod.jpg
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
not quite the same but the screen was white and not blue, and a pop up window covered most of the screen and kept me from closing the tab.

My first line read [h=2]BSOD error 0x80040201, Rootkit.Sirefef.spy[/h]and the pop up window covered most of the rest of the screen.
 

My Computer

System One

  • OS
    Windows 8 rt
Try scanning with other AV and malware programs if possible with surface tablets.
I'm not sure if your surface tablet is infected or if it just was that page.
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
The best is a good known that is trusted and no there isn't a specific order.
I'd recommend Kaspersky, Bitdefender, Avast, AVG, Avira.

With most of them I have no experience, but they are positively recommended by some/a lot of people.
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
Wiki errors recommends doing a system restore to a time prior to when the website popped up. But I do not trust every thing ;posted on wiki.
 

My Computer

System One

  • OS
    Windows 8 rt
Sorry to bump in.

@pb201 - Could you please provide a screenshot of the error? That would be very helpful. Also, if you do not have any problem, may I know which website are you trying to visit which is causing this error?


-Pranav
 

My Computer

System One

  • OS
    Windows 8.1 Industry Pro B-)
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba
    CPU
    Core I5 2430M @ 2.4GHz
    Memory
    8 GB DDR3 @ 1600MHz Dual Channel ^_^
    Graphics Card(s)
    Intel HD 3000 B-)
    Screen Resolution
    1366x768
    Hard Drives
    Toshiba 500 GB
    Browser
    Google Chrome
    Antivirus
    Windows Defender & Common Sense!
not quite the same but the screen was white and not blue, and a pop up window covered most of the screen and kept me from closing the tab.

My first line read BSOD error 0x80040201, Rootkit.Sirefef.spy

and the pop up window covered most of the rest of the screen.

For additional information, correct me if I'm wrong, I think the official bluescreen of the surface looks like this
View attachment 64540
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
Please run a scan with Kaspersky TDSS and Malwarebytes anti-Malware and attach the logs to your next reply.
 

My Computer

System One

  • OS
    Windows 10 Pro x64
    Computer type
    PC/Desktop
    CPU
    INTEL Core i7-2700K 3.5GHz
    Motherboard
    ASROCK Fatal1ty P67 Main Board
    Memory
    HyperX Blu 8GB (2 x 4GB) DDR3 1600
    Graphics Card(s)
    Gigabyte GTX 980 Ti G1 Gaming
    Sound Card
    On-board
    Monitor(s) Displays
    Philips Brilliance BDM4065UC
    Screen Resolution
    3840x2160
    Hard Drives
    SSD: Samsung EVO 250 GB
    Internal HDD: WD Black 1TB
    External: 2x2TB MyBook drives
    1x4TB MyBook
    1x1TB Seagate Freeagent drive
    PSU
    Corsair GS 700W
    Case
    Silverstone Kublai KL04
    Cooling
    Artic Cooling Freezer Pro
    Keyboard
    Logitech G710+
    Mouse
    Razer Mamba Elite 2012
    Internet Speed
    10/0.75
    Browser
    FF 39.0.3, Microsoft Edge, Chrome 44
    Antivirus
    Avast 10.0
Blueelvis

Unfortunately I do not have a screen shot of the error message. I managed to close the tab by shutting off my tablet's wifi. I have cleared my browser history, cookies and cache. The message I remember was word for word identical to the one annalee50 posted. I was on a site was on a site called Dunzo. When the message popped up the link was something with the word "proxy" in it. The tablet seems to be working starting up and working fine but I am afraid to use it much.
 

My Computer

System One

  • OS
    Windows 8 rt
Blueelvis

Unfortunately I do not have a screen shot of the error message. I managed to close the tab by shutting off my tablet's wifi. I have cleared my browser history, cookies and cache. The message I remember was word for word identical to the one annalee50 posted. I was on a site was on a site called Dunzo. When the message popped up the link was something with the word "proxy" in it. The tablet seems to be working starting up and working fine but I am afraid to use it much.
Hi pb201 ^_^,

If that is the case then most likely the tablet is infected with malware. I would suggest you to follow softwaremaniac's steps of running a scan with Kaspersky TDSS (**LINK**) and then the MalwareBytes Anti-Malware (**LINK**).

Let us know in case of any further problems :)

-Pranav
 

My Computer

System One

  • OS
    Windows 8.1 Industry Pro B-)
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba
    CPU
    Core I5 2430M @ 2.4GHz
    Memory
    8 GB DDR3 @ 1600MHz Dual Channel ^_^
    Graphics Card(s)
    Intel HD 3000 B-)
    Screen Resolution
    1366x768
    Hard Drives
    Toshiba 500 GB
    Browser
    Google Chrome
    Antivirus
    Windows Defender & Common Sense!
What have you tried exactly? Please describe in detail.
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom build
    CPU
    i5-6500 @3.20GHz
    Motherboard
    Gigabyte B150-HD3P-CF
    Memory
    16GB DDR4 2133 Crucial Ballistix Sport LT
    Graphics Card(s)
    MSI GeForce GTX 1060 GAMING X 6G
    Sound Card
    Built-in
    Monitor(s) Displays
    Liyama ProLite XB2483HSU-B2
    Screen Resolution
    1920 x 1080
    Hard Drives
    Crucial MX200 500GB & Toshiba DT01ACA300 3TB
    PSU
    Corsair RM550x
    Case
    Fractal Design Define S
    Cooling
    Cooler Master TX3 i
    Keyboard
    Func KB-460 (MX Red)
    Mouse
    Corsair Gaming M65 RGB
    Browser
    Google Chrome
    Antivirus
    Bitdefender Total Security 2017 + MBAM Pro + MBAE Pro
    Other Info
    Creative Sound Blaster Tactic3D Rage V2 headset
Back
Top