PDA

View Full Version : Help!! Win32.Bifrost


wtffrosty1
2011-07-21, 13:32
Hello,

Spybot says I am infected with win32.bifrost. I ran Malwarebytes and AVG and both came up with nothing. I fixed the trojan in Spybot, but this trojan sounds like serious stuff so I want to make sure its gone. Can anyone give me more info on this? Thanks!! Here is what Spybot came up with.

Win32.Bifrost: [SBI $0E237542] Settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-2325955692-101958171-3476891059-1000\Software\Microsof
tashi
2011-07-21, 16:05
Hello wtffrosty1,

It appears from that snippet Spybot-S&D fixed the issue, how is the computer running?

FYI in case you missed it, this forum's FAQ. "BEFORE You POST"(Please read this Procedure Before Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

Best regards. :)
wtffrosty1
2011-07-22, 02:48
Thank you for the reply. Everything seems to be ok, but the severity of the trojan has me concerned. I have restarted the computer and ran plenty more scans and everything has been clean. The only questions I have are why did the other two scanners not pick it up. Could it have been a false positive? And also can I be guaranteed the trojan is no longer on my system?
tashi
2011-07-22, 03:02
Hello wtffrosty1,

The only questions I have are why did the other two scanners not pick it up.
One scanner may pick up something another misses.

Could it have been a false positive? And also can I be guaranteed the trojan is no longer on my system?



"BEFORE You POST"(Please read this Procedure Before Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)


In order for someone to advise in this forum start a new topic providing the DDS logs as shown in that sticky and a volunteer analyst will assist you when available. :)

Best regards.
wtffrosty1
2011-07-22, 03:21
Hello,

Spybot picked up a trojan on my computer. It rixed the problem but im still concerned it might be on my computer as it is a rootkit trojan. The log was too big to attach so I had to compress it. It is attached. Thanks!!
tashi
2011-07-22, 17:55
Hello wtffrosty1,


In order for someone to advise in this forum start a new topic providing the DDS logs as shown in that sticky and a volunteer analyst will assist you when available. :)


Please do that. Also as per the sticky FAQ this is the only part needed from the Spybot-S&D log. ;)

--- Search result list ---
Win32.Bifrost: [SBI $0E237542] Settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-2325955692-101958171-3476891059-1000\Software\Microsof


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

Best regards.