Backdoor.Bifrose
Posted: May 24, 2006
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 10,346 |
|---|---|
| Threat Level: | 6/10 |
| Infected PCs: | 2,993 |
| First Seen: | July 24, 2009 |
|---|---|
| Last Seen: | September 23, 2023 |
| OS(es) Affected: | Windows |
Bifrose is a backdoor Trojan that provides an unauthorized user with some remote control over your system, making it possible to capture your personal information through accessing your files. Through Bifrose, this anonymous user may upload, download, and delete files stored on your hard drive. Your computer's security and stability may be further decreased as Bifrose may download other applications. Bifrose is a serious threat to the security of your personal and financial data and it is recommended to get rid of it immediately.
Aliases
Generic25.CJCV [AVG]W32/BDoor.CEP!tr.bdr [Fortinet]Trojan/Win32.ADH [AhnLab-V3]BDS/Bifrose.A.394 [AntiVir]Trojan.Win32.Midgare.bbsz [Kaspersky]Trojan.Midgare-167 [ClamAV]Trojan.Midgare.bbsz [CAT-QuickHeal]Trj/Thed.M [Panda]Generic5_c.BUVP [AVG]TROJ_SPNR.11I612 [TrendMicro]Trojan.Click2.51276 [DrWeb]Gen:Variant.Barys.1607 [F-Secure]Win32.GenVariant.Kaz [eSafe]BackDoor-FACW!FEA05B1E642B [McAfee]Generic5_c.AUMF [AVG]
More aliases (596)
More aliases (596)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\wuauclt.exe
File name: wuauclt.exeSize: 135.16 KB (135168 bytes)
MD5: 2e2d0c602a60fba0ee1f3c68d2532237
Detection count: 178
File type: Executable File
Mime Type: unknown/exe
Path: C:
Group: Malware file
Last Updated: April 17, 2019
win23.exe
File name: win23.exeSize: 335.87 KB (335872 bytes)
MD5: 0ab35874ae5d12db56ba7df38159427c
Detection count: 85
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
%APPDATA%\system32.exe
File name: system32.exeSize: 2.58 MB (2582165 bytes)
MD5: e83b9b6a0f906ad6564afc890ea5c6bd
Detection count: 83
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: November 16, 2010
%WINDIR%\csrs.exe
File name: csrs.exeSize: 115.77 KB (115775 bytes)
MD5: a94dc5a0361bb54f4c40abf404441379
Detection count: 80
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: November 22, 2010
svchost.exe
File name: svchost.exeSize: 584.19 KB (584192 bytes)
MD5: 624f45f8ef3f192e8eb09a529fe0e3fe
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
rundll32.exe
File name: rundll32.exeSize: 61.44 KB (61440 bytes)
MD5: 8d08b75195561ed02caa6f0abb3b4fd8
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 19, 2010
spoolsv.exe
File name: spoolsv.exeSize: 47.61 KB (47616 bytes)
MD5: c665a55e56966c44171d9c8900fbb529
Detection count: 61
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 21, 2010
win23.exe
File name: win23.exeSize: 170.17 KB (170178 bytes)
MD5: f2e2909a1aa1ba25357768061979b621
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: April 8, 2010
msvmcls64.exe
File name: msvmcls64.exeSize: 219.13 KB (219136 bytes)
MD5: ae7fa2384864f34947ac24f45ca9e4bf
Detection count: 36
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 30, 2010
Update.exe
File name: Update.exeSize: 1.15 MB (1152784 bytes)
MD5: 9b8cfda3a3f06d22d1c3722ebddd8ba2
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 30, 2010
file[1].exe
File name: file[1].exeSize: 38.91 KB (38919 bytes)
MD5: 9b1b8011f18ac6b95c87cc5c115514e7
Detection count: 31
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
ccdrive32.exe
File name: ccdrive32.exeSize: 75.26 KB (75264 bytes)
MD5: 39f2c3805d88cf76c5d79c54c1e37349
Detection count: 30
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 26, 2010
H2sfasH.exe
File name: H2sfasH.exeSize: 81.4 KB (81408 bytes)
MD5: 31eb4ff720d93075a2fcbb203c590ff2
Detection count: 20
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 23, 2010
winsystem.exe
File name: winsystem.exeSize: 100.06 KB (100063 bytes)
MD5: 4920b9bcc50cac48ce4cb3f4ce4c527e
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
%WINDIR%\system32\update.exe
File name: update.exeSize: 67.73 KB (67735 bytes)
MD5: 4b63963bcc580f48f5a40bda656ebd51
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: October 27, 2010
file.exe
File name: file.exeSize: 370.68 KB (370688 bytes)
MD5: d948009c57aa4ef2d0e1944b561c12ba
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: May 17, 2016
%USERPROFILE%\winsrvcn.exe
File name: winsrvcn.exeSize: 48.64 KB (48640 bytes)
MD5: f75a8c506ed70d465e15065146843385
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%
Group: Malware file
Last Updated: December 1, 2010
%PROGRAMFILES%\Bifrost\server.exe
File name: server.exeSize: 27.51 KB (27517 bytes)
MD5: 1bf5e02e439c6cf09c220d5710b46ad5
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Bifrost
Group: Malware file
Last Updated: September 4, 2019
ffx.exe
File name: ffx.exeSize: 143.87 KB (143872 bytes)
MD5: 905d88c67659fe04a35ec2c0f86c4ed0
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
%APPDATA%\csrss.exe
File name: csrss.exeSize: 389.14 KB (389148 bytes)
MD5: b6c30f087bb3cbc38c7abb3e2ca4eaf2
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: September 28, 2010
%USERPROFILE%\Local Settings\alvsvpd.exe
File name: alvsvpd.exeSize: 90.9 KB (90909 bytes)
MD5: 61e2355a9bc4d852c06571b51f084448
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings
Group: Malware file
Last Updated: May 18, 2012
Registry Modifications
The following newly produced Registry Values are:
Regexp file mask%ALLUSERSPROFILE%\cachemgr.exe%SystemDrive%\Setup\CacheMgr.exe%TEMP%\XX--XX--XX.txt
Regexp file mask%ALLUSERSPROFILE%\cachemgr.exe%SystemDrive%\Setup\CacheMgr.exe%TEMP%\XX--XX--XX.txt
Related Posts
- Backdoor.Bifrose.ACO
- Backdoor.Bifrose.ES
- Backdoor.Bifrose.IQ
- Backdoor.Bifrose.N
- Backdoor.Bifrose.gen!A
Sir, Hello, I seek your advice and help. My machine has been affected by these viruses as mentioned below. Backdoor bifrose (Bifrose) Spyware.Rogue_Anti-Spyware_products. RogueAntiSpyware.SpyShredder. Trojan-Spy.Banker.CKJ (Trojan-Spy.Win32.Banker.ckj[Kaspersky],TSPY_Banker.HFY[Trend Micro]) Adware.Maxifiles. (Adware.Ao[Panda]In fostealer.Gampass[Symantec]Adware.Wind32 Agent.dn[Bit Defender]Trojan.Rond) Adware.Softomate (Adware-Softomate[McAfee]) These are the viruses which has affected my machine. I do not have a clue as to how to clean them so seek your earnest help, how do I clean them and what antivirus and what firewall should I use please advice. Awaiting a reply from your end at the earliest possible. Sincerely, Deb Roy Chowdhury.
umm, Im just 15 years old lol but i think you can remove it with avast. Or you can search for a remover for this file, but its kindda high risk for more virus and maleware and that stuff