VirTool:Win32/VBInject.gen!DG
Posted: June 9, 2010
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 644 |
| First Seen: | November 30, 2010 |
|---|---|
| Last Seen: | October 27, 2022 |
| OS(es) Affected: | Windows |
VirTool:Win32/VBInject.gen!DG (or Backdoor.Bifrose) is a malicious backdoor Trojan that runs in the background and allows remote access to the compromised system. VirTool:Win32/VBInject.gen!DG attempts to propagate by exploiting local network shares. VirTool:Win32/VBInject.gen!DG will also attempt to join a predefined IRC server and channel stolen data in order to participate in distributed denial-of-service (DDoS) attack. The DDoS attacks will attempt to make the computer unavailable to its intended users. It is recommended that VirTool:Win32/VBInject.gen!DG be removed immediately with a good anti-spyware application.
VirTool:Win32/VBInject.gen!DG
Aliases
Worm/Generic.ALZL [AVG]W32/VB.AY!tr [Fortinet]Win32/SillyAutorun.CEQ [eTrust-Vet]TROJ_VB.WRF [TrendMicro]Trojan.Generic.2339578 [BitDefender]Worm.Win32.AutoRun.aurn [Kaspersky]Worm.Autorun-2710 [ClamAV]W32/Autorun.PF [F-Prot]Worm.AutoRun.aurn [CAT-QuickHeal]Trojan/Win32.Xema [AhnLab-V3]Trojan.Generic.2839532 [BitDefender]Win32:VB-NYR [Drp] [Avast]Trojan Horse [Symantec]W32/BackdoorX.DEWR [F-Prot]VirTool/VBinder.A [Panda]
More aliases (400)
More aliases (400)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\Windows\file_3.exe
File name: file_3.exeSize: 253.11 KB (253116 bytes)
MD5: 4572be22ebd51a0fb6fd83dcac343460
Detection count: 108
File type: Executable File
Mime Type: unknown/exe
Path: C:\Windows\file_3.exe
Group: Malware file
Last Updated: October 27, 2022
%WINDIR%\system32\regedit.exe
File name: regedit.exeSize: 182.27 KB (182272 bytes)
MD5: e028be85dda857aa1c42bf598df46804
Detection count: 61
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: February 8, 2012
%WINDIR%\wndrive32.exe
File name: wndrive32.exeSize: 94.2 KB (94208 bytes)
MD5: 19f7450217a3523b5a4a06c1f78b1a80
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 8, 2010
%APPDATA%\SystemProc\lsass.exe
File name: lsass.exeSize: 66.56 KB (66560 bytes)
MD5: 5e91d382a32265bd413724f5d06844b5
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\SystemProc
Group: Malware file
Last Updated: December 7, 2010
%WINDIR%\wndrive32.exe
File name: wndrive32.exeSize: 94.2 KB (94208 bytes)
MD5: 5ea680cd4c285154dc839ad4b3ab743c
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 8, 2010
%WINDIR%\system32\sr32\sr32.exe
File name: sr32.exeSize: 533.47 KB (533475 bytes)
MD5: f8db49f7c965dd4e963e709178d09f3b
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\sr32
Group: Malware file
Last Updated: December 7, 2010
%WINDIR%\wndrive32.exe
File name: wndrive32.exeSize: 114.68 KB (114688 bytes)
MD5: ed841dd4260c6f9de301bca582973374
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 8, 2010
%WINDIR%\wndrive32.exe
File name: wndrive32.exeSize: 221.18 KB (221184 bytes)
MD5: 1a45d8351071278da4bdfe0113039957
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 7, 2010
%APPDATA%\Csrss\Csrss.exe
File name: Csrss.exeSize: 974.84 KB (974848 bytes)
MD5: 78a346ccfb0d00ef56fa6137d22fbb07
Detection count: 24
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Csrss
Group: Malware file
Last Updated: December 11, 2012
%PROGRAMFILES%\SystemDefender2010\Total PC Defender 2010.exe
File name: Total PC Defender 2010.exeSize: 1.38 MB (1389072 bytes)
MD5: ab85d830428865f09a0923bdab4b983b
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\SystemDefender2010
Group: Malware file
Last Updated: February 22, 2020
C:\RECYCLER\S-1-5-21-6305780954-5084163506-303073670-5858\syscr.exe
File name: syscr.exeSize: 172.03 KB (172032 bytes)
MD5: 4595474722f5fa8474b59f70131c8f32
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-6305780954-5084163506-303073670-5858
Group: Malware file
Last Updated: December 8, 2010
C:\RECYCLER\S-1-5-21-1657283940-8579061094-580776235-7563\syscr.exe
File name: syscr.exeSize: 270.33 KB (270336 bytes)
MD5: cddea5fd563122b40b1e0d127ed31dc6
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-1657283940-8579061094-580776235-7563
Group: Malware file
Last Updated: December 7, 2010
C:\RECYCLER\S-1-5-21-3109792477-9950501068-304057553-9064\playncr.exe
File name: playncr.exeSize: 143.36 KB (143360 bytes)
MD5: 808f1ff5604b3f22856882417e7fb535
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-3109792477-9950501068-304057553-9064
Group: Malware file
Last Updated: December 8, 2010
C:\RECYCLER\S-1-5-21-2847376599-0285806970-595223243-8120\syscr.exe
File name: syscr.exeSize: 163.84 KB (163840 bytes)
MD5: e3dcb1749c62492639ecd809b4e9596b
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-2847376599-0285806970-595223243-8120
Group: Malware file
Last Updated: December 8, 2010
C:\RECYCLER\S-1-5-21-7807973654-4389961666-345078708-1667\syscr.exe
File name: syscr.exeSize: 139.26 KB (139264 bytes)
MD5: 5e768f1eb19b938e6e0ebeb6092ebbfd
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-7807973654-4389961666-345078708-1667
Group: Malware file
Last Updated: December 8, 2010
%APPDATA%\WinDefender.exe
File name: WinDefender.exeSize: 313.85 KB (313856 bytes)
MD5: 64f3933fad19516d4b57ea5bfddc6f1d
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: November 30, 2010
%WINDIR%\system32\winxp.exe
File name: winxp.exeSize: 114.75 KB (114757 bytes)
MD5: 05b54de10aedbc035e1160a8cb6d5df5
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 8, 2010
%TEMP%\lssas.exe
File name: lssas.exeSize: 229.37 KB (229376 bytes)
MD5: 736226912d759a7f9c7ec8a553b6e012
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: December 9, 2010
%WINDIR%\bill110.exe
File name: bill110.exeSize: 77.82 KB (77824 bytes)
MD5: e6a11329ea74683612200bdaf9e9629f
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 7, 2010
c:\autoexec.exe
File name: autoexec.exeSize: 67.58 KB (67584 bytes)
MD5: 693b5aa7789578cb3b1fdcc7d7ce6f92
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: c:
Group: Malware file
Last Updated: December 8, 2010
C:\RECYCLER\S-1-5-41-8094331150-7535360172-934466618-9899\playmed.exe
File name: playmed.exeSize: 212.99 KB (212992 bytes)
MD5: 5fe6c0eb7aa2bade28fdc1ab29f19e38
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-41-8094331150-7535360172-934466618-9899
Group: Malware file
Last Updated: December 8, 2010
C:\RECYCLER\S-1-5-41-5586778311-7523244154-327669984-4753\playmed.exe
File name: playmed.exeSize: 270.33 KB (270336 bytes)
MD5: 9b630b74bb5f8fc5cb1e8d687d211b03
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-41-5586778311-7523244154-327669984-4753
Group: Malware file
Last Updated: December 7, 2010
%APPDATA%\bdepdf.exe
File name: bdepdf.exeSize: 112.24 KB (112248 bytes)
MD5: d940645128ae266164114f61e078c981
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 7, 2010
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.