Jump to content


Photo

Backdoor.Bifrose ? in Windows Installer...


  • Please log in to reply
5 replies to this topic

#1 jerome

jerome

    New Member

  • Members
  • Pip
  • 17 posts
  • Location:Paris, France.

Posted 30 March 2012 - 06:49 AM

Hello,
I use Mawarebytes Anti-Malware free each day to scan my computer.
It is allways clean, nothing and no false positive.
Today with v2012.03.30.02 it finds this:

Fichier(s) détecté(s): 1
C:\Windows\Installer\{9112040C-6000-11D3-8CFE-0150048383C9}\misc.exe (Backdoor.Bifrose) -> Aucune action effectuée.

I ran a new scan as mbam.exe /developer
The log is attached.
False positive I suppose?
Regards,
Jérôme.
Jerome
Windows Vista home premium 32 bits SP2. McAfee securiyy suite updated. Malwarebytes' Anti-Malwares free, Emsisoft Anti-Malware free (just to run scans on demand)

#2 sUBs

sUBs

    Forum Deity

  • Moderators
  • PipPipPipPipPipPip
  • 8,313 posts

Posted 30 March 2012 - 06:56 AM

C:\Windows\Installer\{9112040C-6000-11D3-8CFE-0150048383C9}\misc.exe

Hello, please zip & then attach the above file to your next post.
sUBs
Research Engineer

Posted Image

Follow us: Twitter, Become a fan: Facebook

#3 jerome

jerome

    New Member

  • Members
  • Pip
  • 17 posts
  • Location:Paris, France.

Posted 30 March 2012 - 06:56 AM

Attached File  mbam-log-2012-03-30 (13-46-52).zip   946bytes   24 downloads
Jerome
Windows Vista home premium 32 bits SP2. McAfee securiyy suite updated. Malwarebytes' Anti-Malwares free, Emsisoft Anti-Malware free (just to run scans on demand)

#4 sUBs

sUBs

    Forum Deity

  • Moderators
  • PipPipPipPipPipPip
  • 8,313 posts

Posted 30 March 2012 - 07:01 AM

Hello, there's no need for the file. We understand which def which is causing the False Positive.

This shall be fixed in our next update. Thanks for reporting this.
sUBs
Research Engineer

Posted Image

Follow us: Twitter, Become a fan: Facebook

#5 jerome

jerome

    New Member

  • Members
  • Pip
  • 17 posts
  • Location:Paris, France.

Posted 30 March 2012 - 07:07 AM

Thank you for your quick answer.
I was almost sure it was aFP: I know my way to browse ant it is safe!
I'll do a scan tomorrow to check this.
Regards.
Jerome
Windows Vista home premium 32 bits SP2. McAfee securiyy suite updated. Malwarebytes' Anti-Malwares free, Emsisoft Anti-Malware free (just to run scans on demand)

#6 jerome

jerome

    New Member

  • Members
  • Pip
  • 17 posts
  • Location:Paris, France.

Posted 30 March 2012 - 09:50 AM

Thank you, it is fixed with v2012.03.30.04!!!
Scan clean as usual.
Regards,
Jerome
Windows Vista home premium 32 bits SP2. McAfee securiyy suite updated. Malwarebytes' Anti-Malwares free, Emsisoft Anti-Malware free (just to run scans on demand)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users