Troj/Bifrose-TO

Category: Viruses and SpywareProtection available since:08 Mar 2007 00:00:00 (GMT)
Type: TrojanLast Updated:08 Mar 2007 00:00:00 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Bifrose-TO is a Trojan for the Windows platform.

When run, Troj/Bifrose-TO copies itself as <system>\antivir.exe. The following registry entries are added to hook system startup:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
startkey
<system>\antivir.exe

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}
stubpath
<system>\antivir.exe s

Troj/Bifrose-TO also drops the following files:

<system>\plugin1.dat (may be deleted)
<system>\SysPr.prx (may be deleted)

Troj/Bifrose-TO stores configuration data within the following registry entry:

HKCU\Software\Wget