Topic: Backdoor trojan detected in Graphics pack

Kaspersky 2009 reports the following:

Detected: Backdoor.Win32.Bifrose.xgd
DPGB804.7z/D/G/M1/matrox.exe/PE_Patch.UPX/UPX/PDESKSE.msi/WiseCustomCalla21       

I'm not sure if this is a false negative.

Re: Backdoor trojan detected in Graphics pack

Oh that is hilarious! big_smile
I can assure you there is no virus in that DriverPacks!
Scanned today with Symantec Endpoint Protection v11...clean

Read BEFORE you post.  HWID tool   DriverPacks Tutorial   DONATE!
http://driverpacks.net/userbar/admin-1.png
Not all heroes wear capes, some wear Kevlar!

Re: Backdoor trojan detected in Graphics pack

Kaspersky 2009 8.0.0.454 not find this virus with updated virus-database! DP is clear!

Worked on Windows 8.1 Pro

Re: Backdoor trojan detected in Graphics pack

morpheus wrote:

I'm not sure if this is a false negative.

False positive, if at all. wink

http://www.virustotal.com/
http://virusscan.jotti.org/

Upload the file in question here and have it scanned by 20+ different engines of well-known virus scanners.
Then you can tell by yourself whether it's your scanner or a real virus/trojan/malware thing.

It's worth bookmarking these, btw.
I'd recommend scanning any file you got from the net and find somewhat suspicious.

Saves you and other from getting hysterical over a false positive report wink

(not saying we get many of these and certainly we do not mind reports but still it's better to make sure first smile)

Re: Backdoor trojan detected in Graphics pack

Kasperky Labs confirmed this is indeed a false positive. They are trying to figure out why.

It is not that I'm completely hysterical about it, I'm just laying it out. Thanks for the links Helmi, although I actually know the guy behind http://virusscan.jotti.org pretty good. (Hence, I know the page)

Re: Backdoor trojan detected in Graphics pack

Kasperky and Avast are both notorious for false positives AND for missing some of the more stealthy viruii.

Better to Pay for something like Trend or McAfee Enterprise.  Stay away from Norton.

Re: Backdoor trojan detected in Graphics pack

morpheus wrote:

It is not that I'm completely hysterical about it, I'm just laying it out.

Yeah, not trying to say you were, just a general note smile
Thing is, it may get others hysterical if they see the post and just because it's one virus scanner sounding an alarm does not mean it's a definate sign (hence the online scanners).
OTOH, if you do not post about it we wouldn't have a chance to check it out, so I'm fine with posting.
Just advising to always take such warnings with a grain of salt.

newsposter wrote:

Kasperky and Avast are both notorious for false positives AND for missing some of the more stealthy viruii.

That's news for me with Kas, but I do know Avast and AntiVir for this behaviour.

Better to Pay for something like Trend or McAfee Enterprise.  Stay away from Norton.

Personally, I'm a friend of NOD32.

But indeed, Norton should be avoided, unless you get the professional (as in for companies) solution like Endpoint Protection.

Re: Backdoor trojan detected in Graphics pack

NOD32 3.0.669.0 Smart Security didnt find any virus in the packs.

Re: Backdoor trojan detected in Graphics pack

That's because there isn't any! big_smile

Read BEFORE you post.  HWID tool   DriverPacks Tutorial   DONATE!
http://driverpacks.net/userbar/admin-1.png
Not all heroes wear capes, some wear Kevlar!

Re: Backdoor trojan detected in Graphics pack

Oh, 669 is out already?

/goes to grab it