Backdoor.Win32.NewRest.bc

By Sumo3000 in Trojans

Translate To:

Backdoor.Win32.NewRest.bc is a Trojan with the Stealth-mode traits of a rootkit. On infiltration of a system, Backdoor.Win32.NewRest.bc is able to open a backdoor that gives an attacker remote access to an infected computer. Backdoor.Win32.NewRest.bc will put your confidential information at risk and allow for additional infections to be installed onto your PC. Backdoor.Win32.NewRest.bc is dangerous and should be removed.

Aliases

1 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
-	Virus.Win32.Virut.ce

File System Details

Backdoor.Win32.NewRest.bc may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%ProgramFiles%\Internet Explorer\Connection Wizard\icwconn1.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\icwconn1.exe Type: Executable File
2.	%ProgramFiles%\Internet Explorer\Connection Wizard\icwtutor.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\icwtutor.exe Type: Executable File
3.	%ProgramFiles%\Internet Explorer\iedw.exe
Name: %ProgramFiles%\Internet Explorer\iedw.exe Type: Executable File
4.	%ProgramFiles%\MSN\MsnInstaller\msninst.exe
Name: %ProgramFiles%\MSN\MsnInstaller\msninst.exe Type: Executable File
5.	%ProgramFiles%\NetMeeting\wb32.exe
Name: %ProgramFiles%\NetMeeting\wb32.exe Type: Executable File
6.	%ProgramFiles%\Outlook Express\setup50.exe
Name: %ProgramFiles%\Outlook Express\setup50.exe Type: Executable File
7.	%ProgramFiles%\Web Publish\WPWIZ.EXE
Name: %ProgramFiles%\Web Publish\WPWIZ.EXE Type: Executable File
8.	%ProgramFiles%\Windows Media Player\setup_wm.exe
Name: %ProgramFiles%\Windows Media Player\setup_wm.exe Type: Executable File
9.	%ProgramFiles%\Windows NT\dialer.exe
Name: %ProgramFiles%\Windows NT\dialer.exe Type: Executable File
10.	%Windir%\Cache\Adobe Reader 6.0.1\ENUBIG\setup.exe
Name: %Windir%\Cache\Adobe Reader 6.0.1\ENUBIG\setup.exe Type: Executable File
11.	%Windir%\Installer\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe
Name: %Windir%\Installer\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe Type: Executable File
12.	%Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe Type: Executable File
13.	%Windir%\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe Type: Executable File
14.	%Windir%\Microsoft.NET\Framework\v2.0.50727\jsc.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\jsc.exe Type: Executable File
15.	%Windir%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe Type: Executable File
16.	%Windir%\NOTEPAD.EXE
Name: %Windir%\NOTEPAD.EXE Type: Executable File
17.	%Windir%\pchealth\helpctr\binaries\HelpSvc.exe
Name: %Windir%\pchealth\helpctr\binaries\HelpSvc.exe Type: Executable File
18.	%Windir%\pchealth\helpctr\binaries\notiflag.exe
Name: %Windir%\pchealth\helpctr\binaries\notiflag.exe Type: Executable File
19.	%System%\accwiz.exe
Name: %System%\accwiz.exe Type: Executable File
20.	%System%\arp.exe
Name: %System%\arp.exe Type: Executable File
21.	%System%\asr_pfu.exe
Name: %System%\asr_pfu.exe Type: Executable File
22.	%System%\attrib.exe
Name: %System%\attrib.exe Type: Executable File
23.	%System%\bootcfg.exe
Name: %System%\bootcfg.exe Type: Executable File
24.	%System%\cacls.exe
Name: %System%\cacls.exe Type: Executable File
25.	%System%\chkdsk.exe
Name: %System%\chkdsk.exe Type: Executable File
26.	%System%\cipher.exe
Name: %System%\cipher.exe Type: Executable File
27.	%System%\cleanmgr.exe
Name: %System%\cleanmgr.exe Type: Executable File
28.	%System%\clipbrd.exe
Name: %System%\clipbrd.exe Type: Executable File
29.	%System%\cmdl32.exe
Name: %System%\cmdl32.exe Type: Executable File
30.	%System%\Com\comrepl.exe
Name: %System%\Com\comrepl.exe Type: Executable File
31.	%System%\compact.exe
Name: %System%\compact.exe Type: Executable File
32.	%System%\convert.exe
Name: %System%\convert.exe Type: Executable File
33.	%System%\dcomcnfg.exe
Name: %System%\dcomcnfg.exe Type: Executable File
34.	%Temp%\7zS1.tmp\keygen.exe
Name: %Temp%\7zS1.tmp\keygen.exe Type: Executable File
35.	[pathname with a string SHARE]\sapisvr.exe
Name: [pathname with a string SHARE]\sapisvr.exe Type: Executable File
36.	%ProgramFiles%\Internet Explorer\Connection Wizard\icwrmind.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\icwrmind.exe Type: Executable File
37.	%ProgramFiles%\Internet Explorer\Connection Wizard\isignup.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\isignup.exe Type: Executable File
38.	%ProgramFiles%\MSN\MSNIA\prestp.exe
Name: %ProgramFiles%\MSN\MSNIA\prestp.exe Type: Executable File
39.	%ProgramFiles%\NetMeeting\conf.exe
Name: %ProgramFiles%\NetMeeting\conf.exe Type: Executable File
40.	%ProgramFiles%\Outlook Express\oemig50.exe
Name: %ProgramFiles%\Outlook Express\oemig50.exe Type: Executable File
41.	%ProgramFiles%\Outlook Express\wabmig.exe
Name: %ProgramFiles%\Outlook Express\wabmig.exe Type: Executable File
42.	%ProgramFiles%\Windows Media Player\mplayer2.exe
Name: %ProgramFiles%\Windows Media Player\mplayer2.exe Type: Executable File
43.	%ProgramFiles%\Windows NT\Accessories\wordpad.exe
Name: %ProgramFiles%\Windows NT\Accessories\wordpad.exe Type: Executable File
44.	%ProgramFiles%\Windows NT\Pinball\PINBALL.EXE
Name: %ProgramFiles%\Windows NT\Pinball\PINBALL.EXE Type: Executable File
45.	%Windir%\inf\unregmp2.exe
Name: %Windir%\inf\unregmp2.exe Type: Executable File
46.	%Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe Type: Executable File
47.	%Windir%\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\CasPol.exe Type: Executable File
48.	%Windir%\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe Type: Executable File
49.	%Windir%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe Type: Executable File
50.	%Windir%\mui\muisetup.exe
Name: %Windir%\mui\muisetup.exe Type: Executable File
51.	%Windir%\pchealth\helpctr\binaries\HelpHost.exe
Name: %Windir%\pchealth\helpctr\binaries\HelpHost.exe Type: Executable File
52.	%Windir%\pchealth\helpctr\binaries\msconfig.exe
Name: %Windir%\pchealth\helpctr\binaries\msconfig.exe Type: Executable File
53.	%Windir%\regedit.exe
Name: %Windir%\regedit.exe Type: Executable File
54.	%System%\ahui.exe
Name: %System%\ahui.exe Type: Executable File
55.	%System%\asr_ldm.exe
Name: %System%\asr_ldm.exe Type: Executable File
56.	%System%\atmadm.exe
Name: %System%\atmadm.exe Type: Executable File
57.	%System%\blastcln.exe
Name: %System%\blastcln.exe Type: Executable File
58.	%System%\bootvrfy.exe
Name: %System%\bootvrfy.exe Type: Executable File
59.	%System%\charmap.exe
Name: %System%\charmap.exe Type: Executable File
60.	%System%\cidaemon.exe
Name: %System%\cidaemon.exe Type: Executable File
61.	%System%\ckcnv.exe
Name: %System%\ckcnv.exe Type: Executable File
62.	%System%\cliconfg.exe
Name: %System%\cliconfg.exe Type: Executable File
63.	%System%\cmd.exe
Name: %System%\cmd.exe Type: Executable File
64.	%System%\cmstp.exe
Name: %System%\cmstp.exe Type: Executable File
65.	%System%\comp.exe
Name: %System%\comp.exe Type: Executable File
66.	%System%\control.exe
Name: %System%\control.exe Type: Executable File
67.	%System%\ctfmon.exe
Name: %System%\ctfmon.exe Type: Executable File
68.	%Temp%\7zS1.tmp\patch.exe
Name: %Temp%\7zS1.tmp\patch.exe Type: Executable File
69.	[pathname with a string SHARE]\msinfo32.exe
Name: [pathname with a string SHARE]\msinfo32.exe Type: Executable File
70.	%ProgramFiles%\Internet Explorer\Connection Wizard\icwconn2.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\icwconn2.exe Type: Executable File
71.	%ProgramFiles%\Internet Explorer\Connection Wizard\inetwiz.exe
Name: %ProgramFiles%\Internet Explorer\Connection Wizard\inetwiz.exe Type: Executable File
72.	%ProgramFiles%\MSN\MSNIA\msniasvc.exe
Name: %ProgramFiles%\MSN\MSNIA\msniasvc.exe Type: Executable File
73.	%ProgramFiles%\NetMeeting\cb32.exe
Name: %ProgramFiles%\NetMeeting\cb32.exe Type: Executable File
74.	%ProgramFiles%\Outlook Express\msimn.exe
Name: %ProgramFiles%\Outlook Express\msimn.exe Type: Executable File
75.	%ProgramFiles%\Outlook Express\wab.exe
Name: %ProgramFiles%\Outlook Express\wab.exe Type: Executable File
76.	%ProgramFiles%\Windows Media Player\migrate.exe
Name: %ProgramFiles%\Windows Media Player\migrate.exe Type: Executable File
77.	%ProgramFiles%\Windows Media Player\wmplayer.exe
Name: %ProgramFiles%\Windows Media Player\wmplayer.exe Type: Executable File
78.	%ProgramFiles%\Windows NT\hypertrm.exe
Name: %ProgramFiles%\Windows NT\hypertrm.exe Type: Executable File
79.	%Windir%\hh.exe
Name: %Windir%\hh.exe Type: Executable File
80.	%Windir%\Microsoft.NET\Framework\NETFXSBS10.exe
Name: %Windir%\Microsoft.NET\Framework\NETFXSBS10.exe Type: Executable File
81.	%Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe Type: Executable File
82.	%Windir%\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\IEExec.exe Type: Executable File
83.	%Windir%\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
Name: %Windir%\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe Type: Executable File
84.	%Windir%\msagent\agentsvr.exe
Name: %Windir%\msagent\agentsvr.exe Type: Executable File
85.	%Windir%\pchealth\helpctr\binaries\HelpCtr.exe
Name: %Windir%\pchealth\helpctr\binaries\HelpCtr.exe Type: Executable File
86.	%Windir%\pchealth\helpctr\binaries\HscUpd.exe
Name: %Windir%\pchealth\helpctr\binaries\HscUpd.exe Type: Executable File
87.	%Windir%\pchealth\UploadLB\Binaries\UploadM.exe
Name: %Windir%\pchealth\UploadLB\Binaries\UploadM.exe Type: Executable File
88.	%System%\actmovie.exe
Name: %System%\actmovie.exe Type: Executable File
89.	%System%\asr_fmt.exe
Name: %System%\asr_fmt.exe Type: Executable File
90.	%System%\at.exe
Name: %System%\at.exe Type: Executable File
91.	%System%\auditusr.exe
Name: %System%\auditusr.exe Type: Executable File
92.	%System%\bootok.exe
Name: %System%\bootok.exe Type: Executable File
93.	%System%\calc.exe
Name: %System%\calc.exe Type: Executable File
94.	%System%\chkntfs.exe
Name: %System%\chkntfs.exe Type: Executable File
95.	%System%\cisvc.exe
Name: %System%\cisvc.exe Type: Executable File
96.	%System%\clean_all.exe
Name: %System%\clean_all.exe Type: Executable File
97.	%System%\clipsrv.exe
Name: %System%\clipsrv.exe Type: Executable File
98.	%System%\cmmon32.exe
Name: %System%\cmmon32.exe Type: Executable File
99.	%System%\Com\comrereg.exe
Name: %System%\Com\comrereg.exe Type: Executable File
100.	%System%\conime.exe
Name: %System%\conime.exe Type: Executable File
101.	%System%\cscript.exe
Name: %System%\cscript.exe Type: Executable File
102.	%System%\ddeshare.exe
Name: %System%\ddeshare.exe Type: Executable File
103.	%Temp%\7zS1.tmp\serial.exe
Name: %Temp%\7zS1.tmp\serial.exe Type: Executable File
104.	[file and pathname of the sample #1]
Name: [file and pathname of the sample #1]
105.	%Temp%\4.tmp
Name: %Temp%\4.tmp Type: Temporary File

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Backdoor.Win32.NewRest.bc

Aliases

File System Details

Submit Comment

Trending

Rzfu Ransomware

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen