Threat Search: 

ThreatExpert's Statistics for BackDoor-CEP.svr [McAfee]:

BackDoor-CEP.svr [McAfee] is also known as:
Threat AliasNumber of Incidents
Backdoor:Win32/Bifrose.ACI [Microsoft]591
Trojan.Win32.Agent.bcn [Kaspersky Lab]584
Trojan Horse [Symantec]455
Backdoor.Bifrose [Symantec]397
Win-Trojan/Bifrose.29053 [AhnLab]381
Virus.Win32.Bifrose [Ikarus]363
Backdoor.Bifrose [PC Tools]317
BKDR_BIFROSE.AFU [Trend Micro]313
Infostealer [Symantec]268
BKDR_BIFROSE.MIC [Trend Micro]255
Trojan.Agent.CZZK [PC Tools]212
Troj/Agent-JZZ [Sophos]148
Mal/Bifrose-R, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A, Mal/Bifrose-E [Sophos]142
BKDR_BIFROSE.AIP [Trend Micro]136
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A, Mal/Bifrose-E [Sophos]133
Backdoor.Bifrose.AHY [PC Tools]124
Backdoor:Win32/Bifrose.gen!C [Microsoft]86
Backdoor.Win32.Bifrose.fmv [Kaspersky Lab]84
Backdoor.Win32.Bifrose [Ikarus]76
Backdoor.Win32.Bifrose.aci [Kaspersky Lab]63
Backdoor:Win32/Bifrose [Microsoft]63
Mal/Generic-A [Sophos]63
VirTool.Win32.VBInject [Ikarus]54
Backdoor.Bifrose.RH.Gen [PC Tools]53
BKDR_BIFROSE.BQL [Trend Micro]48
Backdoor.Bifrose [Ikarus]43
Trojan.Win32.Pakes [Kaspersky Lab]42
VirTool:Win32/VBInject.gen!U [Microsoft]42
Backdoor.Bifrost [Ikarus]40
Troj/VB-EBX [Sophos]39
BKDR_BIFROSE.AQR [Trend Micro]38
Troj/Agent-HBG [Sophos]36
Backdoor:Win32/Bifrose.FO [Microsoft]35
Dropper/Agent.29565 [AhnLab]32
Backdoor.Trojan [Symantec]31
Backdoor.Win32.Ciadoor.gn [Kaspersky Lab]31
Backdoor.Win32.Bifrose.fny [Kaspersky Lab]30
Backdoor.Win32.Bifrose.bgn [Kaspersky Lab]28
Mal/Bifrose-R, Mal/Bifrose-E [Sophos]27
Trojan.Agent.AEAN [PC Tools]23
Packed.Win32.Black.a [Kaspersky Lab]22
Troj/Bifrose-UP [Sophos]22
Backdoor.Win32.Bifrose.cnx [Kaspersky Lab]21
Mal/Behav-285 [Sophos]20
Mal/Bifrose-E [Sophos]17
Virus:Win32/Sality.AM [Microsoft]17
Backdoor.Bifrose.E [Symantec]16
Backdoor.Bifrost.AHK [PC Tools]16
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E, Mal/Bifrose-R, Mal/Bifrose-A, Mal/Bifrose-R, Mal/Bifrose-A [Sophos]16
Backdoor.Bifrose.ABO [PC Tools]15
Packed.Win32.Krap.c [Kaspersky Lab]15
VirTool.Win32.DelfInject [Ikarus]15
Mal/Bifrose-R [Sophos]14
Mal/Bifrose-Y, Mal/Bifrose-R, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A [Sophos]14
W32/Sality-AM [Sophos]14
Win-Trojan/Xema.variant [AhnLab]14
BKDR_BIFROSE.BAO [Trend Micro]13
Mal/Bifrose-H, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E [Sophos]13
Packer.PrivateExeProtector.A [Ikarus]13
TROJ_Generic [Trend Micro]13
Backdoor.Bifrose!sd6 [PC Tools]12
Backdoor.Bifrose.K [Symantec]12
Backdoor.Bifrose.LV [PC Tools]12
Backdoor.Win32.Bifrose.la [Kaspersky Lab]12
Backdoor:Win32/Bifrose.gen!D [Microsoft]12
Email-Worm.Agent!sd5 [PC Tools]12
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E [Sophos]11
Mal/Bifrose-I, Mal/Bifrose-J [Sophos]11
Trojan.Pakes!sd5 [PC Tools]11
Win-Trojan/Bifrose.29053.AW [AhnLab]11
WORM_SDBOT.GAV [Trend Micro]11
Backdoor.Bifrose.AAH [PC Tools]10
IRC Trojan [Symantec]10
Mal/EncPk-FL, Mal/EncPk-IT [Sophos]10
Mal/Generic-E, Mal/Bifrose-R, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A [Sophos]10
Packed.Generic.52 [Symantec]10
Trojan.Generic [Ikarus]10
W32.Sality.AE [Symantec]10
Backdoor.Bifrose.AAW [PC Tools]9
Backdoor.Bifrose.F [Symantec]9
Backdoor.Win32.Bifrose.agq [Kaspersky Lab]9
Backdoor.Win32.Bifrose.aiw [Kaspersky Lab]9
Backdoor.Win32.Bifrose.bkr [Kaspersky Lab]9
Backdoor.Win32.IRCBot [Ikarus]9
BKDR_AGENT.ZPD [Trend Micro]9
BKDR_BIFROSE.ANN [Trend Micro]9
BKDR_BIFROSE.BAV [Trend Micro]9
BKDR_BIFROSE.S [Trend Micro]9
BKDR_BIFROSE.ZE [Trend Micro]9
Bloodhound.Unknown [Symantec]9
Email-Worm.Win32.Agent.ah [Kaspersky Lab]9
Win-Trojan/Bifrose.27517 [AhnLab]9
Win-Trojan/Bifrose.29053.AP [AhnLab]9
Win-Trojan/Krap.56559 [AhnLab]9
Backdoor.Win32.Bifrose.acl [Kaspersky Lab]8
Backdoor.Win32.Bifrose.bwp [Kaspersky Lab]8
BKDR_BIFROSE.BFB [Trend Micro]8
Mal_Bfrs-1 [Trend Micro]8
Packed/Themida [PC Tools]8
Troj/Agent-HTK [Sophos]8

BackDoor-CEP.svr [McAfee] has the following possible countries of origin:
OriginNumber of Incidents
Sweden750
Spain19
Germany17
China7
Brazil4
Italy2
Russian Federation2
Switzerland2
Turkey2
Canada1
France1
Israel1
United Kingdom1

BackDoor-CEP.svr [McAfee] is known to be created as:
%AppData%\alg.exe
%AppData%\flashsdk.exe
%AppData%\ftpd.exe
%AppData%\iexplore.exe
%AppData%\msn.exe
%AppData%\server.exe
%AppData%\setup.exe
%AppData%\svchost.exe
%AppData%\svchost\svchost.exe
%AppData%\taskman.exe
%AppData%\update.exe
%AppData%\win.exe
%CommonAppData%\microsoft\update.exe
%CommonPrograms%\startup\4444.exe
%CommonPrograms%\startup\81.exe
%LocalSettings%\smamax.exe
%LocalSettings%\tempservices.exe
%LocalSettings%\temptmp.exe
%ProgramFiles%\ messenger\server.exe
%ProgramFiles%\123\imagen1.exe
%ProgramFiles%\187\186.exe
%ProgramFiles%\65487\servec.exe
%ProgramFiles%\7zip\7zip.exe
%ProgramFiles%\acd systemms\acdsee.exe
%ProgramFiles%\adobe\claylife2.exe
%ProgramFiles%\adobe\system36.exe
%ProgramFiles%\alcohol soft\config.exe
%ProgramFiles%\antivirus\xxx.exe
%ProgramFiles%\antivirus1\server.exe
%ProgramFiles%\avscan\avscan.exe
%ProgramFiles%\batch image\batch-image.exe
%ProgramFiles%\bifrost 1.2d\server.exe
%ProgramFiles%\bifrost\abd.exe
%ProgramFiles%\bifrost\antivirus32.exe
%ProgramFiles%\bifrost\b5.exe
%ProgramFiles%\bifrost\bifrost.exe
%ProgramFiles%\bifrost\cmd32.exe
%ProgramFiles%\bifrost\dark.exe
%ProgramFiles%\bifrost\dexter.exe
%ProgramFiles%\bifrost\kos.exe
%ProgramFiles%\bifrost\log.exe
%ProgramFiles%\bifrost\lol2.exe
%ProgramFiles%\bifrost\love.exe
%ProgramFiles%\bifrost\msngr.exe
%ProgramFiles%\bifrost\msnplus.exe
%ProgramFiles%\bifrost\nera.exe
%ProgramFiles%\bifrost\osl.exe
%ProgramFiles%\bifrost\photo.exe
%ProgramFiles%\bifrost\pir.exe
%ProgramFiles%\bifrost\playagain.exe
%ProgramFiles%\bifrost\savsae.exe
%ProgramFiles%\bifrost\secret.exe
%ProgramFiles%\bifrost\server.exe
%ProgramFiles%\bifrost\sexy.exe
%ProgramFiles%\bifrost\svchostt.exe
%ProgramFiles%\bifrost\system.exe
%ProgramFiles%\bifrost\taskmngr.exe
%ProgramFiles%\bifrost\win32ie.exe
%ProgramFiles%\bifrost\windows.exe
%ProgramFiles%\bifrost\windows123.exe
%ProgramFiles%\bifrost\winupd.exe
%ProgramFiles%\bifrost\wu_crack.exe
%ProgramFiles%\bitfrost\updater.exe
%ProgramFiles%\cat.jpg\server.exe
%ProgramFiles%\common files\ahc.exe
%ProgramFiles%\common files\mssearch.exe
%ProgramFiles%\common files\taskmgr.exe
%ProgramFiles%\complus applications\svchost.exe
%ProgramFiles%\components\component.exe
%ProgramFiles%\config\karimhikal.exe
%ProgramFiles%\config32\system36.exe
%ProgramFiles%\ddddddd\dddddd.exe
%ProgramFiles%\der konig\server.exe
%ProgramFiles%\dll32\unicollws.exe
%ProgramFiles%\dllcache\aces_high.exe
%ProgramFiles%\drive\drive.exe
%ProgramFiles%\driver\spooler.exe
%ProgramFiles%\driverss\server.exe
%ProgramFiles%\drv32z\ksjdssdaf.exe
%ProgramFiles%\explorer\mediaplayer.exe
%ProgramFiles%\flashupdate\flashupd.exe
%ProgramFiles%\flashvideo\uninstaller.exe
%ProgramFiles%\google\google.exe
%ProgramFiles%\here\svchostx.exe
%ProgramFiles%\icqq\icq5.exe
%ProgramFiles%\inf\win86.exe
%ProgramFiles%\internet\windowspak.exe
%ProgramFiles%\java2\java.exe
%ProgramFiles%\javasdk.exe
%ProgramFiles%\loki\server.exe
%ProgramFiles%\mesenger\windows.exe
%ProgramFiles%\messenger live\msnmsngr.exe
%ProgramFiles%\messenger live\server.exe
%ProgramFiles%\messenger\messenger.exe
%ProgramFiles%\messenger\msnsnm.exe
%ProgramFiles%\messenger\svchost.exe
%ProgramFiles%\messenger\update.exe
%ProgramFiles%\messenger2\server.exe
%ProgramFiles%\messenger9\update.exe
%ProgramFiles%\messengerplus\server.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
  • %CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
  • %LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.