Backdoor.Win32.NetWiredRC.kfd removal

The Backdoor.Win32.NetWiredRC.kfd is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Backdoor.Win32.NetWiredRC.kfd virus can do?

Executable code extraction
Creates RWX memory
Unconventionial language used in binary resources: Chinese (Traditional)
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Backdoor.Win32.NetWiredRC.kfd?


File Info:
crc32: 01EC2326
md5: b7420d0049ac9915fd41c658550279d6
name: nsdfxcxcgffd.exe
sha1: 20f1fc9d8ac9554bb7f22a0b8abb7739aa24f374
sha256: e363f61816ee9a72c1125fd021b4edfe544850ec84d79e9e69988c1db636f843
sha512: 2cc175a2d5aa64517228b02ed809b95a863ca437deba7850029827620837a99914950cbf30240acc063d1c2ece25fcf50883b465f562e8ad5bb85b3f121b5786
ssdeep: 1536:6PEjeJ4OlKvtXTlWDLakuTnTlNtHjeJ4OlK:DjeJ4O0VTl9nTlNpjeJ4O
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0404 0x04b0
InternalName: diversifi
FileVersion: 1.00
CompanyName: Udslyngni2
Comments: afgudsdy
ProductName: infoli
ProductVersion: 1.00
OriginalFilename: diversifi.exe

Backdoor.Win32.NetWiredRC.kfd also known as:

MicroWorld-eScan	Trojan.GenericKD.33022673
FireEye	Generic.mg.b7420d0049ac9915
Qihoo-360	Win32/Backdoor.762
McAfee	Fareit-FRI!B7420D0049AC
Sangfor	Malware
K7AntiVirus	Trojan ( 0055fd401 )
BitDefender	Trojan.GenericKD.33022673
BitDefenderTheta	Gen:NN.ZevbaF.34084.em0@a0nRYUjb
Symantec	ML.Attribute.HighConfidence
Paloalto	generic.ml
GData	Trojan.GenericKD.33022673
Kaspersky	Backdoor.Win32.NetWiredRC.kfd
APEX	Malicious
Ad-Aware	Trojan.GenericKD.33022673
Sophos	Mal/FareitVB-X
DrWeb	Trojan.DownLoader32.56995
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Trojan.lm
Trapmine	malicious.moderate.ml.score
Emsisoft	Trojan.GenericKD.33022673 (B)
SentinelOne	DFI – Suspicious PE
Webroot	W32.Trojan.Gen
Arcabit	Trojan.Generic.D1F7E2D1
ZoneAlarm	Backdoor.Win32.NetWiredRC.kfd
Microsoft	Trojan:Win32/Wacatac.C!ml
ALYac	Trojan.GenericKD.33022673
MAX	malware (ai score=88)
Panda	Trj/GdSda.A
ESET-NOD32	a variant of Win32/Injector.EKIC
Tencent	Win32.Backdoor.Netwiredrc.Pepe
Ikarus	Trojan.Win32.Krypt
Fortinet	W32/GenKryptik.EDJJ!tr
AVG	FileRepMalware
CrowdStrike	win/malicious_confidence_80% (W)

How to remove Backdoor.Win32.NetWiredRC.kfd?

Backdoor.Win32.NetWiredRC.kfd removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X