Backdoor

Backdoor:Win32/Dunsenr.B removal instruction

Malware Removal

The Backdoor:Win32/Dunsenr.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor:Win32/Dunsenr.B virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

Related domains:

www.iojjek.com

How to determine Backdoor:Win32/Dunsenr.B?



File Info:

crc32: AC8DD19A
md5: 186f872df8d8aa82739c75809529cdf0
name: 186F872DF8D8AA82739C75809529CDF0.mlw
sha1: 3bf83377182ef67f3838a51a9a5b1b44b778589a
sha256: 5ed72c0d867a4e4baa7e98accd62b404c1ed796acffdf9150aa5d1bf8a8dd849
sha512: 265721526195daf102249aacf67b33777498bb97f526a8be2a186d395a19bb9a869bd80c35cf086a73d480f3a80b93ee482859c9dcb0f099d41e96174d6759f0
ssdeep: 1536:z3OlDbyIw64lc/DPxRrAZ9sep0EU3lnouy8Q3qCJHQX2oooD+AyxArHIVJ96:alCI7vDZRrcv0EQ9outQa2HQXMmHIc
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: x7248x6743x6240x6709 (C) 2013
InternalName: 
FileVersion: 6, 0, 2900, 5512
CompanyName: 
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: Microsoft 
SpecialBuild: 
ProductVersion: 6.00.2900.5512
FileDescription: Microsoft(R) Windows(R) Operating System
OriginalFilename: 
Translation: 0x0804 0x04b0

Backdoor:Win32/Dunsenr.B also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0040f91f1 )
Elasticmalicious (high confidence)
DrWebTrojan.Click3.3888
CynetMalicious (score: 100)
ALYacGen:Trojan.Heur.emKfrzKOXwfbh
CylanceUnsafe
ZillyaTrojan.Agent2.Win32.27452
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaBackdoor:Win32/Dunsenr.afa78c6b
K7GWTrojan ( 0040f91f1 )
Cybereasonmalicious.df8d8a
BaiduWin32.Trojan.Kryptik.gp
CyrenW32/Trojan-Gypikon-based.BA!Max
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Agent.QMU
APEXMalicious
AvastWin32:TrojanX-gen [Trj]
ClamAVWin.Trojan.Agent-1377959
KasperskyPacked.Win32.Gena.b
BitDefenderGen:Trojan.Heur.emKfrzKOXwfbh
NANO-AntivirusTrojan.Win32.PolyCrypt.dpmihi
MicroWorld-eScanGen:Trojan.Heur.emKfrzKOXwfbh
TencentMalware.Win32.Gencirc.10b31ddd
Ad-AwareGen:Trojan.Heur.emKfrzKOXwfbh
SophosMal/Generic-R + Mal/EncPk-AMI
ComodoTrojWare.Win32.Agent.GFBT@5eayhy
BitDefenderThetaAI:Packer.C5E5EDD81D
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0DK121
McAfee-GW-EditionGenericRXEY-BF!186F872DF8D8
FireEyeGeneric.mg.186f872df8d8aa82
EmsisoftGen:Trojan.Heur.emKfrzKOXwfbh (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Crypt.CFI.Gen
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.B46134
MicrosoftBackdoor:Win32/Dunsenr.B
SUPERAntiSpywareTrojan.Agent/Gen-Gypikon
GDataGen:Trojan.Heur.emKfrzKOXwfbh
AhnLab-V3Trojan/Win32.Agent.R110567
McAfeeGenericRXEY-BF!186F872DF8D8
MAXmalware (ai score=89)
VBA32TScope.Malware-Cryptor.SB
PandaTrj/Genetic.gen
RisingBackdoor.Win32.Dunsenr.bb (CLASSIC)
IkarusTrojan.Win32.Agent2
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.5325!tr
AVGWin32:TrojanX-gen [Trj]
Paloaltogeneric.ml

How to remove Backdoor:Win32/Dunsenr.B?

Backdoor:Win32/Dunsenr.B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment