Backdoor

How to remove “Backdoor:Win32/Kelihos.B”?

Malware Removal

The Backdoor:Win32/Kelihos.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor:Win32/Kelihos.B virus can do?

    How to determine Backdoor:Win32/Kelihos.B?

    

    File Info:
    
crc32: 71D56599
    md5: 817889558ad1e45983cff731b6a64dfd
    name: 817889558AD1E45983CFF731B6A64DFD.mlw
    sha1: c6d55b56a8ccf8396431a529c4ac6fed3ab02af0
    sha256: d1016c29e33acc94835e337e5419152ab53418fefbb37a54ceed9a2c61a7b4cb
    sha512: db3c40c7f0a756af750eff85c869eefab933d29e38ae27eec1db30e45ddf9d58e63f35f9889e072addbdcf97ee2da5db220fbac6cee881787c0bce4c9aa53161
    ssdeep: 24576:tWvySvunDrsRNqvu/d4rd/uYTvrmEyZUtaX3naW8:1PQirx
    type: PE32 executable (GUI) Intel 80386, for MS Windows
    

    Version Info:
    
LegalCopyright: Copyright (C) 2010
    InternalName: UIScanner
    FileVersion: 13,0,21,1
    CompanyName: BitDefender S.R.L.
    ProductName: BitDefender 2010
    ProductVersion: 13,0,18,344
    FileDescription: BitDefender Antivirus Scanner
    OriginalFilename: uiscan.exe
    Translation: 0x0409 0x04b0

    Backdoor:Win32/Kelihos.B also known as:

    K7AntiVirusTrojan ( 0026c9311 )
    CynetMalicious (score: 100)
    CAT-QuickHealTrojanRansom.Timer
    ALYacGen:Heur.FKP.1
    CylanceUnsafe
    SangforTrojan.Win32.Save.a
    CrowdStrikewin/malicious_confidence_100% (W)
    AlibabaTrojan:Win32/Obfuscator.de03912c
    K7GWTrojan ( 0026c9311 )
    Cybereasonmalicious.58ad1e
    CyrenW32/S-bdcee22a!Eldorado
    SymantecML.Attribute.HighConfidence
    ESET-NOD32a variant of Win32/Kryptik.OHM
    APEXMalicious
    AvastWin32:Mystic
    KasperskyVHO:Trojan-Ransom.Win32.Timer.gen
    BitDefenderGen:Heur.FKP.1
    NANO-AntivirusTrojan.Win32.Slym.dddne
    SUPERAntiSpywareTrojan.Agent/Gen-FakeAV
    MicroWorld-eScanGen:Heur.FKP.1
    TencentWin32.Trojan.Generic.Dyqa
    Ad-AwareGen:Heur.FKP.1
    SophosML/PE-A + Mal/FakeAV-MR
    ComodoMalware@#2xlv7gip6fgrg
    BitDefenderThetaGen:NN.ZexaF.34738.uv0@a8uwCKai
    VIPRETrojan.Win32.Ransom.do (v)
    TrendMicroRansom_Timer.R002C0DFB21
    McAfee-GW-EditionFakeAV-SecurityTool.js
    FireEyeGeneric.mg.817889558ad1e459
    EmsisoftGen:Heur.FKP.1 (B)
    SentinelOneStatic AI – Suspicious PE
    JiangminHoax.FlashApp.ahj
    AviraTR/Crypt.XPACK.Gen
    Antiy-AVLTrojan/Generic.ASMalwS.18E113F
    MicrosoftBackdoor:Win32/Kelihos.B
    ArcabitTrojan.FKP.1
    GDataGen:Heur.FKP.1
    AhnLab-V3Trojan/Win.Generic.R425314
    Acronissuspicious
    McAfeeFakeAV-SecurityTool.js
    MAXmalware (ai score=84)
    VBA32Trojan.ExpProc.014
    PandaTrj/GdSda.A
    TrendMicro-HouseCallRansom_Timer.R002C0DFB21
    RisingTrojan.Generic@ML.100 (RDML:IiApZHT/yptf15votfVWPA)
    IkarusTrojan.Win32.Yakes
    MaxSecureTrojan.Yakes.dwnc
    FortinetW32/BrowHost.KP!tr
    AVGWin32:Mystic
    Paloaltogeneric.ml

    How to remove Backdoor:Win32/Kelihos.B?

    Backdoor:Win32/Kelihos.B removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment