What is “Trojan:Win32/Bunitu.PDSK!MTB”?

The Trojan:Win32/Bunitu.PDSK!MTB file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

What Trojan:Win32/Bunitu.PDSK!MTB virus can do?

• Executable code extraction
• Presents an Authenticode digital signature
• Creates RWX memory
• Reads data out of its own binary image
• Installs itself for autorun at Windows startup
• Collects information about installed applications
• Creates a hidden or system file
• Creates a copy of itself
• Anomalous binary characteristics

How to determine Trojan:Win32/Bunitu.PDSK!MTB?

General:
Operating System: Windows 7 / 8 / 8.1 / 10
Virus Name: HEUR/QVM10.2.810B.Malware.Gen


File Info:
Name: 1c.jpg
Size: 1376432
Type: PE32 executable (GUI) Intel 80386, for MS Windows
MD5: d17a0c84c07cc9873940a9e879a1c279
SHA1: adc8efd335531c64276958def3d7658b0ef662de
SH256: aed1208120f18b0d4ef1349242130c39e0bed86cc7629b33dd441106ec8ee5ff
 
Version Info:
 [No Data] 

Trojan:Win32/Bunitu.PDSK!MTB also known as:

ALYac	Trojan.Ransom.Shade
APEX	Malicious
AVG	Win32:CrypterX-gen [Trj]
Acronis	suspicious
Ad-Aware	Trojan.GenericKD.32701810
AegisLab	Trojan.Win32.Generic.4!c
AhnLab-V3	Trojan/Win32.RL_Kryptik.R289654
Alibaba	Trojan:Win32/Shade.168e7081
Arcabit	Trojan.Generic.D1F2FD72
Avast	Win32:CrypterX-gen [Trj]
Avira	HEUR/AGEN.1043516
BitDefender	Trojan.GenericKD.32701810
BitDefenderTheta	Gen:NN.ZexaF.32247.ur1@aSh5wepi
CAT-QuickHeal	Trojan.ShadePMF.S7451125
ClamAV	Win.Malware.Generic-7154661-0
CrowdStrike	win/malicious_confidence_100% (W)
Cylance	Unsafe
Cyren	W32/Agent.BAE.gen!Eldorado
DrWeb	Trojan.Packed2.41981
ESET-NOD32	a variant of Win32/Kryptik.GVME
Emsisoft	Trojan-Ransom.Shade (A)
Endgame	malicious (high confidence)
F-Prot	W32/Agent.BAE.gen!Eldorado
F-Secure	Heuristic.HEUR/AGEN.1043516
FireEye	Generic.mg.d17a0c84c07cc987
Fortinet	W32/Kryptik.GLWT!tr
GData	Trojan.GenericKD.32701810
Ikarus	Trojan-Banker.Agent
Invincea	heuristic
Jiangmin	Trojan.Generic.dxzjq
K7AntiVirus	Trojan ( 0054985e1 )
K7GW	Trojan ( 0054985e1 )
Kaspersky	HEUR:Trojan.Win32.Generic
MaxSecure	Trojan.Malware.74531676.susgen
McAfee	Trickbot-FRDP!D17A0C84C07C
McAfee-GW-Edition	Trickbot-FRDP!D17A0C84C07C
MicroWorld-eScan	Trojan.GenericKD.32701810
Microsoft	Trojan:Win32/Bunitu.PDSK!MTB
NANO-Antivirus	Trojan.Win32.Shade.fxnyun
Paloalto	generic.ml
Panda	Trj/GdSda.A
Qihoo-360	HEUR/QVM10.2.810B.Malware.Gen
Rising	Trojan.Kryptik!8.8 (TFE:5:vLv2KtKx7JD)
SentinelOne	DFI – Suspicious PE
Sophos	Mal/Emotet-Q
Symantec	Packed.Generic.459
TrendMicro	Ransom.Win32.SHADE.SMB.hp
TrendMicro-HouseCall	Ransom.Win32.SHADE.SMB.hp
VBA32	BScope.Malware-Cryptor.Filecoder
VIPRE	Trojan.Win32.Generic!BT
Yandex	Trojan.Shade!
Zillya	Trojan.Kryptik.Win32.1719365
ZoneAlarm	HEUR:Trojan.Win32.Generic
eGambit	PE.Heur.InvalidSig

How to remove Trojan:Win32/Bunitu.PDSK!MTB?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.