Home Malware Programs Backdoors Backdoor.Usinec.B

Backdoor.Usinec.B

Posted: January 16, 2012

Threat Metric

Threat Level: 6/10
Infected PCs: 148
First Seen: January 16, 2012
OS(es) Affected: Windows

Aliases

unknown virus Win32/DH.FF900099{00008008-00000001- [AVG]TR/Graftor.12891 [AntiVir]Gen:Variant.Buzy.4714 [BitDefender]Trojan-Dropper.Win32.Injector.cbxx [Kaspersky]Trojan.ADH.2 [Symantec]a variant of Win32/Gertref.A [NOD32]Gen:Variant.Kazy.53290 [BitDefender]Trojan.Win32.Jorik.ZAccess.cua [Kaspersky]Win32:ZAccess-EF [Trj] [Avast]WindowsAVPro!gen2 [Symantec]a variant of Win32/Kryptik.ZBD [NOD32]Artemis!95791AE51DAC [McAfee-GW-Edition]Trojan.Win32.FakeAv.klbe [Kaspersky]a variant of Win32/Kryptik.YYM [NOD32]Gen:Variant.Kazy.53232 [BitDefender]
More aliases (59)

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%WINDIR%\system32\wmdmps16.exe File name: wmdmps16.exe
Size: 73.72 KB (73728 bytes)
MD5: ae0879982f87df1f0979c9863a2fb47b
Detection count: 112
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: January 16, 2012
%USERPROFILE%\Local Settings\Application Data\krq.exe File name: krq.exe
Size: 318.46 KB (318464 bytes)
MD5: 95791ae51dacd88589689758f834eefd
Detection count: 56
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 19, 2012
%USERPROFILE%\Local Settings\Application Data\zndpy.exe File name: zndpy.exe
Size: 375.29 KB (375296 bytes)
MD5: 52ccfef5d1419eee5d13be2dde293241
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 23, 2012
%USERPROFILE%\Local Settings\Application Data\gid.exe File name: gid.exe
Size: 350.72 KB (350720 bytes)
MD5: 355a97596b322bd35e3f93c08ad53ead
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 19, 2012
%USERPROFILE%\Local Settings\Application Data\aah.exe File name: aah.exe
Size: 311.29 KB (311296 bytes)
MD5: f8f590f35a0b9c1540049e7079588432
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Local Settings\Application Data
Group: Malware file
Last Updated: January 19, 2012
%TEMP%\TMPprovider01D.dll File name: TMPprovider01D.dll
Size: 423.47 KB (423472 bytes)
MD5: f282255cff4eab6714bed3fb55577010
Detection count: 14
File type: Dynamic link library
Mime Type: unknown/dll
Path: %TEMP%
Group: Malware file
Last Updated: January 23, 2012
Loading...