Adware.Agent.PHZ removal

The Adware.Agent.PHZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.Agent.PHZ virus can do?

Sample contains Overlay data
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Adware.Agent.PHZ?


File Info:
name: 18D76A67BB1A6B94844A.mlw
path: /opt/CAPEv2/storage/binaries/87ca4e26dd598c9ab45099dac3c2e2eee35ba85bc2069439dd3ee1df8560cd20
crc32: 2CE5C511
md5: 18d76a67bb1a6b94844a521a8c5d0f1f
sha1: 0a8d88bd07e65eb1d0383b0f1c685a8617e73536
sha256: 87ca4e26dd598c9ab45099dac3c2e2eee35ba85bc2069439dd3ee1df8560cd20
sha512: 82a42ca378c257a7a77613204613a4327a96f57cba1e3e00bb52d31769dbc9180964ea57cbbcbf9dc7d65b6786c145b705ed6aa2a7397135e2d3436982979c03
ssdeep: 12288:CNpbfGRDCwDeR/0Tr4PiAzKmGT1RUydbv95tlaW8/I/KX/6Hh7K5:CrfGR2wDeRMTUPLzKVPV5vY+KXgBK5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C2E4021039C080B3C667367248BCDF699AEEB9512762968F7BDD163D1F24AC2D72434B
sha3_384: dd54dca7b9d6459d5867999809209f8d5b7b1c8a49c97b4b4a259b0f44d1afd2bba7fb331e42b64de7c8559164b20423
ep_bytes: e8c14a0000e989feffff8bff558bec83
timestamp: 2015-01-25 13:58:26

Version Info:
0: [No Data]

Adware.Agent.PHZ also known as:

Bkav	W32.AIDetect.malware2
Lionic	Adware.Win32.Amonetize.m8Z9
Elastic	malicious (high confidence)
MicroWorld-eScan	Adware.Agent.PHZ
ClamAV	Win.Adware.Agent-1271142
FireEye	Generic.mg.18d76a67bb1a6b94
CAT-QuickHeal	PUA.Amonetize.12883
McAfee	Artemis!18D76A67BB1A
Zillya	Backdoor.PePatch.Win32.64065
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Adware ( 00539ed31 )
Alibaba	AdWare:Win32/Amonetize.345c3b32
K7GW	Adware ( 00539ed31 )
CrowdStrike	win/grayware_confidence_100% (D)
Baidu	Win32.Adware.Generic.bz
VirIT	Trojan.Win32.MulDrop5.CSOI
Cyren	W32/S-3b0845e2!Eldorado
Symantec	SMG.Heur!gen
ESET-NOD32	a variant of Win32/Amonetize.CS potentially unwanted
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	not-a-virus:AdWare.Win32.Amonetize.aaju
BitDefender	Adware.Agent.PHZ
NANO-Antivirus	Riskware.Win32.Amonetize.dxqgxy
SUPERAntiSpyware	PUP.Amonetize/Variant
Avast	Win32:Amonetize-IH [PUP]
Tencent	Malware.Win32.Gencirc.10b0bd49
Ad-Aware	Adware.Agent.PHZ
Emsisoft	Adware.Agent.PHZ (B)
Comodo	Application.Win32.Amonetize.CK@5t7n9p
DrWeb	Trojan.MulDrop5.47692
VIPRE	Adware.Agent.PHZ
TrendMicro	TROJ_GEN.R002C0OHJ22
McAfee-GW-Edition	BehavesLike.Win32.Generic.jc
Trapmine	malicious.high.ml.score
Sophos	Amonetize (PUA)
SentinelOne	Static AI – Malicious PE
GData	Adware.Agent.PHZ
Jiangmin	AdWare/Amonetize.xl
Webroot	Pua.Adware.Gen
MAX	malware (ai score=60)
Antiy-AVL	Trojan/Generic.ASBOL.1BD
Kingsoft	Win32.Troj.Amonetize.aa.(kcloud)
Microsoft	Trojan:Win32/Wacatac.A!ml
Google	Detected
Acronis	suspicious
VBA32	BScope.Trojan.Amonetize
ALYac	Adware.Agent.PHZ
Malwarebytes	PUP.Optional.Amonetize
TrendMicro-HouseCall	TROJ_GEN.R002C0OHJ22
Rising	Trojan.Generic@AI.100 (RDML:b1VllnHjPvNy1F98D7g/uw)
Yandex	Trojan.GenAsa!PtSHLdAbk0M
Ikarus	AdWare.BundleApp
MaxSecure	Trojan.Malware.8095891.susgen
AVG	Win32:Amonetize-IH [PUP]
Cybereason	malicious.7bb1a6
Panda	Trj/Genetic.gen

How to remove Adware.Agent.PHZ?

Adware.Agent.PHZ removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X