Malware

About “PWS:Win32/Zbot.AM” infection

Malware Removal

The PWS:Win32/Zbot.AM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PWS:Win32/Zbot.AM virus can do?

    How to determine PWS:Win32/Zbot.AM?

    

    File Info:
    
crc32: 8E56F835
    md5: 133a43efa0ea4b83c0cb6a1895d52012
    name: 133A43EFA0EA4B83C0CB6A1895D52012.mlw
    sha1: f9b5b87715a21f7e945f395d56cbefa37e964a02
    sha256: a98ec831838beaa8086edbab8fdfe19924dbaac7e1684cbeb214e3fbf7f1c1a4
    sha512: e598995d7e7e0c746b6cc68d7dab11741640404cae6a6006fe40659e1571884be0cbf28ac8e5829d72445eea97d3093c2023fccd7cdabfe90817e2148fd6d751
    ssdeep: 12288:t43gthMWC0RvWs8iPIAWijuAHkTYOteov3T1U3A2IAogr:+3IjnRv78iQAW9AEbYovD1wVIAogr
    type: PE32 executable (GUI) Intel 80386, for MS Windows
    

    Version Info:
    
LegalCopyright: (c) 2010 Booj
    InternalName: climbSh.exe
    FileVersion: 10.0.505.663
    CompanyName: Booj
    ProductName: About proper
    ProductVersion: 10.0.505.663
    FileDescription: About Spr
    OriginalFilename: climbSh.exe
    Translation: 0x0409 0x04e4

    PWS:Win32/Zbot.AM also known as:

    BkavW32.AIDetect.malware1
    K7AntiVirusSpyware ( 0055e3db1 )
    DrWebTrojan.PWS.Panda.4379
    MicroWorld-eScanGen:Variant.Symmi.37364
    ALYacGen:Variant.Symmi.37364
    CylanceUnsafe
    ZillyaTrojan.Blocker.Win32.12837
    SangforTrojan.Win32.Save.a
    CrowdStrikewin/malicious_confidence_90% (D)
    AlibabaTrojanPSW:Win32/Generic.fc80328a
    K7GWSpyware ( 0055e3db1 )
    Cybereasonmalicious.fa0ea4
    SymantecML.Attribute.HighConfidence
    ESET-NOD32Win32/Spy.Zbot.AAU
    APEXMalicious
    AvastWin32:Malware-gen
    CynetMalicious (score: 100)
    KasperskyHEUR:Trojan.Win32.Generic
    BitDefenderGen:Variant.Symmi.37364
    NANO-AntivirusTrojan.Win32.Panda.cuyojs
    TencentMalware.Win32.Gencirc.114c4c0f
    Ad-AwareGen:Variant.Symmi.37364
    SophosMal/Generic-R + Troj/Ransom-ADZ
    ComodoMalware@#1qlrs1zzus30a
    F-SecureTrojan.TR/Crypt.ZPACK.Gen2
    BitDefenderThetaGen:NN.ZexaF.34738.Dq0@ai7Fa6pi
    VIPRETrojan.Win32.Zbot.jr (v)
    TrendMicroTROJ_SPNR.14L313
    McAfee-GW-EditionGeneric.enj
    FireEyeGeneric.mg.133a43efa0ea4b83
    EmsisoftGen:Variant.Symmi.37364 (B)
    SentinelOneStatic AI – Suspicious PE
    JiangminTrojan/Blocker.hif
    WebrootW32.Malware.Heur
    AviraTR/Crypt.ZPACK.Gen2
    eGambitGeneric.Malware
    Antiy-AVLTrojan/Generic.ASMalwS.619677
    MicrosoftPWS:Win32/Zbot.AM
    AegisLabTrojan.Win32.Zbot.lVvm
    ZoneAlarmHEUR:Trojan.Win32.Generic
    GDataGen:Variant.Symmi.37364
    TACHYONTrojan/W32.Blocker.477696.D
    AhnLab-V3Trojan/Win32.Blocker.R91124
    McAfeeGeneric.enj
    MAXmalware (ai score=100)
    PandaTrj/Genetic.gen
    TrendMicro-HouseCallTROJ_SPNR.14L313
    YandexTrojan.Blocker!tLmhck0xTKM
    IkarusTrojan.Crypt2
    FortinetW32/Kryptik.PDB!tr
    AVGWin32:Malware-gen
    Paloaltogeneric.ml

    How to remove PWS:Win32/Zbot.AM?

    PWS:Win32/Zbot.AM removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment