Trojan.PWS.ZKD removal tips

The Trojan.PWS.ZKD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.PWS.ZKD virus can do?

Executable code extraction
A process attempted to delay the analysis task.
Deletes its original binary from disk
Attempts to repeatedly call a single API many times in order to delay analysis time
Steals private information from local Internet browsers
Creates a hidden or system file
Creates a copy of itself
Harvests credentials from local FTP client softwares
Harvests information related to installed instant messenger clients
Harvests information related to installed mail clients
Collects information to fingerprint the system

Related domains:

z.whorecord.xyz

a.tomx.xyz

pyv.cl

How to determine Trojan.PWS.ZKD?


File Info:
crc32: 9BF51716
md5: 97ff613a5dbc64d460397a9907495afe
name: build.exe
sha1: 071cee784fa273cff7d914433c99358df1e4761b
sha256: 9dc3fd0d0c479cd635865756a9d9019c26532f51bd93845163a280b83aaaa63a
sha512: 729fa9a17bba4c9af1b4a462d60a0b18bfc0a7e91892099bc3047d8aeca50e646c8196f4209335663c29e38d94f3b7723333b2f0489a8f0a126712e5477aa672
ssdeep: 1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Trojan.PWS.ZKD also known as:

Bkav	W32.TasumisCAK.Trojan
DrWeb	Trojan.PWS.Stealer.23680
MicroWorld-eScan	Trojan.PWS.ZKD
FireEye	Generic.mg.97ff613a5dbc64d4
CAT-QuickHeal	Trojan.Mauvaise.SL1
Qihoo-360	HEUR/QVM20.1.7421.Malware.Gen
McAfee	GenericRXCL-KZ!97FF613A5DBC
Cylance	Unsafe
K7AntiVirus	Password-Stealer ( 004d88671 )
BitDefender	Trojan.PWS.ZKD
K7GW	Password-Stealer ( 004d88671 )
Cybereason	malicious.a5dbc6
TrendMicro	TSPY_LOKI.SMA
BitDefenderTheta	AI:Packer.59A658E51E
Cyren	W32/Trojan.LAPN-1109
Symantec	SMG.Heur!gen
APEX	Malicious
Avast	Win32:LokiBot-A [Trj]
ClamAV	Win.Trojan.naKocTb-6331389-1
GData	Trojan.PWS.ZKD
Kaspersky	Trojan.Win32.Agentb.bvrg
NANO-Antivirus	Trojan.Win32.Stealer.eshrhl
ViRobot	Trojan.Win32.Agent.106496.HD
Tencent	Malware.Win32.Gencirc.10b3c757
Ad-Aware	Trojan.PWS.ZKD
Sophos	Troj/Fareit-CHG
Comodo	TrojWare.Win32.Fareit.LB@7pzcfo
F-Secure	Trojan.TR/Crypt.XPACK.Gen
Zillya	Trojan.naKocTb.Win32.12
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Generic.ch
Trapmine	malicious.high.ml.score
Emsisoft	Trojan-PSW.Fareit (A)
Ikarus	Trojan-Spy.Primarypass
F-Prot	W32/Trojan2.PBTA
Jiangmin	Trojan.naKocTb.l
Webroot	W32.Trojan.Gen
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Win32.SGeneric
Endgame	malicious (high confidence)
Arcabit	Trojan.PWS.ZKD
SUPERAntiSpyware	Trojan.Agent/Gen-PasswordStealer
ZoneAlarm	Trojan.Win32.Agentb.bvrg
Microsoft	PWS:Win32/Fareit.MS!MTB
TACHYON	Trojan/W32.naKocTb.106496
AhnLab-V3	Trojan/Win32.naKocTb.R270234
Acronis	suspicious
ALYac	Trojan.PWS.ZKD
MAX	malware (ai score=88)
VBA32	BScope.Trojan.Agentb
Malwarebytes	Trojan.PasswordStealer
Panda	Trj/GdSda.A
Zoner	Trojan.Win32.77501
ESET-NOD32	Win32/PSW.Fareit.L
TrendMicro-HouseCall	TSPY_LOKI.SMA
Rising	Trojan.Lokibot!1.B343 (RDMK:cmRtazq8jIdyDMIvrIri9G6kaWnZ)
SentinelOne	DFI – Suspicious PE
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Generic.AP.BA928!tr
AVG	Win32:LokiBot-A [Trj]
CrowdStrike	win/malicious_confidence_100% (D)
MaxSecure	Trojan.Malware.300983.susgen

How to remove Trojan.PWS.ZKD?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Trojan.PWS.ZKD removal tips