Trojan

Trojan:Win32/BHO!pz malicious file

Malware Removal

The Trojan:Win32/BHO!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/BHO!pz virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid

How to determine Trojan:Win32/BHO!pz?



File Info:

name: BD261C7A13E3E1C99D86.mlw
path: /opt/CAPEv2/storage/binaries/b2fed81ae17a2878362f4d9133f2715696cbb9f3d27bbbe92887d1bb899168da
crc32: 6B988A50
md5: bd261c7a13e3e1c99d8640ea0e91dfb9
sha1: 9e85e01f1c258604d098554e7ae89f10cac8592b
sha256: b2fed81ae17a2878362f4d9133f2715696cbb9f3d27bbbe92887d1bb899168da
sha512: 442767633b76e4453cf6ce4a7e2e095c604c6f1f2955c6e88f46f10be1028727c1a403845e25a0970e9918067a4a332a13788ce715a7cd58482498c92cd22190
ssdeep: 6144:gi5wjDLNXcHcaoBa23gkuXxyjVI0DfOCZEP:gKwjDJxaosQg5xD0D/ZEP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T138346C2332E1C477C1E321754ED29BBA72BAFE208F71860723943B0E6E716D19935B59
sha3_384: eabe2d1a84fa2ced867f82f49b43fd1c3bb406e0586d4f6b73c96e32a60ad783603d53a62d73566fc2ad6ba030feedcb
ep_bytes: 6a6068f0934200e84a150000bf940000
timestamp: 2010-08-26 08:33:02


Version Info:

FileVersion: 1.0.0.19
InternalName: startup.exe
OriginalFilename: startup.exe
ProductVersion: 1.0.0.19
Translation: 0x0804 0x03a8

Trojan:Win32/BHO!pz also known as:

BkavW32.Common.BD0BD89D
LionicTrojan.Win32.Generic.ls7e
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Cerbu.148495
FireEyeGen:Variant.Cerbu.148495
CAT-QuickHealTrojan.BhoPMF.S27894401
SkyhighGenericRXAA-XU!BD261C7A13E3
McAfeeGenericRXAA-XU!BD261C7A13E3
MalwarebytesGeneric.Malware.AI.DDS
SangforTrojan.Win32.Agent.Vdyf
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaTrojan:Win32/Darbyen.ac3ef136
K7GWTrojan ( 004cb0d51 )
K7AntiVirusTrojan ( 004cb0d51 )
BitDefenderThetaGen:NN.ZexaF.36802.pq0@aycqEgib
VirITTrojan.Win32.Generic.BQHM
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/Agent.SIM
APEXMalicious
TrendMicro-HouseCallTROJ_DOWNLOADER_CD102EA5.RDXN
ClamAVWin.Trojan.Agent-346336
KasperskyUDS:DangerousObject.Multi.Generic
BitDefenderGen:Variant.Cerbu.148495
NANO-AntivirusTrojan.Win32.DarbyenA.czphl
AvastWin32:BHO-ACI [Trj]
TencentMalware.Win32.Gencirc.10b1f5f4
EmsisoftGen:Variant.Cerbu.148495 (B)
BaiduWin32.Trojan.BHO.n
F-SecureTrojan.TR/Downloader.Gen
ZillyaTrojan.Agent.Win32.140462
TrendMicroTROJ_DOWNLOADER_CD102EA5.RDXN
SophosTroj/Darbyen-A
IkarusTrojan.Win32.Agent
JiangminTrojan/Invader.abn
GoogleDetected
AviraTR/Downloader.Gen
VaristW32/FakeStart.A.gen!Eldorado
Antiy-AVLTrojan/Win32.Unknown
KingsoftWin32.Trojan.Generic.a
MicrosoftTrojan:Win32/BHO!pz
XcitiumTrojWare.Win32.Zbot.DSA@3qujkw
ArcabitTrojan.Cerbu.D2440F
ZoneAlarmUDS:DangerousObject.Multi.Generic
GDataGen:Variant.Cerbu.148495
CynetMalicious (score: 99)
AhnLab-V3Win-Trojan/Onlinegamehack21.Gen
VBA32Trojan.BHO
ALYacGen:Variant.Cerbu.148495
MAXmalware (ai score=99)
Cylanceunsafe
PandaTrj/Lineage.LOE
RisingTrojan.DL.Win32.JiaGU.e (CLASSIC)
YandexTrojan.GenAsa!OFxauHLZ37A
MaxSecureTrojan.Malware.7164915.susgen
FortinetW32/BanLoader.AAAF!tr.dldr
AVGWin32:BHO-ACI [Trj]
Cybereasonmalicious.a13e3e
DeepInstinctMALICIOUS
alibabacloudTrojan[downloader]:Win/Cerbu

How to remove Trojan:Win32/BHO!pz?

Trojan:Win32/BHO!pz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment