What is “Trojan:Win32/Zbot.DF!MTB”?

The Trojan:Win32/Zbot.DF!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan:Win32/Zbot.DF!MTB virus can do?

• Authenticode signature is invalid

How to determine Trojan:Win32/Zbot.DF!MTB?

File Info:
name: 5BE9AF202BBCFFCE545D.mlw
path: /opt/CAPEv2/storage/binaries/2e04ff0572e7f9b04b00d8e5bfdaae1cc737d034017e446515851ed2ecdf4868
crc32: 56C1553A
md5: 5be9af202bbcffce545d144838a01e9d
sha1: b8a5e747de5fae3f468e38646c99443001f5049b
sha256: 2e04ff0572e7f9b04b00d8e5bfdaae1cc737d034017e446515851ed2ecdf4868
sha512: 650373dd1e6f4795f5e83d1a0445c5fb7b1eae521098c58744b442a96d63f448fcb9da390cdb7eb37372193e0397fbbdfa6f22ae05509887b04f6e626a691b56
ssdeep: 96:E3ekXwuuK1R8O66Dm7oN5imIq8JAAEFWMMX9eQCek8:E3e2wuuKvzJm7oN5JSEFWPX9e07
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AAF1D81F5A8304F4F7EC417019EF37BBA63B8990924B2F178718E9365473260E11A08F
sha3_384: fef752f623e8e81b4721f7a4d8fc89b7effd627e6b8c1c7d8a3784b88f4c2aea81afe343fde585afbc1b7ba115a7a5f9
ep_bytes: 
timestamp: 2014-07-29 03:38:53

Version Info:
0: [No Data]

Trojan:Win32/Zbot.DF!MTB also known as:

How to remove Trojan:Win32/Zbot.DF!MTB?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.