Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: ZBOT Adds Clickbot Routine To Arsenal

22 Mar 2014   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 
ZBOT Adds Clickbot Routine To Arsenal

Quote:
The ZeuS/ZBOT malware family is probably one of the most well-known malware families today . It is normally known for stealing credentials associated with online banking accounts. However, ZBOT is no one-trick pony. Some ZBOT variants perform other routines like downloading or dropping other threats like ransomware.

We recently came across one variant detected as TROJ_ZCLICK.A, which seemingly “locks” the desktop to display websites. This kind of behavior is out of the ordinary for a ZBOT variant. Once it infiltrates the system, this occurs every time the user performs any activity, such as opening a window or file. These sites occupy the entire desktop screen, hindering access to any open windows or files. There have been instances wherein the user can still see the open windows, but with the sites running in the background. Users can bypass this inconvenience by performing the “show desktop” command but the malware will continue to display windows.
Source

A Guy


My System SpecsSystem Spec
Reply

 ZBOT Adds Clickbot Routine To Arsenal




Thread Tools





Similar help and support threads
Thread Forum
Help with Zbot infection.
I got infected with 2 Zbots. Malware Bytes removed them. Ran a scan with MBM again, still clean. Ran a scan with Eset, still clean Ran MSE clean. Ran scan with SAS, clean. Windows update still work. Reboot after all. Ran sfc 3 or 4 times with reboots after each. Unable to correct files.
System Security
Battling the Zbot Threat
Battling the Zbot Threat (with MSRT) - Microsoft Malware Protection Center - Site Home - TechNet Blogs
Security News
An Early Look at the Impact of MSRT on Zbot
MSRT is Malicious Software Removal Tool. Remember those Tuesday updates? This is one of them is accomplishing. An Early Look at the Impact of MSRT on Zbot An Early Look at the Impact of MSRT on Zbot - Microsoft Malware Protection Center - Site Home - TechNet Blogs
News
Zbot, the botnet in a box
Source - MSRT on Zbot, the botnet in a box - Microsoft Malware Protection Center - Site Home - TechNet Blogs
Security News
Zbot Desperately Seeking AIM Users.
Source - Zbot Desperately Seeking AIM Users | Business Computing World
Security News
Post your Security Arsenal
I thought it would be a good idea that people post their Windows 7 compatible security arsenal so others can get a good idea of what is well-liked on the forum. I currently use Avira Free, Windows firewall, PeerBlock & Firefox w/ AdBlock Plus & Better Privacy
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 15:08.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App