Mal/Zbot-EZ
Mal/Zbot-EZ Description
Mal/Zbot-EZ is a hazardous Trojan and part of the spam emails allegedly coming from the Federal Deposit Insurance Corporation (FDIC). The fake FDIC emails state to carry important information about the recipient’s bank. The bogus emails include an infected ZIP file which contains a malicious payload, generated to corrupt Windows PCs. The subject line of the malicious email is ‘FDIC: About your business account’, followed by a random code number. The attached file name, which contains Mal/Zbot-EZ, is ‘FDIC_Information_About-your-business-account-JAN2012-XXXXX.zip’, where ‘XXXXX’ is a random number. If you receive such false FDIC email, do not open and run the attached malicious file to prevent Mal/Zbot-EZ from infecting your computer system.
Aliases
PSW.Generic9.BDFT [AVG]W32/Zbot.EZ [Fortinet]Trojan-Spy.Win32.Zbot [Ikarus]a variant of Win32/Kryptik.BEW [ESET-NOD32]Trojan.Agent/Gen-Faker[legal] [SUPERAntiSpyware]Trojan/Menti.ugk [Jiangmin]BackDoor.Tdss.7057 [DrWeb]Gen:Variant.Kazy.53344 (B) [Emsisoft]Trojan.Win32.Tdss.qfooz [NANO-Antivirus]TROJ_SPNR.27AJ12 [TrendMicro-HouseCall]
More aliases (80)
Mal/Zbot-EZ Automatic Detection Tool (Recommended)
Is your PC infected with Mal/Zbot-EZ? To safely & quickly detect Mal/Zbot-EZ, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Mal/Zbot-EZ
What happens if Mal/Zbot-EZ does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %SystemDrive%\ process\ FC78BA65CC5.exe 447 2 %SystemDrive%\ Romano.Bin\ 9A0B33B18B1.exe 396 3 %APPDATA%\ Sun\ {4E0A7E4D-2058-4115-B4DB-64318D83F088}\ Validator.exe 300 4 %TEMP%\ Dropbox.exe 80 5 %SystemDrive%\ Users\ Family\ AppData\ Local\ Temp:winupd.exe 12
Posted: January 11, 2012 | By SpywareRemove
MoreThreat Level: 9/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 16
