Trojan-Spy:W32/Zbot.BBHD

Trojan-Spy:W32/Zbot.BBHD is a variant of Zbot or Zeus, a notorious banking Trojan, that's distributed by way of e-mail spam that claims to be sent by the LogMeIn website team. LogMeIn (a site that specializes in providing remote access services for PC users) has not reported any hack-related attack of their user database, but users of LogMeIn appear to be disproportionately targeted by these Trojan-Spy:W32/Zbot.BBHD e-mails – potentially after having been harvested through generalized phishing mechanisms. SpywareRemove.com malware analysts can recommend ways of avoiding a Trojan-Spy:W32/Zbot.BBHD infection at all, but if your PC is infected by Trojan-Spy:W32/Zbot.BBHD, you should use the most competent anti-malware products on-hand to delete Trojan-Spy:W32/Zbot.BBHD and restore the privacy of your computer.

Trojan-Spy:W32/Zbot.BBHD: a Fake Account Lock for Covering Your PC's All-Too-Real Peril

Along with such ignominious past examples as Mal/Zbot-JG, Mal/Zbot-FV, Troj/Zbot-DSP, Trojan-Spy.Win32.Zbot.bfur, TSPY_ZBOT.JMO and TSPY_ZBOT.FAZ, Trojan-Spy:W32/Zbot.BBHD is a variant of the banking Trojan Zeus. Like its fellows, Trojan-Spy:W32/Zbot.BBHD is designed to steal bank account information by injecting malicious code into your PC's normal memory processes, and may even alter the contents of a web page to do so. Trojan-Spy:W32/Zbot.BBHD also may be identified by other names, such as UDS:DangerousObject.Multi.Generic, Trojan.Win32.Agent.AMN(A), Troj/Agent-AANP, Win32/Kryptik.ASTO or, simply, Zbot.

SpywareRemove.com malware experts have seen previous members of the Zeus or Zbot family being distributed by e-mail, such as in the case of Trojan PWS-Zbot.gen.cc and a fake DHL Express spam e-mail, but Trojan-Spy:W32/Zbot.BBHD's e-mails set themselves apart by being delivered primarily to users of the LogMeIn website. These e-mails, which resemble warnings about security account locks to stop an unauthorized attempt to use your LogMeIn account, ask you to go after a link to a chart that can help you resolve your problem. However, the link, of course, doesn't lead you to the LogMeIn site, but to a ZIP-format Trojan-Spy:W32/Zbot.BBHD installer.

What Trojan-Spy:W32/Zbot.BBHD's Also Grabbing After It Takes Your Trust

After having persuaded you to install it without your even realizing that you're doing so, Trojan-Spy:W32/Zbot.BBHD will create a backdoor through which Trojan-Spy:W32/Zbot.BBHD may funnel stolen information or download other malware to be installed. Although you may be able to notice some discrepancies in your PC's resource allocation (such as unusual RAM expenditures), typically, SpywareRemove.com malware researchers warn that there aren't any visible symptoms for Trojan-Spy:W32/Zbot.BBHD's attacks.

The primary target for most Zbot variants like Trojan-Spy:W32/Zbot.BBHD is to steal information that's used to log in to bank websites, which will allow Trojan-Spy:W32/Zbot.BBHD to transfer money to criminals without your consent. However, other personal information, including credit card numbers, phone numbers, e-mail addresses and even any information that's typed through your keyboard also may be stolen by Trojan-Spy:W32/Zbot.BBHD.

Since Trojan-Spy:W32/Zbot.BBHD is considered a high-level threat to your computer and your privacy, SpywareRemove.com malware experts suggest finding and removing Trojan-Spy:W32/Zbot.BBHD with anti-malware software ASAP. However, deleting e-mail spam and manually navigating to trusted web addresses are surer methods of protecting your PC that will stop Trojan-Spy:W32/Zbot.BBHD from being installed (at least, by this confirmed infection vector).

Technical Details