PWS-Zbot.gen.v

By Sumo3000 in Trojans

Translate To:

PWS-Zbot.gen.v is a stealthy Trojan that is able to inject itself into legitimate system processes in order to avoid detection. PWS-Zbot.gen.v may enter a computer user's system through the exploitation of system vulnerabilities and web browser holes. PWS-Zbot.gen.v is designed to steal a victim's sensitive information, such as online banking details, by making screen snapshots and recording a victim's keystrokes. Dangerous Trojans like PWS-Zbot.gen.v should not remain on a computer system.

File System Details

PWS-Zbot.gen.v may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%SysDir%\sdra64.exe
Name: %SysDir%\sdra64.exe Type: Executable File
2.	%SysDir%\lowsec\user.ds.lll
Name: %SysDir%\lowsec\user.ds.lll
3.	%SysDir%\lowsec\user.ds
Name: %SysDir%\lowsec\user.ds
4.	%SysDir%\lowsec\local.ds
Name: %SysDir%\lowsec\local.ds

Registry Details

PWS-Zbot.gen.v may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

C:\WINDOWS\system32\sdra64.exe

"Userinit" = "C:\WINDOWS\system32\userinit.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon]

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

PWS-Zbot.gen.v

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen