Well, yesterday my dad called, a 1000€ was missing from his bank account.
I went there, inspected with F-Secure Online scanner, then Ad-Aware and nothing.
Checker processes, one odd file at startup got me wondering, Googled for bank trojans.
Used this for detecting the Trojan:
http://www.fitsec.com/tools/DeBank.exe
Removed it with another tool for the job.
I was reading, that over 1% of US cmputers are infected with it (3,6 million).
CheapThrills, thanks for the PSA, but it should be noted that this is Windows only.
I hope your Pa gets his money back!
(Off Topic): Mr Admin's anti-spam efforts are working. You cannot post twice in 1 minute!!! Great job.
Yep, W only as most of this stuff anyway
About the money: I think it´s gone since the banking-bug was on his computer, not on the banks system but idunno...
Chicago_X
(Chicago X)
March 31, 2012, 6:14pm
5
I hope the thieves at the center of this scam are stricken with crotch cancer.
Richie086
(Richie086)
March 31, 2012, 8:31pm
6
CheapThrills:
Well, yesterday my dad called, a 1000€ was missing from his bank account.
I went there, inspected with F-Secure Online scanner, then Ad-Aware and nothing.
Checker processes, one odd file at startup got me wondering, Googled for bank trojans.
Used this for detecting the Trojan:
http://www.fitsec.com/tools/DeBank.exe
Removed it with another tool for the job.
I was reading, that over 1% of US cmputers are infected with it (3,6 million).
Hi Cheap Thrills, sorry about what happened to your dad. Hope it works out totally in his favor and gets all his money back. Thanks also for posting the link, I checked my Win7 computer and all was well.
Foy
(Foy)
March 31, 2012, 11:36pm
7
Thanks CT, checked mine, seems okay. Pretty scary stuff.
Foy
brted
(brted)
April 1, 2012, 1:04am
8
Checked my desktop and laptop and no problems. And debank.exe didn't trigger anything with McAfee or Norton (always a little nervous).
Thanks for the heads up!
I scanned clean. I run Symantec Endpoint Protection and keep it up to date and it seems to do a good job keeping my PC clean.
df2dot
(df2dot)
April 2, 2012, 2:41am
10
HERE IS THE RESULTS OF THE SITE YOU LINKED US TOO (bottom) it may be a false positive
are you sure about this site ??
http://forum.avast.com/index.php?topic=84278.0
folks run this root kit scanner http://support.kaspersky.com/faq/?qid=208283363 its at the bottom, then update you AV or download another free one avg , avast etc
-----
How to disinfect a compromised system
Download the TDSSKiller.zip archive and extract it into a folder on the infected (or possibly infected) computer with an archiver (WinZip, for example);
Run the TDSSKiller.exe file;
Wait until the scanning and disinfection completes. A reboot might require after the disinfection has been completed.
RESULTS FROM URL CHECKER SITE
Avira
Malware site
BitDefender
Malware site
CLEAN MX
Clean site
Dr.Web
Clean site
Google Safebrowsing
Clean site
Malc0de Database
Clean site
MalwareDomainList
Clean site
Opera
Clean site
ParetoLogic
Malware site
Phishtank
Clean site
SCUMWARE.org
Clean site
SpyEyeTracker
Clean site
TrendMicro
Clean site
VX Vault
Clean site
Websense ThreatSeeker
Clean site
Wepawet
Unrated site
Yandex Safebrowsing
Clean site
ZeusTracker
Clean site
yavi
(yavi)
April 2, 2012, 6:49am
11
I checked with both and mine was clean, I am using Eset nod32.
Sorry about the 1000 dollars, I had once a similar problem but the bank recognised it and nothing happened, I made a paypal transaction, and they told me that within 2 minutes they registered 20 more transactions from different countries, so it was at least difficult to make them by a single person, and I was lucky a person from the bank rang me asking about it.
sunday
(sunday)
April 2, 2012, 9:22am
12
I hate those virus...
I always find my QQ been stolen...
yavi: yikes, a close call!
BetweenRides:
Might be a good idea to try if my father could use Ubuntu for example. He´s pc use is very basic: mostly browsing internet.
df2dot:
well at least it is a real security company and program has been linked in local pc news or security sites.
I noticed that the news about 3.6 million infected PC´s was rather old, don´t know if the situation now is better or worse.
http://en.wikipedia.org/wiki/Zeus_(Trojan_horse)
Small things can change something.
I have actually been "just about to install & test Linux, any day now" for last ~12 years...
Have been trying shortly some time ago.
Ok, easy to install, net works straight away, everything needed for basic use works with even less fiddle than with windows, what the.... ?!
Seriously, my use at the moment is so basic Average Joe -usage, that I would cope with this without a problem!
I don´t play games anymore and about all other programs I use seem to be readily available also for Linux or a similar/better software is available.
oh my...