Jump to content

Computer infected with cdn.zeusclicks.com

cjtaylor1989
 Share

Recommended Posts

cjtaylor1989

cjtaylor1989

Posted
Posted

Hi,

 

I recently updated my 'Malwarebytes Anti-Malware' program and since then I've been getting a log report come up about 5/10mins after starting my computer telling me it stopped a threat called cdn.zeusclicks.com. When scanning my computer with either 'Malwarebytes Anti-Malware' or 'AVG' it doesn't come up with anything. Also I've noticed that my AVG firewall is stopped when first starting my computer up, which I immediately fix.

 

I've researched what it is and it seems as though it attacks browsers to steal banking information. I've called my bank to stop any transactions happening until I get this fixed. I've pasted in the daily protection log from  Malwarebytes Anti-Malware:

 
 
Update, 05/07/2014 01:09:21, SYSTEM, CHRIS-PC, Scheduler, Malware Database, 2014.7.4.9, 2014.7.4.11, 
Protection, 05/07/2014 01:09:22, SYSTEM, CHRIS-PC, Protection, Refresh, Starting, 
Protection, 05/07/2014 01:09:22, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 05/07/2014 01:09:22, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 05/07/2014 01:09:27, SYSTEM, CHRIS-PC, Protection, Refresh, Success, 
Protection, 05/07/2014 01:09:27, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Starting, 
Protection, 05/07/2014 01:09:27, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Started, 
Protection, 05/07/2014 11:49:41, SYSTEM, CHRIS-PC, Protection, Malware Protection, Starting, 
Protection, 05/07/2014 11:49:41, SYSTEM, CHRIS-PC, Protection, Malware Protection, Started, 
Protection, 05/07/2014 11:49:41, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Starting, 
Protection, 05/07/2014 11:50:21, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Started, 
Update, 05/07/2014 11:50:43, SYSTEM, CHRIS-PC, Scheduler, Malware Database, 2014.7.4.11, 2014.7.5.4, 
Protection, 05/07/2014 11:50:46, SYSTEM, CHRIS-PC, Protection, Refresh, Starting, 
Protection, 05/07/2014 11:50:46, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 05/07/2014 11:50:46, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 05/07/2014 11:50:50, SYSTEM, CHRIS-PC, Protection, Refresh, Success, 
Protection, 05/07/2014 11:50:50, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Starting, 
Protection, 05/07/2014 11:50:50, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Started, 
Detection, 05/07/2014 11:52:47, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, IP, 159.253.131.112, cdn.zeusclicks.com, 49818, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 05/07/2014 11:52:47, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, IP, 159.253.131.112, cdn.zeusclicks.com, 49818, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 05/07/2014 11:52:47, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, IP, 159.253.131.112, cdn.zeusclicks.com, 49819, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 05/07/2014 11:56:40, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, IP, 159.253.131.112, cdn.zeusclicks.com, 50485, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Detection, 05/07/2014 11:56:41, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, IP, 159.253.131.112, cdn.zeusclicks.com, 50487, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe, 
Protection, 05/07/2014 15:48:23, SYSTEM, CHRIS-PC, Protection, Malware Protection, Starting, 
Protection, 05/07/2014 15:48:23, SYSTEM, CHRIS-PC, Protection, Malware Protection, Started, 
Protection, 05/07/2014 15:48:23, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Starting, 
Protection, 05/07/2014 15:49:07, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Started, 
Protection, 05/07/2014 15:55:18, SYSTEM, CHRIS-PC, Protection, Malware Protection, Starting, 
Protection, 05/07/2014 15:55:18, SYSTEM, CHRIS-PC, Protection, Malware Protection, Started, 
Protection, 05/07/2014 15:55:18, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Starting, 
Protection, 05/07/2014 15:55:35, SYSTEM, CHRIS-PC, Protection, Malicious Website Protection, Started, 
 
(end)
 
 

Any help will be much appreciated.

Thank you,

Chris

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Hello and post-32477-1261866970.gif

 

P2P/Piracy Warning:

 

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

Download Farbar Recovery Scan Tool and save it to your desktop.

 

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.


Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

Next,

 

Please download RogueKiller and save it to your desktop from the following link: http://www.bleepingcomputer.com/download/roguekiller/

 


Quit all running programs.
For Windows XP, double-click to start.
For Vista,Windows 7/8, Right-click on the program and select Run as Administrator to start and when prompted allow it to run.
Read and accept the EULA (End User Licene Agreement)
Click Scan to scan the system.
When the scan completes Close the program > Don't Fix anything!
Post back the report which should be located on your desktop.

 

Let me see those logs...

 

Kevin...

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept