We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Backdoor:Win32/Zonebac
Detected by Microsoft Defender Antivirus
Aliases: QLowZones-14 (McAfee) W32/LowZones.AHJ (Norman) Troj/Agent-DQB (Sophos) Trojan.Zonebac (Symantec) PAK_Generic.001 (Trend Micro)
Summary
Backdoor:Win32/Zonebac is a family of backdoor Trojans that allows a remote attacker to download and run arbitrary programs, and may upload computer configuration information and other potentially sensitive data to remote Web sites.
Backdoor:Win32/Zonebac may download and install additional malicious software, thus manual removal is not recommended. To detect and remove this Trojan and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, visit http://www.microsoft.com/athome/security/downloads/default.mspx
Follow us
