English
Russian
Japanese
LatAm
Türkiye
Brasil
France
Český
Deutschland
Worm.Win32.Ngrbot
| Detect Date | 09/29/2015 | |||||||||||||||||||||||||||||||||
| Class | Worm | |||||||||||||||||||||||||||||||||
| Platform | Win32 | |||||||||||||||||||||||||||||||||
| Description |
On an infected computer, this malware displays messages that resemble the following ones: Main reasons:
Then the bot begins to receive commands from the command-and-control IRC server, such as to start a DDoS attack. These malicious programs can block connections to the servers of anti-virus companies, steal user passwords for various legitimate websites, and intercept messages sent by the user on social networks. The worm spreads via messages on social networks and Skype, as well as external drives connected to a computer. Top 10 countries with most attacked users (% of total attacks)
* Percentage among all unique Kaspersky users worldwide who were attacked by this malware |
|||||||||||||||||||||||||||||||||
| Find out the statistics of the threats spreading in your region |