1 of 1 people found this helpful
The main problem here is the Virus and Mcafee (and also other vendors) lack of detecting it.
As you stated, you had (or still have) PWS-Zbot. Some information about it: http://vil.nai.com/vil/content/v_143802.htm
This Virus gets updated nearly every day, which means it's close to impossible to catch the latest variants of it
Here some more information (and also a good program to get maybe rid of it): http://www.spywareremove.com/removeTrojanZbot.html
As you see, this virus can/will catch all passwords, credit card numbers, lower pc security settings, and and and.
Here a site where you can see the current virus scanner detection rate of the several existing files: https://zeustracker.abuse.ch/monitor.php
But now to the question on how it got onto the pc. I fear you have on that website a new variant which wasn't or still isn't completely detected by Mcafee (the virus is made of several components with several files, if the infection is successfull). But only having it on the website isn't enough to catch it, you also seem to have an outdated plugin in that browser. So check the most dangerous plugins (flash, shockwave, pdf reader (also alternative programs, not just adobe ones) and java) first if they are up to date. If they aren't then the virus has an easy way onto the pc.
Are those up 2 date on your pc?
I hope this helps a little.
Thanks for your reply Pato, it was really helpful.
My guess is that the trojan was picked up from a different website in the first instance (before an appropriate DAT update caught it). Then, every time the user tried to login to this site (and maybe it could have been any site that required a login) the now updated DAT caught it.
You were right to question the possibility of plugins being outdated. The site in question requires Java, but when I originally installed it they had advised against using the latest version. I've now contacted them and asked why I can't use v6.20 (and told them this is for security reasons).