Trojan-PSW.VBS.Half

tag:Password-stealing Trojans

Once a page containing malicious code has been opened, the Trojan will search directories on the C:\ drive for files with a *.pwl extension. (These files are used in Win9x systems to store user passwords).

It then uses an ActiveXObject

Delete the html page containing malicious code.
Update your antivirus databases and perform a full scan of the computer (download a trial version of Kaspersky Anti-Virus).

This Trojan steals user passwords. It is a VBScript virus. The file is 977 bytes in size. The Trojan can be found on webpages. It steals passwords from Win9x systems.

Payload

previous:Trojan-PSW.Win32.ZombSmallTrojan.01
previous:Trojan-PSW.Win32.M2.14.a

Virus Source from:

New articles

Trojan.PWS.Agent.SGD The malware drops the following files:1) %windir%\system32\hbqqxx.dll- this .dll will be injected in all the running processes and it will try to steal sensitiv...Trojan.PWS.OnlineGames.AABK First of all, the malware deletes the copies of%windir%system32\rpcss.dll (a Windows file) from%windir%\system32\dllcache\rpcss.dlland%windir%\servicepackfiles\...Trojan.PWS.Tupai.ANormal0falsefalsefalseMicrosoftInternetExplorer4st1\:*{behavior:url(#ieooui) }/* Style Definitions */table.MsoNormalTable {mso-style-name:"Table Normal"; mso-ts...Trojan.PWS.Lmir.UMHWhen launched, the trojan drops in %windir%\system32 folder a DLL file having the name derived form an existing DLL from same folder (e.g. rasmanqn3.dll, mdimap...Trojan.PWS.OnlineGames.ZKHThis malware is used to steal user information from online games as qqlogin.exe hx2game.exe and others. The dll file will be injected in every running process. ...

Hot Articles

Trojan-PSW.VBS.Half

Computer Virus Clounds