March 17, 2011

Infostealer Infections.


Infostealer Infections are Trojan horses  that lowers security settings and drops files on the compromised computer. Infostealer is designed to open a large security hole through which hundreds of malicious adware and spyware can be installed to your machine.
In addition, Infostealer opens a backdoor that allows the remote attacker to get the full control over the infected computer.

 This Trojan gathers confidential information from the computer and sends it to a predetermined location. This information can be financial, related to the compromised computer or user credentials for various web sites. Often the Trojan may steal a combination of all three types of sensitive information.Once stolen, login details, credentials from particular web sites, passwords, financial information and other personally identifiable information can be sold on the black market. This underground hive of criminal activity is a booming illegal multi-billion dollar a year business. The stolen information can be worth considerable sums of money depending on the details involved.

Targets:
  1. Credit card information  
  2. Bank accounts 
  3. Email accounts
  4. Computer Login details.
The most often used technique, key logging, is effective at collecting much of the information that is targeted by the attacker. For these Trojans, the goal is to collect as much data as possible; the more details about the user that end up in the hands of the remote attacker, the bigger the potential profit.







 Location of the infection:( Some Infostealer Infections)
  1.  C:\windows\system32\sdra64.exe
  2.  C:\windows\system32\ntos.exe
  3.  C:\windows\system32\oembios.exe
  4.  C:\windows\system32\twext.exe
  5.  C:\windows\system32\pdfupd.exe
Removal:
Manual  removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend  malware and spyware removal applications.

After removing infected  files, restart your computer and the issue will be fixed. And don’t forget to do update your Security Software, check the Firewall Settings and the Operating System and finally do a full system scan with the Security Software. 

0 comments:

Post a Comment

Related Posts Plugin for WordPress, Blogger...

Search This Blog

Followers

Categories

There was an error in this gadget
Twitter Delicious Facebook Digg Stumbleupon Favorites More