eltc-EditorFKWP Trojan removal

XBlock By Actiance - Home

Someone Spying on You? Fight Back!
Currently Notice: Undefined variable: incprefix in /data/www/xblock/product_show.php on line 123 25,860,543 Spy Software Busted!

Products

X-RayPC

Full Name:	eltc-EditorFKWP
Type:	Trojan
Danger Level:	8
Category Description:	Trojans are malicious applications that pose themselves as legitimate software in order to trick users to install them. Once on the victim's machine, it may run any number of malicious process to steal vital information or inflict damage to other software.
Official Description:	From their website: Firewall bypass Keylogger ,Webdownloader ,Protected Storage 1)logging all keystrokes 2) Download 2 urls cab files and extracting and executing the inside exes (Firewall bypass) 3) Protected storage (Outlook, IE stored passes),Cashed Dialup passes Sender 4) keystrokes ,passes will mail to the email id,daily or the log size is over 5) firewall bypassing by injecting code into IE and sending mail 6) No Process visible ,injects into Explorer.exe on startup and exiting 7) Active Setup Startup 8) EXE size is 11.9 KB 9) encrypted log file

Information URL:	http://www.elitec0ders.net
Properties:	Autostarts/Stays Resident Connects to the internet Fake WHOIS information Logs Applications ran Logs IM Logs e-mail Logs keystrokes Logs passwords Lowers OS and application security Sends mail Stealth Tactics

Back to the list of products removed by X-Cleaner

© Copyright 2003-2011, Actiance, Inc. All rights reserved. Privacy Policy