Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

PWS-WebMoney.gen

Feb 20, 2004 4:15AM PST

Date Discovered: 2/1/2004
Date Added: 2/20/2004
Origin: Unknown
Length: Various
Type: Trojan
SubType: Password

This detection is for keylogging DLLs intended to log keyboard data entered by the victim whilst accessing online banking services.

It is likely that multiple malicious keylogging trojans are detected as such. For optimal detection please use the latest engine/DATs, and ensure the scanning of compressed files is enabled (default option).

The specific data that is targetted by the keylogger will vary. Typically, keystrokes entered within a window whose title contains strings associated with online banking/financial services are logged. For example:

webmoney (for example BackDoor-CAY )
paypal
e-gold
moneykeeper (for example, PWS-MoneyKeeper )
Typically, logged keystroke data for such sessions will contain sensitive data such as:

user credentials (username, password)
account numbers
card numbers
The logged data is then transmitted back to the hacker. This is typically achieved via SMTP or HTTP (the exact mechanism will vary).

If you suspect such an infection, please submit a sample via www.webimmune.net .

http://us.mcafee.com/virusInfo/default.asp?id=description&virus_k=101042

Discussion is locked