Threat Description

Trojan-PSW

Details

Aliases: Trojan-PSW
Category: Malware
Type: Trojan-PSW
Platform: W32

Summary



This type of trojan steals passwords and other sensitive information. It may also secretly install other malicious programs.



Removal



Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.



Technical Details



When searching our Virus Descriptions database for a specific program (e.g., Trojan-PSW:W32/Example.A), you may be directed to this page if the overview below sufficiently describes the program.

Alternatively, you may be directed to this page if no description matching that specific query is currently available. You can submit a sample of the suspect file to our Response Lab for further analysis via:

About Trojan-PSW

A Trojan-PSW is very similar to a Trojan-Spy, but is geared mainly towards stealing account log-in details, including passwords (the PSW stands for password stealer). In addition, some Trojan-PSW may also include spying and data-stealing routines.

To perform its password-stealing routine, a Trojan-PSW will usually drop a keylogging component. Such components stays active in Windows memory and starts keylogging (recording keystrokes) when a user is asked to input a log-in ID and a password. Stolen log-ins and passwords can allow an attacker to read a user's e-mail on public and corporate mail servers, as well as giving access to more sensitive material, such as online banking accounts.

Note

As of March 2010, the naming convention 'Trojan-PSW' has been updated to 'Trojan-PWS' to make identification easier for users and to ensure naming practices are in line with current industry standards.






SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Scan & clean your PC

F-Secure Online Scanner will scan and clean your PC in just a few minutes for free

Learn More