Full
Name: |
Flecsip |
| Type: |
Trojan |
| Also Known As: |
Troj/Browmon-D [Sophos]
PWSteal.Flecsip.B [Symantec]
Agent.FA
Spy.Agent.FA
Trojan.Spy.Flecsip.I
Logger.Flecsip.i
PSW.Generic.QHJ
PWSteal.Flecsip.B
StartPage-IZ
TR/Dldr.Agent.DS.1
Trj/Flecsip.C
Troj/Flecsip-B
Trojan.Flecsip.B
Trojan.Grab
Trojan.Spy.Win32.Flecsip
Trojan/Dldr.Agent.DS.1
Trojan-Spy.Win32.Flecsip.i
W32/Flecsip.A@pws
W32/Flecsip.D
W32/Flecsip.I-pws
Win32/Blabag.F
Win32/Flecsip!PWS!Trojan
Win32/Spy.Agent.FA |
| Danger Level: |
5 |
| Category Description: |
Trojans are malicious applications that pose themselves as legitimate software in order to trick users to install them. Once on the victim's machine, it may run any number of malicious process to steal vital information or inflict damage to other software. |
| Comment: |
Flecsip is usually propagated through Spam mails. When users unknowingly extract the zip file of the Trojan, they will get infected.
When the Trojan is executed, it drops three files into SYSTEM32 Folder. When Internet Explorer is launched, Flecsip steals URLs of the web pages visited, Date & Time, Method type (POST or GET), Keystrokes, Status of any checkboxes or radio-buttons and stores all the gathered information in one of the dropped files and sends it to the controlling server without user knowledge. One more file is used as an identification number for the infected user.
|
| |
|
| Properties: |
|
Back to the list of products removed by X-Cleaner
|
