Page 1 of 1

This one is ugly - Sinowal Trojan

Posted: Sun Nov 02, 2008 7:42 pm
by Judge Roy Bean
http://www.rsa.com/blog/blog_entry.aspx?id=1378

It's been out there for years - an excerpt says a lot:

The sheer volume of data stolen by Sinowal is extraordinary
Just a single Trojan, operated by just one group of fraudsters, has been able to infect hundreds of thousands of computers, compromising and stealing information from their users’ accounts.

The compromised data belongs to customers of hundreds of financial institutions within many regions of the world. We have seen affected financial institutions within North America (both the United States and Canada), Europe (United Kingdom, France, Spain, Germany, the Netherlands, Italy and others), Asia Pacific (Australia, China, Malaysia, and others) as well as some countries in Latin America. However, we found that no Russian accounts were compromised by Sinowal.

In the past six months alone, the Sinowal Trojan has compromised and stolen login credentials and other information of more than 100,000 online bank accounts.

Re: This one is ugly - Sinowal Trojan

Posted: Thu Jun 03, 2010 3:10 pm
by compton
:Axe: Hi! I had the same problem with a trojan and it was horrible. I hate this virus; I found a program, actually an old version of antivirus but it works cool kaspersky version 7 I hope it'll be ok for you

Re: This one is ugly - Sinowal Trojan

Posted: Thu Jun 03, 2010 8:25 pm
by Nikki
I really miss the days when the only time a person needed to worry about trojans was on date nights.

Re: This one is ugly - Sinowal Trojan

Posted: Wed Jun 16, 2010 11:37 am
by fortinbras
Dealing with an enitrely different trojan whose name I do not know -- but it redirected my browsers at the last instant to a variety of shabby shopping websites -- I had tried without luck several strategies to eliminate it - system restore, Ad-Aware, AVG, Trojan Killer, Anti-Vir, even Fix-It Utilities 10 (which costs $40), without any luck. Then my computer repairman suggested the freeware MALWAREBYTES. Downloadable from a number of reputable sites. Worked like a charm!

Re: This one is ugly - Sinowal Trojan

Posted: Wed Jun 16, 2010 11:39 am
by Pottapaug1938
alshidaa wrote:How to allow a Trojan into my computer? What I want to execute on my computer is not a trojan, but Mcafee thinks it is. I just want to allow this one program to run, but it won't let me. I KNOW for a fact it is not a trojan, so don't tell me I might be wrong.


You say that you KNOW; but how about letting the rest of us know why as well? You are telling us that we are wrong about Sinowal not being a trojan; so convince us, if you can.

Re: This one is ugly - Sinowal Trojan

Posted: Wed Jun 16, 2010 1:16 pm
by Nikki
alshidaa wrote:How to allow a Trojan into my computer? What I want to execute on my computer is not a trojan, but Mcafee thinks it is. I just want to allow this one program to run, but it won't let me. I KNOW for a fact it is not a trojan, so don't tell me I might be wrong.

Have you inspected every line of executable code in this program to ensure that it hasn't been modified to include a lethal payload?

If you're that certain, (assuming you're trying to pull this down from the Internet) instead of directly running it, do a 'save as' giving it a file extension other than something which McAfee recognizes as an executable. Once it's downloaded, you can rename it and run it.

But first, do a 100% backup and create an emergency rebuild disc.

Re: This one is ugly - Sinowal Trojan

Posted: Wed Jun 16, 2010 7:14 pm
by Arthur Rubin
Nikki wrote:If you're that certain, (assuming you're trying to pull this down from the Internet) instead of directly running it, do a 'save as' giving it a file extension other than something which McAfee recognizes as an executable.
McAfee? [i]Recognize[i]?? McAfee is known for the worst recognition rate in the industry, and in order to disinfect a virus, as oppose to deleting infected files, you need to know what it is.

Re: This one is ugly - Sinowal Trojan

Posted: Fri Jun 18, 2010 2:40 pm
by Demosthenes
fortinbras wrote:Dealing with an enitrely different trojan whose name I do not know -- but it redirected my browsers at the last instant to a variety of shabby shopping websites -- I had tried without luck several strategies to eliminate it - system restore, Ad-Aware, AVG, Trojan Killer, Anti-Vir, even Fix-It Utilities 10 (which costs $40), without any luck. Then my computer repairman suggested the freeware MALWAREBYTES. Downloadable from a number of reputable sites. Worked like a charm!


I've been using MalwareBytes for about two years, in combination with AVG. MalwareBytes kicks ass.

Re: This one is ugly - Sinowal Trojan

Posted: Fri Jun 18, 2010 2:54 pm
by Pottapaug1938
Demosthenes wrote:
fortinbras wrote:Dealing with an entirely different trojan whose name I do not know -- but it redirected my browsers at the last instant to a variety of shabby shopping websites -- I had tried without luck several strategies to eliminate it - system restore, Ad-Aware, AVG, Trojan Killer, Anti-Vir, even Fix-It Utilities 10 (which costs $40), without any luck. Then my computer repairman suggested the freeware MALWAREBYTES. Downloadable from a number of reputable sites. Worked like a charm!


I've been using MalwareBytes for about two years, in combination with AVG. MalwareBytes kicks ass.


MalwareBytes works well for me, as well.