Know Your Malware: Topfox Removal

Topfox is a malicious keylogger that monitors application windows for predefined keywords and records all the user's input entered into various fields in such windows. Topfox also monitors conversations in running instant messengers and may log user keystrokes. Gathered data is sent to a predetermined e-mail address. The keylogger terminates running processes of certain software, attempts to download and execute arbitrary files. It is able to inject malicious code into active tasks in order to hide itself from the user and log keystrokes. Topfox automatically runs on every Windows startup.

Related files: svch0st.exe, ntkrnl.dll, wdata32.dll

Topfox properties:
Sends out logs by FTP or email
Logs keystrokes
Connects itself to the internet
Hides from the user
Stays resident in background Remove Topfox, removal instructions

Linked by shanmuga Wednesday, 25th January 2006 4:17AM