Gumblar is malicious software that is known to steal FTP credentials from a victim's computer allowing remote users to access a webmasters website to import malicious scripts. Gumblar infects php, html and js website files. Affected users are known to be redirected to malicious websites through Google search engine result pages that return the results of infected websites. Gumblar is also able to install a backdoor that connects to an IP address of a known botnet, further increasing the chances of the infected system to be compromised by a remote source.
Gumblar varies from previous malicious exploits in the way that it spreads. It is able to spread through users who browse legitimate websites that were injected with a script via a comprimised webmaster's website using their FTP credentials. Gumblar's code is dynamically generated making it very difficult to manually detect and remove.
Gumblar can be compared to the Conficker Worm infection because of the way it is able to spread. Gumblar uses FTP credentials that it steals to compromise a vast amount of websites which in return could expose several other victims over a period of time. If you browse to an infected website then your system may become infected. Computer users with FTP credentials stored on their system that are infected with Gumblar are in danger of having their information stolen.
Use SpyHunter to Detect and Remove PC Threats
If you are concerned that malware or PC threats similar to Gumblar may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.
Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.