W32/Trojan2.FXRO

W32/Trojan2.FXRO is a malicious Trojan that may come to you as an executable file named delta_RQ763.exe. It can then spread if opened. The W32/Trojan2.FXRO Trojan may spread through an email pretending to be from Delta Airlines. The Delta email text will appear as the following:

"Sender: support@delta.com
Subject: "Confirmation of airline ticket purchase at www.delta.com".
Thanks for the purchase!
Booking number: LVSN50
You will find attached to this letter PASSENGER ITINERARY RECEIPT of your electronic ticket.
It verifies that you paid the ticket in full and confirms your right for air travel and luggage transportation by the indicated flight Delta Air Lines.
On board you will be offered:
- beverages;
- food;
- daily press.
You are guaranteed top-quality services and attention on the part of our benevolent personnel.
We recommend you to print PASSENGER ITINERARY RECEIPT and take it alone to the airport. It will help you to pass control and registration procedures faster.
See you on board!
Best regards,
Delta Air Lines"

If you click to print the PASSENGER ITINERARY RECEIPT, the Trojan will disable your firewall, steal sensitive financial information such as credit cards, online login passwords and provide a hacker the remote control of your PC leaving you vulnerable to identity theft and financial loss. If you print out the receipt, notify your credit card companies and bank immediately. You may need to close your accounts. The country of origin for this hideous W32/Trojan2.FXRO appears to be Russia. If you see this email, delete it immediately and run a scan with a reliable anti-spyware or anti-virus program.