Win32/TrojanDownloader.Small.PFD
Posted: December 2, 2011
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 70 |
| First Seen: | December 2, 2011 |
|---|---|
| OS(es) Affected: | Windows |
Win32/TrojanDownloader.Small.PFD is a Trojan dropper that's spread in the form of a fake screensaver program. The majority of Win32/TrojanDownloader.Small.PFD infections are the result of Facebook-based website links that are posted by hijacked accounts. SpywareRemove.com malware experts recommend that you be cautious about strange links, even from friends, and avoid installing software from unfamiliar websites until you've verified their trustworthiness. Win32/TrojanDownloader.Small.PFD's payload (or list of hostile programs that Win32/TrojanDownloader.Small.PFD installs) is particularly-dangerous due to its inclusion of banker Trojans that steal financial information (such as bank account passwords). However, despite the high level of threat to your PC that Win32/TrojanDownloader.Small.PFD presents, its symptoms may be low in visibility, and in most cases, you shouldn't try to find or remove Win32/TrojanDownloader.Small.PFD yourself unless you have anti-malware software or a qualified PC security expert to assist you.
Win32/TrojanDownloader.Small.PFD – Closer to a Curse to Your Screen Than a Screensaver
Even though Win32/TrojanDownloader.Small.PFD can be distributed in other ways, its primary method of distribution (as of December 2011) is via Facebook links. These links are posted by Facebook accounts that have been hijacked by a worm (also known as the Trojan dropper TrojanDropper:Win32/Fignotok) – although the link may appear to be from a friend, your contacts may be completely-unaware that their account is posting links without their consent. This misleading link pretends to offer a screensaver for download at its Israeli website (identifiable by the .il domain suffix), but its real download is for Win32/TrojanDownloader.Small.PFD.
Once launched, Win32/TrojanDownloader.Small.PFD will install itself and remain active on your PC every time that Windows starts; like other types of Win/32TrojanDownloader Trojans, Win32/TrojanDownloader.Small.PFD is unable to infect non-Windows operating systems. The consequences of a Win32/TrojanDownloader.Small.PFD infection can vary due to both the version of Win32/TrojanDownloader.Small.PFD and any instructions that Win32/TrojanDownloader.Small.PFD may receive to alter its payload. However, SpywareRemove.com malware analysts warn that a Win32/TrojanDownloader.Small.PFD infection should always be considered an extreme threat to your PC both with respect to security and to privacy.
The Distinctly-Fiscal Nature of a Win32/TrojanDownloader.Small.PFD Assault
Win32/TrojanDownloader.Small.PFD has also raised eyebrows due to confirmed reports of Win32/TrojanDownloader.Small.PFD installing a variant of ZeuS, a well-known banker Trojan. ZeuS Trojans may use rootkit functions to load themselves while concealing their processes, can be extremely-difficult to remove, and specifically-target bank account information that's sent through your web browser or stored in files on your hard drove. This risk increases the urgency of your removing Win32/TrojanDownloader.Small.PFD by using anti-malware software that can also remove high-level PC threats like ZeuS Trojans. SpywareRemove.com malware experts also recommend that you take steps to change your bank-related passwords after clearing up any ZeuS or Win32/TrojanDownloader.Small.PFD infection.
As of early December 2011, many brands of PC security products haven't yet fully-identified Win32/TrojanDownloader.Small.PFD or its related worm and Trojan, TrojanDropper:Win32/Fignotok. In light of this, SpywareRemove.com malware experts stress caution around Facebook links and recommend making certain that the database of your PC security products are updated.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.