TrojanSpy:Win32/SSonce.C

TrojanSpy:Win32/SSonce.C is a dangerous data stealing backdoor Trojan that was first observed in the wild in early 2012. ESG security researchers have observed updated versions of TrojanSpy:Win32/SSonce.C released in October of 2012. Due to the intrusive nature of the TrojanSpy:Win32/SSonce.C attack, ESG security researchers consider that this Trojan infection poses a severe threat to an infected computer and to that computer user's private data. To protect yourself from the TrojanSpy:Win32/SSonce.C Trojan, ESG security researchers advise PC users to keep their security software always updated with the latest malware definitions and, of course, it is important to use reliable anti-malware software and to keep it active at all times.

What is TrojanSpy:Win32/SSonce.C?

TrojanSpy:Win32/SSonce.C is a spy Trojan. This means that TrojanSpy:Win32/SSonce.C is used to collect information from the infected computer which can then be relayed to a third party. This information can range from data on the state of your computer (such as what applications and file processes are running at any given time) to your actual keystrokes, passwords, credit card numbers and other similar information entered into the infected computer. Of course, gathering this data is useless without being able to send this data to a remote party. That is why the TrojanSpy:Win32/SSonce.C Trojan has a backdoor component. A backdoor is simply an unauthorized open port in the infected computer's security protection. Through this unauthorized opening, criminals can send out information (such as the private data collected by the TrojanSpy:Win32/SSonce.C Trojan). By using this backdoor, criminals can also communicate with TrojanSpy:Win32/SSonce.C to update TrojanSpy:Win32/SSonce.C or to send TrojanSpy:Win32/SSonce.C instructions.

TrojanSpy:Win32/SSonce.C is contained in an executable file named Update.exe which is placed in the system folder. As part of its installation process, the TrojanSpy:Win32/SSonce.C Trojan makes changes to the Windows Registry that ensure that this executable file runs automatically as soon as Windows starts up. Using TrojanSpy:Win32/SSonce.C, criminals can spy on your online activity and compromise your private information. One often overlooked aspect of the TrojanSpy:Win32/SSonce.C attack is that its backdoor leaves your computer vulnerable to further attack. In fact, apart from being used to spy on victims, the TrojanSpy:Win32/SSonce.C Trojan can be used to install additional malware on the victim's computer. Because of this, it is important to remove the TrojanSpy:Win32/SSonce.C Trojan using a reliable, fully updated anti-malware solution that will scan your hard drives and find hidden malware.