x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with 50% off
RENEW NOW
x
48-HOUR OFFER
50%
RENEWALS
Home users only
RENEW AT A DISCOUNT
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
UP TO
-60%
BUY NOW
x
UP TO
-60%
BUY NOW
Active Scan. Scan your PC free

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Sinowal.WLU

Threat LevelLow threatDamageHighDistributionNot widespread
Common name:Sinowal.WLU
Technical name:Trj/Sinowal.WLU
Threat level:Medium
Alias:Backdoor.Win32.Bredolab.be, Trojan-Spy.Win32.Zbot.zur,Backdoor.Win32.Bredolab.be, Trojan-Spy.Win32.Zbot.zur,
Type:Trojan
Effects:   It allows to get into the affected computer. It searches for and steals passwords saved for certain Windows services. It downloads files from several websites. It uses anti-monitoring techniques in order to prevent it being detected by antivirus companies. It does not spread automatically using its own means.
Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:July 27, 2009
Detection updated on:July 27, 2009
StatisticsNo
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 

    

Sinowal.WLU is a Trojan, which although seemingly inoffensive, can actually carry out attacks and intrusions.

 

It captures certain information entered or saved by the user, with the corresponding threat to privacy: passwords saved by certain Windows services.

 

Sinowal.WLU prevents access from programs to websites of several companies related with security tools (antivirus programs, firewalls, etc.).

 

Sinowal.WLU accesses several websites to download files, which it then runs. These can be any type of file, although they are normally malware.

 

It uses several methods in order to avoid detection by antivirus companies:

  • It terminates its own execution if it detects that it is being executed in a virtual machine environment, such as VMWare or VirtualPC.

 

Sinowal.WLU does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.

 

ARE YOU FACING ANY PC OR INTERNET RELATED PROBLEMS?
FREE SUPPORT INCLUDED. CALL US 24/7

powered by Anytech365