Trojan Horse PSW Generic VRA, VRH, VQN - all passwords compromised?
Posted on 2006-04-25
I've been infected with the Trojan Horse PSW Generic. I think that VRA, VRH, VQN are the variants.
The day i got this spyware I soon recognized it as there were new apps installed at once in my taskbar and my desktop, so I cleaned using M$ Antispyware.
The day after I was at work and connected to MSN Messenger, disconnected. Reconnected again and got disconnected another time.
I thought that something was odd, so I logged in my passport.net account and immediately changed my password. Then I could connect again without being disconnected to MSN Messenger.
I've googled a bit and read some topics about the Trojan Horse PSW Generic and it seems that "PSW" stands for password spyware.
So now I think that the spyware sniffed my MSN password...
Unluckily I didn't check with an antivirus the same day. I did a complete scan only today and discovered the trojan horse and cleaned it.
My request in this question is the following: I need more in depth information about this trojan and what it does exactly.
Must I change all my passwords stored in my firefox signons file? (I have a lot of accounts there)
Must I change all my FTP, SSH passwords?
What would you do?