SoftwareTipsandTricks.com
Home Forums Windows XP Vista
Forums

Windows XP
Windows Vista

Easter Eggs
Tips and Tricks
Articles


Virus Warnings
Hot Downloads

Drivers

Internet Terms
Computer Terms

File Extensions (75)
File Extensions (15K+)

Startup Applications
Necessary Files
Useless Files
At Your Option Files
Dangerous Files
Browser Objects

DLL Files
SYS Files
INF Files
OCX Files
VXD Files

Virus Database

Newsletters
Tell a Friend

Site Map
Link to Us
Contact Us







  CTin10.exe

Name CTin10.exe

Description

 PWSteal.Bancos.E.
Is a Trojan horse that imitates the online interfaces of certain Brazilian banks to try to steal account information.
It is a minor variant of PWSteal.Bancos.D.
Also known as PWSteal.Bancos, PWSteal.Bancos.B, PWSteal.Bancos.C, PWSteal.Bancos.D

Copies itself as itself to the %System%\Ctin10.exe.

Adds the value:
"CTin10"="%System%\CTin10.exe"
to the registry keys:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
so that the Trojan runs when you start Windows.

If the file C:\BancoBrasil\officeIE\officeIE.CAB exists, the Trojan will move it to C:\officeIE.CAB.

Monitors the active Internet Explorer windows, waiting for you to open a Web page that matches the characteristics of certain banking sites.
Such as:
https:/ /www2.bancobrasil.com.br/aapf/aai/principal
https:/ /bankline.itau.com.br/GRIPNET/Montamenu.exe
https:/ /internetcaixa.caixa.gov.br/NASApp/SIIBC/Login_ok.processa
https:/ /wwwss.bradesco.com.br/scripts/ib2k1.dll/LOGINCHK#top

When such a site is opened, the Trojan displays one of several login screens, which are selected according to the URL.
The information entered on these screens may then be emailed to another computer.

Manual removal:
Navigate to the keys:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
and delete the value:
"CTin10"="%System%\CTin10.exe"



Search Useless Files :
 

: : Recent posts at Forums : :
Outlook 2007 Error: cannot select web links

Internet Explorer 6 and high CPU Usage

Help DVD Drive not detected

can you delete my account?

Screen goes dark soon after the computer finishes booting

Multimedia Audio Controller Problems

Lost windows xp login password

sound drivers Intel(R) 82801BA/BAM AC'97 Audio Controller

Forgotten Windows Vista Password.

unsecured.... people may be able to see your stuff...

another 'no audio device' problem and cant open some files problem!

No Sound.. Says No Audio Device, but drivers are there and enabled "working properly"

sis 7012 driver issue

CD/DVD RW not reading discs (code 19)

NO Sound problem

audio issus

No sound after reformatting XP Home

I dont know what my sound driver is

2007 student microsoft office word document in vista

Intel 82801EB ICH5 - AC'97 Audio Controller

No sound

Multimedia Audio Controller; Missing Driver.

AC97 driver for xp needed!

Audio driver not installed - how to find it?

Cannot Download Service Pack2~!

Skype 4.1

Incredimail 2.0

This operation has been cancelled due to restrictions in effect on this computer

Browser Based MMORPG

Video Controller(VGA Compatible)


SoftwareTipsandTricks, All Rights Reserved.