SpyEye (or EyeSpye) is a Trojan horse, which has almost the same codebase as Zeus Trojan. Just like infamous Zeus, SpyEye collects certain information on the compromised computer and additionally uploads it to command-and-control servers. To make it possible, this trojan includes wide range of components depending on configuration: it may have contain modules for screen grabs, keylogger, files to control the upload of status information, credit card grabber, proxy components & config and web injection configuration file which records certain activities of a user and sends videos to scammers.
SpyEye is distributed through web exploits mostly, exploiting browser, flash, Java and pdf vulnerabilities. Unpatched and not updated PCs are susceptible for infections like EyeStye. After your system is comprimissed, Trojan drops their executables in several places on the computer. Typically, a subfolder of the root drive (C:\) is used with the same name as executable name. Then it will try to hide installation folder and processes from detection. After that, it will start collecting information.
Illegally collected information is used for typical reasons, like stealing the money, infecting websites or compromising accounts. SpyEye has already caused much trouble for banks by initiating transactions from people’s online bank accounts. It goes without saying you must remove SpyEye Trojan without any delay. This Trojan is also powerful enough to download and install additional malware, so you should use alternate scanners for detecting and eliminating all infected files from your computer. While Trojan is distributed in quite typical ways, through web exploits while surfing or infected downloads, make sure you always have updated anti-malware program installed.
We recommend having a decent antivirus or internet security program for protection of SpyEye and related parasites. Additionally, if you see strange activity in your bank accounts, do not hesitate to scan your PC with Hitman Pro or spyhunter. SpyEye infection might not show other infection symptoms than money loss from your bank account, thus it should be removed as soon as suspected.
Automatic Malware removal tools