Two days ago I replied to an email that I had received from an acquaintance of mine.
I had noticed that yahoo took a long time to send my reply, and when I checked my yahoo sent folder I noticed that my reply was 597MB. The email that I had received only showed a few lines of text, and my reply was only a few lines of text. I was immediately suspicious of this 597MB reply, so I opened my reply in the sent folder and below our few lines of text was a huge area of blank space, highlighting this blank space only revealed a few horizontal bars that look like dividers.
I downloaded and ran AVG, and it found a trojan horse called psw.agent.6.f that was in c:\windows\system32\HookNTQS1.dll, and it removed the trojan horse.
My initial research shows that this trojan is probably some sort of keylogger.
I would like to know if it is somehow possible to find out what information of mine was sent out in this email, and also if the sender knowingly sent me this trojan, or if it is possible that he sent it without knowing about it (drone?)
Since I have a copy of the sent email, is there any kind of program that I can use to show what exactly was in that email that I sent ?
I don’t know about finding out what went out. I would recomend doing a couple things right now, Go to any sites that require a password and change your username and password right now. Change any pins or passwords that access your finances, if you kept account numbers on the computer. Do something about a bank account first thing if you have an account that they can drain with an electronic transfer. Most banks make you pursue the loss and people can lose thousands they won’t get back.
The answers to your questions will vary greatly and depend on the specifics of the virus/trojan/keylogger. Often, whoever or whatever the program was originally programmed to send the harvested information to has been shut down, gone away, or otherwise just not at the other end anymore. So, they may not have anything.
I will tell you one thing, though. It is highly improbably, if not impossible that you send a 597MB email. If it were even possible for the email system to send an attachment of that size, it could take hours to upload that much data. I know you said it took an abnormally long time to send, but I assume you’re talking about 10 minutes instead of instantaneous, right?
Hi Jayrot, you are absolutely correct, the email was 597K, not 597 mb.
597K is still a large file for just a few lines of text though…
Thanks for the info