Caphaw is a backdoor Trojan which can be identified as Backdoor.SkypeCaphaw or Shylock as well. This malicious threat active since 2011 can enter the system illegally, without any identification, and connect to the Internet without permission either. What is worst is that this threat automatically starts with Windows and runs silently, which is why its activity often remains undetected. Even if you do locate certain components of the threat, its removal is extremely complicated. Unfortunately, if you do not delete Caphaw, private information, including online banking data, could be leaked. If you do not want to become a victim of virtual scams, you need to learn how to identify and remove the threat right now.
Even though Caphaw is considered to be a silent threat, you can identify it because it is distributed in a specific manner. Our malware researchers have discovered that the backdoor Trojan can use Skype, Facebook, YouTube and removable storage devices for its own distribution. The so-called SkypeCaphaw spreads as a fake photo, video or document file, and if it infects your system, the Trojan continues to target all of your contacts. Due to this, you should never accept random files if there is no discussion related to them and you cannot identify whether it is your contacts that are sending them. Caphaw removal may trouble you if you click links on Facebook or random ads on YouTube as well. Note that the malicious invoice_254958.pdf.exe is a backdoor installer, and you should delete it, not launch it!
If Caphaw does manage to slither in, it installs itself to a random folder, which is why its removal if often highly complicated. On top of that, this infection runs files with the names identical to the ones of authentic system components, including rundll32.exe and crcss.exe. If you do not delete Caphaw files, the infection could take over the system. The Trojan may collect logs, track incoming data and even download more dangerous infections. Worst of all, the threat can hijack your online accounts, use them to spread malware, and retrieve online banking data. Needless to say, this could be used for illegal money transactions and virtual identity theft.
Manual Caphaw removal is not recommended to computer users dealing with this threat. First of all, this devious infection uses the InitiateSystemShutdownEx function, and it may be used to restore the Trojan, even if security software is already active. All in all, if you do not remove it, every single time you will access your banking accounts, you will risk the security of sensitive information and your finances. Even if you have the slightest suspicion that Caphaw removal may be necessary, you need to install a legitimate security tool right away. Do not wait for the threat to take over your virtual life too.