How to Check if You Are Infected with Gauss Malware

Gauss Malware is a new threat for Windows users. It is a surveillance malware which is designed to steal your bank information from your computer along with as much other data as it can. It is similar to other surveillance malware like Stuxnet and Flame which have infested Windows users in the recent past. While security companies are still busy analyzing this new malware, they have found a way to check if someone is infected with this Gauss malware. You can also follow these guidelines to find if you are infected with Gauss.

Kaspersky Labs have detected that Gauss malware, for some unknown reason, installs a font called “Palida Narrow”. You can visit the Kaspersky Labs security blog where they have setup a page to automatically test if your computer has this font installed. This might be an indication of the Gauss Malware. You can also manually check if you have this font installed.

To use the Kaspersky Labs method :

Visit their blog at https://www.securelist.com/en/blog/724/Online_Detection_of_Gauss.
Scroll down the page and you would see the result.

If you see the green message saying “Palida Narrow was not found”, then its good for you – you are not infected with this malware.
However if you see a red colored message saying that “The font Palida Narrow IS installed”, then you need to get worried. This is an indication that your system might be infected with the Gauss malware.

You should either consult a security professional, contact Kaspersky Labs at theflame@kaspersky.com or install an antivirus product on your system. In addition to Kaspersky, there are many free antivirus products like avast!, Avira and Microsoft Security Essentials.

You can also manually check if this font is installed in your Windows computer:

Press the key combination Windows Logo Key + R to open the Run dialog. In the Run dialog, type fonts and press Enter. This would open the Fonts folder that holds all the installed true-type and open-type fonts in Windows.
Type palida in the search box at the top-right corner.
If you do not see any font, then its good news. But if you see any palida font variants then it might indicate the “Gauss” malware infection.

If you find the “Palida Narrow” font installed on your system, then you should contact a security expert, contact Kaspersky Labs or install antivirus products as mentioned previously in this post.

You can find more information about the Gauss malware at Kaspersky Labs blog at https://www.securelist.com/en/blog/724/Online_Detection_of_Gauss.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.