Information about spyware / malware file:
svhost32.exe, fzgdll.dll, wow.exe, wow.dll, logon.exe, psw.lineag.abi.2.exe, rx.exe, wm.exe, wow.exe, rundll32.exe, sv0h0st.exe, ciau38dll.dll, krnln.fnr, 0075562.exe, bbstu.exe, butty.exe, gezi.exe, gravity.exe, haha.exe, dms.dll, rund1132.exe, rundl132.exe, rundll32.exe, svhost32.exe, internet.exe, mhxy.exe, ray.exe, ro.exe, roriro.exe, rx.exe, sb00636.exe, mhs2.exe, setup.exe, svchost.exe, t1bibi520.exe, t1moguidage.exe, windos.exe, xq.exe, yahoo.exe, ttt1.exe, rx.exe, rro.exe, hhy.exe, svchost.exe, svchost.exe, ffg.exe, tt.exe, virus.exe, hse1.exe, hsdll.dll, svhost32.exe, vir.rar, svhost32.exe, tdll.dll, rr.exe, gg.exe, e1.exe, dllf.dll, a.com, 1.sfx.exe, rundl132.exe, dlyy.dll, wldll.dll, rundll32.exe, jx2dll.dll, dllwm.dll, dllt.dll, pdll.dll, svchost.exe, gg.exe, pdll.dll, svchost.exe, exesfisle.exe, rundl132.exe, svhost32.exe, svhost32b.exe, svhost32.exe, svhost32.exe, rundl132.exe, a1.com, pdll.dll, svchost.exe, e1.exe, msdos32.dll, 1.exe, qqqb.exe, sldll.dll, pdll.dll, cuteye.com, hilive.com, svhost32.exe, rundll32.exe, pdll.dll, notdir88x1dll.dll, kerne0223.exe, kerne0223.dll, fzgdll.dll, exp1oer.exe, svhost32.exe, wlmxb.exe, d2_.exe, vdh.dll, dllran.dll, e1.exe, ppbio7bv.dll, rr.exe, lin.com, svchost.exe, a.com, 7w.dll, af.exe, hydll.dll, dllf.dll, wintmf.dll, top.exe, pdll.dll, dlyy.dll, svchost.exe, 1.sfx.exe, pdll.dll, svchost.exe, martty.com, pingba.exe, 1.rar, svhost32.exe, svhost32.exe, svhost32b.exe, svchost.exe, svhost32.exe, winpfile.dll, lin.rar, rundll32.exe, svhost322.exe, wldll.dll, dms.dll, winpsfisle.dll, svhost32d.exe, svhost32c.exe, svchost.exe, svchost2.exe, svchost32.exe, hilive.com, rundll32.exe, rundll32.exe, conime.exe, ztdll.dll, rundll32a.exe, rundll32c.exe, mh.exe, svhost32a.exe, msdos32.dll.bak, services.exe, 01.exe, 01.exe, 01.exe, pdll.dll, 01.exe, 06.exe, 8.exe, xydll.dll, 8d67.exe, 8e.exe, ztdll.dll, dllt.dll, tdll.dll, systpro32.exe, blue1.exe, 67d50d.dll, krnln.fnr, lgsy0.dll, 4mowftl.dll, mhso0.dll, mpppds.dll, winhttps.dll, jb.exe, m.exe, test.exe, trojan-psw.win32.lineage.ke.exe, trojan-psw.win32.lineage.mz.exe, trojan-psw.win32.lineage.abd.exe, trojan-psw.win32.lineage.zc.exe, cf452.exe, apcdli.sys, acpidisk.sys, pphcjnrj0ev4j.exe, rhcnnrj0ev4j.exe, loder.exe, loder.exe, look02.exe, loder.exe, system32:iexplore.exe, windows:iexplorer.exe, 825943.exe, regex.fnr, shell.fne, dp1.fne, eapi.fne, krnln.fnr
|
Spyware / Malware Description:
Trojan-Spy.Win32.Lineage
Type: |
Key Logger |
Type Description: |
Software that records user keystrokes and it is used by attacker to find out passwords or other important information. |
Level of Danger: |
High |
Default action: |
Remove |
File names: |
svhost32.exe, fzgdll.dll, wow.exe, wow.dll, logon.exe, psw.lineag.abi.2.exe, rx.exe, wm.exe, wow.exe, rundll32.exe, sv0h0st.exe, ciau38dll.dll, krnln.fnr, 0075562.exe, bbstu.exe, butty.exe, gezi.exe, gravity.exe, haha.exe, dms.dll, rund1132.exe, rundl132.exe, rundll32.exe, svhost32.exe, internet.exe, mhxy.exe, ray.exe, ro.exe, roriro.exe, rx.exe, sb00636.exe, mhs2.exe, setup.exe, svchost.exe, t1bibi520.exe, t1moguidage.exe, windos.exe, xq.exe, yahoo.exe, ttt1.exe, rx.exe, rro.exe, hhy.exe, svchost.exe, svchost.exe, ffg.exe, tt.exe, virus.exe, hse1.exe, hsdll.dll, svhost32.exe, vir.rar, svhost32.exe, tdll.dll, rr.exe, gg.exe, e1.exe, dllf.dll, a.com, 1.sfx.exe, rundl132.exe, dlyy.dll, wldll.dll, rundll32.exe, jx2dll.dll, dllwm.dll, dllt.dll, pdll.dll, svchost.exe, gg.exe, pdll.dll, svchost.exe, exesfisle.exe, rundl132.exe, svhost32.exe, svhost32b.exe, svhost32.exe, svhost32.exe, rundl132.exe, a1.com, pdll.dll, svchost.exe, e1.exe, msdos32.dll, 1.exe, qqqb.exe, sldll.dll, pdll.dll, cuteye.com, hilive.com, svhost32.exe, rundll32.exe, pdll.dll, notdir88x1dll.dll, kerne0223.exe, kerne0223.dll, fzgdll.dll, exp1oer.exe, svhost32.exe, wlmxb.exe, d2_.exe, vdh.dll, dllran.dll, e1.exe, ppbio7bv.dll, rr.exe, lin.com, svchost.exe, a.com, 7w.dll, af.exe, hydll.dll, dllf.dll, wintmf.dll, top.exe, pdll.dll, dlyy.dll, svchost.exe, 1.sfx.exe, pdll.dll, svchost.exe, martty.com, pingba.exe, 1.rar, svhost32.exe, svhost32.exe, svhost32b.exe, svchost.exe, svhost32.exe, winpfile.dll, lin.rar, rundll32.exe, svhost322.exe, wldll.dll, dms.dll, winpsfisle.dll, svhost32d.exe, svhost32c.exe, svchost.exe, svchost2.exe, svchost32.exe, hilive.com, rundll32.exe, rundll32.exe, conime.exe, ztdll.dll, rundll32a.exe, rundll32c.exe, mh.exe, svhost32a.exe, msdos32.dll.bak, services.exe, 01.exe, 01.exe, 01.exe, pdll.dll, 01.exe, 06.exe, 8.exe, xydll.dll, 8d67.exe, 8e.exe, ztdll.dll, dllt.dll, tdll.dll, systpro32.exe, blue1.exe, 67d50d.dll, krnln.fnr, lgsy0.dll, 4mowftl.dll, mhso0.dll, mpppds.dll, winhttps.dll, jb.exe, m.exe, test.exe, trojan-psw.win32.lineage.ke.exe, trojan-psw.win32.lineage.mz.exe, trojan-psw.win32.lineage.abd.exe, trojan-psw.win32.lineage.zc.exe, cf452.exe, apcdli.sys, acpidisk.sys, pphcjnrj0ev4j.exe, rhcnnrj0ev4j.exe, loder.exe, loder.exe, look02.exe, loder.exe, system32:iexplore.exe, windows:iexplorer.exe, 825943.exe, regex.fnr, shell.fne, dp1.fne, eapi.fne, krnln.fnr |
Fingerprints: |
- |
|
|
|
|