Selected viruses, spyware, and other threats: sorted alphabetically
Short descriptionWin32/Spy.Swisyn.AC is a trojan that steals sensitive information. The trojan can send the information to a remote machine.
InstallationWhen executed, the trojan creates the following files:
- %localappdata%nt.dll (541186 B, Win32/Spy.Swisyn.AD)
- %localappdata%dllhost.exe (318466 B, Win32/Spy.Swisyn.AD)
"dllhost" = "%localappdata%dllhost.exe"
Information stealingThe trojan collects the following information:
- computer name
- user name
The collected information is stored in the following file:
The trojan contains a list of (1) URLs. The HTTP protocol is used.
Other informationThe trojan quits immediately if it detects a running process containing one of the following strings in its name: