PWS:Win32/Lineage.CC is a password stealing trojan that targets popular online games. It may drop and load a payload component that performs the data theft, and a rootkit component that hides the trojan and its associated components from the affected user.

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.

VirTool:WinNT/Hackdef.I is a Windows kernel-mode rootkit program that targets computers running certain versions of Microsoft Windows. It can be used to elevate process privileges. This rootkit is often bundled with other malicious software; this may include variants of Win32/Hackdef such as Backdoor:Win32/Hackdef.BB.

VirTool:Win32/Injector.gen!CA is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.

VirTool:Win32/VBInject.TP is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.

VirTool:Win32/VBInject.UA is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.

Windows Defender detects and removes this threat.

The autorun.inf file is created by worms when they copy themselves to a local, network, or removable drive.

Some worms can spread to other PCs by infecting removable drives that you have plugged into your PC (such as USB drives or portable hard disks). If you plug those drives into another PC, the worm will infect that PC as well.

This is a common way for malware to spread. However, autorun.inf files on their own are not necessarily a sign of infection, they are also used by legitimate programs.

VirTool:Win32/Vbcrypt.BZ is a detection for executables written in Visual Basic (VB), that embed other malicious components by encrypting them inside their code. Their main objective is to hide the embedded malicious components from users and avoid detection and removal by antivirus solutions.

VirTool:Win32/Vbcrypt.CG is a detection for executables written in Visual Basic (VB), that embed other malicious components by encrypting them inside their code. Their main objective is to hide the embedded malicious components from users and avoid detection and removal by antivirus solutions.

VirTool:Win32/Tibs.E.dll is a user-mode rootkit that may be dropped by a variant of Win32/Tibs or by variants of other malicious software. VirTool:Win32/Tibs.E.dll is injected into certain types of processes in order to hide certain malicious software on the computer.

Cutwail is a trojan which is able to download and executes arbitrary files. Downloaded files may be executed from disk or injected directly into another process. Whilst the functionality of the files that are downloaded may change, Cutwail usually downloads a trojan which is able to send spam. Cutwail also employs rootkit and other defensive techniques to avoid detection and removal.

 

VirTool:WinNT/Cutwail.K is a device driver component (rootkit) used by Cutwail malware family.

It contains functionality to modify the system's winlogon.exe.

VirTool:Win32/VBInject.UE is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.

VirTool:Win32/VBInject.UN is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.

VirTool:Win32/VBInject.UU is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.