CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

spacer spacer

O20 AppInit_DLLs and Winlogon Notify

Currently 488 entries and growing...
Last updated on 2008-06-18 18:08:23 Eastern.

FBJ originally ran this list but closed it permanently. FBJ graciously permitted CastleCops to continue maintaining the list as of Jul 8, 2005. The full HTML list is here.

KEY:
  • "L" = Legitimate
  • "O" = Open to Debate
  • "X" = Malware/Bad
  • "?" - Unknown

    •   

    ABC List: A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z



    TypeNameStatusPath/FileDescription
    Winlogon NotifyRAinitLRAinit.dll RemotelyAnywhere
    Winlogon Notifyrandom nameXrandom name spelled backwards.datCATLEvents vriant of Adware.VirtuMonde
    Winlogon Notifyrandom name compiled from elements taken from a listX(same) random name.dll Vundo.B
    Winlogon NotifyrdrVR2XrdrVR2.dll Troj/Haxdoor-AJ
    Winlogon NotifyRegCompactLRegCompact.dllAMUST Registry Cleaner
    Winlogon Notifyrege2usbXrege2usb.dllGoldun variant
    Winlogon NotifyreqXreq.dat Troj/Bdoor-CPK
    Winlogon NotifyreqXreq.dll Troj/ConHook-B
    Winlogon Notifyreset5Oreset5.dllIllegal, but usually installed by user
    Winlogon Notifyrlx51domXrlx51dom.dllGoldun variant
    Winlogon Notifyrlx5dom1Xrlx5dom1.dllGoldun variant
    Winlogon Notifyrmk8otXrmk8ot.dllHaxdoor variant
    Winlogon NotifyrpccXrpcc.dll Backdoor.Win32.Bifrose.aat
    Winlogon Notifyrpcc1Xrpcc1.dllnot yet identified Trojan/Backdoor
    Winlogon NotifyrpccdX%SYSDIR%\rpccd.dll Trojan.Downloader-RPCC.Process
    Winlogon NotifyrsdapiXrsdapi.dll TSPY_GOLDUN.AT
    Winlogon NotifyRun, RunOnce, RunOnceEx, RunServices-, Setup, Shell
    Extensions, ShellCompatibility, ShellScrap    		Xrandom named dll in the System32 folderVariant of Adware.Look2Me
    Winlogon Notifyrxx5otXrxx5ot.dllHaxdoor variant
    Engine Version 2.0 by CastleCops
    2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
    Acceptable Use Policy. Use signifies your agreement.
    129ppm 0.137s (0.003s)
    Making cybercriminals unhappy since 2002*
    In Memory of Trpm
    spacer spacer