Win32/Spy.KeyLogger.PFP removal tips

The Win32/Spy.KeyLogger.PFP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/Spy.KeyLogger.PFP virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Authenticode signature is invalid
Sniffs keystrokes

How to determine Win32/Spy.KeyLogger.PFP?


File Info:
name: A6A9BB0FEA4D0B555F4C.mlw
path: /opt/CAPEv2/storage/binaries/bfed832c688c4c0e7e5955aadf55b8f61b41f21805de1653b1f1512bfd82414a
crc32: C8BE3FBD
md5: a6a9bb0fea4d0b555f4c2be74f0e0756
sha1: f1eed50609b688ce9d154f8d03e5c618949e8e2b
sha256: bfed832c688c4c0e7e5955aadf55b8f61b41f21805de1653b1f1512bfd82414a
sha512: 2ccd64946ffdd8ebad3aef760edb47af2d6246e00d20495b4c298d6e0834d67dac5e886f4ca5abc4ea76519d976ac7e280f384029da8c3542fe76006315597e5
ssdeep: 384:b8h4n5PYCSlT0KS13rZQs0Mf6+9XJt/gONVgE6whcrhWOGB29afrtsDWwg:yUSCcT0JrWs0MRfD4E6ggsfrts6wg
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T11CB22813BA979377DA4992F005666329523BBA321F2862C7EBC6D36D0E313D25E37107
sha3_384: f94cf82d75148880f42c810a811bbcf00d090fae5fb0d51945eff5098bd96b48e1f0f91e370aa67389e528ac32a140ae
ep_bytes: e841040000e991feffff558becff151c
timestamp: 2015-07-10 21:41:00

Version Info:
0: [No Data]

Win32/Spy.KeyLogger.PFP also known as:

Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
K7AntiVirus	Spyware ( 004ee4b21 )
K7GW	Spyware ( 004ee4b21 )
BitDefenderTheta	Gen:NN.ZexaF.34062.buW@aqRjVeki
Symantec	Trojan.Gen.2
ESET-NOD32	Win32/Spy.KeyLogger.PFP
TrendMicro-HouseCall	TROJ_GEN.R03BH0CKQ21
Kaspersky	UDS:DangerousObject.Multi.Generic
Avast	FileRepMalware
Tencent	Win32.Trojan.Generic.Lnob
McAfee-GW-Edition	Artemis!PUP
Sophos	Mal/Generic-S
Ikarus	Trojan.Win32.Genome
Gridinsoft	Ransom.Win32.Skeeyah.sa
Microsoft	TrojanSpy:Win32/Skeeyah.A!rfn
McAfee	Artemis!A6A9BB0FEA4D
VBA32	BScope.TrojanSpy.Skeeyah
Rising	Trojan.Generic@ML.88 (RDML:zmLmNXcj802DAdeVdT5j9Q)
Yandex	TrojanSpy.KeyLogger!g7Pi9XlbKX8
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/KeyLogger.PFP!tr.spy
AVG	FileRepMalware
Panda	Trj/GdSda.A

How to remove Win32/Spy.KeyLogger.PFP?

Win32/Spy.KeyLogger.PFP removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X