1. /
  2. Security Response/
  3. Trojan.Spyeye


Risk Level 1: Very Low

February 2, 2010
February 3, 2010 3:27:14 PM
Also Known As:
BackDoor-Spyeye [McAfee], Troj/Agent-NEU [Sophos], Troj/Spyeye-B [Sophos], Troj/Agent-NPP [Sophos], Troj/Spyeye-H [Sophos]
Infection Length:
70,144 bytes
Systems Affected:
Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista, Windows XP
Trojan.Spyeye is a Trojan horse that may steal information from the compromised computer.

Antivirus Protection Dates

  • Initial Rapid Release version February 2, 2010 revision 023
  • Latest Rapid Release version April 14, 2015 revision 018
  • Initial Daily Certified version February 2, 2010 revision 035
  • Latest Daily Certified version April 14, 2015 revision 021
  • Initial Weekly Certified release date February 3, 2010
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Medium
  • Payload: Opens a back door.
  • Releases Confidential Info: Attempts to steal information from the compromised computer.


  • Distribution Level: Low
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Mario Ballano Barcena

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report