Active Scan. Scan your PC free
Premium Services
Premium Services

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.


Threat LevelLow threatDamageHighDistributionNot widespread
Common name:ChymineLNK.A
Technical name:Trj/ChymineLNK.A
Threat level:Medium

It uses the Windows vulnerability MS10-046 (CVE-2010-2568), which affects shortcuts, in order to install itself in the computer. It downloads malicious files to the computer, among them, a rootkit, designed to hide files, and a keylogger, designed to log the keystrokes. It reaches the computer in a shortcut that point to the download of the file which starts the infection.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:July 23, 2010
Detection updated on:July 27, 2010

Brief Description 


ChymineLNK.A is a Trojan with rootkit features which uses the Windows vulnerability MS10-046 (CVE-2010-2568) in order to be installed in the computer. It is a vulnerability that affects shortcuts and which allows remote code execution.

Due to its rootkit functionalities, it hides itself in the computer, making its detection more difficult.

Additionally, it is programmed to install a keylogger, designed to log the keystrokes typed by the user. This way, it could obtain confidential information nabout users, like passwords.

ChymineLNK.A reaches the computer in a shortcut that points to the download of the file that starts the infection.


Note: Microsoft has already published the patch that solves this vulnerability. If you have a Windows 2008/7/Vista/2003/XP computer, access the web page for downloading the patch.

Visible Symptoms 


ChymineLNK.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.