PC Tattletale

Description:	Keylogger
Risk Level:	Low
Date of First Occurence:	Monday, April 21, 2008
Software Developer:	(unknown)
Brief Info:	Keyloggers invisibly monitor and record all of your computer activity. This information is then automatically emailed to an anonymous user.
Removal:	This threat can be removed using "Spyware Terminator"

ENTFERNEN SPYWARE »

Geographical Distribution of Threat "PC Tattletale"

Threat Info

View All

Detected Items

Detected Files: %SYSDIR%\UninstallPCTT.exe MD5: 0B0C05FFF839E0B903FD575CD2C66AA9 Size:359776 %SYSDIR%\explorer32\win32nls.dll MD5: 104DA6AA1FBB33B8A767B0C82949233F Size:35840 %SYSDIR%\explorer32\MonthView.ocx MD5: 89BD7E2A8C9576B311BD787C854DBC77 Size:118784 %SYSDIR%\explorer32\olSecurity.dll MD5: 8FB1D1CF44A1E409FE093A67B27B1EE8 Size:172032 %SYSDIR%\explorer32\Netlogon.exe MD5: DB97076F37FD4B514773A99EBDD0B666 Size:2968848 MD5: 8D9034BE55284109C2E472CA28066B96 Size:2899216 %SYSDIR%\explorer32\msn6mngr.exe MD5: 88967914645F9121A32483E979FE0649 Size:101648 %SYSDIR%\explorer32\IdleTime.ocx MD5: 28FCB03F368DDDC109E1B2C09F984A2C Size:40960 %SYSDIR%\explorer32\FireFox15.dll MD5: BFB3E448214D739C82220C7F720A6777 Size:122880 %SYSDIR%\explorer32\svchost.exe MD5: 5992C2CAB198399428C00234E0E7F514 Size:195856 %SYSDIR%\PCTT.exe MD5: E382EE80C267FEDBEE581FF4172B477E Size:27920 MD5: 13696FAC7EE501E246371B341C669783 Size:23824 %SYSDIR%\explorer32\winload32.exe MD5: E42B1AF9DCB7F8EA74C6402E8AC876E6 Size:64784 %SYSDIR%\explorer32\msSecurity.exe MD5: D5CDA9E308242B095E0F997B75B3FE7E Size:441616 MD5: C1333370BEFE6977BF8F026A54E23C4F Size:441616 %SYSDIR%\explorer32\winsysmngr32.exe MD5: E924C237861245ED4D6C1F575A912AB3 Size:195856 MD5: 874E28D39D9422009A8509C61D4BC38A Size:195856 MD5: E646286F4EDA89F19FEADCA5EC430C86 Size:191760 %SYSDIR%\explorer32\mssecurity.exe MD5: 3FD1A62612B94CFD2B33B4861DB9CE20 Size:441616
Detected Files with variable Filenames:

Detecting items list:

Files by Name %SYSDIR%\explorer32\alertopen.wav %SYSDIR%\explorer32\closewindow.wav %SYSDIR%\explorer32\explorer.chm %SYSDIR%\explorer32\explorer32.exe %SYSDIR%\explorer32\goodbye.wav %SYSDIR%\explorer32\Install.xpi %SYSDIR%\explorer32\msn6mngr.exe %SYSDIR%\explorer32\Netlogon.exe %SYSDIR%\explorer32\olSecurity.dll %SYSDIR%\explorer32\regnow.chm %SYSDIR%\explorer32\rollopen.wav %SYSDIR%\explorer32\rollover.wav %SYSDIR%\explorer32\start.wav %SYSDIR%\explorer32\stop.wav %SYSDIR%\explorer32\Wincmd.exe %SYSDIR%\explorer32\WinLoad.exe %SYSDIR%\explorer32\WinSysMngr32.exe %SYSDIR%\PCTT.exe %SYSDIR%\UninstallPCTT.exe %SYSDIR%\winload32.exe
Files by Directories %SYSDIR%\explorer32
Files by CLSID or Name CLSID=0669D4C1-87BD-4895-B3F7-4560A478DF60 CLSID=107D7AD5-A620-4044-840A-7E97370F6DB3 CLSID=231B4983-BB2D-11D4-9ED5-958F88DA5D51 CLSID=4D260C2D-DCD2-41F0-8A8B-B2281604CC81

« Go to Software Database

Suchen Sie unsere Software Datenbank

Surfen Sie die Software Datenbank

Neueste Malware Nachrichten

23. September 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Ältere Malware Nachrichten »