DesktopSurveil

Description:	Spyware
Risk Level:	High
Date of First Occurence:	Thursday, August 28, 2008
Software Developer:	Omniquad, Ltd.
Brief Info:	DesktopSurveil logs keystrokes, program use, and captures screenshots. It can run in hidden mode.
Removal:	This threat can be removed using "Spyware Terminator"

ENTFERNEN SPYWARE »

Geographical Distribution of Threat "DesktopSurveil"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\Registry Doc 2006\popupgo.dll MD5: 90DC64AFB023EC8FF7D16C680F304390 Size:699904 %PROGRAMFILES%\ODSP\ODSPHost.dll MD5: DD9493E2206508B061875A8A68D2B626 Size:208896 %PROGRAMFILES%\ODSP\mfc42.dll MD5: 378BA951BC92648CCC08CC2FCE1CE7C8 Size:995383 %PROGRAMFILES%\ODSP\Encrypt.dll MD5: C08BB34219A4C7AE478327C6E109E92B Size:61440 %PROGRAMFILES%\ODSP\cximage.dll MD5: D5C3F3224453178062B776AF937367FF Size:167936 %PROGRAMFILES%\ODSP\welcome.exe MD5: F24F0B104FA433B4506FA0A9FC3A357C Size:466944 %PROGRAMFILES%\ODSP\ODSPlay.exe MD5: 13CB47FFBCD6F0A5532D166F62AF295A Size:536576 %PROGRAMFILES%\ODSP\MessageBox.exe MD5: 11B9CDD0CF3A3A9017654B780F164B20 Size:24576 %PROGRAMFILES%\ODSP\killproc.exe MD5: B13F70253877B500FB57B0B1BD5792DB Size:45056 %PROGRAMFILES%\ODSP\flash.exe MD5: 699DC867EFF689C6A3BF3D6C6EEF17A1 Size:53248 %PROGRAMFILES%\ODSP\BLOWFISH.DLL MD5: 1FCD551DFA976E60264AADB130A29D5A Size:110592 %PROGRAMFILES%\ODSP\ODSPHost_NT.exe MD5: 72DFB6D4E29B2CD718754F70E55D1F11 Size:36864 %PROGRAMFILES%\ODSP\XT1931Lib.dll MD5: 172663CA130EB9ED9F91C6B9FAE79376 Size:917504 %PROGRAMFILES%\ODSP\Utility.dll MD5: D4128F1C767C0709FB6D333BF66D52F3 Size:40960 %PROGRAMFILES%\ODSP\ODSPConfig.exe MD5: 2786EE75ACDDF57C36BD9A2FEE93C2ED Size:913408
Detected Files with variable Filenames:

Detecting items list:

Files by Name %ProgramFiles%\ODSP\BLOWFISH.DLL %ProgramFiles%\ODSP\cximage.dll %ProgramFiles%\ODSP\Encrypt.dll %ProgramFiles%\ODSP\flash.exe %ProgramFiles%\ODSP\killproc.exe %ProgramFiles%\ODSP\MessageBox.exe %ProgramFiles%\ODSP\mfc42.dll %ProgramFiles%\ODSP\ODSPConfig.exe %ProgramFiles%\ODSP\ODSPHost.dll %ProgramFiles%\ODSP\ODSPHost_NT.exe %ProgramFiles%\ODSP\ODSPlay.exe %ProgramFiles%\ODSP\restart.bat %ProgramFiles%\ODSP\Utility.dll %ProgramFiles%\ODSP\welcome.exe %ProgramFiles%\ODSP\XT1931Lib.dll %PROGRAMFILES%\Registry Doc 2006\popupgo.dll
Files by MD5 MD5: 90DC64AFB023EC8FF7D16C680F304390 Size: 699904
Files by CLSID or Name CLSID=7345F548-C9AC-46F7-A350-524964350D25
Registry Keys HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ODSP*
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=acsf

« Go to Software Database

Suchen Sie unsere Software Datenbank

Surfen Sie die Software Datenbank

Neueste Malware Nachrichten

23. September 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Ältere Malware Nachrichten »