Spectre

Description:	Keylogger
Risk Level:	Critical
Date of First Occurence:	Wednesday, October 29, 2008
Software Developer:	(unknown)
Brief Info:	Keyloggers invisibly monitor and record all of your computer activity. This information is then automatically emailed to an anonymous user.
Removal:	This threat can be removed using "Spyware Terminator"

SUPPRIMER SPYWARE »

Geographical Distribution of Threat "Spectre"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\SPECTRE\SPECTRE.exe MD5: E519ED3ECCD7E723D524FBC8095C660C Size:163840
Detected Files with variable Filenames:

Detecting items list:

Files by Name %ProgramFiles%\Spectre\Database\Alias.exe %ProgramFiles%\Spectre\Database\cc3260mt.dll %ProgramFiles%\Spectre\Database\Spectre.DB %ProgramFiles%\Spectre\Database\Spectre.MB %ProgramFiles%\Spectre\Database\Spectre.PX %ProgramFiles%\Spectre\Database\Spectre.XG0 %ProgramFiles%\Spectre\Database\Spectre.YG0 %ProgramFiles%\Spectre\Database\SpectreInit.DB %ProgramFiles%\Spectre\Database\SpectreInit.PX %ProgramFiles%\Spectre\Database\SpectreInit.TV %ProgramFiles%\Spectre\Database\SpectreInit.VAL %ProgramFiles%\Spectre\Help\Information8.htm %ProgramFiles%\Spectre\Help\Purchase.bmp %ProgramFiles%\Spectre\Help\SpectreHelp.chm %ProgramFiles%\Spectre\Readme.rtf %ProgramFiles%\Spectre\Spectre.exe %ProgramFiles%\Spectre\SpectreView.dat %ProgramFiles%\Spectre\SpectreView.exe %ProgramFiles%\Spectre\Stop.exe %START_PROGRAMSALL%\Spectre.lnk
Files by Directories %ProgramFiles%\Spectre
Registry Keys HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D5EF2804-0D9E-4F76-BED5-6B26CCECD785} HKLM\SYSTEM\CurrentControlSet\Services\Spectre1
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\SpectreView.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\Spectre.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\Database\Alias.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\Database\cc3260mt.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\Stop.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\cc3260mt.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\ISP2003.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\ILRawRead.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\CRDE2003.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\Help\SpectreHelp.chm HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs ValueName=%ProgramFiles%\Spectre\IDAPI32.DLL

« Go to Software Database

Chercher dans la Base de Données de notre Logiciel

Naviguez dans la Base de Données du Logiciel

Dernières Nouvelles sur les Malwares

23. septembre 2011

Parmi l'une des spywares les plus actifs est actuellement Trojan.MicroFake.ba sans doute. Il attaque en conjonction avec les applications antispyware Rogue et forces les utilisateurs d'acheter ces applications faux. Utilisez les techniques rootkit est très typique de ce cheval de Troie pour l'aider à cacher de les utilisateurs et le système, ce qui rend difficile à retracer. Nous vous recommandons de mettre régulièrement à jour notre base de données et une politique active temps réel de Shield antivirus.

Anciennes Nouvelles sur les Malwares »