Fito 98ME
|
Description:
|
Keylogger
|
|
Risk Level:
|
Low
|
|
Date of First Occurence:
|
Wednesday, June 18, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Keyloggers invisibly monitor and record all of your computer activity. This information is then automatically emailed to an anonymous user.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
RIMUOVI SPYWARE »
Geographical Distribution of Threat "Fito 98ME"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\DirMonDll.dll
MD5: 3019093A968CC88AC7FA55BE87EDF608 Size:61440
%SYSDIR%\CTimerDll.dll
MD5: 395CA1D20218569BECF31C6BB769FF13 Size:28672
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%PROGRAMFILES%\Fito\Fito.exe
%PROGRAMFILES%\Fito\FitoUnhide.exe
%START_PROGRAMS%\Fito\Fito.LNK
%START_PROGRAMS%\Fito\FitoUnhide.LNK
%SYSDIR%\CTimerDll.dll
%SYSDIR%\DirMonDll.dll
- Files by Directories
%PROGRAMFILES%\Fito %START_PROGRAMS%\Fito
- Files by CLSID or Name
CLSID=01217CBC-2BEC-44D0-B93B-BDE4873C4D87
CLSID=657B4053-07BF-4D75-8EAF-2772D4386BB4
CLSID=98E63608-2463-4C00-B2D9-94C15497A625
CLSID=B5570175-69A8-4B2A-A12E-FC4488B35A00
- Registry Keys
HKCR\CTimerDll.CTimer
HKCR\DirMonDll.clsFile
HKCR\DirMonDll.clsFiles
HKCR\DirMonDll.Monitor
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Fito.exe
«
Go to Software Database
