Modem Spy

Modem Spy is a spyware which can record all telephone conversations. Features: automatically record all telephone comversations, record messages from microphone, playback recorded messages via phone line or computer speakers, record all phone calls automatically, detect and log caller ID, one click email sending.0

General information:

Malware Name: Modem Spy
Malware Type: Spyware
Company Name: SoftCab Inc.
Company URL: http://www.modemspy.com/
Threat Level: High Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation

Company Description:

SoftCab Inc provides us the spyware Modem Spy that automatically record all telephone calls, records from data modem is possible (we will need to physically connect our modem and sound card). It has a functionality that on one click Email sending with WAV or MP3 file attached. It detects and log Caller ID information. It has a Super Spy option for stealth recording. It also has an optional answering machine mode.

Spyware Description:

Modem Spy is a spyware which can record all telephone conversations. Features: automatically record all telephone comversations, record messages from microphone, playback recorded messages via phone line or computer speakers, record all phone calls automatically, detect and log caller ID, one click email sending.0

Characteristics/Symptoms:

    -> Ability to scan systems -> Monitor activity -> Relay information to another computer or locations in cyber-space -> Negatively affect the performance and stability of the system0

Additional information might be found here:

google Search at Google for Modem Spy
bing Search at Bing for Modem Spy
yahoo Search at Yahoo for Modem Spy

Processes Running:

modemspy.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\[USER]\Start Menu\Programs\Modem Spy\Cool Links\SoftCab.com - software for voice modems.lnk 160 Shortcut
C:\Documents and Settings\[USER]\Start Menu\Programs\Modem Spy\Modem Spy Help.lnk 551 Shortcut
C:\Program Files\Modem Spy\[USER]\delete_backup.bat 59 MS-DOS Batch File

Folder information Created after Installation:

Folder Location
C:\Program Files\Modem Spy
C:\Program Files\Modem Spy\Plugins

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionRun modemspy
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionUninstallModem Spy UninstallString
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Modem Spy Changed