Secret Explorer v6.0
Secret Explorer v6.0 is a password recovery tool that may be used to gain unauthorized access to a computer and to a user s data. It is harmful if installed without the knowledge of the user.
General information:
| Malware Name: |
Secret Explorer v6.0 |
| Malware Type: |
Password Recovery Tool |
| Company Name: |
LastBit Corp |
| Company URL: |
http://lastbit.com/
|
| Threat Level: |
Low Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
LastBit Corp provides you the software Secret Explorer v6.0 that is a system inspection/maintenance tool that allows exploring and editing of Windows protected storage that is not documented. Secret Explorer v6.0 allows for detection of hidden information
in any Windows-based system. This includes auto-complete form data offered by Internet Explorer every time you enter something into a form on a webpage; various Internet passwords (passwords to password-protected websites); MS Outlook account and
identity passwords; and dialup passwords and other data stored by Microsoft in protected storage.
Spyware Description:
Secret Explorer v6.0 is a password recovery tool that may be used to gain unauthorized access to a computer and to a user s data. It is harmful if installed without the knowledge of the user.
Characteristics/Symptoms:
-> It may be used to gain unauthorized access to a computer and to a user s data. -> It is harmful if installed without the knowledge of the user.
Additional information might be found here:
Processes Running:
wse.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\SecretExplorer\Sample Mark and Move.sevbs |
153 |
SEVBS File |
| C:\Program Files\SecretExplorer\Sample hello world.sevbs |
184 |
SEVBS File |
| C:\Program Files\SecretExplorer\sample.frm |
1180 |
FRM File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\SecretExplore |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_CURRENT_USER |
\Software\Secret Explorer\Secret Explorer\dump |
|
| HKEY_CURRENT_USER |
\Software\Secret Explorer\Secret Explorer\main |
|
| HKEY_CURRENT_USER |
\Software\Secret Explorer\Secret Explorer\main |
maxwnd |
