SystemSleuth
SystemSleuth is a keylogger that secretly monitors all activity on your computer. It can also capture passwords, instant messages, webcam images, printer activity, visited websites, microphone sounds, and keyboard activity.
General information:
| Malware Name: |
SystemSleuth |
| Malware Type: |
Keylogger |
| Company Name: |
DivineDownloads |
| Company URL: |
http://systemsleuth.com/
|
| Threat Level: |
Severe Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
DivineDownloads provides you the software SystemSleuth that is a computer surveillance program that secretly monitors all activity on your computer. You can view the results locally or have them sent to any email account. SystemSleuth allows you to
view emails, passwords, instant messages, webcam images, printer activity, visited websites, microphone sounds, and keyboard activity. With the time lapse screenshot feature you can fast forward, rewind, and pause the results, just like a movie.
Spyware Description:
SystemSleuth is a keylogger that secretly monitors all activity on your computer. It can also capture passwords, instant messages, webcam images, printer activity, visited websites, microphone sounds, and keyboard activity.
Characteristics/Symptoms:
-> It secretly monitors all activity on your computer. -> It can also capture passwords, instant messages, webcam images, printer activity, visited websites, microphone sounds, and keyboard activity.
Additional information might be found here:
Processes Running:
DDSSDemo.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\[USER]\Start Menu\Programs\Divine Downloads Software\SystemSleuth Demo\Readme-Help.lnk |
1900 |
Shortcut |
| C:\Documents and Settings\[USER]\Start Menu\Programs\Divine Downloads Software\SystemSleuth Demo\divinedownloads.com.url |
43 |
Internet Shortcut |
| C:\Program Files\DDSS Demo\riched32.dll |
174352 |
Application Extension |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\DDSS Dem |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{877A05AE-156F-47EB-A89F-BC6F2CD49218} |
ModifyPath |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{877A05AE-156F-47EB-A89F-BC6F2CD49218} |
Publisher |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{877A05AE-156F-47EB-A89F-BC6F2CD49218} |
Size |
