Home > Bookmarks, Networking, Tech > Spyware.ISpyNow monitors files, network traffic, and keystrokes

Spyware.ISpyNow monitors files, network traffic, and keystrokes

November 30th, 2008 Leave a comment Go to comments

Spyware.ISpyNow is a Spyware virus with High-Risk impact gives the person who installed it a Web-based interface with summaries of logged information on the host computer.

When Spyware.Ispynow runs, it performs the following actions:

  1. Creates the following files:
    * %UserProfile%\Start Menu\Programs\iSpyNOW\Help Documentation.lnk
    * %UserProfile%\Start Menu\Programs\iSpyNOW\iSpyNOW Tray Companion.lnk
    * %UserProfile%\Start Menu\Programs\iSpyNOW\License Agreement.lnk
    * %UserProfile%\Start Menu\Programs\iSpyNOW\Readme.lnk
    * %UserProfile%\Start Menu\Programs\iSpyNOW\Remove iSpyNOW.lnk
    * %UserProfile%\Start Menu\Programs\iSpyNOW\Visit the Official iSpyNOW Website.lnk
    * %ProgramFiles%\ISN\header.gif
    * %ProgramFiles%\ISN\isnhelp.htm
    * %ProgramFiles%\ISN\isn_builder.exe
    * %ProgramFiles%\ISN\license.txt
    * %ProgramFiles%\ISN\Readme.txt
    * %ProgramFiles%\ISN\uninstal.log
    * %ProgramFiles%\ISN\Visit the Official iSpyNOW Website.url
    * %Windir%\isntrayopt.dat
    * %Windir%\softmod32.exe
    Note:
    * %UserProfile% is a variable that refers to the current user’s profile folder. By default, this is C:\Documents and Settings\[CURRENT USER] (Windows NT/2000/XP).
    * %ProgramFiles% is a variable that refers to the program files folder. By default, this is C:\Program Files.
    * %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows (Windows 95/98/Me/XP) or C:\Winnt (Windows NT/2000).
  2. Creates the following file, if it is not already present on the system:
    * %Windir%\unvise32.exe
  3. Creates the following registry key:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSpyNOW
  4. Adds the values:
    “Microsoft Tray”=”[Executable file path]”
    “isntray” = “C:\Program Files\ISN\isn_builder.exe”
    to the registry key:

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

    so that the Adware runs every time Windows starts.

Spyware.Ispynow runs, it performs the following action/spy when run:

  1. Logs both sides of all the chat & instant message conversations for AOL, ICQ, MSN, AIM, and Yahoo Instant Messenger.
  2. Captures information about every window that was viewed & interacted with.
  3. Tracks every executable that was executed & interacted with.
  4. Tracks all the keystrokes & the windows they were pressed in.
  5. Logs all the Web site title & addresses that were visited.
Categories: Bookmarks, Networking, Tech Tags: , , , , , ,
  1. innorat
    October 9th, 2009 at 15:50 | #1
    Reply | Quote

    The computer that I originally had everything for my iPhone on is broken, but I need to update the phone. If I plug it into my new computer, how much of my stuff will be lost? I’m expecting all non-itunes music to be taken off, but what about the songs, videos, and games I have purchased?

    ________________
    iphone

  2. innorat
    October 1st, 2009 at 21:21 | #2
    Reply | Quote

    i have a Lenovo G550 laptop and w0hen pluged in after some time the display goes off and black screen appears (when no activity is there on laptop). How can i switch off this function ??? I dont want my display to go off while it is pluged in

    ________________
    unlock iphone 3g

  3. innorat
    September 30th, 2009 at 17:40 | #3
    Reply | Quote

    I had a lot of songs downloaded, is there a way to get them back?

    ________________
    unlock iphone 3gs

  1. No trackbacks yet.
GoCache - ByREV-Cache v1.0 - live served in : 0.248292 sec (gzip)