Not-a-virus:RemoteAdmin.Win32.eSurveiller.120
Not-a-virus:RemoteAdmin.Win32.eSurveiller.120 is a keylogger program that captures a user's keystrokes to obtain sensitive information. Not-a-virus:RemoteAdmin.Win32.eSurveiller.120 will enter a user's machine and connect with a remote server via the internet. Not-a-virus:RemoteAdmin.Win32.eSurveiller.120 will send the collected information, such as passwords or credit card numbers, to the remote server and may also download dangerous files onto the PC. Remove not-a-virus:RemoteAdmin.Win32.eSurveiller.120 to avoid the risk of Identity Theft.
File System Details
Not-a-virus:RemoteAdmin.Win32.eSurveiller.120 may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %System%\smsystem.exe | |
| 2. | %System%\zlib.dll | |
| 3. | %System%\smsystem.ini | |
| 4. | %System%\smsystem.tmp |
Registry Details
Not-a-virus:RemoteAdmin.Win32.eSurveiller.120 may create the following registry entry or registry entries:
[HKEY_CURRENT_USER\Software\Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32]
[HKEY_CURRENT_USER\Software\Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32]
