Home Malware Programs Keyloggers Advanced Computer Monitor

Advanced Computer Monitor

Posted: March 28, 2006

Advanced Computer Monitor is a commercial PC surveillance application that can be used to track user activity, log all his keystrokes, take screenshots and record addresses of visited web sites. Gathered data can be sent to a configurable e-mail address or uploaded to a predefined FTP server. Advanced Computer Monitor must be manually installed. It is able to hide its presence in the computer by disabling certain Windows utilities such as the Task Manager. The softwares runs on every Windows startup.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 acmconfig.exe
    2 acmdll.dll
    3 acmservice.exe
    4 zshook.dll

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOTACMDLL.ServiceEntryHKEY_CLASSES_ROOTPDSSmtpLib.SmtpHKEY_LOCAL_MACHINESOFTWAREClassesACMDLL.ServiceEntryHKEY_LOCAL_MACHINESYSTEMControlSet001ServicesACMServiceHKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesACMService
  • The following CLSID's were detected:
    HKEY..\..\{CLSID Path}B48EF08A-D99C-4AB3-B873-968B2F4653EC9CCD14D6-ABE0-44BF-8F04-29E59D2CEA5E7560BF71-2AC0-4792-8B39-E4BF8F82DFFC19CD2397-D366-425F-AE02-07CFF09AA02DC3034EB9-9CE5-46AC-9A4B-C3C15C81F163A3218B31-BDA4-431F-B41A-82FA6AF432C9871E1DCF-F823-4D33-B7E5-DE6A67F8571B6D63DD88-6B66-4F03-AF75-48CAE256547B66A6A2F6-5598-44D6-824E-CE896761798364A53AE7-D599-45FC-A87E-0C403E61F3B3629D9912-49EC-4623-BC26-49EC151E94F24A50CE9D-456F-4C97-9872-F569816ED5BD48D03FF6-6D19-4415-852E-C0B506239979376F3B90-6939-47DE-82C0-A92F36290A602AF0C41D-44BA-4DBC-83FF-EFFA10350B7E00B2A602-482B-4E39-AF3E-731A11763FF2BBDA50F9-4374-4697-B004-943D3CDA4A6A98D28F39-6B87-4424-846D-A18E35C8CE1A2E675021-9B3B-49ca-A8D5-D1829F9998081CCF94E6-BA0C-4218-9280-D6339663DCF31AB22F59-FB66-4A06-BCA9-EA5A6D5785E00C69356E-1275-4df8-9A67-6C0A6CAAFAC8
Loading...