Jump to content

KEYL_SE.71724 (Keylogger?)


redmaledeer

Recommended Posts

redmaledeer

The new Trendmicro online scan, namely http://us.trendmicro-europe.com/housecall/v6.5/?us=2says that I am infected with grayware/spyware KEYL_SE.71724, and gives no further information, and does not say which file is infected. It offers me choices of REMOVAL (deletion?), CLEANUP, and NO ACTION. The hitch is that there is nothing like this in my Registry, my Files, or on Google. Can anyone tell me anything about this? The new Trendmicro also said the same thing last time I ran it. Then I took NO ACTION. And what is the difference beween Deletion and Cleanup?

Link to post
Share on other sites

Another point redmaladeer, when these programs find something & you are not sure what to do, stop & put the file into Google.Example, may find TaskSwitch.exeGoogle finds this.http://www.google.com.au/search?hl=en&q=Ta...le+Search&meta=http://process.networktechs.com/taskswitch.exe.phphttp://www.auditmypc.com/process/taskswitch.asp

Edited by jmatt
Link to post
Share on other sites
redmaledeer

Thank you for the many programs, which I will work my way thru. In the original post I should have mentioned that I run a number of other protective programs and scans. None of these picks up the one that Trendmicro does, which adds to the puzzle.

Link to post
Share on other sites

None of these picks up the one that Trendmicro does, which adds to the puzzle.Quite normal, thousands of new ones are thrown at us each month, the badies are always in front.Takes all the resources of the goodies to keep up, that is why you need a lot more than 1 fix program.

Link to post
Share on other sites

Congratulations, you just got made...>says that I am infected with grayware/spyware KEYL_SE.71724, and gives no further information, and >does not say which file is infected. It offers me choices of REMOVAL (deletion?), CLEANUP, and NO >ACTION.This is the keylogger "Perfect keylogger lite" (downloadable and free for everyone :-( ), which I installed on my notebook in order to find out how good AV software detects this kind of rubbish. And I was really annoyed that the trendmicro housecall thing does not provide any other usefull information about this, It is treated at the same level as a "tracking cookie ". For the ultra paranoid:I for myself could do a clean install of an operating system without approaching the internet, install servicepacks and all other "safe" apps from disc and keep all of my data on a different partition (I do not use Documents and Settings folder anyway). I could use linux and ntfsclone to clone the system partition to a file on an external usb 2.0 harddrive. Once a week I can simply wipe the system partition with my stored image. Good luck.

Link to post
Share on other sites

CLick the big plus.. it will tell you were it is in your registry..most likely just traces left over from a virus removal but anyway.. housecall bothered me until i figured out the big plus.

Link to post
Share on other sites
redmaledeer
This is the keylogger "Perfect keylogger lite" (downloadable and free for everyone :-( ), which I installed on my notebook in order to find out how good AV software detects this kind of rubbish. And I was really annoyed that the trendmicro housecall thing does not provide any other usefull information about this, It is treated at the same level as a "tracking cookie ".
Is there any way that I can verify that this is "Perfect keylogger" before I let TrendMicro delete it? Did any other protective program or scan detect this for you? I am of course concerned about false positives. And I don't think TrendMicro makes a backup copy of things it deletes. I run a number of protective programs and scans, and none except TrendMicro picked this up. In particular, when I looked at the "Perfect keylogger" website it seemed to attempt to be invisible, like a Rootkit. But neither Rootkit Revealer nor F-Secure Blacklight Anti-Rootkit saw anything. Or did you figure out that this was "Perfect keylogger" in the following way?: (1)You started out with a clean machine, with TrendMicro detecting nothing. (2)Then you installed "Perfect keylogger" from its website. (3)Then TrendMicro detected KEYL_SE.71724, and that had to be what you had just installed, namely "Perfect keylogger."
CLick the big plus.. it will tell you were it is in your registry..most likely just traces left over from a virus removal but anyway.. housecall bothered me until i figured out the big plus.
I ran TrendMicro again, and again KEYL_SE.71724 was the only thing it detected. As before, it said, "There is currently no more information available for this grayware/spyware." It lived up to that when I clicked the big plus, because all it gave me were the cleanup options of REMOVAL (deletion?), CLEANUP, and NO ACTION. But it is useful to have the the big plus in mind for the future. Incidentally, I had already searched my registry for traces of this infection using Regedit. Maybe I will try again using something like Registrar Lite. That sometimes sees things that Regedit doesn't.
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...