File Investigation Report
ANTILOGGER.EXE
Currently being reviewedThe most common objects with the name of ANTILOGGER.EXE have yet to be classified as safe by our research department.
If you are concerned that your PC might be infected why not try our Free Prevx Scanner. It will thoroughly check your PC for millions of active Spyware and malware infections and takes less than 2 minutes. Don't put your confidential data, or your identity at risk, check your PC now with Prevx.
File Behavior
ANTILOGGER.EXE has been seen to perform the following behavior:
- The Process is packed and/or encrypted using a software packing process
- Registers a Dynamic Link Library File
- Executes a Process
- Writes to another Process's Virtual Memory (Process Hijacking)
- Can communicate with other computer systems using HTTP protocols
- Terminates Processes
- This process creates other processes on disk
- This Process Deletes Other Processes From Disk
ANTILOGGER.EXE has been the subject of the following behavior:
- Created as a process on disk
- Added as a Registry auto start to load Program on Boot up
- Deleted as a process from disk
- Executed as a Process
- Has code inserted into its Virtual Memory space by other programs
Country Of Origin
The filename ANTILOGGER.EXE was first seen on Apr 4 2008 in the following geographical regions of the Prevx community:
- on Apr 4 2008
- Spain on Aug 16 2008
- France on Aug 16 2008
- Sweden on Aug 23 2008
- Ireland on Aug 23 2008
- Italy on Mar 1 2010
File Name Aliases
ANTILOGGER.EXE can also use the following file names:
- ANTILOGGER.EXE.BAK
- 89017842.EXE
- 08557076.DAT
- 36917767.EXE
- 06137082.EXE
Filesizes
The following file size has been seen:
- 1,652,592 bytes
- 2,370,408 bytes
- 1,742,704 bytes
- 1,736,560 bytes
- 2,382,696 bytes
Vendor, Product and Version Information
Files with the name ANTILOGGER.EXE have been seen to have the following Vendor, Product and Version Information in the file header:
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.0.2.0
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.0.2.395
- Zemana Information Technologies Industry Limited; VeriSign Class 3 Code Signing 2004 CA;
- Zemana Ltd.; VeriSign Class 3 Code Signing 2004 CA;
- Microsoft Corporation; Windows Media Player Network Sharing Service Control Interface ; 12.0.7600.16385 (win7_rtm.090713-1255)
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.1.2.0
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.2.2.425
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.2.2.426
- Zemana Ltd.; Zemana AntiLogger User Interface; 1.9.2.188
- Zemana Ltd.; VeriSign Class 3 Code Signing 2009-2 CA;
File Type
The filename ANTILOGGER.EXE is used by multiple object types including executable programs,Dynamic Link LIbraries.