McAfee > Theat Center > PUP Detail Page

Characteristics

McAfee(R) AVERT™ recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application. If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software. Please contact the software vendor for further information.

See http://vil.nai.com/vil/DATReadme.asp for a list of Program detections added to the DATs.

See http://vil.nai.com/vil/pups/configuration.htm for information about how to enable, disable, and exclude detection of legitimately installed programs.

Summary

This is not a virus or a trojan.  It is detected as a potentially unwanted program.  It is a spyware program designed to monitor and control user's Internet activity. The vendor's website namely "http://www.atomiclog.com" provides the following description for this application.
"AtomicLog lets you keep your Internet activity under your control. AtomicLog provides the means for monitoring, analyzing, and filtering your Internet activity. Historical and real-time usage merge via an easy to use graphical interface. Monitor web site visits and activity, chatroom sessions, videoconferencing sessions, file transfer session, e-mail both sent and received, and much much more".



Installation

File: ATOMICLOG221.exe
Hash: 858cbcce97a7610cb8dd5a081b2679fd

System Changes

General defaults for typical environment variables (although they may be different, they usually are not):
%SystemDir% = C:\WINDOWS\SYSTEM32 (Windows 9x/ME/XP), C:\WINNT\SYSTEM32 (Windows NT/2000)
%ProgramFiles% = C:\Program Files
%UserProfile% = C:\Documents and Settings\[CURRENT USER] (Windows NT/2000/XP).

Files Added

• %ProgramFiles%\AtomicLog\AtomicLog.cnt
• %ProgramFiles%\AtomicLog\AtomicLog.exe
• %ProgramFiles%\AtomicLog\AtomicLog.hlp
• %ProgramFiles%\AtomicLog\AtomicLog.log
• %ProgramFiles%\AtomicLog\AtomicLog.mdb
• %ProgramFiles%\AtomicLog\DrDNS.dll
• %ProgramFiles%\AtomicLog\Project1.exe
• %ProgramFiles%\AtomicLog\RevBar2.ocx
• %ProgramFiles%\AtomicLog\XTimers.dll
• %ProgramFiles%\AtomicLog\BACKUP\Msjint35.dll
• %ProgramFiles%\AtomicLog\BACKUP\Msjter35.dl
• %ProgramFiles%\AtomicLog\BACKUP\vbajet32.dll
• %SystemDir%\ActBar.ocx
• %SystemDir%\ALMon.dll
• %SystemDir%\ALMonDSK.dll
• %SystemDir%\ALMonHK.dll
• %SystemDir%\AsynInet.dll
• %SystemDir%\Csftp32.ocx
• %SystemDir%\Cstcpl32.dll
• %SystemDir%\Cswho32.ocx
• %SystemDir%\Cttree32.ocx
• %SystemDir%\dwBkThrd.dll
• %SystemDir%\Flp32x20.ocx
• %SystemDir%\RedRegistration.dll
• %SystemDir%\TWBCust.dll
• %UserProfile%\Start Menu\Programs\AtomicLog\AtomicLog 2.lnk
• %UserProfile%\Start Menu\Programs\AtomicLog\AtomicLog Help.lnk
• %UserProfile%\Start Menu\Programs\AtomicLog\readme.lnk  

Registry

• HKEY_CLASSES_ROOT\ActiveBarLibrary.ActiveBar
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ActiveBar.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Band
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Band.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Bands
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Bands.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ComboList
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ComboList.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ImageMgr
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ImageMgr.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Page
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Page.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Pages
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Pages.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ReturnBool
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ReturnBool.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ReturnString
• HKEY_CLASSES_ROOT\ActiveBarLibrary.ReturnString.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Tool
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Tool.1
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Tools
• HKEY_CLASSES_ROOT\ActiveBarLibrary.Tools.1
• HKEY_CLASSES_ROOT\AsynInetCtr.AsynInetCtr
• HKEY_CLASSES_ROOT\AsynInetCtr.AsynInetCtr.1
• HKEY_CLASSES_ROOT\Catalyst.FtpClientCtrl.1
• HKEY_CLASSES_ROOT\Catalyst.WhoisClientCtrl.1
• HKEY_CLASSES_ROOT\CLSID\{0379136B-925C-11D4-8040-00105AD1356B}
• HKEY_CLASSES_ROOT\CLSID\{07622CAF-BE19-11D2-9E33-00A0C9313AA3}
• HKEY_CLASSES_ROOT\CLSID\{14099A43-7BE3-11CF-A8A0-444553540000}
• HKEY_CLASSES_ROOT\CLSID\{1CEC1F22-87AF-11D0-9CAD-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{2139A173-909B-11D0-9586-0000E8C0DC7F}
• HKEY_CLASSES_ROOT\CLSID\{2139A174-909B-11D0-9586-0000E8C0DC7F}
• HKEY_CLASSES_ROOT\CLSID\{224C040E-B9CC-11D2-80BE-006097385FF5}
• HKEY_CLASSES_ROOT\CLSID\{2ACF56E1-56F1-11D0-9C43-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{4A27D480-7278-11CF-9FFC-E9983B83C707
• HKEY_CLASSES_ROOT\CLSID\{68E12844-8F10-11D2-8098-006097385FF5}
• HKEY_CLASSES_ROOT\CLSID\{8DDE622A-1BB0-11D0-81C3-0080C7A2EF7D}
• HKEY_CLASSES_ROOT\CLSID\{917A3F5E-A847-11D3-9F59-00105AABBAF6}
• HKEY_CLASSES_ROOT\CLSID\{97EB1713-8A61-11D2-8093-006097385FF5}
• HKEY_CLASSES_ROOT\CLSID\{9CC77A20-7E49-11D0-9C99-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{A5A2D820-59D0-11D0-9C48-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{A5A2D821-59D0-11D0-9C48-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{A8DABC40-90C8-11CF-9FFC-E9983B83C707}
• HKEY_CLASSES_ROOT\CLSID\{B2B5EB41-8826-11D0-9CAF-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{B93B4190-1847-11D4-BC29-444553540000}
• HKEY_CLASSES_ROOT\CLSID\{BEE97215-8536-11D2-808C-006097385FF5}
• HKEY_CLASSES_ROOT\CLSID\{BF2D9131-7BE6-11D0-9C95-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{C3D70780-19E9-11D3-803F-00105AD1356B}
• HKEY_CLASSES_ROOT\CLSID\{E1CDC4E0-7276-11CF-9FFC-E9983B83C707}
• HKEY_CLASSES_ROOT\CLSID\{E4F874A0-56ED-11D0-9C43-00A0C90F29FC}
• HKEY_CLASSES_ROOT\CLSID\{EDEB9609-3BA1-11D4-8040-00105AD1356B}
• HKEY_CLASSES_ROOT\CLSID\{FED621D0-59B0-11D0-9C47-00A0C90F29FC}
• HKEY_CLASSES_ROOT\DrDnsX.DrDns
• HKEY_CLASSES_ROOT\LP.fpComboCtrl.1
• HKEY_CLASSES_ROOT\LP.fpListCtrl.1
• HKEY_CLASSES_ROOT\RedRegistration.PropDev
• HKEY_CLASSES_ROOT\RedRegistration.PropDev.1
• HKEY_CLASSES_ROOT\RedRegistration.RedReg
• HKEY_CLASSES_ROOT\RedRegistration.RedReg.1
• HKEY_CLASSES_ROOT\RevBarCtl.Revbar2
• HKEY_CLASSES_ROOT\TeeChart.TChart
• HKEY_CLASSES_ROOT\TeeChart.TeeCommander
• HKEY_CLASSES_ROOT\TeeChart.TeeEditor
• HKEY_CLASSES_ROOT\TeeChart.TeeListBox
• HKEY_CLASSES_ROOT\TeeChart.TeePreviewer
• HKEY_CLASSES_ROOT\TWBCust.WBCustomizer
• HKEY_CLASSES_ROOT\TWBCust.WBCustomizer.1
• HKEY_CLASSES_ROOT\XTimers.XTimer
• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\AtomicLog
• HKEY_LOCAL_MACHINE\SOFTWARE\atomiclog
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AtomicLog 2.2

Removal

Aliases

Aliases

N/A