« previous next »
Pages: [1]   Go Down

Author Topic: desktopsV1.01.exe - again?  (Read 494 times)

0 Members and 1 Guest are viewing this topic.

Offline pastywhitegurl

  • Sr. Member
  • ****
  • Posts: 394
  • advanced techno feeb
desktopsV1.01.exe - again?
« on: May 12, 2011, 03:43:55 PM »
Ugh. Something weird is going on.

My bank gave me a free program that protects sensitive sites. It's called Trusteer Rapport.  It blocks keylogging attempts,  sensitive page screen captures and mismatched certificates.  I have it applied to my banking sites and anywhere I use sensitive information.

Here's my issue. The Rapport report (that's funny...)  has been blocking a lot of keylogging attempts and today blocked a screen capture.  This is the first  report that actually mentioned a file:

desktopsV1.01.exe

That sounded familiar to me so I did some searching and  I have a topic (from December) here where I reported that Avira had identified that on  my computer as malware and had quarantined it.  Avira forums people told me didn't need to do anything further and that it had been added to their definitions.
topic:  http://www.landzdown.com/index.php?topic=47937
Y'all took me through some cleanup stuffs and I moved on.

My Avira is not showing anything in its daily scan, and I ran a MalwareBytes scan and also found nothing.  (however it was a short scan).

So could this thing be back on my computer again? or did I maybe encounter it on some web page that it tried to take this screen shot that was blocked by Rapport?
Logged

Offline pastywhitegurl

  • Sr. Member
  • ****
  • Posts: 394
  • advanced techno feeb
Re: desktopsV1.01.exe - ok apparently
« Reply #1 on: May 12, 2011, 04:11:37 PM »
Sorry, can't edit my post above.  The topic I mentioned is about another piece of malware.  This .exe file just brought up the topic because it was in the scan report there.

desktopsV1.01.exe   is apparently a legit program that I have used for a long time to have several desktops to work on. It is functioning normally.  And my HiJackThis log that I just took for my other topic  shows it but it was not flagged in the scan.  So I'm assuming it is alright?   What is it doing taking screenshots, I wonder....

And I wish I knew what was responsible for the keylogging attempts.  Rapport says often legitimate programs act in a way that triggers the blocking, so it could be something I have installed, but they don't differentiate in the report between  harmless attempts and malicious ones.
Logged

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 11530
  • "Stronger than the past, united in our goal."
    • Security Garden
Re: desktopsV1.01.exe - again?
« Reply #2 on: May 12, 2011, 05:25:08 PM »
We have the settings so the posts in this forum cannot be edited.  It is to prevent confusion after logs are posted.

It sounds as though Trusteer Rapport is being overly sensitive to how your software is operating.  It certainly should not be blocking a screen capture.  From what I can tell, the desktops program is DeskPins:  http://users.forthnet.gr/pat/efotinis/programs/deskpins.html

Some background on Rapport:

Since I do not use Rapport or know why it is blocking a legitimate screen capture and your desktop management software, you may need to contact their support, available here, along with FAQ's:  http://www.trusteer.com/support

I would be interested in what you find out if you decide to contact support.
Logged
,  

Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline pastywhitegurl

  • Sr. Member
  • ****
  • Posts: 394
  • advanced techno feeb
Re: desktopsV1.01.exe - again?
« Reply #3 on: May 12, 2011, 06:48:40 PM »
Thanks. That information is very helpful.  With just a quick overview of that forum topic, it seems like I would not have the issues there since I don't use IE8 for anything but testing and I also don't use the windows versions referenced that have conflicts.

I will follow up with Rapport about the screen capping, and let you know what I find out.

The program in question is for creating multiple desktops, not  proprietary ordering of what is on top, so not sure what you are referring me to..I don't recognize that program, although I do use something similar called KeepOnTop.   

I just don't understand why a program that creates multiple desktops would need to take a screen capture. Perhaps I'll find out something that explains it.
Logged

Offline winchester73

  • Administrator
  • Hero Member
  • *****
  • Posts: 5123
  • Half a bubble off plumb
Re: desktopsV1.01.exe - again?
« Reply #4 on: May 12, 2011, 08:12:32 PM »
Is this the Sysinternals Desktops program?

If so, doesn't it utilize screen captures as part of producing the four virtual desktops?  It's been years since I messed around with this so I don't really remember ...

First, ING Direct bugged me to download Rapport.  Now Bank of America is doing it.  As with any software security program, there are real and perceived compatibility and performance issues.  Pfffttttt.
Logged
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member


Offline pastywhitegurl

  • Sr. Member
  • ****
  • Posts: 394
  • advanced techno feeb
Re: desktopsV1.01.exe - again?
« Reply #5 on: May 13, 2011, 10:44:46 PM »
Yes, that's it.

And I guess it does make sense that it would screenshot to create a new desktop.

My bank really pushed it, although did not require it.  I called them after receiving the prompts to make sure it was a legitmate offer and they did strongly encourage me to install it.

So far, no compatibility issues or problems that I can tell.
Logged
Pages: [1]   Go Up
« previous next »