We received the file EDESKCMN.DLL and detected that EDESKCMN.DLL is not good.
EDESKCMN.DLL is Adware. You should remove the file EDESKCMN.DLL.
Kill the process EDESKCMN.DLL and remove EDESKCMN.DLL from Windows.
Malware Analysis of EDESKCMN.DLL
Full path on a computer: %Temp%\Desk365\Desk_365\edeskcmn.dll
Detected by UnHackMe:
EDESKCMN.DLL
Default location: %Temp%\Desk365\Desk_365\edeskcmn.dll
Removal Results: Success
Number of reboot: 1
EDESKCMN.DLL is known as:
Adware.D365
EDESKCMN.DLL hash:
- MD5: 4a48cdf55a41fdaaa9dff68c7a448580
The file tries to download information from some web sites.
How to quickly detect EDESKCMN.DLL presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Desk 365\UninstallString: “%Program Files%\Desk 365\eUninstall.exe”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Desk 365\DisplayName: “Desk 365″
- HKLM\System\CurrentControlSet\Services\desksvc\ImagePath: “%Program Files%\Desk 365\deskSvc.exe”
- HKLM\System\CurrentControlSet\Services\desksvc\DisplayName: “Desk 365 service”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Desk 365: “”%Program Files%\Desk 365\desk365.exe” /autorun”
Folders:- %Appdata%\Desk 365
- %Temp%\Desk365
- %Common Startmenu%\Programs\Desk 365
- %Program Files%\Desk 365
Files:- %Temp%\Desk365\Desk_365\ebase.dll
- %Temp%\Desk365\Desk_365\edeskcmn.dll
- %Temp%\Desk365\Desk_365\eDhelper.exe
- %Temp%\Desk365\Desk_365\eDhelper64.exe
- %Temp%\Desk365\Desk_365\edis.dll
- %Temp%\Desk365\Desk_365\edis64.dll
- %Temp%\Desk365\Desk_365\ElexDbg.dll
- %Temp%\Desk365\Desk_365\enotify.dll
- %Temp%\Desk365\Desk_365\eUninstall.exe