Should I block it?
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization
Additional versions
Relationships
Parent processes
Related files
Desk365.exe
Desk 365 by 337 Technology Limited (Signed)
| Version: | 1.14.20.8091 |
| MD5: | a6e68809bd3b6d0ce8f8782cc1626f12 |
| SHA1: | b2fe4577a951a1126cddac98fe220e1991a4b793 |
| SHA256: | 4899bad63e66d4a1e1b3ee6a3fd159ef66316716b1e2366c9907ad0f752cb1f9 |
Warning 6 antivirus scanners has detected malware.
Overview
desk365.exe is malware that executes as a process with the local user's privileges typically within the context of its parent
desksvc.exe (dsk service by 337 Technology Limited). It is set to be run when the PC boots and the user logs into Windows (added to the Run registry key for the current user). It is installed with a couple of know programs including Desk 365 published by 337 Technology Limited, Desk 365 from 337 Technology Limited and Desk 365 by 337 Technology Limited.
Details
| File name: | desk365.exe |
| Publisher: | 337 Technology Limited. |
| Product name: | Desk 365 |
| Description: | Desk 365 application |
| Typical file path: | C:\Program Files\desk 365\desk365.exe |
| File version: | 1.14.20.8091 |
| Size: | 988.08 KB (1,011,792 bytes) |
| Build date: | 9/2/2013 8:08 AM |
| Certificate |
| Issued to: | 337 Technology Limited |
| Authority (CA): | GlobalSign nv-sa |
| Digital DNA |
| PE subsystem: | Windows GUI |
| File packed: | No |
| Code language: | Microsoft Visual C++ 10.0 |
| .NET CLR: | No |
More details
Programs
The following programs will install this file
“Desk 365 offers you the fastest and easiest way to manage your desktop shortcuts and kinds of applications. With Desk 365's powerful capabilities, you can access your software and applications instantly. You can also keep your desktop tidy and clean! Desk 365 has a user friendly interface, is easy and safe to use, and simple to install.Experience the new generation of Desktop mangager - download Desk 365 now. You can easily cusomize the...”
Behaviors
Startup files (user) run
Runs under the registry key 'HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'Desk 365' → C:\Program Files\Desk 365\desk365.exe
Scheduled tasks
- The task 'RunAsStdUser' runs on registration in the path '\RunAsStdUser'
- The task 'Desk 365 RunAsStdUser' runs on registration in the path '\Desk 365 RunAsStdUser'
Network connections
[TCP] 50.22.226.197-static.reverse.softlayer.com (50.22.226.197:80)
Malware detections
Based on 40+ industry antivirus scanners, 6 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Comodo Internet Security |
17029 |
ApplicUnwnt |
| Ikarus |
T3.1.5.4.0 |
not-a-virus:AdWare.Win32.D365 |
| Kaspersky |
9.0.0.837 |
not-a-virus:AdWare.Win32.D365.a |
| Kingsoft |
2013.4.9.267 |
Win32.Troj.D365.a.(kcloud) |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.F47V0904 |
| Vba32 AntiVirus |
3.12.24.3 |
AdWare.D365 |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.00337431% | |
| Kernel CPU: | 0.00243896% | |
| User CPU: | 0.00093535% | |
| Kernel CPU time: | 112,710,801 ms/min | |
| Context switches: | 31/sec | |
| Memory |
| Private memory: | 10.4 MB | |
| Private (maximum): | 17.78 MB | |
| Private (minimum): | 6.81 MB | |
| Non-paged memory: | 10.4 MB | |
| Virtual memory: | 148.85 MB | |
| Virtual memory (peak): | 164.9 MB | |
| Working set: | 9.36 MB | |
| Working set (peak): | 17.9 MB | |
| Resource allocations |
| Threads: | 16 | |
| Handles: | 118580 | |
| GUI GDI count: | 80 | |
| GUI GDI peak: | 84 | |
| GUI USER count: | 20 | |
| GUI USER peak: | 23 | |
Process properties
| Integrety level: | Medium |
| Platform: | 64-bit |
| Command lines: |
- "C:\Program Files\desk 365\desk365.exe" -svcrun
- "C:\Program Files\desk 365\desk365.exe" /autorun
|
| Owner: | User |
| Parent processes: |
|
Threads
Averages
| desk365.exe (main module) |
| Total CPU: | 0.00426297% | |
| Kernel CPU: | 0.00426297% | |
| User CPU: | 0.00000000% | |
| CPU cycles: | 4,544,733/sec | |
| Context switches: | 17/sec | |
| Memory: | 1000 KB | |
| ntdll.dll |
| Total CPU: | 0.00127890% | |
| Kernel CPU: | 0.00085260% | |
| User CPU: | 0.00042630% | |
| CPU cycles: | 11,409/sec | |
| Memory: | 1.36 MB | |
| msvcr100.dll (Microsoft Visual Studio 2010 by Microsoft) |
| Total CPU: | 0.00094859% | |
| Kernel CPU: | 0.00000000% | |
| User CPU: | 0.00094859% | |
| CPU cycles: | 17,539/sec | |
| Context switches: | 1/sec | |
| Memory: | 764 KB | |
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
32.50% |
|
| Windows 7 Ultimate |
27.50% |
|
| Windows 8 Single Language |
17.50% |
|
| Microsoft Windows XP |
7.50% |
|
| Windows Developer Preview |
7.50% |
|
| Windows 8 |
7.50% |
|
Distribution by country
United States installs about 17.50% of Desk 365.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Acer |
22.00% |
|
| Toshiba |
20.00% |
|
| Hewlett-Packard |
16.00% |
|
| Sony |
16.00% |
|
| Compaq |
8.00% |
|
| GIGABYTE |
8.00% |
|
| Dell |
4.00% |
|
| ASUS |
4.00% |
|
| American Megatrends |
2.00% |
|
