Beyond Keylogger 3.1
Beyond Keylogger 3.1 is a keylogger that registers all keystrokes typed including language-specific characters, talk and messages conversations.It monitors and captures data from computers.It hides its files.
General information:
| Malware Name: |
Beyond Keylogger 3.1 |
| Malware Type: |
KeyLogger |
| Company Name: |
Supremtec |
| Company URL: |
http://www.supremtec.com/
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Supremtec provides you the software Beyond Keylogger 3.1 that allows you to register all keystrokes typed including language-specific characters, talk and messages conversations (Both sides), passwords, e-mails, clipboard information, microphone sounds,
screenshots capturing, desktop and Internet activity (like sites your kids have visited). It is completely invisible. It is not listed in Task Manager, Windows Task Bar, System Tray, MSConfig (Startup entry), Uninstall list (Add/Remove programs) And
start menu. The keylogger also hides its files.
Spyware Description:
Beyond Keylogger 3.1 is a keylogger that registers all keystrokes typed including language-specific characters, talk and messages conversations.It monitors and captures data from computers.It hides its files.
Characteristics/Symptoms:
-> It registers all keystrokes typed including language-specific characters, talk and messages conversations. -> It monitors and captures data from computers. -> It hides its files.
Additional information might be found here:
Processes Running:
nmxlarbv.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Start Menu\Programs\Supremtec\Uninstall Beyond.lnk |
576 |
Shortcut |
| C:\WINDOWS\system32\ms9unjerdm.dll |
131072 |
Application Extension |
| C:\WINDOWS\system32\msw4neofem.dll |
9847 |
Application Extension |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\Xiwlcmgtwhqze |
| C:\Program Files\Xiwlcmgtwhqzer\Lo |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\80j09esfvm_is1 |
Inno Setup: User |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\80j09esfvm_is1 |
InstallDate |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\80j09esfvm_is1 |
InstallLocation |
