Codename Alvin
'Codename Alvin', the PC Super Spy software for Microsoft Windows. Codename Alvin, 'PC Super Spy' software for Windows, has been developed to allow, the PC owner, to monitor what our computer is being used for. It also includes severe
risk threats that are typically installed without user interaction through security exploits, and may allow an attacker to remotely control the infected machine. Such threats may allow the attacker to install additional malware and use the compromised
machine to participate in denial of service attacks, spamming, and bot nets, or to transmit sensitive data to a remote server. The malware may be cloaked and not visible to the user.0
General information:
| Malware Name: |
Codename Alvin |
| Malware Type: |
Key Logger |
| Company Name: |
Codename Alvin |
| Company URL: |
http://codenamealvin.com/
|
| Threat Level: |
Severe Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
'Codename Alvin' allows the owner of the computer to monitor keyboard, internet, screen and application activity. This allows the parent to start the software, shut down their pc, then go to work. Should the children
start the PC up while the parent is away,   Alvin will log their activity, the websites they access, and their conversation in the chat rooms. Alvin is also in use by clients who do not
want to hide the software at all;Â they just want to simply keep a log of what they have been doing on the net so they can go back later without having to keep tracks while they are working.
Spyware Description:
'Codename Alvin', the PC Super Spy software for Microsoft Windows. Codename Alvin, 'PC Super Spy' software for Windows, has been developed to allow, the PC owner, to monitor what our computer is being used for. It also includes severe
risk threats that are typically installed without user interaction through security exploits, and may allow an attacker to remotely control the infected machine. Such threats may allow the attacker to install additional malware and use the compromised
machine to participate in denial of service attacks, spamming, and bot nets, or to transmit sensitive data to a remote server. The malware may be cloaked and not visible to the user.0
Characteristics/Symptoms:
-> Intercepts keystrokes from the keyboard and records them in a log -> Hidden from the User -> Run in stealth mode -> Monitor and capture data from computers0
Additional information might be found here:
Processes Running:
cnalvin.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\User\Start Menu\Programs\Coding Workshop\Codename Alvin.lnk |
574 |
Shortcut |
| C:\Program Files\Coding Workshop\UNWISE.EXE |
165376 |
Application |
| C:\WINDOWS\system32\Sslstbar.ocx |
253 |
ActiveX Control |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\Coding Workshop |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Codename Alvin |
Changed |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Codename Alvin |
SlowInfoCache |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Codename Alvin |
Contact |
