PAL PC Spy

PAL PC Spy is a keylogger that protects, controls and monitors everything that happens on your PC and online. It is a completely invisible keylogger and screenshot utility that secretly captures anything the user sees or types on the keyboard. It operates in stealth mode.

General information:

Malware Name: PAL PC Spy
Malware Type: Keylogger
Company Name: PAL Solutions Ltd
Company URL: http://www.palsol.com/
Threat Level: High Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation

Company Description:

PAL Solutions Ltd provides you the software PAL PC Spy that protects, controls and monitors everything that happens on your PC and online. It is a completely invisible keylogger and screenshot utility that secretly captures anything the user sees or types on the keyboard. PAL PC Spy operates in stealth mode, such that users are unaware of its existence. Special hotkey and login is necessary to invoke the program. Users are unable to terminate the program. Users are unable to uninstall the program. PAL PC Spy comes with screen capture capability with idle detect, keylogging, auto e-mailer, network monitor, folder hider archive utility, clear trace, and picture viewer.

Spyware Description:

PAL PC Spy is a keylogger that protects, controls and monitors everything that happens on your PC and online. It is a completely invisible keylogger and screenshot utility that secretly captures anything the user sees or types on the keyboard. It operates in stealth mode.

Characteristics/Symptoms:

    -> It protects, controls and monitors everything that happens on your PC and online. -> It is a completely invisible keylogger and screenshot utility that secretly captures anything the user sees or types on the keyboard. -> It operates in stealth mode.

Additional information might be found here:

google Search at Google for PAL PC Spy
bing Search at Bing for PAL PC Spy
yahoo Search at Yahoo for PAL PC Spy

Processes Running:

klpf.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\WINDOWS\system32\PAL\PCS\IEGuard.dll 360448 Application Extension
C:\WINDOWS\system32\PAL\PCS\cpu.exe 45056 Application
C:\WINDOWS\system32\PAL\PCS\explorer.exe 22016 Application

Folder information Created after Installation:

Folder Location

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_CLASSES_ROOT \TypeLib\{5AB0D266-DD2B-4006-B9D6-A9145291BDD6}
HKEY_LOCAL_MACHINE \SOFTWARE\Classes\CLSID\{1B77D30A-81C9-497A-8647-142F7511B1FB}
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Run klp