Paq Keylog
Paq Keylog can Log all the keyboard events, including function keys such as F1, Home etc. This key logger can run invisibly in the background and records all the activity done by the user on the computer. It also includes elevated threats that are
typically installed without adequate notice and consent, and may make unwanted changes to system, such as reconfiguring browserâs homepage and search settings. These threats may install advertising-related add-ons, including toolbars and
search bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect preferred network connections, and can negatively impact computerâs performance
and stability.0
General information:
| Malware Name: |
Paq Keylog |
| Malware Type: |
Key Logger |
| Company Name: |
Paqtool |
| Company URL: |
http://paqtool.com/
|
| Threat Level: |
Elevated Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
Paqtool is a Key logger logs all the keyboard events, including function Keyboards such as F1, Home etc. It is built-in log viewer; we can view the Recorder file in text only mode or function mode, or use a search tool to quickly find
the destination keystrokes. It is a password protect keystroke recorder, safely hide the recorded information and it is a perfect recorder interface. It is Built-in intelligent family Recorder engine, very low CPU & memory consuming.
Spyware Description:
Paq Keylog can Log all the keyboard events, including function keys such as F1, Home etc. This key logger can run invisibly in the background and records all the activity done by the user on the computer. It also includes elevated threats that are
typically installed without adequate notice and consent, and may make unwanted changes to system, such as reconfiguring browserâs homepage and search settings. These threats may install advertising-related add-ons, including toolbars and search
bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect preferred network connections, and can negatively impact computerâs performance and stability.0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
moni.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\User\Desktop\Paq Keylog.lnk |
582 |
Shortcut |
| C:\Program Files\PaqTool\keylog\icosdll.dll |
131072 |
Application Extension |
| C:\Program Files\PaqTool\keylog\lteml14n.dll |
253952 |
Application Extension |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\PaqTool |
| C:\Program Files\PaqTool\keylog |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Paq KeyLog_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Paq KeyLog_is1 |
URLUpdateInfo |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Paq KeyLog_is14 |
UninstallString |
