ProcAlert

ProcAlert will keep a close watch on all processes being launched on your computer. This software also works as a keylogger. ProcAlert Pro helps you keep an eye on what programs are running on your computer. It works somewhat similar to an application firewall, but does not take Internet or network connectivity into consideration. Instead it will monitor all programs and processes, regardless of their activity, and allows you to assign a trust level to each one.0

General information:

Malware Name:	ProcAlert
Malware Type:	Key Logger
Company Name:	Softpedia
Company URL:	http://softpedia.com/
Threat Level:	High Risk
Operating System:	WIN XP
Installation Type:	Installed through EXE
Operation:	Time of After Installation.

Company Description:

Spyware Description:

Characteristics/Symptoms:

-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0

Additional information might be found here:

	Search at Google for ProcAlert
	Search at Bing for ProcAlert
	Search at Yahoo for ProcAlert

Processes Running:

ProcAlert.exe

File information Created after Installation:

File Location	Size (Bytes)	Type
C:\Program Files\ProcAlert\System\PAMsg.dll	75696	Application Extension
C:\Program Files\ProcAlert\System\Settings.pas	130	PAS File
C:\Program Files\ProcAlert\System\nederlands.lng	15551	LNG File

Folder information Created after Installation:

Folder Location
C:\Program Files\ProcAlert
C:\Program Files\ProcAlert\Images

Registry information Created after Installation:

Main Registry Key	Sub Registry Key	Key Value Name
HKEY_LOCAL_MACHINE	SOFTWAREMicrosoftWindowsCurrentVersionUninstallProcAlert	DisplayName
HKEY_LOCAL_MACHINE	\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ProcAlert	SlowInfoCache
HKEY_LOCAL_MACHINE	\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ProcAlert	UninstallString