User Logger
User Logger is a keylogger with elevated risk that monitors and captures data from computers including screenshots, keystrokes, web cam and microphone data, instant messaging chat sessions, email, visited websites. It even can steal the password.0
General information:
| Malware Name: |
User Logger |
| Malware Type: |
Key Logger |
| Company Name: |
Chemware |
| Company URL: |
http://chemware.co.nz/
|
| Threat Level: |
Elevated Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Chemware provides you the software User Logger that stores information about what User Logger does on the computer, who used a computer, uniquely identify the user and computer, when they used it exact dates and times What they did, see what programs
they used, Take pictures of the screen And see what they typed.
Spyware Description:
User Logger is a keylogger with elevated risk that monitors and captures data from computers including screenshots, keystrokes, web cam and microphone data, instant messaging chat sessions, email, visited websites. It even can steal the password.0
Characteristics/Symptoms:
-> It captures and logs keystrokes on the computer without the user's knowledge and consent. -> The logged data may be encrypted and is typically sent to a remote attacker. -> It can even steal the password. -> It is
usually hidden from the user.0
Additional information might be found here:
Processes Running:
UsrLog.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Start Menu\Programs\User Logger\User Logger Help.lnk |
607 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\User Logger\User Logger.lnk |
1475 |
Shortcut |
| C:\Program Files\User Logger\tod.txt |
2930 |
Text Document |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\User Logger |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\User Logger_is1 |
Changed0 |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\User Logger_is1 |
SlowInfoCache0 |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\User Logger_is1 |
[NULL]0 |
