WinSession Logger
It is a Commercial Key Logger is a program that captures and logs keystrokes as they are entered on the computer for the purpose of monitoring the user. The logged data, which may be encrypted, is saved or sent to the person who installed the key
logger. These applications often run in stealth mode and are invisible to the user that is being monitored. Such key loggers are sold commercially and may be used legitimately if deployed by authorized administrators and disclosed to the persons
being monitored, as in a business environment. The use of a key logger to monitor persons without their knowledge has been ruled illegal in at least one jurisdiction.0
General information:
| Malware Name: |
WinSession Logger |
| Malware Type: |
Key Logger |
| Company Name: |
Cromosoft.com |
| Company URL: |
http://www.cromosoft.com/
|
| Threat Level: |
Severe Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
Cromosoft.com provides various keyloggers like Remote Keylogger, Local Keylogger, Keystroke Recorder and WinSession Logger. WinSession Logger (WSL) is a recommended spy software program. WSL gives the ability to record every action on our computer
and not only keystrokes pressed. WSL is a high valuable product in the keyloggers by software and computer monitoring market used by home owners and professionals in several countries from America to Asia. Is the most intuitive spy software, easy
to setup and let us to save our time opening our logs, we will not find any difference between the screenshots saved by WSL and our current screen.
Spyware Description:
It is a Commercial Key Logger is a program that captures and logs keystrokes as they are entered on the computer for the purpose of monitoring the user. The logged data, which may be encrypted, is saved or sent to the person who installed the key
logger. These applications often run in stealth mode and are invisible to the user that is being monitored. Such key loggers are sold commercially and may be used legitimately if deployed by authorized administrators and disclosed to the persons being
monitored, as in a business environment. The use of a key logger to monitor persons without their knowledge has been ruled illegal in at least one jurisdiction.0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
wslogger.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\sapna\Desktop\WS Logger.lnk |
515 |
Shortcut |
| C:\Program Files\Wlogs\cu.ini |
10697 |
Configuration Settings |
| C:\Program Files\Wlogs\readme.txt |
4558 |
Text Document |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\Wlogs |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinSession Logger 3.2_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinSession Logger 3.2_is1 |
URLUpdateInfo |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinSession Logger 3.2_is1 |
UninstallString |
