XP Keylogger
XP Keylogger records everything that is entered from the keyboard, to log file. Documents, e-mails, chat conversations, typed URL addresses, passwords, and Internet forms will be recorded neatly. caps, symbols, and backspaces will also be processed.
It is a program that runs in the background, recording all the keystrokes. Once keystrokes are logged, they are hidden in the machine for later retrieval, or shipped raw to the attacker. The attacker then peruses them carefully in the hopes of either
finding passwords, or possibly other useful information that could be used to compromise the system or be used in a social engineering attack.0
General information:
| Malware Name: |
XP Keylogger |
| Malware Type: |
Key Logger |
| Company Name: |
XP-Tools |
| Company URL: |
http://www.xp-tools.com/
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
XP-Tools.com is a software design and marketing corporation which was founded in November 2002 and located in 3831 Valley Center Dr. Suite 706-295 San Diego, California. It is one of the original manufacturers and vendors of its software and related
products. Since its beginning it has come a long way in terms of service, products, and technology to offer us the best in tools software solutions. Its products have received major write-ups in: Time Magazine, Newsweek, Business Week, The Washington
Post, ABC World News Tonight, NBC Nightly News, CNN and MSNBC. Its company mission is to provide users with quality tools software. It offers pre sale support and most post sale support to attempt to keep our customers 100% satisfied.
Spyware Description:
XP Keylogger records everything that is entered from the keyboard, to log file. Documents, e-mails, chat conversations, typed URL addresses, passwords, and Internet forms will be recorded neatly. caps, symbols, and backspaces will also be processed.
It is a program that runs in the background, recording all the keystrokes. Once keystrokes are logged, they are hidden in the machine for later retrieval, or shipped raw to the attacker. The attacker then peruses them carefully in the hopes of either
finding passwords, or possibly other useful information that could be used to compromise the system or be used in a social engineering attack.0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
services.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Start Menu\Programs\XP Keylogger\Help Online.lnk |
465 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\XP Keylogger\Homepage.lnk |
485 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\XP Keylogger\Purchase.lnk |
485 |
Shortcut |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\XP Keylogger |
| C:\Program Files\XP Keylogger\data |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\XP Keylogger_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\XP Keylogger_is1 |
URLUpdateInfo |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\XP Keylogger_is1 |
UninstallString |
