iProtectYou

Description:	Keylogger
Risk Level:	Low
Date of First Occurence:	Monday, April 28, 2008
Software Developer:	(unknown)
Brief Info:	Keyloggers invisibly monitor and record all of your computer activity. This information is then automatically emailed to an anonymous user.
Removal:	This threat can be removed using "Spyware Terminator"

Detected Files: %SYSDIR%\ipyun.exe MD5: DF0AA41AE79F030CD0E2319AABA3E8EC Size:34488 MD5: 2FD9BF2BF67BFD51A3B96E5A46E8A801 Size:34806 MD5: 0F02FCB14862D6468ADBC7AAD078D8A7 Size:34770 MD5: 81903B8948875CCAA78255F0AEB72CD4 Size:35134 MD5: A88FAA62EEE39DE3C1C058E27944741F Size:34574 MD5: 0F3E3ACBE68B6C0975D19C79B57D512E Size:35134 MD5: 118766EC34CC4D7EB61BEFB3EAB303BE Size:34488 %SYSDIR%\iPYSvr.exe MD5: 03452190AF25185F6E272C333AB37601 Size:385024 %SYSDIR%\ipynotify.exe MD5: 9D684C5BD63B855826A2D316D962F79A Size:294912 %SYSDIR%\ipycp.exe MD5: 0EB9A077E58AC9DF297E1DB13596923D Size:4628480 %SYSDIR%\iPYSvc.exe MD5: EF53E4FEEB940E558D7DA7B4187C9D63 Size:69632 %SYSDIR%\ipysp.dll MD5: 03E460920106B0E21A47ECEB3BFBC7CF Size:266240
Detected Files with variable Filenames:

Files by Name %SYSDIR%\ipycp.exe %SYSDIR%\ipynotify.exe %SYSDIR%\ipysp.dll %SYSDIR%\iPYSvc.exe %SYSDIR%\iPYSvr.exe %SYSDIR%\ipyun.exe %SYSDIR%\msippos.dat %SYSDIR%\mssavt.dat %SYSDIR%\mssctm.dat %SYSDIR%\mssdtls.dat %SYSDIR%\mssfng.dat %SYSDIR%\mssusr.dat %SYSDIR%\msswgs.dat %START_PROGRAMS%\iProtectYou Web Filter\iProtectYou Web Filter.lnk %START_PROGRAMS%\iProtectYou Web Filter\Manual.lnk %START_PROGRAMS%\iProtectYou Web Filter\Safety Tips for Protecting Kids Online (PDF).lnk %START_PROGRAMS%\iProtectYou Web Filter\SoftForYou Web Site.lnk
Files by Directories %PROGRAMFILES%\iProtectYou %START_PROGRAMS%\iProtectYou Web Filter
Registry Keys HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iProtectYou
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=ipyrun