PerfectKeylogger

Description:	Spyware
Risk Level:	High
Date of First Occurence:	Monday, April 21, 2008
Software Developer:	(unknown)
Brief Info:	Perfect Keylogger invisibly monitors and records all of your computer activity. This information is then automatically emailed to an anonymous user.
Removal:	This threat can be removed using "Spyware Terminator"

SUPPRIMER SPYWARE »

Geographical Distribution of Threat "PerfectKeylogger"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\BPK\bpkwb.dll MD5: 21D4E01F38B5EFD64AD6816FA0B44677 Size:40960 MD5: 20DFD2942814946D42D49C9C6378BCEE Size:243200 MD5: 6940EE0C4F7013FE08DB224EF6F87ED4 Size:40960 MD5: 5D6103059981886EE29698EF77006398 Size:40960 MD5: E9562AF556336D7F1203B2DA4C59F25A Size:241664 MD5: 2E6016325548AB79E2D636640C6EC473 Size:40960 %PROGRAMFILES%\Perfect Keylogger Lite\uninstall.exe MD5: B74A70B46CA218CB4B4AD721CB225414 Size:30208 %PROGRAMFILES%\Perfect Keylogger Lite\lview.exe MD5: E881CBAFFBAD16B0D9C42342F7DD04E0 Size:48640 %PROGRAMFILES%\Perfect Keylogger Lite\bpk.exe MD5: 8B4B3F9B66420480783A27068EE57787 Size:154112 %PROGRAMFILES%\BPK\bpkun.exe MD5: 4D0593E17EB617AC20FE51ED40D19B9A Size:315904 MD5: 956A732CAAC22D3ADFEA25A559352AD3 Size:40960 MD5: 2B92566466E139E946B060FB5A8887E5 Size:40960 MD5: E7A23AFE728A80045138F0061775AE5B Size:40960 MD5: B8C8FADC703BA93E6F48F906D87A57C7 Size:40960 MD5: E0F2399D0CF60498B65E008819977423 Size:40960 MD5: 737221DFAA1B9D91DDB8A4953EDEAAD3 Size:40960 MD5: 70C2F34B6111746B3BF52380FF9E3340 Size:40960 MD5: 174E2D1CCC3E4465D73DCCDF4601EAAA Size:239616 %PROGRAMFILES%\BPK\bpkr.exe MD5: 1E36C28E338939C0C9C70544F5F39B01 Size:299520 MD5: A455CA431E66975D886F1A8CFEE8CB9F Size:7680 MD5: A7CE40BBC347D1A99400C6FE842948FA Size:5120 MD5: F3D0BEEF15EB987DBCEC8E803BF6C89D Size:19456 MD5: 9B37CCF69F76C5168991CEDC91393557 Size:220672 %PROGRAMFILES%\BPK\bpki.dll MD5: 435B733B0F808E1B8CB95872A320AB32 Size:317952 MD5: D567A6D0647F80ECB5A761DDD9AD367C Size:275968 MD5: 274089CC9A90FE4618658A56F971BB3F Size:215040 %PROGRAMFILES%\BPK\bpk.exe MD5: 5B0F43BFC6B01417612DCFB5FE61B011 Size:502784 MD5: A628046AF556369BC3F946425E40E674 Size:361472 MD5: F6FE2BF763EC7AC0B2D6CC306C14CE71 Size:474624 MD5: 49818B2AD90545073688D9F00599D3F3 Size:380928 MD5: 3CC22B06D1086324255DD3A2B21466A0 Size:438272 MD5: 9FC7F7A3C0ED49576104E16CCDFB132A Size:328704 MD5: E053AD7A31724EE4A5DEB70E8B661A53 Size:417792 MD5: C5B9E8F7D1A7B421960E46CFD52EC29B Size:499712 MD5: F369312AD5A927A760B2B4FB6DE3ABB6 Size:509952 %PROGRAMFILES%\BPK\bpkhk.dll MD5: 0266F05CFA98A3311A57E4C2D7EF010B Size:303104 MD5: 7719E3244553DCE7B70A9D1083E291DC Size:24576 MD5: 5E6048D3199FB6C8185FF32E9FF496F7 Size:19968 MD5: 33BFDD7818942C3570A41701089113E0 Size:227328 %SYSDIR%\BPK.EXE MD5: 458CC34BD0586F5FFE7C2E433A3C602E Size:356352 MD5: 0579A3ADE48160490F11E7FD76AC979F Size:397312 MD5: E3035B490AEC5FCC4BD84A6AC4A63EC0 Size:405504 MD5: E4221D99F11A6993A353C67CA139DA1C Size:395740 MD5: BAE0FB25BCF05A5DA7FDE8DCE759EE0D Size:438272 MD5: 8483B26AABF08CD8553EF218B8044631 Size:417792 MD5: 6450AECF298A80D659009D8F4F7EA8B4 Size:397312 %SYSDIR%\bpk.exe MD5: 65B87AB2238F38344F5B0604C32D7F32 Size:397312 MD5: EEF12373C0030710E8A21FCC66C6FA05 Size:1001472 MD5: 2A555B297E32638837582D965F533B33 Size:434176 MD5: 7E8B1952024D52C03D15063F76957F2D Size:417792 MD5: CE74BEBD69C23687EF526E57C4F66F55 Size:417792 MD5: CE74BEBD69C23687EF526E57C4F66F55 MD5: 1A4027C402A389A7446248F9F81766C7 Size:392192 MD5: E0BFBD6396257E8F2ABA0DE4CE97B2E8 Size:417792 C:\WINDOWS\SYSTEM32\bpk.exe MD5: 8920A39F181860D0DE7511A336A52711 Size:392192 %PROGRAMFILES%\Perfect Keylogger Lite\bsdhooks.dll MD5: E3428D58A672C9854305C90DD4207FD6 Size:7168 %PROGRAMFILES%\bpk\bpkwb.dll MD5: 534401F94B3C15900DE8E376F69747BA Size:23552
Detected Files with variable Filenames: MD5: 9BD9E593CECF340B3BC9783946860DD9 Size: 215040 %PROGRAMFILES%\BPK\bpki.dll %PROGRAMFILES%\keylogerrrrr\bpki.dll %SystemDiskRoot%\System Volume Information\_restore{AA978EA5-60C8-456C-931C-E60C911A4622}\RP398\A0139979.dll %SystemDiskRoot%\System Volume Information\_restore{AA978EA5-60C8-456C-931C-E60C911A4622}\RP391\A0138791.dll %PROGRAMFILES%\meukeylogger\bpki.dll %USERPROFILE%\Lokale Einstellungen\Anwendungsdaten\iexpress\bin\iexpressi.dll %TEMP%\RarSFX0\bpki.dll e:\Program Files\BPK\bpki.dll %SystemDiskRoot%\System Volume Information\_restore{5EC93443-4651-4491-9FE8-691071753D0D}\RP67\A0053009.dll %SystemDiskRoot%\Programas\Nova pasta (2)\bpki.dll %PROGRAMFILES%\bot ragnarok\bpki.dll and next 8 variations. MD5: 2A555B297E32638837582D965F533B33 Size: 434176 %SYSDIR%\bpk.exe %PROGRAMFILES%\BPK\bpk.exe %WINDIR%\SYSTEM\BPK.EXE MD5: 45D276FCCFE7E40C1A75A0FC15DE0722 Size: 40960 %SYSDIR%\bpkwb.dll %SYSDIR%\LANOwb.dll %WINDIR%\polacowb.dll MD5: D724D18BEFA4BB6AE993892653EC795C Size: 24576 %SYSDIR%\bpkhk.dll %PROGRAMFILES%\Aktualizace\ukazmicestuhk.dll %SYSDIR%\explorerhk.dll %SYSDIR%\LANOhk.dll %WINDIR%\polacohk.dll MD5: 137CB2835B1D91386AC2B1B565C6492D Size: 438272 %WINDIR%\system\bpk.exe %PROGRAMFILES%\BPK\bpk.exe MD5: 3CC22B06D1086324255DD3A2B21466A0 Size: 438272 %PROGRAMFILES%\BPK\bpk.exe %SYSDIR%\bpk.exe MD5: EC4E28B5E9F18F16C27829D594AA1058 Size: 7680 %SYSDIR%\bpkr.exe %SYSDIR%\rinst.exe %SYSDIR%\LANOr.exe %WINDIR%\polacor.exe %WINDIR%\rinst.exe %TEMP%\RarSFX4\rinst.exe %TEMP%\RarSFX3\rinst.exe %TEMP%\RarSFX0\rinst.exe MD5: CE74BEBD69C23687EF526E57C4F66F55 Size: 417792 %SYSDIR%\bpk.exe %PROGRAMFILES%\bpk\bpk.exe MD5: 03D5815B1C551EDC62AFF019F8105414 Size: 405504 %SYSDIR%\LANO.exe %WINDIR%\polaco.exe MD5: BAE0FB25BCF05A5DA7FDE8DCE759EE0D Size: 438272 %SYSDIR%\BPK.EXE %PROGRAMFILES%\BPK\bpk.exe %WINDIR%\SYSTEM\BPK.EXE

Detecting items list:

Files by Name %programfiles%\BPK\bpk.exe %programfiles%\BPK\bpkhk.dll %programfiles%\BPK\bpki.dll %programfiles%\BPK\bpkr.exe %programfiles%\BPK\bpkun.exe %programfiles%\bpkvw.exe %programfiles%\BPK\bpkwb.dll %ProgramFiles%\Perfect Keylogger*\bpk.exe %ProgramFiles%\Perfect Keylogger*\bsdhooks.dll %ProgramFiles%\Perfect Keylogger*\uninstall.exe %ProgramFiles%\Perfect Keylogger*\dowloads.url %ProgramFiles%\Perfect Keylogger*\lview.exe %windir%\SYSTEM\BSDHOOKS.DLL %sysdir%\BSDHOOKS.DLL %windir%\SYSTEM\BPK.EXE %sysdir%\BPK.EXE %windir%\BPK.EXE %WINDIR%\updater\nicksupdaterwb.dll
Files by MD5 MD5: 6F25F91F7A345FE697B5FECAAF1CE397 Size: 812606 MD5: 03D5815B1C551EDC62AFF019F8105414 Size: 405504 MD5: D724D18BEFA4BB6AE993892653EC795C Size: 24576 MD5: 9BD9E593CECF340B3BC9783946860DD9 Size: 215040 MD5: EC4E28B5E9F18F16C27829D594AA1058 Size: 7680
Files by Directories %START_PROGRAMS%\BlazingTools Perfect Keylogger %ProgramFiles%\Perfect Keylogger* %START_PROGRAMSALL%\Perfect Keylogger*
Files by CLSID or Name CLSID=1E1B2879-88FF-11D3-8D96-D7ACAC95951A
Registry Keys HKCR\PK.IE HKCR\PK.IE.1 HKCU\Software\Microsoft\Internet Explorer IEPK HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Perfect Keylogger

« Go to Software Database

Chercher dans la Base de Données de notre Logiciel

Naviguez dans la Base de Données du Logiciel

Dernières Nouvelles sur les Malwares

23. septembre 2011

Parmi l'une des spywares les plus actifs est actuellement Trojan.MicroFake.ba sans doute. Il attaque en conjonction avec les applications antispyware Rogue et forces les utilisateurs d'acheter ces applications faux. Utilisez les techniques rootkit est très typique de ce cheval de Troie pour l'aider à cacher de les utilisateurs et le système, ce qui rend difficile à retracer. Nous vous recommandons de mettre régulièrement à jour notre base de données et une politique active temps réel de Shield antivirus.

Anciennes Nouvelles sur les Malwares »