MonitoringTool:Win32/KGBKeylogger is a monitoring tool which gathers sensitive information from its victims without their knowledge. This seditious keylogger will record the user’s keystrokes and other website activities the user partakes in. First released April 17, 2011, MonitoringTool:Win32/KGBKeylogger has gone on to infect many PCs across the globe. It also operates under various aliases, the most popular being
The monitoring tool forms part of MonitoringTool:Win32/KGBKeylogger!dll and is installed as %ProgramFiles%\KGB\MPK.dll. It will install multiple window hooks in order to intercept keystroke events and mouse events. The keylogger will also intercept the following WINSOCK APIs in order to monitor network activities:
What makes MonitoringTool:Win32/KGBKeylogger so dangerous is the fact that it violates users’ privacy completely by recording keystrokes and the websites visited, and it then shares this info with its developers.
MonitoringTool:Win32/KGBKeylogger will also take note of the user’s sensitive personal information, which includes usernames, passwords and financial information such as account numbers and credit card info. This makes the user an extremely likely candidate for identity fraud and theft.
There is no obvious symptoms to alert the user as to the presence of MonitoringTool:Win32/KGBKeylogger on the system. The only notification the user will receive that MonitoringTool:Win32/KGBKeylogger has compromised the system will come from notifications from installed security software.
Users who value their PCs’ security and privacy are urged to get rid of MonitoringTool:Win32/KGBKeylogger immediately. This can best be achieved by making use of a powerful security tool which will not only erase MonitoringTool:Win32/KGBKeylogger successfully, but also offer adequate protection against similar attacks and threats in future.
- Connects to the internet without permission
- Installs itself without permissions
- Slow Computer
- Slow internet connection