EMCO Remote CmdLine
EMCO Remote CmdLine is a remote administration tool that remotely controls the user's PC via client and server programs.EMCO Remote CmdLine is a remote administration tool that remotely controls the user's PC via client and server programs.
It features: Terminate a running process on a remote machine, merge registry file and send it (.rag) to a remote machine, etc.0
General information:
| Malware Name: |
EMCO Remote CmdLine |
| Malware Type: |
Remote Control |
| Company Name: |
Emco Software |
| Company URL: |
http://emco.is/
|
| Threat Level: |
Low Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Spyware Description:
EMCO Remote CmdLine is a remote administration tool that remotely controls the user's PC via client and server programs.EMCO Remote CmdLine is a remote administration tool that remotely controls the user's PC via client and server programs.
It features: Terminate a running process on a remote machine, merge registry file and send it (.rag) to a remote machine, etc.0
Characteristics/Symptoms:
-> It is a network application that allows to manage and control PCs or networks from a remote location. -> It allows to access another computer without explicit authorization. -> It can also be used to monitor and steal information
from the remote computer -> Slows down the performance of PC0
Additional information might be found here:
Processes Running:
RCLClient.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\EMCO Remote CmdLine 1.1\Help.chm |
217278 |
Compiled HTML Help file |
| C:\Program Files\EMCO Remote CmdLine 1.1\How To Install Service Pack Unattended Remote On NT4 Machine.pdf |
103383 |
PDF File |
| C:\Program Files\EMCO Remote CmdLine 1.1\RCLServer.exe |
234496 |
Application |
Folder information Created after Installation:
| Folder Location |
| C:\Documents and Settings\All Users\Start Menu\Pro |
| C:\Program Files\EMCO Remote CmdLine 1.1 |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_CURRENT_USER |
\Software\Remote CmdLine |
|
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallEMCO Remote CmdLine 1.1_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallEMCO Remote CmdLine 1.1_is1 |
URLUpdateInfo |
