EMCO Remote Screenshot
EMCO Remote Screenshot allows users to take screenshots of the remote machines on their network and save them to a file on the local computer. It is a network application that allows users to manage and control PCs or networks from a remote location.0
General information:
| Malware Name: |
EMCO Remote Screenshot |
| Malware Type: |
Remote Control |
| Company Name: |
EMCO Software |
| Company URL: |
http://www.emco.is/
|
| Threat Level: |
Low Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
EMCO Software provides you the software EMCO Remote Screenshot that is a handy, intuitive but yet another simple tool from EMCO Software that allows you to take screenshots of the remote machines on you network and save them to a file on your local
computer. You can configure EMCO Remote Screenshot 1.0 to automatically capture the screenshots form the remote machines on your network after a specified. All captured screenshots will be saved to a file on your hard disk. EMCO Remote Screenshot
1.0 enables you to save the captured screen to a variety of file formats.
Spyware Description:
EMCO Remote Screenshot allows users to take screenshots of the remote machines on their network and save them to a file on the local computer. It is a network application that allows users to manage and control PCs or networks from a remote location.0
Characteristics/Symptoms:
-> It is usually hidden from the user. -> It can even steal the passwords. -> It captures and logs keystrokes on the computer without the user's knowledge and consent. -> The logged data may be encrypted and is typically
sent to a remote attacker. -> It can be used to capture desktop screenshots of the remote computer.0
Additional information might be found here:
Processes Running:
Snapshot.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Start Menu\Programs\EMCO Remote Screenshot 1.0\EMCO Remote Screenshot 1.0 on the Web.lnk |
555 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\EMCO Remote Screenshot 1.0\Help in HTML.lnk |
614 |
Shortcut |
| C:\Program Files\EMCO Remote Screenshot 1.0\Analyzer Tool\Analyzer.exe |
728576 |
Application |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\EMCO Remote Screenshot 1.0 |
| C:\Program Files\EMCO Remote Screenshot 1.0\Analyz |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallEMCO Remote Screenshot 1.0_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallEMCO Remote Screenshot 1.0_is1 |
URLUpdateInfo |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallEMCO Remote Screenshot 1.0_is1 |
UninstallString |
