EtherScout
The EtherScout collects all the incoming and outgoing traffic in the userâs system. The EtherScout monitors users browsing activity and the information might be transmitted to the host server.0
General information:
| Malware Name: |
EtherScout |
| Malware Type: |
Adware |
| Company Name: |
GlobalPatrol Spy Software |
| Company URL: |
|
| Threat Level: |
High |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
EtherScout is a passive agent which sits on userâs network and collects data on traffic patterns of Internet usage. Reports can be generated in real-time, showing detailed information on what users are doing, or trends of surfing behavior
on your network.
Spyware Description:
The EtherScout collects all the incoming and outgoing traffic in the userâs system. The EtherScout monitors users browsing activity and the information might be transmitted to the host server.0
Characteristics/Symptoms:
-> Collects information about browsing -> Slows the System -> Communicates with the host server -> Installs some other software components also0
Additional information might be found here:
Processes Running:
ethscout.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\EtherScout\WebAdmin.url |
47 |
Internet Shortcut |
| C:\Program Files\EtherScout\reports\MonthTrafficByUser.dws |
1125 |
DWS File |
| C:\Program Files\EtherScout\reports\MonthUserTrafficByDay.dws |
1163 |
DWS File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\EtherScout |
| C:\Program Files\EtherScout\config |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
SYSTEMCurrentControlSetServices |
EtherScout |
| HKEY_LOCAL_MACHINE |
SYSTEMCurrentControlSetServicesEtherScout |
DisplayName |
| HKEY_LOCAL_MACHINE |
SYSTEMCurrentControlSetServicesEtherScout |
ImagePath |
