GetByMail

GetByMail is a remote administration tool which remotely control's the user's PC. A Commercial Remote Control Tool is a network application that allows administrators to manage and control PCs or networks from a remote location. Typically used in an enterprise environment, Commercial Remote Control Tools have legitimate uses for I.T. administration and are not harmful unless installed and used without the knowledge of the computer user or network administrator.0

General information:

Malware Name: GetByMail
Malware Type: Remote Control
Company Name: GetByMail.com
Company URL: http://getbymail.com/
Threat Level: Low Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation.

Company Description:

GetByMail.com was founded in 2005 by Volodymyr Bazhan. Mr. Bazhan holds a Ph.D. in Physics and has been actively involved in the IT industry for the past six years. GetByMail.com focuses on producing remote access, file sharing and e-mail high quality and innovative software. GetByMail is a unique alternative to traditional Remote Access, File Sharing and E-mail. With GetByMail we can stay at home and have access to our office computer and vice versa simply through our e-mail account. We can get remote directory listings and tree view, download/upload files and directories, perform change dir, make dir, rename and delete operations, capture remote computer desktop screens, run remote applications, shutdown, reboot and logoff remote computer. GetByMail contains no viruses, spyware, adware, trojans and backdoors and causes no threat when installed.

Spyware Description:

GetByMail is a remote administration tool which remotely control's the user's PC. A Commercial Remote Control Tool is a network application that allows administrators to manage and control PCs or networks from a remote location. Typically used in an enterprise environment, Commercial Remote Control Tools have legitimate uses for I.T. administration and are not harmful unless installed and used without the knowledge of the computer user or network administrator.0

Characteristics/Symptoms:

    -> It is a network application that allows to manage and control PCs or networks from a remote location. -> It allows to access another computer without explicit authorization. -> It can also be used to monitor and steal information from the remote computer -> Slows down the performance of PC0

Additional information might be found here:

google Search at Google for GetByMail
bing Search at Bing for GetByMail
yahoo Search at Yahoo for GetByMail

Processes Running:

GetByMail.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\All Users\Start Menu\Programs\GetByMail\GetByMail 1.4.lnk 1426 Shortcut
C:\Program Files\GetByMail\gbmgc.exe 92672 Application
C:\Program Files\GetByMail\gbmsd.exe 321024 Application

Folder information Created after Installation:

Folder Location
C:\Program Files\GetByMail
C:\Program Files\GetByMail\Conf

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GetByMail_is1 Publisher
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GetByMail_is1 QuietUninstallString
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GetByMail_is1 UninstallString