NetLook2
NetLook2 is a remote control that watches as many computers as you like with this application. It also watches the victim s machine remotely.
General information:
| Malware Name: |
NetLook2 |
| Malware Type: |
Remote Control |
| Company Name: |
Nettsenteret |
| Company URL: |
http://www.nettsenteret.no/
|
| Threat Level: |
Moderate Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Nettsenteret provides you the software NetLook2 that is two small applications running on at least two computers. You can watch over as many computers as you like with this application. This gives capability to the attacker to watch the victim s machine
remotely.
Spyware Description:
NetLook2 is a remote control that watches as many computers as you like with this application. It also watches the victim s machine remotely.
Characteristics/Symptoms:
-> It watches as many computers as you like with this application. -> It also watches the victim s machine remotely.
Additional information might be found here:
Processes Running:
NetLookServer2.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Start Menu\Programs\Nettsenteret\NetLookClient2.lnk |
772 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\Nettsenteret\NetLookServer2.lnk |
777 |
Shortcut |
| C:\Program Files\Nettsenteret\NetLookServer2\DeIsL2.isu |
1786 |
ISU File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\Nettsentere |
| C:\Program Files\Nettsenteret\NeLookClient |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\NetLookServer2.exe |
Path |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Nettsenteret |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Nettsenteret\NetLookServer |
|
