StatWin
Spyware.StatWin is a spyware program that monitors userâs activity. It also monitors instant message conversations, Web sites visited, and programs used. It will then capture screen shots periodically.0
General information:
| Malware Name: |
StatWin |
| Malware Type: |
Spyware |
| Company Name: |
StatWin |
| Company URL: |
http://www.statwin.com/
|
| Threat Level: |
Elevated Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
StatWin software is designed to collect, store and analyze the statistics of computer operation and user activities under Windows 95/98/ME/NT/2000/XP. StatWin software provides a comprehensive computer monitoring and user monitoring. It monitors the
Computer start time monitoring, computer shutdown monitoring, Tracking process (application) name, process window title, process start time, process shutdown time, process total running time, and user name. Tracking connection name, connection start
time, connection end time, connection total operation time, number of bytes received by modem, number of bytes sent by modem, connection speed, the phone usage time, user name.
Spyware Description:
Spyware.StatWin is a spyware program that monitors userâs activity. It also monitors instant message conversations, Web sites visited, and programs used. It will then capture screen shots periodically.0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
SeeStat.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\sapna\Desktop\StatWin.SeeStat - Statistics viewer.lnk |
737 |
Shortcut |
| C:\Program Files\SXR Software\StatWin Pro\SWdata\bd180010.swb |
unknown |
SWB File |
| C:\Program Files\SXR Software\StatWin Pro\SWdata\bd180111.swb |
unknown |
SWB File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\SXR Software\StatWin Pro |
| C:\Program Files\SXR Software\StatWin Pro\SWAdmin |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\StatWin Pro_is1 |
Publisher |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\StatWin Pro_is1 |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\StatWin Pro_is1 |
UninstallString |
