Home Articles Spyware Research Support Scan Now Purchase F.A.Q.

Top 25 Spyware:

1.	Zlob Trojan
2.	Vundo Trojan
3.	AntiSpyCheck
4.	whatwashomepage.com
5.	prevhomepage.com
6.	fronthomepagez.com
7.	AntiVirus2009
8.	UltimateAntivirus
9.	VirusTrigger
10.	MS Antivirus
11.	WinSpyKiller
12.	syshomepage.com
13.	W32.ExpDwnldr
14.	Virus Burst
15.	ProtectionBar
16.	WinAntiVirus
17.	AntiviralGolden
18.	System Doctor
19.	SpyHeal
20.	DNS Changer
21.	Virus Blast
22.	Trojan.Win32.CP4000
23.	onlinestability.com
24.	Trojan.FakeAlert
25.	Troj.SystemAlert

About Spyware
Glossary

Latest Detections

Adware/Memwatch.B

Alias: Backdoor.VB.oq, Win32.Memwatch.B, Adware/MemoryWatcher, Memory Watcher

Description: A Remote Administration Tool is a special kind of hacker spyware, used for remote access and control of other people's computers. The attacker infects the PC via the e-mail or File and Print Sharing. A "server" allows him to connect via a "client" on his own machine. The functions of a RAT may vary, depending on the needs of the hacker. Some RATs can't really harm your PC and the only purpose they were made for is hooliganism. But some versions can steal vital information, delete files and even crash your system. This Remote Administration tool was created by a hacker called A-D-M in June 2003.

Threat type:

Adware - Adware is a software application which displays advertisements on your computer. Advertisements can be displayed through pop-up / pop-under windows, additional bars or toolbars, underlined links or buttons that appear on a computer screen. Adware applications include additional code that delivers the ads. Adware authors earn money when users click on those ads. Occasionally, adware includes code that tracks user's site visits and passes it to third parties without the user's permission or knowledge.

Advice: Remove This is a very high risk threat and should be removed immediately as to prevent harm to your computer or your privacy.

Detection:
SpyNoMore detects Adware/Memwatch.B: Yes

Threat risk: High Risk

Very dangerous malware. Can log user's keyboard activity and take snapshots of the user's screen. Uses stealth installation and removal is very difficult. Category includes spyware programs, adware programs and trojans.

Symptoms:

Adware/Memwatch.B Signature Details: The following information includes some of the standard signatures associated with this spyware threat. Please do not attempt to manually remove these items from your computer; Removing these items incorrectly or partially can cause your computer to experience critical errors, prevent your computer from restarting or cause loss of Internet connectivity. Should you be infected with Adware/Memwatch.B, you can clean your computer by downloading SpyNoMore now.

Running Process Signatures:
N/A

File Signatures:

%WINDOWS%\system32\wprx.exe
%WINDOWS%\system32\wyrgmw.exe
%PROGRAM_FILES%\memorywatcher.exe
c:\memorywatcher_b.exe
%WINDOWS%\system32\pnkdb03.exe
%WINDOWS%\system32\vchsyjo.exe
%WINDOWS%\system32\qbk7x.exe
%WINDOWS%\system32\rpbbf5.exe
%WINDOWS%\system32\ncisp.exe
%PROFILE%\local settings\temp\memorywatcher_b.exe
%WINDOWS%\system32\zvbyl.exe
%WINDOWS%\system32\mcl7.exe
%WINDOWS%\system32\xtgcu7.exe
%WINDOWS%\system32\sdelh.exe
%WINDOWS%\system32\jqvgne.exe
%WINDOWS%\temp\memorywatcher_b.exe

Registered Dll (Dynamic Link Library) Signatures:
N/A

Folder Signatures:
%PROGRAM_FILES%\memorywatcher

Registry Signatures:
HKLM\software\microsoft\windows\currentversion\uninstall\memorywatcher
HKLM\software\memorywatcher

SpyNoMore Collected Residual File Signatures:
N/A