NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove SpyBuddy. Description and removal instructions

 
Title: SpyBuddy
Type: Keyloggers
Severity scale:SpyBuddy severity is 70  (70 / 100)
 
SpyBuddy is a commercial computer surveillance tool that tracks user and system activity, logs keystrokes, regularly takes screenshots, records web sites visited, captures e-mail messages and online chat conversations. It sends gathered data to a predefined e-mail address. SpyBuddy can be used to terminate active security-related programs, prevent standard system tools from running and alter essential system settings. The application is able to hide its running components. SpyBuddy must be manually installed. It automatically runs on every Windows startup.

FORUM:
Discuss SpyBuddy in
spyware removal forum

SpyBuddy properties:
• Takes and sends out screenshots of user activity
• Sends out logs by FTP or email
• Logs keystrokes
• Hides from the user
• Stays resident in background

Automatic SpyBuddy removal:

remover for SpyBuddy

SpyBuddy manual removal:

Kill processes:
sb32mon.exe, exitstealth.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cdloader
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\regupdate
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\scancheck32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\scansys32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\systemcheck
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\system32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\trunk32
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winsyscheck
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr=1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\IgnoreShiftOveride=0x1
HKEY_LOCAL_MACHINE\SOFTWARE\ExploreAnywhere Software\SpyBuddy
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpyBuddy [XVS]
HELP:
how to remove registry entries

Delete files:
sb32mon.exe, exitstealth.exe, install-drivers.dll, sbsysdll.dll, sb32mon.dll, sysicept.dll, winsscap.dll, win32sb.dll
HELP:
how to remove harmful files

Delete directories:
C:\Program Files\ExploreAnywhere\SpyBuddy
Misc:
[XVS] is the version number or name.

Exact file location:
sb32mon.exe, exitstealth.exe, install-drivers.dll - C:\Program Files\ExploreAnywhere\SpyBuddy
sbsysdll.dll, sysicept.dll, winsscap.dll - C:\Windows or C:\Winnt

Other programs to remove SpyBuddy:

• SUPERAntiSpyware - Review - Download
• CounterSpy - Review - Download
• Windows Defender - Review - Download

Information added: 19/03/04
Information updated: 17/09/05

Additional resources related to SpyBuddy:

Attention: If you know or you have a website or page about SpyBuddy removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about SpyBuddy parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.