Title: Winvestigator
Type: Keyloggers

Remove Winvestigator
Removal instructions

 
Severity scale:Winvestigator severity is 68  (68 / 100)
 
Winvestigator is a commercial key logging tool that tracks user activity, records keystrokes, regularly takes screenshots and logs web sites visited. Gathered data can be sent to a configurable e-mail address. Winvestigator must be manually installed. It automatically runs on every Windows startup.

This keylogger violates privacy and security of those who has it on board; however, it can be used for legitimate reasons such as tracking children online habits. Unfortunately, it can also be employed by malicious attackers to steal bank accounts details, logins and passwords, personal data and other sensitive information.

Related files: loaddll.exe, winvestigator.exe, wv.exe, loaddll.dll, spoder.dll, sysninit.dll, syswvh.dll, syswvmail.dll, syswvnt.dll, syswvwin.dll, wvres.dll, wvh.dll

Winvestigator properties:
• Takes and sends out screenshots of user activity
• Sends out logs by FTP or email
• Logs keystrokes
• Hides from the user
• Stays resident in background

Automatic Winvestigator removal:

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
By Downloading any provided Anti-spyware software to remove Winvestigator you agree to our privacy policy and agreement of use.
SpyHunter is recommended remover to uninstall Winvestigator. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

If you failed to remove Winvestigator using SpyHunter, submit question to our support team and provide as much details as possible.
dot
Malwarebytes Anti Malware
download
manual required
We are testing Malwarebytes Anti Malware's efficiency at removing Winvestigator (2008-11-14 05:21:41)
dot
Defender Pro Ultimate Security Suite
download
manual required
We are testing Defender Pro Ultimate Security Suite's efficiency at removing Winvestigator (2008-11-14 05:21:41)
dot
STOPzilla
download
manual required
We are testing STOPzilla's efficiency at removing Winvestigator (2008-11-14 05:21:41)
dot
XoftSpySE Anti Spyware

what to do if you failed to remove the infection?
Phone Support to remove Winvestigator
Phone Support to remove Winvestigator
Winvestigator snapshot:

Winvestigator manual removal:

Kill processes:
loaddll.exe, winvestigator.exe, wv.exe

Delete registry values:
HKEY_CLASSES_ROOT\.send
HKEY_CLASSES_ROOT\wvfile
HKEY_CURRENT_USER\Software\Tropsoft
HKEY_LOCAL_MACHINE\SOFTWARE\Tropsoft
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\wvsys
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winvestigator
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\loaddll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\wv.exe
Unregister DLLs:
loaddll.dll
spoder.dll
sysninit.dll
syswvh.dll
syswvmail.dll
syswvnt.dll
syswvwin.dll
wvres.dll
wvh.dll

Delete files:
loaddll.exe, winvestigator.exe, wv.exe, loaddll.dll, spoder.dll, sysninit.dll, syswvh.dll, syswvmail.dll, syswvnt.dll, syswvwin.dll, wvres.dll, wvh.dll
Delete directories:
C:\Program Files\wv
Misc:
Exact file location:
wv.exe, wvh.dll, wvres.dll - C:\Program Files\wv
loaddll.exe, loaddll.dll, spooder.dll, sysninit.dll, syswvh.dll, syswvmail.dll, syswvnt.dll, syswvwin.dll - C:\Windows or C:\Winnt

QR code for Winvestigator removal instructions:

Winvestigator qrcode
QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.

The reason we add QR code to the website is that parasites like Winvestigator are really hard to remove on infected computer. you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall Winvestigator right in your pocket.

Simply use the QR scanner and read removal instructions from mobile device.
Information added: 2004-03-19 10:00:00
Information updated: 2008-11-14 02:44:26

Additional resources:

Attention: If you know know a reputable website reated to security threats, please add a link here: add url

0
0
Good Boy
Used to be Keyboard Monitor 3.0
0
0
prp
not found any of the above but still have winvestigator on my system
0
0
Robo
I found none of the above files. Still Winvestigator is back after reboot.

Post Comment:

Attention: Use this form only if you have additional information about Winvestigator parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter please unsubscribe here
47993 Subscribers
Ask us
I failed to remove Winvestigator using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other