Solved

Question about .DLL files from a specific vendor tagged as malicious

4 years ago
2 July 2019
2 replies
83 views

SirJinno
2 replies

Hello,

On June 29th I started receiving alerts of various .DLL files that are signed by Awareness Technologies INC. MD5's are recorded below for a couple of them - they all lie inside the same directory as well.

Was wondering if any WR members have these as well, or any background into on what "w32.WebWatcher" is.

MD5's=
8B687262834FC6FDC47F7B495CBF57F6
194230014D2CC1C6B92422E32786EB0A
D2BF39B5C0E65B2E18EB4921FCA4BCD2
7625459200D05EF7197E62EFE2F5F28C

icon

Best answer by DanP 2 July 2019, 21:24

View original

2 replies

Userlevel 7

+35

DanP
Webroot Employee
514 replies
4 years ago
2 July 2019
Answer

Hello @SirJinno

Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.

-Dan

SirJinno
Author
2 replies
4 years ago
2 July 2019

makes sense as Awareness Technologies INC shows as a MaaS (monitoring as a service, probably not a real acronym) company. Thank you!

Reply

We have recently updated our Privacy Policies. We encourage you to read the full terms here.

Reply

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded