Captain Mnemo

Captain Mnemo automatically logs passwords or any other form input that is entered in browser or other applications. It also includes elevated risk threats that are typically installed without adequate notice and consent, and may make unwanted changes to system, such as reconfiguring browser’s homepage and search settings. These threats may install advertising-related add-ons, including toolbars and search bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect preferred network connections, and can negatively impact computer’s performance and stability.0

General information:

Malware Name: Captain Mnemo
Malware Type: Spyware
Company Name: Refog Software
Company URL: http://refog.com/captainmnemo/
Threat Level: Elevated Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation.

Company Description:

Spyware Description:

Captain Mnemo automatically logs passwords or any other form input that is entered in browser or other applications. It also includes elevated risk threats that are typically installed without adequate notice and consent, and may make unwanted changes to system, such as reconfiguring browser’s homepage and search settings. These threats may install advertising-related add-ons, including toolbars and search bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect preferred network connections, and can negatively impact computer’s performance and stability.0

Characteristics/Symptoms:

    -> Ability to scan systems -> Monitor activity -> Relay information to another computer or locations in cyber-space -> Negatively affect the performance and stability of the system0

Additional information might be found here:

google Search at Google for Captain Mnemo
bing Search at Bing for Captain Mnemo
yahoo Search at Yahoo for Captain Mnemo

Processes Running:

WINLOGON.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\[USER]\Start Menu\Programs\Captain Mnemo Pro\Uninstall.lnk 666 Shortcut
C:\Program Files\Captain Mnemo Pro\How To Purchase.url 61 Internet Shortcut
C:\Program Files\Captain Mnemo Pro\uninstall.exe 73791 Application

Folder information Created after Installation:

Folder Location
C:\Program Files\Captain Mnemo Pro

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Captain Mnemo Pro URLInfoAbout
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Captain Mnemo Pro URLUpdateInfo
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Captain Mnemo Pro UninstallString