Home / Spyware Encyclopedia / Keylogger.Adramax << Back

Recommendation to Automatically remove Keylogger.Adramax


Our products can remove Keylogger.Adramax and thousands of other Virus and Spyware automatically and instantly.

Keylogger.Adramax Details


  • Category Keylogger
  • Discovered 7/4/2009 3:13:38 PM
  • Modified 7/26/2023 12:48:37 PM
  • Threat Level Critical
  • Category Description
    A keylogger is a program that captures and logs keystrokes on the computer without the user's knowledge and consent. The logged data is typically sent to a remote attacker. The keylogger is usually hidden from the user and may use cloaking (Rootkit) technology to hide from other software in order to evade easy detection by anti-Spyware applications.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
ToolUndelete_9x.exe 434176YL Computing, Inc1.1.0.0e1accd51a4877fb2f55cc4f0cde482b5 
ComLicense2.dll 311296YL Computing, Inc1.1.0.0bf01a5ea04df80994e029fdd1b8dc384 
ToolOneClickMaintenance.exe 331776YL Computing, Inc1.1.0.047bc580564e4dd2cff96ae7bdaa76c0a 
ToolUndelete.exe 438272YL Computing, Inc1.1.0.01dcb4ceea0df1dd82bd8153a20556acd 
free_refog_setup_513.exe 3380679Refog5.1.3.9250521a01a1e1e5a28958222d644f0f711 
rscmkdemo.exe 1265664RebrandSoftware4.2.0.04c079e7dfcc39f4bddadf60ab223422a 
rscmkdemo.exe 1191936rebrandsoftware2.9.0.05e30a0b176a3f24915269f7ece95465c 
jmail.dll 323072Dimac AB (http://www.dimac.net)4.3.0.04af612fbff91936fb2f780ea5ca307cf 
mpk.exe 1138688 5.1.8.934dde0e20e622571cd49c616e02ce54d68 
mpk.exe 1139200 5.1.8.93467281b1580fd6e82d1b91c001a3479df 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\lurimaja.dll"
..\Software\\"Transparent"\"733376"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"KEI"\"X:\WINDOWS\System32\rundll32.exe "%DAS.AU.APP DATA%\KEI\KEI.dll" KEI"
..\Software\Microsoft\Windows\CurrentVersion\Settings\INA\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\MpkView.exe"\"%WIN.SYS32%\MPK\MpkView.exe:*:Enabled:TCP\IP"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\Mpk.exe"\"%WIN.SYS32%\MPK\Mpk.exe:*:Enabled:TCP\IP"
..\Software\Refog Software\"AppPath"\"%WIN.SYS32%\MPK"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\MpkView.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\Mpk.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows\CurrentVersion\Installer\Folders\"%PF%\CMK Demo\"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.