Home / Spyware Encyclopedia / Keylogger.Adramax << Back

Recommendation to Automatically remove Keylogger.Adramax


Our products can remove Keylogger.Adramax and thousands of other Virus and Spyware automatically and instantly.

Keylogger.Adramax Details


  • Category Keylogger
  • Discovered 7/4/2009 3:13:38 PM
  • Modified 7/26/2023 12:48:37 PM
  • Threat Level Critical
  • Category Description
    A keylogger is a program that captures and logs keystrokes on the computer without the user's knowledge and consent. The logged data is typically sent to a remote attacker. The keylogger is usually hidden from the user and may use cloaking (Rootkit) technology to hide from other software in order to evade easy detection by anti-Spyware applications.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
ToolUndelete_9x.exe 434176YL Computing, Inc1.1.0.0e1accd51a4877fb2f55cc4f0cde482b5 
ComLicense2.dll 311296YL Computing, Inc1.1.0.0bf01a5ea04df80994e029fdd1b8dc384 
ToolOneClickMaintenance.exe 331776YL Computing, Inc1.1.0.047bc580564e4dd2cff96ae7bdaa76c0a 
ToolUndelete.exe 438272YL Computing, Inc1.1.0.01dcb4ceea0df1dd82bd8153a20556acd 
free_refog_setup_513.exe 3380679Refog5.1.3.9250521a01a1e1e5a28958222d644f0f711 
rscmkdemo.exe 1265664RebrandSoftware4.2.0.04c079e7dfcc39f4bddadf60ab223422a 
rscmkdemo.exe 1191936rebrandsoftware2.9.0.05e30a0b176a3f24915269f7ece95465c 
aspy.exe 549376pro-exesoftware2.1.2.06d9f2392fe2fcf1de8e51490410cd97b 
keylogger.exe 28672KMiNT21 Software1, 7, 0, 04f2d146582d432e9557d3c48315e87a3 
TotalSpy.exe 628072IwantSoft 0e560e8b4ed97428d4241825c09cfed7 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\lurimaja.dll"
..\Software\\"Transparent"\"733376"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"KEI"\"X:\WINDOWS\System32\rundll32.exe "%DAS.AU.APP DATA%\KEI\KEI.dll" KEI"
..\Software\Microsoft\Windows\CurrentVersion\Settings\INA\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\MpkView.exe"\"%WIN.SYS32%\MPK\MpkView.exe:*:Enabled:TCP\IP"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\Mpk.exe"\"%WIN.SYS32%\MPK\Mpk.exe:*:Enabled:TCP\IP"
..\Software\Refog Software\"AppPath"\"%WIN.SYS32%\MPK"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\MpkView.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\Mpk.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows\CurrentVersion\Installer\Folders\"%PF%\CMK Demo\"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware