Home / Spyware Encyclopedia / Keylogger.Adramax << Back

Recommendation to Automatically remove Keylogger.Adramax


Our products can remove Keylogger.Adramax and thousands of other Virus and Spyware automatically and instantly.

Keylogger.Adramax Details


  • Category Keylogger
  • Discovered 7/4/2009 3:13:38 PM
  • Modified 7/26/2023 12:48:37 PM
  • Threat Level Critical
  • Category Description
    A keylogger is a program that captures and logs keystrokes on the computer without the user's knowledge and consent. The logged data is typically sent to a remote attacker. The keylogger is usually hidden from the user and may use cloaking (Rootkit) technology to hide from other software in order to evade easy detection by anti-Spyware applications.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
free_refog_setup_513.exe 3380679Refog5.1.3.9250521a01a1e1e5a28958222d644f0f711 
keylogger.exe 28672KMiNT21 Software1, 7, 0, 04f2d146582d432e9557d3c48315e87a3 
mpkview.exe 3118080 5.3.1.962613279a413f9f8d09bb5fd56b52e12a5 
mpk.exe 1212416 5.3.1.96243f5c63825fa43d1fbd54b0231f52a3b 
mpk.exe 1138688 5.1.8.934dde0e20e622571cd49c616e02ce54d68 
mpk.exe 1139200 5.1.8.93467281b1580fd6e82d1b91c001a3479df 
mpkview.exe 2908160 5.1.8.93425bfb10531e4a843e9cd3d185d910836 
mpkview.exe 3054080 5.1.8.93402731e3222e71757de6865190ae4b479 
mpk.exe 1098240 5.1.4.927a6403ddc4e52ace6c8a8e3ade47b6db2 
mpkview.exe 2958848 5.1.4.92705761682c942c65222ea122f838f063e 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\lurimaja.dll"
..\Software\\"Transparent"\"733376"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"KEI"\"X:\WINDOWS\System32\rundll32.exe "%DAS.AU.APP DATA%\KEI\KEI.dll" KEI"
..\Software\Microsoft\Windows\CurrentVersion\Settings\INA\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\MpkView.exe"\"%WIN.SYS32%\MPK\MpkView.exe:*:Enabled:TCP\IP"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\Mpk.exe"\"%WIN.SYS32%\MPK\Mpk.exe:*:Enabled:TCP\IP"
..\Software\Refog Software\"AppPath"\"%WIN.SYS32%\MPK"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\MpkView.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\Mpk.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows\CurrentVersion\Installer\Folders\"%PF%\CMK Demo\"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.