Home / Spyware Encyclopedia / Keylogger.Adramax << Back

Recommendation to Automatically remove Keylogger.Adramax


Our products can remove Keylogger.Adramax and thousands of other Virus and Spyware automatically and instantly.

Keylogger.Adramax Details


  • Category Keylogger
  • Discovered 7/4/2009 3:13:38 PM
  • Modified 7/26/2023 12:48:37 PM
  • Threat Level Critical
  • Category Description
    A keylogger is a program that captures and logs keystrokes on the computer without the user's knowledge and consent. The logged data is typically sent to a remote attacker. The keylogger is usually hidden from the user and may use cloaking (Rootkit) technology to hide from other software in order to evade easy detection by anti-Spyware applications.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
aspy.exe 549376pro-exesoftware2.1.2.06d9f2392fe2fcf1de8e51490410cd97b 
keylogger.exe 28672KMiNT21 Software1, 7, 0, 04f2d146582d432e9557d3c48315e87a3 
TotalSpy.exe 628072IwantSoft 0e560e8b4ed97428d4241825c09cfed7 
mpkview.exe 3056640 5.2.5.953f968dede3073e704755c524be1071dde 
mpk.exe 1206272 5.2.5.9534721beb422c4a1cf5dbf638c45cbc506 
mpk.exe 1138688 5.1.8.934dde0e20e622571cd49c616e02ce54d68 
mpk.exe 1139200 5.1.8.93467281b1580fd6e82d1b91c001a3479df 
mpkview.exe 2908160 5.1.8.93425bfb10531e4a843e9cd3d185d910836 
mpkview.exe 3054080 5.1.8.93402731e3222e71757de6865190ae4b479 
mpk.exe 1098240 5.1.4.927a6403ddc4e52ace6c8a8e3ade47b6db2 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\lurimaja.dll"
..\Software\\"Transparent"\"733376"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"KEI"\"X:\WINDOWS\System32\rundll32.exe "%DAS.AU.APP DATA%\KEI\KEI.dll" KEI"
..\Software\Microsoft\Windows\CurrentVersion\Settings\INA\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\MpkView.exe"\"%WIN.SYS32%\MPK\MpkView.exe:*:Enabled:TCP\IP"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\Mpk.exe"\"%WIN.SYS32%\MPK\Mpk.exe:*:Enabled:TCP\IP"
..\Software\Refog Software\"AppPath"\"%WIN.SYS32%\MPK"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\MpkView.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\Mpk.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows\CurrentVersion\Installer\Folders\"%PF%\CMK Demo\"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.