Home / Spyware Encyclopedia / Keylogger.Adramax << Back

Recommendation to Automatically remove Keylogger.Adramax


Our products can remove Keylogger.Adramax and thousands of other Virus and Spyware automatically and instantly.

Keylogger.Adramax Details


  • Category Keylogger
  • Discovered 7/4/2009 3:13:38 PM
  • Modified 7/26/2023 12:48:37 PM
  • Threat Level Critical
  • Category Description
    A keylogger is a program that captures and logs keystrokes on the computer without the user's knowledge and consent. The logged data is typically sent to a remote attacker. The keylogger is usually hidden from the user and may use cloaking (Rootkit) technology to hide from other software in order to evade easy detection by anti-Spyware applications.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
keylogger.exe 28672KMiNT21 Software1, 7, 0, 04f2d146582d432e9557d3c48315e87a3 
jmail.dll 323072Dimac AB (http://www.dimac.net)4.3.0.04af612fbff91936fb2f780ea5ca307cf 
mpkview.exe 3118080 5.3.1.962613279a413f9f8d09bb5fd56b52e12a5 
mpk.exe 1212416 5.3.1.96243f5c63825fa43d1fbd54b0231f52a3b 
KEISCL.exe 188416 4.146a38221f7e7bba1e26a7bb77e6d447e 
KEIU.exe 409600 3.5.0.0bd8badb0ec105973259fc5d0e779f168 
toolkeyloggerdll.dll 184320 2.3.0.0a52f06ec88c09ff8c7812db8dd2a274b 
toolkeyloggerdll.dll 184320 0.0.0.09e0c125287277e4215e6e0f26867ccdb 
toolkeylogger.exe 2007040 0.0.0.04cf8307cac714fe4f2cbc5d46f5cf243 
insidekeylogger.exe 1839234  e6a9a41c6635ee9fc4305e861cf5a254 

The following Registry Entries were created:
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\lurimaja.dll"
..\Software\\"Transparent"\"733376"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"KEI"\"X:\WINDOWS\System32\rundll32.exe "%DAS.AU.APP DATA%\KEI\KEI.dll" KEI"
..\Software\Microsoft\Windows\CurrentVersion\Settings\INA\(Default)
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\MpkView.exe"\"%WIN.SYS32%\MPK\MpkView.exe:*:Enabled:TCP\IP"
..\System\CurrentControlSet\Services\SharedAccess\Parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List\"%WIN.SYS32%\MPK\Mpk.exe"\"%WIN.SYS32%\MPK\Mpk.exe:*:Enabled:TCP\IP"
..\Software\Refog Software\"AppPath"\"%WIN.SYS32%\MPK"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\MpkView.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\"%WIN.SYS32%\MPK\Mpk.exe"\"DisableNXShowUI"
..\Software\Microsoft\Windows\CurrentVersion\Installer\Folders\"%PF%\CMK Demo\"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.