Threat Database Trojans Trojan-Spy.Ardamax!sd6

Trojan-Spy.Ardamax!sd6

By Domesticus in Trojans

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 2
First Seen: September 1, 2011
Last Seen: August 27, 2020
OS(es) Affected: Windows

Trojan-Spy.Ardamax!sd6 is a malicious Trojan that runs in the background and enables remote attackers obtain access to the infected computer system. Trojan-Spy.Ardamax!sd6 uses deceptive techniques to install itself on the corrupted PC without a user's permission and knowledge. Trojan-Spy.Ardamax!sd6 uses malicious tricks to download other parasites from the web on to the compromised machine. Trojan-Spy.Ardamax!sd6 can change web browser settings and download additional components to the targeted PC. Trojan-Spy.Ardamax!sd6 should be removed as quickly as possible to avoid system harm.

File System Details

Trojan-Spy.Ardamax!sd6 may create the following file(s):
# File Name Detections
1. %CommonPrograms%\Ardamax Keylogger\Ardamax Keylogger.lnk

Registry Details

Trojan-Spy.Ardamax!sd6 may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ardamax Keylogger
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{303EEA78-CF11-41F0-268A-DC602412A486}\Control
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{303EEA78-CF11-41F0-268A-DC602412A486}\ProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8C7EF9D4-19EA-7714-8117-D2C4CFF4D200}\1.0\0
HKEY_CURRENT_USER\Software\ASProtect\SpecData
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{303EEA78-CF11-41F0-268A-DC602412A486}\MiscStatus
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8C7EF9D4-19EA-7714-8117-D2C4CFF4D200}\1.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{303EEA78-CF11-41F0-268A-DC602412A486}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{303EEA78-CF11-41F0-268A-DC602412A486}\InprocServer32

Trending

Most Viewed

Loading...