I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
LYS.EXE – KeyLogger Ardamax removal
| File | MD5 | Virus Alias |
|---|---|---|
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | KeyLogger Ardamax |
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | Trojan SuspiciousFile |
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | Trojan Artemis |
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | Trojan Downloader |
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | Trojan Graftor |
| LYS.EXE | e4bb483573e6bc82f09578f0b48324a5 | Trojan Agent |
LYS.EXE size: 1818112 bytes
LYS.EXE hash: E4BB483573E6BC82F09578F0B48324A5
Created files:
%SysDir%\OXICEU\AKV.exe
%SysDir%\OXICEU\LYS.001
%SysDir%\OXICEU\LYS.002
%SysDir%\OXICEU\LYS.003
%SysDir%\OXICEU\LYS.004
%SysDir%\OXICEU\LYS.005
%SysDir%\OXICEU\LYS.exe
Autostart registry keys:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\LYS Start: %WinDir%\System32\OXICEU\LYS.exe
Detected by UnHackMe:
LYS.EXE
Default location: %SYSDIR%\OXICEU\LYS.EXE
Dropper information:
MD5: 004fb073a037479e9185f6c089d075eb
File size: 1427456 bytes