RUC.01 – KeyLogger Ardamax

I will tell you in this post how to fix the issue manually and how to clean it automatically using a special powerful removal tool. You can download the removal program for free here:

Manual removal instructions:

RUC.01 – KeyLogger Ardamax removal

File MD5 Virus Alias
RUC.01 cf7d3b559b879622ba386702e7d87460 KeyLogger Ardamax
RUC.01 cf7d3b559b879622ba386702e7d87460 Trojan BadReputation
RUC.01 cf7d3b559b879622ba386702e7d87460 Trojan Generic
RUC.01 cf7d3b559b879622ba386702e7d87460 Trojan Graftor

RUC.01 size: 82432 bytes
RUC.01 hash: CF7D3B559B879622BA386702E7D87460

Created files:

%WinDir%\SGOKWG\RUC.00
%WinDir%\SGOKWG\RUC.01
%WinDir%\SGOKWG\RUC.02
%WinDir%\SGOKWG\RUC.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\RUC Start: %WinDir%\SGOKWG\RUC.exe

Detected by UnHackMe:

RUC.01
Default location: %WinDir%\SGOKWG\RUC.01

Dropper information:
MD5: 52c27a6260714dc284953859696cf815
File size: 2128896 bytes