PKVID.EXE – KeyLogger Ardamax

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

PKVID.EXE – KeyLogger Ardamax removal

FileMD5Virus Alias
PKVID.EXE c1a4e5ab0a6c68a1516f6bc25b4e62a5 KeyLogger Ardamax
PKVID.EXE c1a4e5ab0a6c68a1516f6bc25b4e62a5 Trojan Generic
PKVID.EXE c1a4e5ab0a6c68a1516f6bc25b4e62a5 Trojan Downloader
PKVID.EXE c1a4e5ab0a6c68a1516f6bc25b4e62a5 Trojan Agent
PKVID.EXE c1a4e5ab0a6c68a1516f6bc25b4e62a5 Trojan Small

PKVID.EXE size: 442743 bytes

Created files:

%SysDir%\Sys32\GKKA.001
%SysDir%\Sys32\GKKA.006
%SysDir%\Sys32\GKKA.007
%SysDir%\Sys32\GKKA.exe
%WinDir%\Temp\mspaint.exe
%WinDir%\Temp\pkvid.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\GKKA Agent: %WinDir%\System32\Sys32\GKKA.exe

Detected by UnHackMe:

PKVID.EXE
Default location: %TEMP%\PKVID.EXE

Dropper information:
MD5: 3d57ebcbc1992d2b4e414ebf1c10aabf
File size: 549189 bytes

Leave a Reply