ArdamaxKeyloggerLite

It is a keylogger is a simple keylogger program captures users activity and saves it to a text or HTML log file. In addition, we can choose to have the log file sent by email (every X minutes) to an email address you specify. The program can run in a hidden mode, which completely hides it from the Task Manager, Programs menu etc. or with an optional tray icon. It includes severe risk threats that are typically installed without user interaction through security exploits, and may allow an attacker to remotely control the infected machine. Such threats may allow the attacker to install additional malware and use the compromised machine to participate in denial of service attacks, spamming, and bot nets, or to transmit sensitive data to a remote server. The malware may be cloaked and not visible to the user.0

General information:

Malware Name: ArdamaxKeyloggerLite
Malware Type: Key Logger
Company Name: Ardamax Software
Company URL: http://www.ardamax.com/
Threat Level: Severe Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation.

Company Description:

Spyware Description:

It is a keylogger is a simple keylogger program captures users activity and saves it to a text or HTML log file. In addition, we can choose to have the log file sent by email (every X minutes) to an email address you specify. The program can run in a hidden mode, which completely hides it from the Task Manager, Programs menu etc. or with an optional tray icon. It includes severe risk threats that are typically installed without user interaction through security exploits, and may allow an attacker to remotely control the infected machine. Such threats may allow the attacker to install additional malware and use the compromised machine to participate in denial of service attacks, spamming, and bot nets, or to transmit sensitive data to a remote server. The malware may be cloaked and not visible to the user.0

Characteristics/Symptoms:

    -> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0

Additional information might be found here:

google Search at Google for ArdamaxKeyloggerLite
bing Search at Bing for ArdamaxKeyloggerLite
yahoo Search at Yahoo for ArdamaxKeyloggerLite

Processes Running:

akl.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Program Files\Ardamax Keylogger Lite\akl.exe 344064 Application
C:\Program Files\Ardamax Keylogger Lite\akl.klf 270 KLF File
C:\Program Files\Ardamax Keylogger Lite\kh.dll 53248 Application Extension

Folder information Created after Installation:

Folder Location
C:\Documents and Settings\User\Start Menu\Programs\Ardamax Keylogger Lite
C:\Program Files\Ardamax Keylogger Lite

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_CURRENT_USER \Software\Ardamax Keylogger Lite Ardamax Keylogger Lite
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionUninstallArdamax Keylogger Lite DisplayName
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ardamax Keylogger Lite UninstallString