PUA

PUP.Optional.ArdamaxKeyLogger removal guide

Malware Removal

The PUP.Optional.ArdamaxKeyLogger is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUP.Optional.ArdamaxKeyLogger virus can do?

  • Unconventionial language used in binary resources: Portuguese
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine PUP.Optional.ArdamaxKeyLogger?



File Info:

name: 4E8E7FF1C8976FD30B6C.mlw
path: /opt/CAPEv2/storage/binaries/ff070542702cfa4796a89c185763ac6d94390dfba6f5595bae0f89c7d4a1c60b
crc32: 39737D36
md5: 4e8e7ff1c8976fd30b6c738c70d766a5
sha1: 078cee76d8a7a0352f810cc1004cc29e1d814a69
sha256: ff070542702cfa4796a89c185763ac6d94390dfba6f5595bae0f89c7d4a1c60b
sha512: 2487cd66adddbd04ec8fd0cd9fce3f2ef1a4482d736f89f62a0d0be0a36da410907ce75a12e89f3dd51de60604c3c59a4f57317fe9a00bc9760cde8da1dee9b6
ssdeep: 6144:unaSdzepwEE/YoJPnLS1cudGpSdAqz/LspKdnC/GVrN72x3PdARK:MvVeGAoJPne6wuaAqzjpdex3C0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C0D4370173F98176F1F72F70697AA6644E7ABE616A38C68F63901A1D1D30BD0DA34723
sha3_384: 6c80dbb2997cfd664a8d63407e5fdc8da7ddc9f36247e23917e9f24d1693f20acf7c10f2f1d2772f3aa6c47fecdacd39
ep_bytes: e8bc710000e979feffff8bff558bec8b
timestamp: 2009-02-21 12:06:21


Version Info:

0: [No Data]

PUP.Optional.ArdamaxKeyLogger also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
McAfeeKeylog-Ardamax.cf
CylanceUnsafe
K7GWTrojan ( 700001211 )
CrowdStrikewin/malicious_confidence_60% (D)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/KeyLogger.Ardamax.NCL
AvastWin32:Ardamax-KE [Spy]
ComodoTrojWare.Win32.Trojan.XPACK.Gen@2ho5ur
VIPRETrojan.Win32.Generic.pak!cobra
McAfee-GW-EditionKeylog-Ardamax.cf
SentinelOneStatic AI – Malicious PE
FireEyeGeneric.mg.4e8e7ff1c8976fd3
SophosGeneric ML PUA (PUA)
IkarusTrojan-Spy.Win32.Ardamax
AviraTR/Crypt.XPACK.Gen3
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
MalwarebytesPUP.Optional.ArdamaxKeyLogger
APEXMalicious
RisingMalware.Heuristic!ET#90% (RDMK:cmRtazqen/YlZOHckViwPMn2/LKc)
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:Ardamax-KE [Spy]
Cybereasonmalicious.6d8a7a

How to remove PUP.Optional.ArdamaxKeyLogger?

PUP.Optional.ArdamaxKeyLogger removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment