2 replies to this topic

[alan1998]

Hey. Recently I recieved a keymaker.exe file. It was identified by Avast! as a Rootkit-Gen attempting to infect explore.exe. I've tracked the virus around my system and deleted it using Avast since MBAm my main scanner couldn't detect it. I sent the file in and all is well now. Except when I try to restore the file to investigate it a little further it says "file in use at Skype." I've scanned it using both my AV and MBAM and it isn't detecting anything. On top of this, Skype will periodically crash now. I've not seen any other indication it's infected something succesfully. Everything boots normally, just as quickly as normal. Any ideas?

 

[Firefox]

And what exactly was this Keymaker.exe file for?

[CWB]

man , i thought that sounded familiar ... from back in 2005 !

just how did you receive it ?

 

a little google-foo indicates that "keymaker.exe" is supposedly  a "random password generator based on ..." : http://www.scanwith....ad/keymaker.htm

of course , it also shows up as a nasty bit of work as well : http://www.threatexp...ymaker.exe.html

it has been associated with other software items : http://www.411-spywa...le-keymaker-exe

a look through the google returns shows typical/similar results .

disclaimer ... the sites listed are for demonstration/reference only ... do not download anything from them .

 

i may be wrong here but the program was originally designed to innocuously generate passwords but was infected by some nefarious types ; it is a vector for various infections .

that said , i would (personally) head over to the malware removal section .