I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
ADD_PORT.EXE – Backdoor Bifrose removal
File | MD5 | Virus Alias |
---|---|---|
ADD_PORT.EXE | 84822cde69d22e0fc07d9e0dfc0e0a00 | Backdoor Bifrose |
ADD_PORT.EXE | 84822cde69d22e0fc07d9e0dfc0e0a00 | Trojan Agent |
ADD_PORT.EXE | 84822cde69d22e0fc07d9e0dfc0e0a00 | Trojan Banker |
ADD_PORT.EXE size: 353885 bytes
ADD_PORT.EXE hash: 84822CDE69D22E0FC07D9E0DFC0E0A00
Created files:
%TEMP%\ir_ext_temp_0\AutoPlay\autorun.cdd
%TEMP%\ir_ext_temp_0\AutoPlay\Buttons\1_Grey_Blue.btn
%TEMP%\ir_ext_temp_0\AutoPlay\Buttons\Back.btn
%TEMP%\ir_ext_temp_0\AutoPlay\Buttons\Exit.btn
%TEMP%\ir_ext_temp_0\AutoPlay\Buttons\Next.btn
%TEMP%\ir_ext_temp_0\AutoPlay\Docs\Developer Information\MagAPI.dll
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\CDAudio\CDAudio.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\Cursor\Cursor.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\Encoding\Encoding.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\LISTBOXEX\LISTBOXEX.APO
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\Project\Project.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\Unicode\Unicode.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Plugins\WinApi\WinApi.lmd
%TEMP%\ir_ext_temp_0\AutoPlay\Scripts\Add_Port.exe
%TEMP%\ir_ext_temp_0\autorun.exe
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\DAN\UM_AOTL.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\DAN\UM_AOTLG.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\DEU\UM_AOTL.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\DEU\UM_AOTLG.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\disk1
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\ENG\UM_AOTL.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\ENG\UM_AOTLG.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\FRA\UM_AOTL.dll
%TEMP%\ir_ext_temp_0\Drivers\AOTA Family\32Bit\W2K\FRA\UM_AOTLG.dll
Detected by UnHackMe:
ADD_PORT.EXE
Default location: %TEMP%\IR_EXT_TEMP_0\AUTOPLAY\SCRIPTS\ADD_PORT.EXE
Dropper information:
MD5: 33ff3a8d270c53a0d6a1605c71320262
File size: 19939906 bytes