APSDAEMON.EXE – Backdoor IRCBot

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

APSDAEMON.EXE – Backdoor IRCBot removal

FileMD5Virus Alias
APSDAEMON.EXE c98560126ae2556663243a070b61665f Backdoor IRCBot
APSDAEMON.EXE c98560126ae2556663243a070b61665f Trojan Hlux
APSDAEMON.EXE c98560126ae2556663243a070b61665f Trojan SuspiciousFile
APSDAEMON.EXE c98560126ae2556663243a070b61665f Trojan Eldorado
APSDAEMON.EXE c98560126ae2556663243a070b61665f Backdoor Maximus
APSDAEMON.EXE c98560126ae2556663243a070b61665f Trojan Agent

APSDAEMON.EXE size: 1921744 bytes
APSDAEMON.EXE hash: C98560126AE2556663243A070B61665F

Created files:

%SysDir%\DC++ Share\ClearPluginsCache.exe
%SysDir%\DC++ Share\Far.exe
%SysDir%\DC++ Share\msinfo32.exe
%SysDir%\DC++ Share\plutil.exe
%SysDir%\DC++ Share\sapisvr.exe
%SysDir%\DC++ Share\WebKit2WebProcess.exe
%SysDir%\sIRC4.exe
%SysDir%\xdccPrograms\APSDaemon.exe
%SysDir%\xdccPrograms\defaults.exe
%SysDir%\xdccPrograms\distnoted.exe
%SysDir%\xdccPrograms\KillOK.exe
%SysDir%\xdccPrograms\Network Setup Wizard.exe
%SysDir%\xdccPrograms\Opera_1161_int_Setup.exe
%SysDir%\xdccPrograms\SafariSetup.exe
%SysDir%\xdccPrograms\SoftwareUpdate.exe
%SysDir%\xdccPrograms\Wireless Network Setup Wizard.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\shell: Explorer.exe sIRC4.exe

Detected by UnHackMe:

APSDAEMON.EXE
Default location: %SYSDIR%\XDCCPROGRAMS\APSDAEMON.EXE

Dropper information:
MD5: 3c62ebf4bfa86dd1f77b384645243532
File size: 1907320 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images