How to remove syslog.exe
syslog.exe
The module syslog.exe has been detected as Backdoor.IRCbot
File Details
| MD5: | cb97d17fc2eeb6c78e5c1be8dcd5bf95 |
| Size: | 885 KB |
| First Published: | 2017-05-28 09:11:34 (7 years ago) |
| Latest Published: | 2017-05-28 09:11:35 (7 years ago) |
| Status: | Backdoor.IRCbot (on last analysis) | |
| Analysis Date: | 2017-05-28 09:11:35 (7 years ago) |
Overview
| Signed By: | "INDOMEDI" |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %localappdata%\syslog |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000174a |
PE Sections:
| Name | Size of data | MD5 |
| .text | 32768 | 0725033587812b8eb77c9e0e4581b18e |
| .rdata | 4096 | 8a1c54940e84a9e700da084748a00d09 |
| .data | 811008 | b4774d34c7596f5193df5a090624e7c8 |
| .rsrc | 49152 | c0df9aabade5ad390bfcddd53b4bf0c9 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for syslog.exe
