| Port No | 17593 |
| Service Name | AudioDoor |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | AudioDoor 1.2 streams audio from the server. This means it records sound from your microphone and sends it to the "hacker". |
| Reference Link | AudioDoor Trojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Key: AudioDoor It does the following : Stream audio from server microphone Removal : 1.Remove the AudioDoor key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close AD12_SRV.EXE. 3. Delete the trojan file AD12_SRV.EXE in the windows system directory. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.