Wakeminap is a malicious Trojan horse that is made to open a hidden backdoor to the infected computer. It is known to hide over Adobe updater software name. Additionally, it drops a clean file with an extension of .doc, .pdf or .ppt in the %Temp% or %CurrentFolder% directories and then opens it. Wakeminap modifies systems registry, so that it could run every time windows starts.
After dropping and enabling itself, Wakeminap opens a backdoor connection for several locations, and then runs in the background by awaiting commands of the remote cybercriminal. This is the list of domains it tries to connect:
When the remote hacker logs in through the backdoor, he is able to perform several very dangerous actions, like ending processes or executing malicious files. Additionally, it may have the ability to execute shell commands. Here’s a list of actions that could be used by hacker, when the victim's computer is compromised:
- List running processes
- End processes
- Download and execute a remote file
- Execute shell commands
It might be that we are affiliated with any of our recommended products. Full disclosure can be found in our Agreement of Use.
and Agreement of Use
Wakeminap manual removal:
Delete registry values:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"Adobe Update" = "[PATH TO DROPPED FILE]"
QR code for Wakeminap removal instructions:
QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.
The reason we add QR code to the website is that parasites like Wakeminap are really hard to remove on infected computer.
you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall Wakeminap right in your pocket.
Simply use the QR scanner and read removal instructions from mobile device.