home

ACDaemon.exe

ArcSoft Connect

ArcSoft, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘ArcSoft Connection Service’.
Publisher:
ArcSoft Inc.  (signed by ArcSoft, Inc.)

Product:
ArcSoft Connect

Description:
ArcSoft Connect Daemon

Version:
1.0.0.43

MD5:
ab091f3b710c9e35b8a396d8a3f8a45b

SHA-1:
192a1613ad9df0d5c63d47a08380f6de4eb71fe2

SHA-256:
f73ba14421e6e1983e9bcd0ba9347bd6e90f8b850f86f2e97afe1aff77a862a6

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 12:53:26 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

File size:
146.9 KB (150,471 bytes)

Product version:
1.0.0.43

Copyright:
Copyright (C) ArcSoft 2007

Original file name:
ACDaemon.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\common files\arcsoft\connection service\bin\acdaemon.exe

Digital Signature
Signed by:
ArcSoft, Inc.

Authority:
VeriSign, Inc.

Valid from:
7/24/2007 6:00:00 AM

Valid to:
8/15/2010 5:59:59 AM

Subject:
CN="ArcSoft, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="ArcSoft, Inc.", L=Fremont, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
38B5A40BC3E8552B45588D0EB9B5F330

File PE Metadata
Compilation timestamp:
2/22/2008 8:23:56 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x3826

Entry point:
E9, 99, 27, 00, 00, 68, C0, A1, 40, 00, 68, 78, 4F, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 9C, A0, 40, 00, 33, D2, 8A, D4, 89, 15, 24, EF, 40, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 20, EF, 40, 00, C1, E1, 08, 03, CA, 89, 0D, 1C, EF, 40, 00, C1, E8, 10, A3, 18, EF, 40, 00, 6A, 01, E8, D9, 03, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C2, 00, 00, 00, 59, E8, 96, 32, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B1, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
6.9750

Packer / compiler:
Xtreme-Protector v1.05

Code size:
36 KB (36,864 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
ArcSoft Connection Service

Command:
C:\Program Files\common files\arcsoft\connection service\bin\acdaemon.exe


Scan ACDaemon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.