VCC70DEP2R.EXE – Fake AntiVirus “Zentom System Guard”
The file VCC70DEP2R.EXE is a part of Fake Antiviral software.
You must delete the file VCC70DEP2R.EXE immediately!
Delete the file VCC70DEP2R.EXE without delay!
Kill the process VCC70DEP2R.EXE and remove VCC70DEP2R.EXE from the Windows startup.
Malware Analysis of “VCC70DEP2R.EXE”
Executed: vof70dllp.exe
Removed: vcc70dep2r.exe. Full path: %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\vcc70dep2r.exe
Detected by UnHackMe:
Item Name: vcc70dep2r.exe
Author: iF© System
Related File: %APPDATA%\B34B7AF9CB40065433C8C631C37A9A2D\VCC70DEP2R.EXE
Type: Registry Run
Item Name: Zentom System Guard.lnk
Author: iF© System
Related File: %APPDATA%\B34B7AF9CB40065433C8C631C37A9A2D\VCC70DEP2R.EXE
Type: Startup Folder
Removal Results: Success
Number of reboot: 1
VCC70DEP2R.EXE is known as:
Win32.Adware.AntimalwareDoctor
VCC70DEP2R.EXE hash:
- MD5: 5f26bf3d99e658dcb90b8374903871e5
- SHA1: 441f9b6de54d0e9fb9d658be83b64cf62491c2c7
How to quickly detect VCC70DEP2R.EXE presence?
Registry:
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\vcc70dep2r.exe: “”%Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\vcc70dep2r.exe”"
Files:- %Appdata%\Microsoft\Internet Explorer\Quick Launch\Zentom System Guard.lnk
- %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\enemies-names.txt
- %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\hookdll.dll
- %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\local.ini
- %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\lsrslt.ini
- %Appdata%\B34B7AF9CB40065433C8C631C37A9A2D\vcc70dep2r.exe
- %Desktop%\Zentom System Guard.lnk
- %Programs%\Startup\Zentom System Guard.lnk
- %Programs%\Zentom System Guard\Uninstall.lnk
- %Programs%\Zentom System Guard\Zentom System Guard.lnk
- %Startmenu%\Zentom System Guard.lnk
Recommended: UnHackMe anti-rootkit and anti-malware
Premium software: RegRun Security Suite (Good choice for removal and protection)
