Removed: vccFD.exe

Malware: vccFD.exe
Removed: C:\Program Files\vaccf\vccFD.exe
—————————————————————————————————————————-
Classification:

Antivirus	Version	Last Update	Result
F-Secure	9.0.15370.0	2009.12.15	Trojan.Generic.2212168
Kaspersky	7.0.0.125	2009.12.16	-
McAfee	5833	2009.12.15	Generic Downloader.x!blm
Microsoft	1.5302	2009.12.15	TrojanDownloader:Win32/Small.AO
NOD32	4691	2009.12.15	-
Symantec	1.4.4.12	2009.12.16	Downloader

—————————————————————————————————————————-
Additional information
File size: 40448 bytes
MD5   : 8fc444cd9325ec9e8fbd5aff7ddb5b6d
SHA1  : a28182185454de08fe5e6a0335dec862b9b5d7f8
SHA256: 204809e89cab5312e837d6e06da12181a11d2475b692e6058325168a4b816067
—————————————————————————————————————————-
Installation
When the program is executed, it creates the following registry subkeys and values:

———————————-
Keys added:2
———————————-
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vaccf
HKCU\Software\vaccf

———————————-
Values added:8
———————————-
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\vcfe: “00:0C:29:82:06:4B”
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\ntick45: “34609″
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\vaccf: “C:\Program Files\vaccf\vccFD.exe”
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vaccf\UninstallString: “C:\WINDOWS\system32\uninst_vcfu.exe”
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vaccf\DisplayName: “?e?ACA?®”
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vaccf\HelpLink: “http://vaccine-free.co.kr”
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vaccf\DisplayVersion: “”
HKCU\Software\vaccf\updaterVersion: “1.6″

———————————-
Files added:1
———————————-
C:\Program Files\vaccf\vccFU.exe

———————————-
Folders added:1
———————————-
C:\Program Files\vaccf

———————————-
Total changes:12
———————————-

—————————————————————————————————————————-
Detected by UnHackMe:

Item Name: vaccf
Author:
Related File: C:\Program Files\vaccf\vccFD.exe
Type: Registry Run

Removal Results: Success
Number of reboot: 1
—————————————————————————————————————————-
Recommended software:
UnHackMe anti-rootkit and anti-malware
http://www.unhackme.com
RegRun Security Suite (Good choice for removal and protection)
http://www.regrun.com

Comments

• Greatis Software

  • Free Download
  • Send a file

• AverScanner

  AverScaner- EveryDay Malware Scan

• Testimonials

  People say

  Greg

  I spent over 10 hours trying to manually hunt down and remove a rootkit and browser hijacker from my computer. That was a mistake!

  This virus/malware could not be removed by Norton, ZoneLabs, MS Essentials; etc.

  In about 1 hour, I was able to download your software, create the CD-ROM, watch the instruction video and kill 3 ROOKITS from my PC. (Your software hunted down the rootkits and killed them like Spetsnaz going after the enemy!) Get it!

  Joseph

  Your product is the only one on the market that has found and removed rootkits from my system, three rootkits to be precise. I have used other products but they don't measure up to UnHackMe.

  Bob

  The UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy!

  Click Here to Update All your PC's Outdated drivers

• Categories

  • Adware
  • Backdoor
  • Fake Driver-Codec
  • Fake System Tool
  • FakeAV
  • Malware
  • Malware Domain
  • Not-a-Virus
  • Ransomware
  • Rootkit
  • Troyan]>
  • unknown
  • Virus
  • Worm

• Recent Posts

  • OMEGLEVIDSCHECK.EXE is Trojan Agent
  • AFTER.EXE is Trojan Bocinex
  • LIB32WAOQ.EXE is Trojan MSIL.Prash
  • MMIOA5QV0P.EXE is Worm Ainslot
  • MSIZPJ32.DLL is Trojan Downloader6
  • 50DE5TEEYX.EXE is Trojan Cutwail
  • KLLKCH4.EXE is Trojan Agent
  • JL8ZG6FX1U.EXE is Trojan Agent
  • LIB32WAOQ.EXE is Backdoor Advo
  • BIN.EXE is Rootkit SpyEye

• 
• Remember: the best way to remove rootkits is from the outside!

  

• Blogroll

  • RegRun Security Suite. Detects and removes rootkits/malware/adware that your antivirus could not.
  • RegRun Warrior – Removing rootkits is best done from the outside!
  • UnHackMe – rootkit & malware killer

• Popular

  1. 2% X11.EXE is Trojan Buzus
  2. 1% CSDRIVE32.EXE is Worm Kolab
  3. 1% BSI.BUND.EXE is Trojan Ransom
  4. 1%COMPLITLY.DLL
  5. 1% L3YG2H61AY.EXE is Trojan Wigon
  6. 1% IMDCSC.EXE is Trojan CDur
  7. 1% WAJAM.DLL is Trojan xPack
  8. 1% OSJK8S.EXE is Virus Virut
  9. 1%MSDCSC.EXE is Trojan Agent
  10. 1% WINCSA.EXE is Trojan Jorik.IRCbo
  11. 1% SANDRA.DLL is Trojan Sirefef.BV
  12. 1% LSMASS.EXE is Trojan Dapato
  13. 1% NETWORKTOOLHELPER.DLL is Worm Aspxor
  14. 1% ANTIWPA.DLL is Not-a-Virus HackTool.Wpakill
  15. 1% WWMY7SHQ7D.EXE is Trojan Downloader
  16. 1% WINRAR PASSWORD UNLOCKER 2012 1.8V.EXE
  17. 1%MSDCSC.EXE is Trojan Fynloski
  18. 1% MSDUBMNA.SCR is Backdoor Andromeda
  19. 1% FACEBOAX 2.0.3.EXE is Backdoor Poison
  20. 1% PRIAM_BHO.DLL is Adware Wajam

• Tags

  3308c706 Adware Agent Ainslot ATAPI.SYS AutoRun autorun.inf Backdoor Bancos Banker Banload BHO Bifrose Buzus Darkbot Delf Fake AntiVirus FakeAV Farfli Injector IRCBot Jorik KeyLogger Kraddare lsass.exe Malware Domain Oficla OnLineGames Palevo Rebhip Rootkit Scar services.exe SpyEye svchost.exe Taterf TDSS Trojan VB VBKrypt Virus Votwup winlogon.exe Worm ZeroAccess