914
Home PUA How to remove Trojan.FakeVLCPlayer
PUA | 01/09/2018
Howtoremoveit

How to remove Trojan.FakeVLCPlayer

threatlevel

Antivirus Detection: 37 / 68 Score   Worldwide Sentiment: BAD


About : PUA (potentially unwanted application) is a program that may be unwanted PUAs include spyware, adware (malware).
How to remove Trojan.FakeVLCPlayer logo
logo Program Details
  • File Name: 540b82e8a54dbbca6adfc602ddeec30b.pe
  • File Type: PE32 executable (GUI) Intel 80386, for MS Windows
  • File Size: 1531193
  • Last Modified Date: 1/9/2018 12:00:00 AM
  • MD5: 540b82e8a54dbbca6adfc602ddeec30b
  • SHA-246: 2bc383c5c21680bdd46eee35784d012c9ce5a74915cf33116e7e93175bb6042d
  • CRC32: 1297C53C
logoSignature Info
    [contentSignature]

Download Recommended Free Malware Removal Tool by clicking on the given button:

Download Free Removal Tool

logoVirus Detection Information (37/68)
Malwarebytes
PUP.Optional.SetupAds
Avira
ADWARE/Agent.1531193
McAfee
Artemis!540B82E8A54D
Avast
Win32:Adware-gen [Adw]
AVG
Win32:Adware-gen [Adw]
Kaspersky
HEUR:Trojan.Win32.Generic
BitDefender
Application.Agent.OT
DrWeb
Trojan.StartPage1.25234
VIPRE
Trojan.Win32.Generic!BT
Invincea
heuristic
McAfee-GW-Edition
BehavesLike.Win32.BadFile.tc
Sophos
Generic PUA OF (PUA)
ESET-NOD32
Win32/Adware.Agent.NQH
Yandex
Trojan.Agent!IC8gjRYbvUs
SentinelOne
static engine - malicious
Panda
Trj/CI.A
Qihoo-360
HEUR/QVM42.1.Malware.Gen
Emsisoft
Application.Agent.OT (B)
Cybereason
malicious.1b8fb7
CAT-QuickHeal
Trojan.IGENERIC
NANO-Antivirus
Riskware.Win32.Agent.eetgfl
Paloalto
generic.ml
Endgame
malicious (moderate confidence)
F-Secure
Application.Agent.OT
Cylance
Unsafe
Zillya
Trojan.GenericKD.Win32.30057
TheHacker
Trojan/Generik.KOMIGCE
CrowdStrike
malicious_confidence_60% (D)
Baidu
Win32.Trojan.WisdomEyes.16070401.9500.9759
Symantec
PUA.Gen.2
Antiy-AVL
GrayWare/Win32.StartPage.gen
Arcabit
Application.Agent.OT
AegisLab
Troj.W32.Generic!c
ZoneAlarm
HEUR:Trojan.Win32.Generic
GData
Application.Agent.OT
AVware
Trojan.Win32.Generic!BT
MAX
malware (ai score=82)
logoDropped file (25)
File Name
nsis7z.dll
File Path
%temp%\nsa7f57.tmp\nsis7z.dll
Size
333312
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5
0592f45076aa1cd3e708fef4d18c349d
SHA1
9d4ac28f98e33f1a0e254118860bc20e7da82e1a
SHA256
44d80060c55ed09a2b95719a0da4128d5521e606c417914e0b71e5ce3577c414
CRC
9A029CD4
File Name
uac.dll
File Path
%temp%\nsa7f57.tmp\uac.dll
Size
14848
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5
4814167aa1c7ec892e84907094646faa
SHA1
a57a5ecbdfa9a8777a3c587f1acb02b783afc5ee
SHA256
32dd7269abf5a0e5db888e307d9df313e87cef4f1b597965a9d8e00934658822
CRC
21594E7A
File Name
system.dll
File Path
%temp%\nsa7f57.tmp\system.dll
Size
11264
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5
6f5257c0b8c0ef4d440f4f4fce85fb1b
SHA1
b6ac111dfb0d1fc75ad09c56bde7830232395785
SHA256
b7ccb923387cc346731471b20fc3df1ead13ec8c2e3147353c71bb0bd59bc8b1
CRC
3A2F9206
File Name
version.dll
File Path
%temp%\nsa7f57.tmp\version.dll
Size
22528
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, UPX compressed
MD5
fbe588b15eb1bd86defade69f796b56f
SHA1
2f63cf44039addddb22c2c0497673b49e6b3ad7a
SHA256
31144e8b156fe87317073c48a09abcb033fda8dbdd96986c4abea8c00c00355f
CRC
DBF04AB3
File Name
ie.bat
File Path
%temp%\131a.tmp\ie.bat
Size
367
Type
ASCII text, with CRLF line terminators
MD5
9cfdf73cb2f0c132be731fb4bce1271e
SHA1
7ca3a414373dc6bb81311d43abd027ddecae26f7
SHA256
5d0bf5bd1d4d0a560001f9bf9d0b482377a898cce8d2903c70e1590432825283
CRC
5AEBE272
File Name
100.msi
File Path
%temp%\nsm763f.tmp\100\100.msi
Size
460800
Type
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.1, Title: Installation Database, Keywords: Installer, MSI, Database, Last Printed: Fri Dec 11 11:47:44 2009, Create Time/Date: Fri Dec 11 11:47:44 2009, Last Saved Time/Date: Fri Dec 11 11:47:44 2009, Number of Pages: 200, Security: 0, Code page: 1252, Revision Number: {5E8878B7-9662-4B40-9ACF-01384799623B}, Number of Words: 2, Subject: Installer, Author: Microsoft, Name of Creating Application: Advanced Installer 12.4.2 build 66135, Template: ;1033, Comments: This installer database contains the logic and data required to install Installer.
MD5
2937374fc39dfb3e2146b77806f57d8e
SHA1
f3eb2d97b79cfc713b04515aa3122db49f050cfa
SHA256
a838fe12c830b389d7df807d9f46dabeffa24680d85797eec54c5a767c2b1944
CRC
CDBBEC76
File Name
ie.exe
File Path
%temp%\nsm763f.tmp\ie\ie.exe
Size
63488
Type
PE32 executable (GUI) Intel 80386, for MS Windows
MD5
143fbd7b92ba07918023bfa51a7f94b0
SHA1
bb80d4ec489bc5bc7e6d8815aaf661863fe09f58
SHA256
594d6635803c6de1641e786a03d8fb482b82e08011eaf6a18dacd2d36af43d06
CRC
3A097336
File Name
installer.exe
File Path
%temp%\nsm763f.tmp\installer\installer.exe
Size
1073791
Type
PE32 executable (GUI) Intel 80386, for MS Windows
MD5
6d9f33429ef1be5506a4c8eaf47af08d
SHA1
4e726ec3106963b2b01153f534c22299aa4f53f6
SHA256
67de2adca12cbec020d92fa1f470f1517d034c63038c23bc621919561c78f899
CRC
9E558AF0
File Name
nactions.dll
File Path
%temp%\nsm763f.tmp\nactions.dll
Size
146944
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5
bbf546396714ec1c5a36ce24b64b7fd9
SHA1
8cec80680e05a73c9800065143a773480aea9a02
SHA256
a1d865e4a309e7f730be5d10ba793fef37fc3aca701d967ddf573c02adcca64d
CRC
71458546
File Name
sib.dat
File Path
%temp%\nsm763f.tmp\sib.dat
Size
13804
Type
data
MD5
fa12cbdc41980981757f69f866d80890
SHA1
f251f26eaae75f775baafce5254e2a63030d8b83
SHA256
b60b1f72829c2054621a3059f1f7e4cb92e4c9621045a77c3e8de8baa8d16c3b
CRC
BBACA69A
File Name
uac.dll
File Path
%temp%\nsm763f.tmp\uac.dll
Size
14848
Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5
adb29e6b186daa765dc750128649b63d
SHA1
160cbdc4cb0ac2c142d361df138c537aa7e708c9
SHA256
2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
CRC
1FE27A66
File Name
url-congrats.exe
File Path
%temp%\nsm763f.tmp\url-congrats\url-congrats.exe
Size
413430
Type
PE32 executable (GUI) Intel 80386, for MS Windows
MD5
dcb6d200671685c1111b246ddc881f67
SHA1
c4cb0feeffb51ee5adf55a05bc1130b4f2ceb66c
SHA256
34a151e37ef8e69c5cc206c86004408b27342c243e538e127286e774652f992e
CRC
AF919AC0
File Name
contentcontroller.js
File Path
%localappdata%\ads\js\controllers\contentcontroller.js
Size
185
Type
ASCII text, with CRLF line terminators
MD5
799b582ba20caf41c7a483a82aae80d7
SHA1
4b131a9b609579c55025a6c20314a0710fbe7ce3
SHA256
06d4c6da91bde463f31a1099c00bb79ecd6ba81b4bbfa960e44c926475f7b4ff
CRC
8B677368
File Name
jquery-ui.min.js
File Path
%localappdata%\ads\js\lib\jquery-ui\jquery-ui.min.js
Size
38119
Type
ASCII text, with very long lines
MD5
f40cf69f3481172b9d9cce544a40ab2a
SHA1
1af27461bdb128e2b5c395b9a243e6c708c80c73
SHA256
6ef3ceed378baa3ce1f37b98f0545f1a705914c91abbf2c7395f7045d7bfa283
CRC
0494C148
File Name
unins000.exe
File Path
%programfiles%\speed it up\unins000.exe
Size
718660
Type
PE32 executable (GUI) Intel 80386, for MS Windows
MD5
0249a2bfec08da8334ec657bdad404c1
SHA1
5e048986f00d475e2ed567f41d1ec515273e14e5
SHA256
359ec9727c82c54ad84b89a7ff6c609a4542ee145f5f1c2944e3140a0ee671bf
CRC
769E8E78
File Name
background.js
File Path
%localappdata%\ads\background.js
Size
2186
Type
ASCII text, with CRLF line terminators
MD5
501d5e6bb06aef58190e84dc18d4ed51
SHA1
94ef84916bb6927f5d60ffd50122a1f16cd0633b
SHA256
c4c6d40359ac1d76e2dfac4f5ac38ab7f774af0eb951e108f562e206f3e023f4
CRC
E0EA14BA
File Name
jquery.js
File Path
%localappdata%\ads\js\lib\jquery-ui\external\jquery\jquery.js
Size
273199
Type
ASCII text
MD5
91515770ce8c55de23b306444d8ea998
SHA1
1d85f0f3464e5e49b0522744bf7314e176ac76d9
SHA256
8ade6740a1d3cfedf81e28d9250929341207b23a55f1be90ccc26cf6d98e052a
CRC
5D798FAF
File Name
jquery-ui.js
File Path
%localappdata%\ads\js\lib\jquery-ui\jquery-ui.js
Size
79139
Type
ASCII text
MD5
50b44bd742b8ff016f50275e3c601f6f
SHA1
439bd686f0adc6fa9689ae1ac920df2d9a1bc983
SHA256
fd6bfceed1e863a4374378bb6fa3cb956868ccbc634c9798caf2e8981b956e50
CRC
649C76D5
File Name
unins000.dat
File Path
%programfiles%\speed it up\unins000.dat
Size
24882
Type
data
MD5
10ccd38886e57f17ca9ab145a5531130
SHA1
00235692e19ee61daeccee17f1beef16d4ce84fb
SHA256
1061d2472402616cde778da3419bfcee691ee56db70d84ff4d1f4823b68ff3ac
CRC
4D555007
File Name
jquery.min.js
File Path
%localappdata%\ads\js\lib\jquery.min.js
Size
83617
Type
ASCII text, with very long lines, with CRLF line terminators
MD5
69356969e8a797d56825e2dbc2584ac0
SHA1
bee4d9cd41ae6bf4f72b1f48be0935d807ec26b0
SHA256
b5a140b410f118c68dc918c10e68398bc8f35ccdd96cbed2d20ecadda5ef0eb5
CRC
0BF56FE8
File Name
eventhub.js
File Path
%localappdata%\ads\js\classes\eventhub.js
Size
965
Type
ASCII text, with CRLF line terminators
MD5
f447bc291d3e2db2bdbd37fd97acd7be
SHA1
5f80a70eb6aadbf990537dae2d45add7464aa860
SHA256
3b7439725f0a1d11aa1ba6cbba6a07de45398a14041d4082462c9ede2be5b094
CRC
79563B3B
File Name
dropdown.js
File Path
%localappdata%\ads\js\classes\dropdown.js
Size
445
Type
ASCII text, with CRLF line terminators
MD5
58b77724dc625e215b4f65c05bf67239
SHA1
842061af180f2d153277bb8eb01ec1be1bc376f6
SHA256
9faed78af2901270e3fb39ba141f47f4e16f58b9c84be63047988ff5a93624f0
CRC
3F138F57
File Name
redirect.js
File Path
%localappdata%\ads\redirect.js
Size
1098
Type
ASCII text, with CRLF line terminators
MD5
4278b5d7b55934cc2907a794d226fdf0
SHA1
2060c7451657d2ae5dcfc8786de4f089a18bc977
SHA256
e336aff493a37cd7e758c8bb3d7bdfe3a9f580006352855644bc2c22e3e93542
CRC
67BA2319
File Name
winservice.exe
File Path
%programfiles%\ads\winservice.exe
Size
590848
Type
PE32 executable (console) Intel 80386, for MS Windows
MD5
c1964c22813a05b2596544e691c20826
SHA1
3d252844cbbf29e3efbd26337ad0a6cdbe323d4d
SHA256
0d67438d7571896205f620ed27147a6c4ff83cf5cd5cce66a97030941cd7c797
CRC
E060694F
File Name
content.js
File Path
%localappdata%\ads\js\content.js
Size
1081
Type
ASCII text, with CRLF line terminators
MD5
632912f69640464360024e92efffe3b8
SHA1
de580141dcbf94a3a4744b3ff575805acf949b10
SHA256
fc4e99ca100852ef501c41d900ae45c6c96e43dd49a967239fb364225cde32b8
CRC
63B9212E
Registry info howtoremoveitRegistry Details (22)
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\DisplayName
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\DisplayVersion
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\EstimatedSize
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\Inno Setup: App Path
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\Inno Setup: Icon Group
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\Inno Setup: Language
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\Inno Setup: Setup Version
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\Inno Setup: User
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\InstallDate
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\InstallLocation
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\MajorVersion
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\MinorVersion
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\NoModify
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\NoRepair
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\QuietUninstallString
HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\uninstall\speed it up_is1\UninstallString
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\appid
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\Folder
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\Name
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\PopupURL
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\Url
HKEY_LOCAL_MACHINE\software\wow6432node\winservice\winservice.exe\Version
Registry info howtoremoveitNetwork Analysis (11)
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTPJvUY%2Bsl%2Bj4yzQuAcL2oQno5fCgQUUWj%2FkK8CB3U8zNllZGKiErhZcjsCEA%2FIxRqSRbWGD205SqfbD2w%3D
http://crl4.digicert.com/EVCodeSigningSHA2-g1.crl
http://collect.installeranalytics.com/
http://ocsp.godaddy.com//MEIwQDA%2BMDwwOjAJBgUrDgMCGgUABBQdI2%2BOBkuXH93foRUj4a7lAr4rGwQUOpqFBxBnKLbv9r0FQW4gwZTaD94CAQc%3D
http://r7---sn-gxap5ojx-qxae.gvt1.com/edgedl/release2/chrome/AJFa9NIwPYkE_63.0.3239.84/63.0.3239.84_62.0.3202.94_chrome_updater.exe?cms_redirect=yes&expire=1515086580&ip=115.248.40.218&ipbits=0&mm=28&mn=sn-gxap5ojx-qxae&ms=nvh&mt=1515071924&mv=u&pcm2cms=yes&pl=22&shardbypass=yes&sparams=expire,ip,ipbits,mm,mn,ms,mv,pcm2cms,pl,shardbypass&signature=4D743CC09A9405EEF1D52AE49442BAA84111B68C.6AD703B272C26C1F06B397DF7C7FF1C3A9056DD3&key=cms1
http://ocsp.msocsp.com/MFQwUjBQME4wTDAJBgUrDgMCGgUABBSIGkp0%2Fv9GUvNUu1EP06Tu7%2BChyAQUkZ47RGw9V5xCdyo010%2FRzEqXLNoCEyAAAQtA%2Bx78gmkefJYAAAABC0A%3D
http://www.ecb.europa.eu/stats/eurofxref/eurofxref-daily.xml
http://ardownload.adobe.com/pub/adobe/ServicesUpdater/win/DC/1800920044/RdrServicesUpdater2_1800920044.exe
http://crl3.digicert.com/EVCodeSigningSHA2-g1.crl
http://crl.globalsign.net/root-r2.crl
http://redirector.gvt1.com/edgedl/release2/chrome/AJFa9NIwPYkE_63.0.3239.84/63.0.3239.84_62.0.3202.94_chrome_updater.exe
Tips to Prevent virus and malware from Infecting Your System:
  1. Enable your popup blocker: Pop-ups and ads on the websites are the most adoptable tactic used by cybercriminals or developers with the core intention to spread malicious programs.
    So, avoid clicking uncertain sites, software offers, pop-ups etc. and Install a powerful ad- blocker for ChromeMozilla, and IE
  2. Keep your Windows Updated: To avoid such infections, we recommend that you should always keep your system updated through automatic windows update.By doing this you can keep your device free from virus.According to the survey, outdated/older versions of Windows operating system are an easy target.
  3. Third-party installation: Try to avoid freeware download websites as they usually install bundled of software with any installer or stub file.
  4. Regular Backup: Regular and periodical backup helps you to keep your data safe in case the system is infected by any kind of virus or any other infection.Thus always backup important files regularly on a cloud drive or an external hard drive.
  5. Always have an Anti-Virus: Precaution is better than cure. We recommend that you install an antivirus like ITL Total Security or a good Malware Removal Tool like Download Virus RemovalTool
Registry info howtoremoveitFolder Path (1)
%localappdata%\ads

Download Recommended Free Malware Removal Tool by clicking on the given button:

Download Free Removal Tool

Tips to prevent virus/malware from entering your computer :

1. Enable your popup blocker: Pop-ups and ads in the websites are the most adoptable tactic used by cybercriminals or developers with the core intention to spread malicious programs. So, avoid clicking uncertain sites, software offers, pop-ups etc.

2. Keep your Windows Updated: To avoid such infections, we recommend that you should always keep your system updated through automatic windows update. By doing this you can keep your device free from virus. According to the survey, outdated/older versions of Windows operating system are an easy target.

3. Third-party installation: Try to avoid freeware download websites as they usually install bundled of software with any installer or stub file.

4. Regular Backup: Regular and periodical backup helps you to keep your data safe in case the system is infected by any kind of virus or any other infection. Thus always backup important files regularly on a cloud drive or an external hard drive.

5. Always have an Anti-Virus: Precaution is better than cure. We recommend that you install an antivirus like  McAfee or a good Malware Removal Tool like Download Free Virus RemovalTool

6. Install a powerful ad- blocker for  ChromeMozilla,and   IE.

Latest Reported Threats

View More Reports

Newsletter

(0) Comments

Be the first to comment
#include file="../statichtml/static_notification.html"

1

ITLSecureVPN_setup.exe
2

3

1

2

3

1

2

3