Item: Adware.Eorezo.948Malwarefixit
Rating: 5
Author: Alex

Dmitry Sokolov recommends UnHackMe!

UnHackMe is a powerful tool against malware.

UnHackMe quickly removes rootkits/malware/adware/browser hijack issues!

Alex NightWatcher: Solved! (5 / 5)

Adware.Eorezo.948 also known as malicious_confidence_66% (D), Uds.Dangerousobject.Multi!c.

Malware Analysis of Adware.Eorezo.948 – GLOBAL_INSTALLER.EXE

Created files:

%TEMP%\NSSC4E7.TMP\DUMMYRES
%TEMP%\NSSC4E7.TMP\GETVERSION.DLL
%TEMP%\NSSC4E7.TMP\GLOBAL_INSTALLER.EXE
%TEMP%\NSSC4E7.TMP\ICONS\1.ICO
%TEMP%\NSSC4E7.TMP\ICONS\10.ICO

Autostart registry keys:

HKLM\Software\Classes\Applications\vlc.exe\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\Applications\vlc.exe\shell\Open\: “Play with VLC media player”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.3ga: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.669: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.a52: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.aac: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ac3: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.adt: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.adts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.aif: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.aifc: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.aiff: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.au: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.amr: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.aob: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ape: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.caf: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.cda: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.dts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.flac: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.it: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m4a: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m4p: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mid: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mka: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mlp: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mod: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp1: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp2: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp3: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpc: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.oma: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.oga: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.qcp: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.rmi: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.snd: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.s3m: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.spx: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.tta: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.voc: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.vqf: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.w64: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.wav: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.wma: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.wv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.xa: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.xm: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.3g2: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.3gp: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.3gp2: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.3gpp: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.amv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.asf: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.avi: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.divx: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.drc: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.dv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.f4v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.flv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.gxf: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m1v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m2t: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m2v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m2ts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m4v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mkv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mov: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp2v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp4: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mp4v: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpa: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpe: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpeg: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpeg1: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpeg2: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpeg4: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpg: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mpv2: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mtv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.mxf: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.nsv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.nuv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ogg: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ogm: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ogx: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ogv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.rec: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.rm: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.rmvb: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.tod: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.tts: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.vob: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.vro: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.webm: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.wmv: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.asx: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.b4s: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.bin: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.cue: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ifo: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m3u: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.m3u8: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.pls: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.ram: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.sdp: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.vlc: “”
HKLM\Software\Classes\Applications\vlc.exe\SupportedTypes\.xspf: “”
HKLM\Software\Classes\Applications\vlc.exe\: “”
HKLM\Software\Classes\Applications\vlc.exe\FriendlyAppName: “VLC media player”
HKLM\Software\Classes\CLSID\{9BE31822-FDAD-461B-AD51-BE1D1C159921}\InprocServer32\: “%Program Files%\VideoLAN\VLC\axvlc.dll”
HKLM\Software\Classes\CLSID\{E23FE9C6-778E-49D4-B537-38FCDE4887D8}\InprocServer32\: “%Program Files%\VideoLAN\VLC\axvlc.dll”
HKLM\Software\Classes\VLC.3g2\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.3ga\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.3gp\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.3gp2\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.3gpp\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.669\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.a52\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.aac\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ac3\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.adt\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.adts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.aif\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.aifc\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.aiff\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.amr\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.amv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.aob\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ape\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.asf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.asx\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.au\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.avi\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.b4s\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.bin\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.caf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.cda\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.CDAudio\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file cdda:///%1″
HKLM\Software\Classes\VLC.cue\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.divx\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.drc\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.dts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.dv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.DVDMovie\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file dvd:///%1″
HKLM\Software\Classes\VLC.f4v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.flac\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.flv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.gxf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ifo\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.it\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m1v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m2t\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m2ts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m2v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m3u\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m3u8\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m4a\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m4p\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.m4v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mid\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mka\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mkv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mlp\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mod\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mov\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp1\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp2\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp2v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp3\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp4\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mp4v\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpa\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpc\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpe\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpeg\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpeg1\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpeg2\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpeg4\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpg\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mpv2\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mtv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.mxf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.nsv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.nuv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.oga\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ogg\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ogm\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ogv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ogx\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.oma\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.OPENFolder\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” %1″
HKLM\Software\Classes\VLC.pls\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.qcp\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ram\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.rec\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.rm\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.rmi\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.rmvb\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.s3m\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.sdp\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.snd\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.spx\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.SVCDMovie\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file vcd:///%1″
HKLM\Software\Classes\VLC.tod\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.ts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.tta\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.tts\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.VCDMovie\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file vcd:///%1″
HKLM\Software\Classes\VLC.vlc\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.vob\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.voc\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.vqf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.vro\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.w64\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.wav\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.webm\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.wma\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.wmv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.wv\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.xa\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.xm\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Classes\VLC.xspf\shell\Open\command\: “”%Program Files%\VideoLAN\VLC\vlc.exe” –started-from-file “%1″”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VLC media player\DisplayName: “VLC media player 2.0.3”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VLC media player\UninstallString: “%Program Files%\VideoLAN\VLC\uninstall.exe”

Detected by UnHackMe:

GLOBAL_INSTALLER.EXE
DEFAULT LOCATION: %TEMP%\NSSC4E7.TMP\GLOBAL_INSTALLER.EXE

Dropper hash(md5): 4718aa81062fc49549b739ab2587c020

Written by NightWatcher

Malware Hunter.
Google+

UnHackMe removes malware invisible for your antivirus!

UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10. UnHackMe uses minimum of computer resources.