Trojan.Win32.VBKrypt.agdc
Posted: February 7, 2011
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 3,230 |
| First Seen: | December 23, 2010 |
|---|---|
| Last Seen: | January 23, 2022 |
| OS(es) Affected: | Windows |
As a rogue anti-spyware application, Trojan.Win32.VBKrypt.agdc offers a facsimile of security while simultaneously being the cause of serious system instability. Along with mildly annoying pop-ups and deceptive activities, Trojan.Win32.VBKrypt.agdc also been shown to cause more serious damage to a computer. Due to the severe and multifaceted harm it's capable of causing, it's strongly encouraged that victims delete Trojan.Win32.VBKrypt.agdc, before it's too late!
A Recitation of Trojan.Win32.VBKrypt.agdc's Many Sins
Trojan.Win32.VBKrypt.agdc is often downloaded and installed without the user being aware of its presence. Trojan.Win32.VBKrypt.agdc will alter your registry to run itself every time Windows starts. Besides being a hindrance to computer use, Trojan.Win32.VBKrypt.agdc will put the integrity and privacy of your files at risk. Trojan.Win32.VBKrypt.agdc can be identified by several other aliases, such as Backdoor.Win32.Shiz.adc and VirTool:Win32/VBcrypt.AD. Although it presents itself as a simple scanner, this Trojan's true functions are wickedly diverse and invariably invisible to the incautious.
- Trojan.Win32.VBKrypt.agdc may prevent you from accessing websites it considers threatening to its existence, such as security-oriented sites.
- Likewise, this Trojan is able to prevent real security scanners from running, which makes it difficult to remove.
- Since its nature is polymorphic, Trojan.Win32.VBKrypt.agdc can change its file names to become more difficult to see. This may also fill your hard drive up with garbage files that serve no purpose other than preserving the infection.
- Trojan.Win32.VBKrypt.agdc may transfer the contents of files on your computer to third parties, particularly financial and identification information.
- Trojan.Win32.VBKrypt.agdc will also display false system error messages and false scan results, in an appeal to the user's emotions. Once the user is sufficiently vulnerable, Trojan.Win32.VBKrypt.agdc will try to lure the user into giving away his or her credit card information willingly.
- Pop-ups may appear that direct the user to dangerous websites with similar thieving motives.
- Your entire system might slow down due to the resources being taken up by Trojan.Win32.VBKrypt.agdc's various actions.
- Trojan.Win32.VBKrypt.agdc may also create more infections by downloading and running malware discreetly.
- As a cherry on top, information and files may be entirely destroyed by this infection.
The Trojan.Win32.VBKrypt.agdc's Grim Final Tally
Almost all of the aforementioned harmful actions are accomplished without your consent. Actions that aren't intended to cause distress or extort money are generally done with effective invisibility! As a top threat to your computer, removing Trojan.Win32.VBKrypt.agdc and everything that comes with it isn't something you can put off.
Since this Trojan is a relatively new infection, attempting to delete Trojan.Win32.VBKrypt.agdc with non-updated software is likely to be futile. Find the latest version of any security tools you're using to counteract this threat, and be ready to deal with multiple sources of infection.
Aliases
W32/Delf.BR [Fortinet]Trojan/Win32.FakeAV [AhnLab-V3]Mal/Delf-BR [Sophos]TR/Agent.aqzo [AntiVir]Win32.TRAgent.Aqzo [eSafe]Win32:Adware-gen [Avast]Generic PUP.x!fw [McAfee]Generic4.AYKC [AVG]TR/FakeHadoc.A.10 [AntiVir]not-a-virus:FraudTool.Win32.HDDDoctor.e [Kaspersky]Win32.TRFakeHadoc.A [eSafe]Generic FakeAlert!lm [McAfee]Generic4.AYIX [AVG]TR/FakeHadoc.A.4 [AntiVir]MemScan:Trojan.Generic.5265304 [BitDefender]
More aliases (168)
More aliases (168)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\CLLDR.DLL
File name: CLLDR.DLLSize: 122.88 KB (122880 bytes)
MD5: d5a8c2f863a62d1daa7f56ee8b452ac8
Detection count: 96
File type: Dynamic link library
Mime Type: unknown/DLL
Path: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\CLLDR.DLL
Group: Malware file
Last Updated: January 23, 2022
%ALLUSERSPROFILE%\Dati applicazioni\gTcXJXtqIE.exe
File name: gTcXJXtqIE.exeSize: 462.33 KB (462336 bytes)
MD5: 36cb96047149476a66f35c3d743769ac
Detection count: 87
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Dati applicazioni
Group: Malware file
Last Updated: December 28, 2010
C:\Users\<username>\AppData\Roaming\SecureBrowsing\LCL_FileProtect.exe.local.backup
File name: LCL_FileProtect.exe.local.backupSize: 733.18 KB (733184 bytes)
MD5: 6b5d72657acd639c0616c729ea7f4a8d
Detection count: 54
Mime Type: unknown/backup
Path: C:\Users\<username>\AppData\Roaming\SecureBrowsing\LCL_FileProtect.exe.local.backup
Group: Malware file
Last Updated: June 16, 2021
%WINDIR%\System32\jchodnpf.exe
File name: jchodnpf.exeSize: 64 KB (64000 bytes)
MD5: 81ef13a161f9827bc6cac97ff8512de4
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\System32
Group: Malware file
Last Updated: December 28, 2010
%WINDIR%\help\winhelp.exe
File name: winhelp.exeSize: 73.21 KB (73216 bytes)
MD5: 2eef6c598b97366e19b2bf1a5bce6681
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\help
Group: Malware file
Last Updated: December 28, 2010
%APPDATA%\Windowsupdate\svchost.exe
File name: svchost.exeSize: 565.24 KB (565248 bytes)
MD5: da27e8c9864b055b8cc4fc121d08a8b2
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Windowsupdate
Group: Malware file
Last Updated: December 28, 2010
%WINDIR%\system32\alem26\alemdz26.exe
File name: alemdz26.exeSize: 376.83 KB (376832 bytes)
MD5: 7dd2dca1ada5c9f2453add90180a2abe
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\alem26
Group: Malware file
Last Updated: December 28, 2010
%APPDATA%\SecureBrowsing\LCL_FileProtect.exe
File name: LCL_FileProtect.exeSize: 733.18 KB (733184 bytes)
MD5: 1763276e2e63a1da53c9b9c448531f64
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\SecureBrowsing
Group: Malware file
Last Updated: March 26, 2016
More files
Additional Information
The following messages's were detected:
| # | Message |
|---|---|
| 1 | "Confirmation
HDD doctor detected an error on your hard drive when trying to access a file C:Program FilesInternet Exploreriexplore.exe Perform data recovery now?" "Disk Error Can not find file: C:Program FilesMessengermsmsgs.exe File may be deleted or corrupt. It is strongly recommended to check the disk for errors." "Serious system error The system will reboot in 37 seconds Windows can not continue operating due to fatal system error. Windows was forced to restart. All unsaved data will be lost." "Confirmation The system disk contains a large number of critical errors. Windows could not fix most of them. You can install install trial version of the third party software "HDD doctor" to fix found bugs. Install "HDD doctor" now?" "Can not find : xxxx File may be deleted or corrupt. Is is strongly recommanded to scan the disk for errors." "Confirmation Your hard drive contains a lot of critical errors! All your data including installed programs, documents, email, etc. are at risk of irreversible corrupt. The trial version does not have low-level access module needed to fix the errors found. It is strongly recommended to activate the full version software with necessary modules. Activate full version now?" |
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.