acrord32.exe – Fake Antivirus SecurityTool

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

acrord32.exe – Fake Antivirus SecurityTool removal

File Virus Alias
acrord32.exe Fake Antivirus SecurityTool
acrord32.exe Trojan FakeAV
acrord32.exe Trojan CI
acrord32.exe Trojan Kryptik
acrord32.exe Trojan Agent

Created files:

%Program Files%\Internet Explorer\Connection Wizard\acrord32.exe – Fake Antivirus SecurityTool
%WinDir%\mcshield.exe – Fake Antivirus SecurityTool

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\SonyAgent: %Program Files%\Internet Explorer\Connection Wizard\acrord32.exe

Detected by UnHackMe:

acrord32.exe
Default location: %Program Files%\Internet Explorer\Connection Wizard\acrord32.exe

Dropper information:
SHA256: 7db2c29dff7868cec0a073e2404b7bd81b84097bd9dd541c7d36c3ad35bdee71
SHA1: a085818a6022368776d0a149de7e8a105533076f
MD5: 377adac4519aa1967b7757fa39595d75
File size: 833536 bytes

Leave a Reply