UltraVNC

It’s a commercial remote control that allows full control of the machine installed on. These programs are typically installed by the computer owner or administrator and should only be removed if unexpected. It can even steal our personal information without our consent.0

General information:

Malware Name: UltraVNC
Malware Type: Remote Control
Company Name: UltraVNC
Company URL: http://ultravnc.sourceforge.net/
Threat Level: Low Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation

Company Description:

It is a small team of highly motivated and cool people. Its goal is to make the more powerful, user-friendly and no-brainer free Remote Control software available. It provides us with the software UltraVNC that is easy to use, fast and free software that can display the screen of another computer (via internet or network) on our own screen.

Spyware Description:

It’s a commercial remote control that allows full control of the machine installed on. These programs are typically installed by the computer owner or administrator and should only be removed if unexpected. It can even steal our personal information without our consent.0

Characteristics/Symptoms:

    -> It is a network application that allows to manage and control PCs or networks from a remote location. -> It allows to access another computer without explicit authorization. -> It can also be used to monitor and steal information from the remote computer -> Slows down the performance of PC0

Additional information might be found here:

google Search at Google for UltraVNC
bing Search at Bing for UltraVNC
yahoo Search at Yahoo for UltraVNC

Processes Running:

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\All Users\Start Menu\Programs\UltraVNC\UltraVNC Repeater\Install Repeater Service.lnk 622 Shortcut
C:\Documents and Settings\All Users\Start Menu\Programs\UltraVNC\UltraVNC Repeater\Remove Repeater Service.lnk 626 Shortcut
C:\Documents and Settings\All Users\Start Menu\Programs\UltraVNC\UltraVNC Repeater\Run.lnk 604 Shortcut

Folder information Created after Installation:

Folder Location
C:\Documents and Settings\All Users\Start Menu\Programs\UltraVNC\UltraVNC Driver
C:\Documents and Settings\All Users\Start Menu\Programs\UltraVNC\UltraVNC Viewer

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionUninstall{A8AD990E-355A-4413-8647-A9B168978423}_is1 DisplayName
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionUninstall{A8AD990E-355A-4413-8647-A9B168978423}_is1 Inno Setup: Icon Group
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsCurrentVersionUninstall{A8AD990E-355A-4413-8647-A9B168978423}_is1 Inno Setup: Selected Components