PrivacyHidden
PrivacyHidden
Win32.FraudTool.PrivacyHidden is a rogue anti-spyware application. It may give exaggerated threat reports on the compromised computer then ask the user to purchase a registered version to remove those reported threats.
Credit: Tachikoma
Files
%Desktop%\����̹�����.lnk
Folders
%ProgramFiles%\PrivacyHidden
%StartMenu%\����̹�����
RegistryEntries
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\PrivacyHidden.exe
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PrivacyHidden
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\intmedialab
Key: HKEY_LOCAL_MACHINE\SOFTWARE\PrivacyHidden
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value: PrivacyHidden
Data: "C:\Program Files\PrivacyHidden\PrivacyHidden.exe" /run1