Multi-Device Licenses (Volume Discounts)

Change Region

English
Threat Database Adware not-a-virus:FraudTool.Win32.EvidenceEraser.q

not-a-virus:FraudTool.Win32.EvidenceEraser.q

By LoneStar in Adware

not-a-virus:FraudTool.Win32.EvidenceEraser.q is a malignant adware program which usually initiates, shows, or downloads advertisements to the affected computer system. not-a-virus:FraudTool.Win32.EvidenceEraser.q drops its start-up registry entry to the infected computer to make sure it will be launched every time Windows starts. not-a-virus:FraudTool.Win32.EvidenceEraser.q often creates toolbars, pop-ups, etc. The aim of not-a-virus:FraudTool.Win32.EvidenceEraser.q is to gather information about targeted users and send it to host computers without their knowledge and permission. not-a-virus:FraudTool.Win32.EvidenceEraser.q can change your home page to another marketing website. not-a-virus:FraudTool.Win32.EvidenceEraser.q will change your web browser code and disable you to set your web browser options.

File System Details

not-a-virus:FraudTool.Win32.EvidenceEraser.q may create the following file(s):
Expand All | Collapse All
# File Name Detections
1. %ProgramFiles%\EvidenceEraser\Launcher.exe
2. %ProgramFiles%\EvidenceEraser\gdiplus.dll
3. %ProgramFiles%\EvidenceEraser\unins000.exe
4. %ProgramFiles%\EvidenceEraser\EvidenceEraser.exe
5. %ProgramFiles%\EvidenceEraser\PrivacyShell.dll
6. %CommonPrograms%\EvidenceEraser\Uninstall EvidenceEraser.lnk
7. %AppData%\EvidenceEraser\Log\2011 May 20 - 01_33_27 PM_472.log
8. %AppData%\EvidenceEraser\Settings\CustomScan.stg
9. %AppData%\EvidenceEraser\Settings\SelectedFolders.stg
10. %ProgramFiles%\EvidenceEraser\EvidenceEraser.url
11. %CommonPrograms%\EvidenceEraser\EvidenceEraser on the Web.lnk
12. %AppData%\EvidenceEraser\Log\2011 May 20 - 01_32_54 PM_300.log
13. %AppData%\EvidenceEraser\Settings\IgnoreList.stg
14. %AppData%\EvidenceEraser\Settings\Settings.stg
15. %ProgramFiles%\EvidenceEraser\DataBase.ref
16. %ProgramFiles%\EvidenceEraser\unins000.dat
17. %CommonPrograms%\EvidenceEraser\EvidenceEraser.lnk
18. %AppData%\EvidenceEraser\Log\2011 May 20 - 01_33_26 PM_675.log
19. %AppData%\EvidenceEraser\Log\2011 May 20 - 01_33_26 PM_956.log
20. %AppData%\EvidenceEraser\Settings\ScanInfo.stg
21. %DesktopDir%\EvidenceEraser.lnk
22. %ProgramFiles%\EvidenceEraser\license.rtf

Registry Details

not-a-virus:FraudTool.Win32.EvidenceEraser.q may create the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\PrivacyShell.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{D9A9DE7F-A259-4BC1-A348-87BC1053C4E8}
HKEY_LOCAL_MACHINE\SOFTWARE\EvidenceEraser
HKEY_CURRENT_USER\Software\EvidenceEraser\EvidenceEraser\RegInfo
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\PrivacyShellExt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D642CFA-40F8-4AE0-9144-538BC1D725E4}\InprocServer32
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\PrivacyShellExt
HKEY_CURRENT_USER\Software\EvidenceEraser
HKEY_CURRENT_USER\Software\EvidenceEraser\EvidenceEraser\Settings
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\PrivacyShellExt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D642CFA-40F8-4AE0-9144-538BC1D725E4}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D642CFA-40F8-4AE0-9144-538BC1D725E4}\Programmable HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\EvidenceEraser_is1
HKEY_CURRENT_USER\Software\EvidenceEraser\EvidenceEraser
HKEY_CURRENT_USER\Software\EvidenceEraser\EvidenceEraser\EvidenceEraser

Trending

Most Viewed

Loading...