Virus.Win32.HideProc.E
Virus.Win32.HideProc.E is a Windows platform Trojan infection. Virus.Win32.HideProc.E is used by hackers to hide malicious processes. Virus.Win32.HideProc.E can prevent itself and other malware from being listed on the Windows Task Manager. On entering a PC, Virus.Win32.HideProc.E will attempt to steal a user's sensitive information such as passwords and usernames. Virus.Win32.HideProc.E is a privacy threat that should not be left on a PC after detection.
File System Details
Virus.Win32.HideProc.E may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %System%\drivers\hideproc.sys | |
| 2. | %System%\~DF1.tmp |
Registry Details
Virus.Win32.HideProc.E may create the following registry entry or registry entries:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hideproc\Enum]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HIDEPROC\0000\Control]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\hideproc\Enum]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_HIDEPROC\0000\Control]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hideproc\Security]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HIDEPROC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\hideproc\Security]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_HIDEPROC\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hideproc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HIDEPROC]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\hideproc]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_HIDEPROC]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.uab\Excel2EXE7.0]
