Event Monitor TSS

The detection named Event Monitor TSS refers to a Trojan that is known to run as em.exe and feature the description 'Event Monitor.' The Event Monitor Trojan is used for a technical support tactic, hence the name Event Monitor TSS. The Event Monitor TSS Trojan is a program that may arrive on computers via free software bundles and fake software updates for Adobe Flash and Java. The Event Monitor TSS Trojan is a threat that is aimed at users who run one of the latest versions of Windows and may install free programs with the 'Typical' and 'Express' options. The authors of the Event Monitor TSS rely on the premise that many users may not explore the 'Custom' installation options of software installers and allow their product to be installed in the background. Once the Event Monitor TSS Trojan is introduced to the system, it adds an entry to the list of startup programs to gain boot persistence and make sure em.exe is launched upon system loading immediately.

The Event Monitor TSS Trojan is known to run from the Application Data directory and use a folder named 'Event Monitor' to host its configuration files, primary executable, and save a log of its activity on the computer. You should not mistake the Event Monitor TSS with the legitimate Event Viewer desktop app by Microsoft that comes as a built-in tool on the Windows OS and allows users to track the changes made to the system and security reports. The corrupted Event Monitor program is designed to show a pop-up alert in your system's tray area that promotes a computer assistance service, which corresponds to various toll-free phone lines. We have reports that the Event Monitor TSS Trojan might direct users to call numbers like 17-654-0561 (France), 800-180-6512 (Germany) and 35-050-1410 (Japan). Cyber security investigators note that the phone lines promoted via the Event Monitor TSS are not to be trusted because they are operated by con artists who may pose as employees of the Microsoft Corp. and reputable AV vendors. We have seen the Event Monitor TSS Trojan display the following information on the screen of compromised users:

'WARNING!
YOUR COMPUTER MAY BE AT RISK: CALL: (844) 763-5838
For Emergency Tech Support call immediately CrashDemo.exe
just crashed on your system. Call us now for instant premium support'

PC users that experience a decreased computer performance, program crashes, their apps being minimized to the Taskbar and notifications to call immediate premium support may be infected with the Event Monitor TSS Trojan. It is recommended to ignore the warnings generated by the corrupted Event Monitor program. You should cancel automatic downloads of software that may occur when you click the notifications shown by the Event Monitor TSS. Computer users that suspect they are compromised by the Event Monitor TSS Trojan may require the assistance of a credible anti-malware suite to remove unwanted software and potential threats on the system.