Backdoor.Tidserv.J
Backdoor.Tidserv.J is a Trojan horse with the ability to open a backdoor on an infected computer. Backdoor.Tidserv.J can be obtained when browsing malicious websites or executing infected e-mail attachments. Once Backdoor.Tidserv.J has opened the backdoor, unauthorized users will be able to access and control a compromised PC. Backdoor.Tidserv.J can also connect with a remote server and install additional malware onto a PC.
File System Details
Backdoor.Tidserv.J may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Windir%\system32\drivers\H8SRT[TEN RANDOM CHARACTERS].sys | |
| 2. | %Windir%\system32\H8SRT[TEN RANDOM CHARACTERS].dll | |
| 3. | %Windir%\system32\H8SRT[TEN RANDOM CHARACTERS].dat | |
| 4. | %Temp%\H8SRT[RANDOM HEXADECIMAL DIGITS FILE NAME ONE].tmp | |
| 5. | %Temp%\H8SRT[RANDOM HEXADECIMAL DIGITS FILE NAME THREE].tmp |
Registry Details
Backdoor.Tidserv.J may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\H8SRTd.sys
HKEY_LOCAL_MACHINE\SOFTWARE\H8SRT
