Spammer.Tedroo
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 80 % (High) |
| Infected Computers: | 19 |
| First Seen: | December 7, 2010 |
| OS(es) Affected: | Windows |
Spammer.Tedroo is a harmful spammer Trojan which delivers malicious links via enclosed spam emails. It is sometimes hard to recognize the spam mail from Spammer.Tedroo as a spam, because it comes well encrypted and the parasite manages to disguise itself from the PC user. Spammer.Tedroo also circulates via the same channels, when it sends spam email messages. Spammer.Tedroo gets its configuration data from a remote server and all the spam is sent through SMTP servers, which is an Internet standard for email transfer across the IP networks. Whenever Spammer.Tedroo corrupts a PC system, it connects to a remote server to report about the new parasite and then it retrieves information which needs to be transmitted with that spam email message. When Spammer.Tedroo accesses your computer, it sets itself as a software tool which is enabled to operate within the Windows firewall. Then Spammer.Tedroo makes certain system changes which enable Spammer.Tedroo to send out spam messages from the targeted computer. The emails sent are generally encoded in HTML format, which means that they have hyperlinks embedded and the user who receives those emails does not need to copy and paste whatever the email is suggesting into his or her web browser. Clicking on the link within the spam email message affects the user with another Trojan infection, thus exposing the PC system to even a bigger risk. The users are misled into thinking that they are clicking to see a free famous actress video or something similar to that.You should delete Spammer.Tedroo from your machine as quickly as possible because it can seriously destroy your computer system and then result in even more serious risks.
Table of Contents
Aliases
15 security vendors flagged this file as malicious.
| Anti-Virus Software | Detection |
|---|---|
| Panda | Trj/CI.A |
| AVG | Downloader.Generic10.SRI |
| Ikarus | Trojan-Downloader.Win32.FraudLoad |
| Sunbelt | Trojan.Win32.Generic.pak!cobra |
| Antiy-AVL | Trojan/Win32.FraudLoad |
| TrendMicro | PAK_Generic.012 |
| AntiVir | TR/Dldr.FraudLoad.haz.2 |
| DrWeb | Trojan.Packed.20878 |
| Kaspersky | Trojan-Downloader.Win32.FraudLoad.haz |
| Avast | Win32:Crypt-HPM |
| NOD32 | a variant of Win32/Kryptik.GUO |
| McAfee | Generic.dx!twk |
| AVG | FakeAlert.SK |
| a-squared | Packed.Win32.Krap.gy!A2 |
| McAfee-GW-Edition | Artemis!F2D4DBB3D77A |
SpyHunter Detects & Remove Spammer.Tedroo
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | explorer.exe:userini.exe | b0894ae6a97dc363596dbcad64e02487 | 3 |
| 2. | 38144121.exe | d96b11a3b27b234227ab4ebb8a641aee | 2 |
| 3. | 79641027.exe | 63ca8d0f8efa5c22dd5eb09a4a527b5f | 1 |
| 4. | 49363934.exe | 62bf2d052387c55d3009f4c87d773427 | 1 |
| 5. | fltMasks.dll | f2d4dbb3d77aebe00c2969ff05ad2297 | 1 |
| 6. | userini.exe | df7a6d399c1a312873ab547e96bc41bc | 1 |
| 7. | userini.exe | 7d712668c173965c2c0b31e227c560e7 | 1 |
| 8. | explorer.exe:userini.exe | cb177d7cde5567565b9f90250ba340f9 | 1 |
| 9. | explorer.exe:userini.exe | 61f9b299ea2645741294f128b9c72280 | 1 |
| 10. | userini.exe | 0427d1068a2b521e1dbb20ce99f818be | 1 |
| 11. | explorer.exe:userini.exe | 44b8c7bbe586bb7a54d136124d9b5028 | 1 |
| 12. | mstatea.dll | ||
| 13. | 009547.exe | ||
| 14. | winlogon.exe | ||
| 15. | 09939939.exe | ||
| 16. | csrss.exe | ||
| 17. | nbcqz.exe | ||
| 18. | cacheautoobj.exe | ||
| 19. | mfpmsc.dll | ||
| 20. | msvmcls64.exe | ||
| 21. | userinit.exe | ||
| 22. | services.exe | ||
| 23. | 14.exe | ||
| 24. | setup.exe | ||
| 25. | taskmgr.exe | ||
| 26. | wuauclt.exe | ||
| 27. | rarydse.dll | ||
| 28. | winlagon.exe | ||
| 29. | msvmiode.exe | ||
| 30. | servises.exe | ||
| 31. | 34611015.exe | ||
| 32. | winwrrh.exe | ||
| 33. | fb hack.exe | ||
| 34. | svchost.exe | ||
| 35. | rav.exe | ||
| 36. | 68.tmp | ||
| 37. | odcsskt.dat |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.