Threat Database Rootkits TDSS.e!rootkit

TDSS.e!rootkit

By GoldSparrow in Rootkits

TDSS.e!rootkit is a malignant rootkit program designed to mask the existence of any process on the affected computer in order to execute malicious and dangerous actions. TDSS.e!rootkit uses a lot of your system resources to trace your Internet activities or distribute pop-up ads that may greatly slow down the computer or even make it crash randomly. TDSS.e!rootkit is designed to lead to damages to your computer system by deleting certain system files, taking control over your computer and disabling associated applications. TDSS.e!rootkit will send you annoying pop-up ads for adult or other objectionable websites. TDSS.e!rootkit has to be removed immediately to keep your computer away from risk.

File System Details

TDSS.e!rootkit may create the following file(s):
# File Name Detections
1. %System%\taskmgr.exe
2. %System%\cmd.exe
3. Jqyfub.exe
4. %System%\mmc.exe
5. userinit.exe
6. %Windir%\system.ini

Registry Details

TDSS.e!rootkit may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] UacDisableNotify = 0x00000001
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerBrowser HelperObjects{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
HKEY_CURRENT_USER\Software\Apcrmkeh
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
HKEY_CURRENT_USER\Software\Apcrmkeh\-72398023
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc

Trending

Most Viewed

Loading...