TDSS.e!rootkit
TDSS.e!rootkit is a malignant rootkit program designed to mask the existence of any process on the affected computer in order to execute malicious and dangerous actions. TDSS.e!rootkit uses a lot of your system resources to trace your Internet activities or distribute pop-up ads that may greatly slow down the computer or even make it crash randomly. TDSS.e!rootkit is designed to lead to damages to your computer system by deleting certain system files, taking control over your computer and disabling associated applications. TDSS.e!rootkit will send you annoying pop-up ads for adult or other objectionable websites. TDSS.e!rootkit has to be removed immediately to keep your computer away from risk.
File System Details
TDSS.e!rootkit may create the following file(s):
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | %System%\taskmgr.exe | |
2. | %System%\cmd.exe | |
3. | Jqyfub.exe | |
4. | %System%\mmc.exe | |
5. | userinit.exe | |
6. | %Windir%\system.ini |
Registry Details
TDSS.e!rootkit may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] UacDisableNotify = 0x00000001
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerBrowser HelperObjects{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
HKEY_CURRENT_USER\Software\Apcrmkeh
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
HKEY_CURRENT_USER\Software\Apcrmkeh\-72398023
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.