This utility developed by Kaspersky Lab to remove TDSS rootkits. This type of rootkit is known as the names as: rootkit.win32.tdss, TidServ, TDSSERV, and Alureon. TDSSKILLER will also delete in case of detection and other types of rootkits: ZeroAccess.
Gallery program
Ruckit - This is a malicious program that is designed to conceal itself or other infections on your computer. Such programs are usually more difficult to remove the simple malware in connection with which such separate utilities of anti-virus software developers are being developed.
Tdsskiller Available for download in two EXE and ZIP formats. They are identical to ZIP created for the case if your security policy browser has a ban on downloading executable files.
It is worth noting that many rootkits know about this utility and constantly monitor the launch of the file with the name TDSSKILLER and do not allow it to run. Alternatively, rename the file with the utility to any other name, for example, programm.exe. Now the program is to start freely.
Supported command line parameters:
—l. - Save TDSSKiller's log on the specified path. If the path does not specify the log is saved to the Utility Run folder;
—qpath. - Specifies a folder for quarantine;
—h. - displays a list of all keys;
—sigcheck. - count the drivers without digital signature suspicious;
—qall - copy all objects to the quarantine folder;
—qSUS. - copy only suspicious objects;
—qBoot - Quarantine all boot sectors.
—qmbr. - make a copy of the MBR and save it to the quarantine folder;
—qCSVC. - Copy the specified service in the Quarantine folder;
—dCSVC. - delete the specified service;
—silent. - Scan computer in automatic, quiet mode.
TDSSKILLER is a utility that has a narrow task to detect and eliminate rootkits. In the programmer's programmers under this term understand the malicious program and a group of programs that penetrate the system and intercept its functions.
What Kaspersky Tdsskiller knows how
Their task to hide traces of the presence of hackers in the system. In addition, they may transmit data on the system and processes occurring in it, as well as manage some events or change objects by providing them with disguise.
- With the help of rootkits, hackers can not only hack the system, but also to use it for a long time so that the user will not be able to notice anything.
- The utility installer is easy to use and performs installation in a few minutes. The programs have a quiet mode of operation and standard. To start the job, you must click on the "Start" key, and to access the functions in a quiet mode, you must select the TDSSKILLER - H command.
- The utility is able to work with windows systems From version XP to 8.1. After the detection of malware and their destruction, you must restart the PC. The utility is free and free to download it from the official site.
TDSSKILLER is not an antivirus, it is able to eliminate viruses available in the system, but not intended to protect PC online, for these tasks you need to download paid Kaspersky anti-virus packages.
Program Interface: Russian
Platform: XP / 7 / Vista
Manufacturer: Kaspersky Lab.
Site: www.kaspersky.ru.
Kaspersky Tdsskiller. - one of the most interesting and fair non-standard programs, which is a kind of set to remove programs that allow you to hide traces of the presence of an attacker with unauthorized access to someone else's computer or when implementing malware or code in order to intercept access to the entire system.
Kaspersky Tdsskiller Program Capabilities
The spyware-type programs themselves do not occupy a lot of space, however, after installation, they are able to implement in the system and make interception of systemic windows functions API. Programs of this type, actually called rootkitami. And very many software antivirus packages react to them quite seriously.
I think, and on this type of program, a serious antivirus will respond, as it should be. On the other hand, it allows the modification and interception of many low-level API standard functions. First of all, this is due to the fact that the application will thus quite seriously make a disguise to other programs installed in the system. That is, to determine the presence of such a spy module without specialized protection is simply not possible.
Among other things, the program of this type is completely elementary can mask any process and configuration under the system. Also, absolutely simple application can create directory and files on the hard disk, as well as, prescribe your own keys in system Registrywhich will not be determined for applications that remove various sorts of spyware or advertising modules. And that's not all, this type of application can set your own drivers in operating system which may even look like describing the most natural "iron devices", and sometimes such drivers can be invisible, even subject to the use of the task manager, which in principle control all the processes occurring on the computer in this moment and working in the background service.
