Rootkits of this family are widely applied to protect software products of counterfeited quality and to subvert host system replacing original system loader by the loader installed by remote attacker. It may be also detected as a modification of Alureon rootkit.
The rootkit payload is not limited by any margins, if it manages to establish a connection to remote server. It may be used as a basement for more complex payload threats and be a part of a large-scale scam.
This modification is suspected to participate in massive attacks on major world bank servers acting through infected machines, which are used by users in online banking.
Removal of Mal/TDSSonf_A is case-specific and is subject to the degree of the rootkit influence on computer systems.
Symptoms:
- Automatic Sending of SPAM mails.
- May install other malicious programs.
- Interrupt the normal working of the computer.
Removal:
Although it is possible to manually remove Mal/TDSSconf-A, such activity can permanently damage your system if any mistakes are made in the process. Thus, manual removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend malware and spyware removal applications.
0 comments:
Post a Comment