On July 9th, 2012 the FBI will shut down a group of servers operated by a cyber crime ring who they’ve recently dismantled. These rogue criminals have jointly infected over 500,000 computer systems in the United States alone with variants of the “TDSS Alureon” malware. This malware redirects your computer’s internet traffic to servers that are run by those criminals, where they tailor your web browsing experience by injecting their own (risky and sometimes dangerous) search results, advertisements, products and services, hoping you’ll give them your money in one way or another.
And I’m confident when I say this: TDSS Alureon is a nasty one! I’ve had to repair at least three systems infected by this malware and it always resulted in formatting the hard drive to rebuild the system from scratch. Sometimes you won’t even know your system is infected by this malware because it can evade trustworthy antivirus software like Avast, Microsoft Security Essentials, Symantec Endpoint Protection, Windows Defender Offline, Malwarebytes’ Anti-Malware and SUPERAntiSpyware. More often than not these malware scanners reported a clean system when I was still seeing Gateway Antivirus Alerts in our Sonicwall. Even ComboFix won’t get rid of it, and good luck using TDSS Killer; infected systems have serious trouble running fix-it tools like these successfully. TDSS Alureon can cloak itself from the operating system by establishing its own hard drive partition and constantly re-working itself into Windows’ major/minor load points, as well as infecting the master boot record, system drivers and other files. It’s really not worth trying to repair the infected system and will probably be a waste of your time.
So what about the doomsday? Well, once the FBI shuts down those servers, any computers infected with the TDSS Alureon malware may suddenly be unable to access the internet since they rely on those servers for redirection.
Head on over to the official website here to learn more about this and what you can do to be proactive before it potentially strikes your computer when you least expect it.