Tools
Trojan:SymbOS/SrvSender
| Name : | Trojan:SymbOS/SrvSender |
| Category: | Malware |
| Type: | Trojan |
| Platform: | SymbOS |
Summary
Disinfection
Disinfecting using F-Secure Mobile Anti-Virus
- Download F-Secure Mobile Anti-Virus and activate it
- Scan the phone and remove any components of the malware
- Reboot the phone to remove memory resident components
Disinfection for the cases when phone cannot start up
CAUTION! this method will remove all data on the device including calendar and phone numbers:
- Power off the phone
- Hold the following three buttons down - "answer call" + "*" + "3"
- Keep holding down the buttons and power on the phone
- Depending on the model, you will either get text that reads "formatting" or a start-up dialog that asks for the initial phone settings
- Your phone is now formatted and can be used again
Prevention
Prevent future infections with F-Secure Mobile Anti-Virus
Additional Details
Trojan:SymbOS/SrvSender affects Symbian Series 60 Second Edition devices.
SrvSender responds to all incoming messages and voice calls with a random SMS message. It removes all traces of all incoming SMS messages.
SymbOS/SrvSender.A has following features.
It attempts to kill the following processes:
- Euninstall
- Ewapstore
It attempts to remove the following files:
- \system\recogs\AppToolkit.mdl
- \system\recogs\RecMemCard.mdl
It deletes incoming MMS messages containing attachments with the following extension:
- install
- sis
- app
- exe
- jar
- jad
SrvSender.A creates a file containing logs of some of its activities in the following location:
- C:\system\data\apple.txt.