It opens a port and waits for remote control orders, prevents users from accesing several programs, such as the Windows Registry Editor, and certain websites, which belong mostly to antivirus companies.

Windows 2003/XP/2000/NT/ME/98/95

tnegA.A is a backdoor that attempts to connect to a certain server, in order to gain remote access to the affected computer and take action that compromises user confidentiality.

Additionally, it prevents users from accessing several websites, mostly belonging to antivirus companies, and certain monitoring and computer configuration programs, such as the Windows Registry Editor.

tnegA.A does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.

tnegA.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.