|01 May 2010||#1|
April Threat Reports & Alureon.
Following up on the blog post that our friends in the Microsoft Security Response Center posted a few weeks ago, we wanted to share the results from the April edition of MSRT. As part of our ongoing updates to families already in MSRT, we have added support for more variants of the Win32/Alureon rootkit/infector, including the ones responsible for the issues widely reported with Microsoft Security Bulletin MS10-015. Below is a summary of the Alureon cleaning using MSRT in April:
We had also previously mentioned in our blog post, that although the Alureon family has been around for years, some variants (.A-.F) gained a lot of attention since they conflicted with Microsoft Security Bulletin MS10-015 and rendered machines unbootable after applying updates to ntoskrnl.exe. Within a few days, the rootkit authors updated Win32/Alureon.G to avoid the issue since it was attracting a lot of unwanted attention. Moreover, Microsoft also re-released Microsoft Security Bulletin MS10-015 with new heuristic checks included in the installer identifying symptoms of the rootkit, preventing the patch from being applied to the affected users while warning them of the issues. The recently released Microsoft Security Bulletin MS10-021 also demonstrates a similar behavior.
Microsoft Malware Protection Center : MSRT April Threat Reports & Alureon
|My System Specs|
|23 May 2010||#3|
|My System Specs|
|Similar help and support threads for2: April Threat Reports & Alureon.|
|BSOD after removing Alureon.a||System Security|
|Alureon and my broken laptop||System Security|
|DIR 615 reports link at 300Mbps, windows reports 150Mbps||Network & Sharing|
|[Q] Alureon.A: Causes and removal||System Security|
|Looks familiar? Yes! From Alureon!||Security News|
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
All times are GMT -5. The time now is 01:25 PM.