« previous next »
Pages: 1 [2]   Go Down

Author Topic: Unknown MBR code  (Read 18004 times)

0 Members and 1 Guest are viewing this topic.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Unknown MBR code
« Reply #15 on: April 02, 2012, 12:00:42 AM »
90% of the time it is for redirection - very lucrative at a penny for 10 clicks (or whatever the going rate is )

I believe the https are for programme updates because you cannot have an old version ;D

 version=0.15
Logged

zapster

  • Guest
Re: Unknown MBR code
« Reply #16 on: April 02, 2012, 12:08:10 AM »
Thinking back on it I do recall getting one of those fake virus scanner infections. It was a hassle to get rid of. I didn't realize they created a the TDSS filesystem. Amazing stuff.

Is the alureon-k infection often mentioned on these forums one of these redirect malware infections?
Logged

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Unknown MBR code
« Reply #17 on: April 02, 2012, 12:10:30 AM »
There are becoming more prelavent and more difficult to remove and detect the droppers

Logged

zapster

  • Guest
Re: Unknown MBR code
« Reply #18 on: April 02, 2012, 01:00:24 AM »
Are alureon-k and the others that create these rootkit TDSS hidden systems installed mainly via websites and emails with a nasty payload attached?
Logged
Pages: 1 [2]   Go Up
« previous next »