Does NOD 32 v2.7 detect the TDSS rootkit?

Discussion in 'NOD32 version 2 Forum' started by galande, Feb 14, 2010.

Thread Status:
Not open for further replies.
  1. galande

    galande Registered Member

    Joined:
    May 31, 2008
    Posts:
    18
    I have held off on installing the recent windows update KB977165 because some who install it experience a BSOD when they reboot. The problem is apparently linked to having the Win32.TDSS rootkit on the computer. I ran an in-depth scan on my machine and nothing was found, but this rootkit is supposed to be really hard to detect. Does NOD 32 2.7 detect it? I would like to make sure my machine is clean before I install the windows update, because once you get the BSOD, you have to go to a lot of trouble to fix it.

    I did install and run the most recent Windows Malicious Software Removal Tool along with the other critical updates besides the one that causes the problem and there was no indication that anything bad turned up.
     
  2. galande

    galande Registered Member

    Joined:
    May 31, 2008
    Posts:
    18
    Deafening silence suggests answer is "not".

    Or "no one knows". Too bad--I was hoping for something more definite.

    Meanwhile, back at the ranch, MS has confirmed that the BSODs are caused by a rootkit, which they call by the name Alureon, and in this new blog post, they say that they are working on a detection/removal tool for it:

    http://blogs.technet.com/msrc/archi...talling-ms10-015-and-the-alureon-rootkit.aspx

    I guess I will not be installing KB977165 until the tool is available.
     
  3. Biscuit

    Biscuit Registered Member

    Joined:
    May 26, 2006
    Posts:
    978
    Location:
    Isle of Man
    I've never found Nod to detect any rootkit. Try both Malwarebytes & Prevx.
     
  4. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
  5. Biscuit

    Biscuit Registered Member

    Joined:
    May 26, 2006
    Posts:
    978
    Location:
    Isle of Man
    "I've never found....".
     
  6. 3GUSER

    3GUSER Registered Member

    Joined:
    Jan 10, 2010
    Posts:
    812
    The only one I have seen ESET can detect is the Olmarik. But unable to remove or even point the malicious files.
     
  7. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    What did you see (rootkit) that Eset couldn't detect?
     
Thread Status:
Not open for further replies.