Rootkit on XP Systems to Block Installation of XP Updates
As per the announcement made by the software giant, Microsoft, Windows XP users will not be able to install the latest updates for the operating system on their computers if they are contaminated with the rootkit worm Alureon, as per the news published by ChattahBox.com on April 18, 2010.
The Microsoft sources said that the updates would carry out a computer scan to ensure that the system don't have the rootkit on its system files. In case the malware is there, the update would reject deploying the patches.
Security researchers, commenting on the issue, stated that a rootkit is a malicious program which attempts to elude anti-viruses' detection via going deep into what are similar to Windows kernel code.
Besides, when Alureon resides on the PC, it monitors inbound online traffic and captures passwords, usernames as well as credit card details. Additionally, a backdoor facility is created that lets attackers penetrate the infected machines. Meanwhile, since the Alureon virus made its debut in 2008, its proliferation has been continuing through hacked websites, discussion forums as well as phony pay-per-click campaigns.
According to Microsoft, the announcement was made so that no confusion remained since in February 2010, a certain new security patch led to a Blue Screen of Death along with constant rebooting of a few Windows XP systems, as per the news published by The Register on April 16, 2010.
The software company elaborates in the 'Frequently Answered Question' section for its MS10-21 update that the patch contains package-detection logic, which doesn't allow the update to get installed in case any atypical situation prevails, as per the news published by The Register on April 16, 2010.
According to Microsoft, if users try to load the new version MS010-15 package or the latest MS10-021 kernel patch on the rootkit infected systems, they will receive an error program.
The company strongly believes that if the patch isn't applied, users may most likely confront the same problems of February 2010, wherein, several people were to see their systems functioning properly again.
Hence, Microsoft has urged users infected with the rootkit to first cleanse it with the company's malware-removal tool or use other security firms' rootkit detectors for the purpose.
Related article: Rootkits Can Be Detected And Eradicated
» SPAMfighter News - 29-04-2010