MS10-015 KB977165 0XC0000098

I just let people know that this implementation of security update MS10-015 KB977165 caused my computer down. So be wary of the installation of this update on your computer! And if you choose to install, be prepared to recover a system if necessary.

I am running Windows Vista Service Pack 2. After the update was installed, the computer asks for a restart and I click on restart. The computer posted, but it was impossible to load Windows.

windows\system32\ntoskrnl.exe
0xc0000098
Windows failed to load because the kernel is missing or corrupted.

I could start my Windows DVD and perform a recovery of the system. Recovering the system reinstalled an old file ntoskrnl.exe and fixed my computer.

I contacted them the past on a previous incident. Support said that because my computer would not start there was nothing they could do. Support has not yet offered assistance to use the repair options on installing Windows dvd.

I found another method of installation KB977165. Using the Expand.exe utility I have expanded the content of the file Windows6. 0-KB977165-x 86.msu to reveal the Windows6 file. 0-KB977165 - x 86 .cab. Then I expanded the. CAB file to reveal six different branches updated. The branch with the 6.0.6002.18160 version contained new versions patched of ntkrnlpa.exe and ntoskrnl.exe that I needed for my particular computer.

I started from my Windows DVD and selected repair options to reach a command line and copied the updated ntkrnlpa.exe and ntoskrnl.exe files in my directory % systemroot%\system32. Certainly this is not the way in which the update is intended to be installed, but it seems to work for me.

Tags: Windows

Similar Questions

  • Blue error screen 0x0000007B in Windows XP after installing KB977165 (MS10-015 - February 2010)

    I updated 11 windows xp updates today from Microsoft.com and restarted my pc as it was asked to. (Certainly there was absolutely NO CHANGE in my installation of software or hardware apart from this updates)

    Therefore, Windows cannot restart once again! It stops at the blue screen with the following message:

    A problem has been detected and windows has shut down to prevent damage to your computer.

    PAGE_FAULT_IN_NONPAGED_AREA

    Technical information:

    STOP: 0 X 00000050 (0 X 80097004, 0 X 00000000, 0X00000001, 0 X 80515103).

    I tried all sorts of relaunch option namely mode security etc.  but all comes down to the blue screen.

    I hope that Microsoft technical support has an answer on how to solve this problem.

    Please answer if someone has an answer.

    Thank you

    Hi all

    I wanted to post a link to the Blog of the MSRC team that deals with this particular situation.

    This is the best place to go for updates on the issue discussed in this thread.

    http://blogs.technet.com/MSRC/

    Thank you all for the great discussion, I will certainly update the thread that more information will be available.

    Thank you, Kevin

  • KB977165 has been disabled, but it is already installed on my laptop.

    I read in the Mag Computerworld MS disabled update KB977165 due to a problem of restart.  I installed the patch big Tuesday and this one in particular has been installed on my Vista 32 bit.  I have no problem.  The problem only affects XP and that's ok because it is on mine?  Thank you, Alice

    KB977165 was not "removed" updates Automatic (only Windows XP x 86) until Wednesday, February 17, 2010 (see http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-ms10-015-and-the-alureon-rootkit.aspx).

    [KB977165 for WinXP still available at http://windowsupdate.microsoft.com for a manual install].

    It would appear that these BSODs mainly affected post-KB977165 Windows XP (x 86) computers that were already infected by W32/Alureon rootkit. If you have installed KB977165 on your Vista computer and has not experienced a BSOD afterwards, you have nothing to worry.

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • A SCREEN BLUE, COULD NOT START WITHOUT HDD FOUND, AFTER WINDOWS XP UPDATE IN FEBRUARY

    Like many of you, after the updates of February I was not able to start my laptop.  Safe mode does not work and when I tried the solution accepted since the recovery/Repair Console, I got a message saying "Setup cannot find hard disk units installed."  After hours of searching for a solution, I finally thought to it and now everything starts very well.  For those of you are having similar problems, here's what I did...

    (1) visit this site: http://techrena.blogspot.com/2008/10/how-to-install-your-own-wndows-xp-in-hp.html and follow the instructions for the BIOS.

    If this link does not work for your computer, try this one: http://techrena.blogspot.com/2009/01/integrate-your-own-drivers-or.html

    Then, insert your Windows installation CD and when it loads, press R to repair.  Then follow these instructions:

    (2) select the option for C:/Windows

    (3) type this command: CHDIR $NtUninstallKB977165$\spuninst

    Press ENTER

    (4) type this command: BATCH spuninst.txt

    Press ENTER

    (5) type this command: systemroot

    Press ENTER

    When 6) complete, type this command: exit

    (Most of the instructions above have been found on this thread: http://social.answers.microsoft.com/Forums/en-US/vistawu/thread/73cea559-ebbd-4274-96bc-e292b69f2fd1/)

    If your computer did not come with a Windows CD, you can make a CD for recovery of your choice or borrow one from a friend.  For the purposes of recovery, I don't think it's important if you have XP Home, Pro, etc., any CD will work.  There are websites online that will show you how make a recovery CD... and even provide the files... it takes just a little research.  Unfortunately I did not save the link for the site that I used: o.

    If for any reason, you are still unable to get your computer running and want to get your important files on your hard drive, I found this amazing, easy and free method.  Just download the OS and burn the ISO to a CD and then start on the CD and load the operating system (direct loading from CD - do not install) below.  You will be able to browse all your files and transfer them to a USB drive or burn them on a CD: https://help.ubuntu.com/community/LiveCD  certainly a good thing to keep on hand for future if nothing else!

    Apparently, it is a root virus (?) of some sort that causes the problem of update in the first place.  I scanned with every scanner I can think of and Nothing has been found on my system.  Does anyone know if there any instructions on how to find/get rid of the problem so that it does not happen?

    Apparently, it is a root virus (?) of some sort that causes the problem of update in the first place.  I scanned with every scanner I can think of and Nothing has been found on my system.  Does anyone know if there any instructions on how to find/get rid of the problem so that it does not happen?

    A rootkitTrojan horse, to be precise. References include:

    MSRC: Restart issues after installing MS10-015 and the Alureon Rootkit:
    http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-MS10-015-and-the-Alureon-rootkit.aspx

    Backdoor.Tidserv [AKA Win32/Alureon] and MS10-015

    Backdoor.Tidserv does a very good job in this sense, particularly with the
    latest version (TDL3), which uses an advanced rootkit technology to hide its
    presence on a system by infecting one of the low-level kernel drivers, then
    cover his tracks. While that the rootkit is active, there is no easy way to
    detect the infection, and because he's so deeply in the core, most of the users
    don't see anything wrong in the system    ... Even worse, because the infected
    driver is critical for the system boot, Windows will not start in Mode safe
    either [after installing MS10-015 on an infected machine].

    http://www.Symantec.com/Connect/Blogs/Tidserv-and-MS10-015 [emphasis]

    TDSS rootkit silently owns the net

    TDSS rootkit 3rd variant is the last member of the family of rootkit Tdss is
    spreading rapidly all over the world. While a number of rootkits is just
    developed as a proof of concept, this is not the case. TDSS rootkit is well
    known for corporate antivirus because of his goal to get full control of the
    PC infected and using them as zombies for its botnet.

    During these years, he always showed a team of people behind it, which
    always applied advanced techniques often able to bypass antirootkit software.
    In fact, this last variant could be easily identified as the stealthy rootkit
    in the wild.

    This infection is having all the best rootkit MBR, the best of
    Rustock.C and the experience of the old Tdss variants. Result is an infection that
    is quickly spreading on the net and it is without being detected by almost every security
    software and 3rd party anti rootkit software.

    .. [20 Nov-09] terms no antirootkit is able to ignore the disk filtering
    technique used by Tdss rootkit but, even if it were possible, this rootkit
    could not be detected by file size cross check because size of the
    the original and infected files are exactly the same.

    http://www.Prevx.com/blog/139/TDSS-Rootkit-Silently-Owns-the-Net.html [emphasis]

    W32/Alureon-variants are frequently 'lost' by W32/FakeAlert, etc., infections; CF. http://blogs.technet.com/mmpc/archive/2010/02/24/if-it-calls-itself-security-essentials-2010-then-it-s-possibly-fake-innit.aspx

    NOTE: KB977165 for WinXP was 'shot' on 11 February. Although he remains available for a manual installation to the Windows Update Web site, it is is more "pushed" via automatic updates.

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Windows Update Causes Massive screw-up system. Help!

    Hello world!

    I need help desperately. I use a HP Slimline desktop running Vista. I've recently updated (last Tuesday or more) using UPDATES AUTOMATIC - and my computer everything is SCREWED now.

    Essentially - I installed the update as part of the shutdown process, as I normally would. But restart my computer, it gets regarding the screen before the log-in (when he has this loading bar bit and the rest of the screen is black). Momentarily, one of two things happens:

    1. blue screen of death. The computer turns off, tells me to reboot and try to restart in Mode without failure.

    2. Startup Repair launches. I ran the diagnostic tool, but it has not detected any problem.

    So pretty much the problem is that WINDOWS WILL NOT BOOT. In the Startup Repair, it tells me there is no problem with anything - but it also TELLS me THAT SYSTEM RESTORE has BEEN STOP on my computer. I do not disable this feature!

    I have all my files stored on my external hard drive - however, my computer does not recognize this drive. My wireless internet, which is usually given if my computer is turned on or not, also does not work.

    I'm totally screwed? I mean, I've never used to before startup repair and it is confusing, mostly because I do not know why the system restore does not work. I CANNOT LAUNCH MODE without FAILURE or any other useful tips from Windows.

    What can I do? Help, please.

    the computer had McAfee installed as a trial when I bought it. Have since renewed - subscription is up to date, and no problems have been associated with him other than he identify some of my updates of windows as spyware.

    1 applications McAfee (and Norton) are known to not not upgrade (or uninstalling) itself. Even on the assumption that you have purchased a subscription before the free trial period has expired, there is a good chance that "remnants" of the trial caused the version purchased, renewed not to install and work properly.

    2. the fact that the application of McAfee is supposed to be identify legitimate (assumed) updates to Windows as"spyware" is certainly the evidence to me that the application of McAfee was not "works" and therefore led to the infection of W32/Alureon rootkit you are dealing with now.

    To be clear as possible, your problems are not due to the installed KB977165 itself, they are due the KB977165 have installed on an already infected computer. [1]

    That being said, I wouldn't bother a support of opening incident now. Follow these steps, instead:

    [You may want to print these instructions for offline viewing.]

    Personal data backup (which none should be considered 100% reliable at this point) then format the HARD disk and do a clean install of Windows.  Please note that a repair installation (upgrade AKA on-site) will NOT fix it!

    HOW to do a clean install of Vista: section "If you want to reinstall Windows Vista by running a new installation...". "of http://windows.microsoft.com/en-us/windows-vista/Installing-and-reinstalling-Windows-Vista#section_3

    Once installed the clean, you will have the equivalent of a "new computer" in order to take care of everything on the next page before connecting the machine to the internet or one local network (i.e. other computers) otherwise and before using a flash drive or the SD card that is not brand new, or has not been freshly formatted:

    4 steps to help protect your new computer before going online
         http://www.Microsoft.com/security/pypc.aspx

    NB: The McAfee free trial which is preinstalled on the computer when you bought will be reinstalled (but invalid) when Windows is reinstalled. You MUST uninstall the trial for free and download/run the removal tool from McAfee before installing updates, Windows Service Packs, or updates IE and before you reinstall your purchased version of McAfee Security Center [2].

    McAfee Consumer product removal tool
         http://download.McAfee.com/Products/Licensed/cust_support_patches/MCPR.exe

    See also:

    Measures to help prevent spyware
    http://www.Microsoft.com/security/spyware/prevent.aspx

    Measures to help prevent computer worms
    http://www.Microsoft.com/security/worms/prevent.aspx

    Avoid fake security software!
    http://www.Microsoft.com/security/antivirus/rogue.aspx

    If these procedures look too complex - and there is no shame in admitting this isn't your cup of tea - take the machine to a local, good reputation and stand-alone computer (that is, not BigBoxStoreUSA or Geek Squad) repair facility.

    ==========================
    [1] see http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-ms10-015-and-the-alureon-rootkit.aspx
    [2] professionally and personally speaking, I don't stick with McAfee Security Center (or any other application from McAfee or any Norton application) if I were you. But it's your computer...

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • How can I locate and remove malware from my Windows XP laptop?

    Last week, my Windows XP laptop (at work) became infected with one or several programs of virus and malware (including a program of Netsky).

    I ran my McAfee virus scan and removed the virus that we found.  When the Netsky pop-ups started to happen, I ran Malwarebytes' Anti-Malware (mbam - setup.exe) by following the instructions in our IT Department.  When the Netsky guest continued, I have downloaded and run W32.Netsky FixTool of Symantec 1.13.0 who stopped the guests.

    This morning, I met 'Update KB977165' failure in the startup problem.  From what I read this problem seems to be limited to "infected" computers  I just finished rerunning McAfee and Symantec Malwarebytes with no infections found.

    My COMPUTER service feels that the mbam - setup.exe should have solved the problem.  Whenever I look at using malicious software removal on the internet, I get more ads for questionable software applications than anything.

    Is there a detection and removal of malware simple tool that doesn't cost a fortune (as FREE)?

    This morning, I met 'Update KB977165' failure in the startup problem.  From what I read this problem seems to be limited to "infected" computers

    EDIT: A week later and it seems in fact that 99.9% of Windows XP users who encountered a BSOD after installing KB977165 see the effects of a W32/Alureon rootkit infection.

    The Microsoft Security Response Center (MSRC): update - restart issues after installing MS10-015 and the Alureon Rootkit
    http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-MS10-015-and-the-Alureon-rootkit.aspx

    MMPC Blog: Reboot on a machine Alureon infected problems after applying MS10-015
    http://blogs.technet.com/MMPC/archive/2010/02/17/restart-issues-on-an-Alureon-infected-machine-after-MS10-015-is-applied.aspx

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Updates to Windows Firefox blocking systems to blue screen since 09/02/10

    Since Windows 7 updates tonight (09/02/10) I have blue screen crashes when you run the Mozilla Firefox browser. It started just this evening with the latest Windows updates. I have reported this here and on Mozilla and hope that someone set quickly. If this isn't the case, I'll have to restore both of my laptops to the restore point before applying updates. We running Windows Home Premium 32 bit, and the other is WHP 64-bit, so I know the issue is not limited to one specific machine.

    Firefox bug Forum sent me this reply. Not specific to Win7, but leads me to think it may be something similar...

    This has nothing to do with your problem if you can start your computer Win7 (not Firefox) without getting a BSOD.

    CF. http://blogs.technet.com/msrc/archive/2010/02/11/restart-issues-after-installing-ms10-015.aspx

    Meanings not necessarily bear, if you experience one or more of the updates that you have installed on or after that 09 Feb-10 is at the origin of behavior...

    For individuals, please visit the Microsoft Solution Center and antivirus security for resources and tools to keep your PC safe and healthy.  If you have problems with the installation of the update itself, visit the Microsoft Update Support for resources and tools to keep your PC updated with the latest updates.

    Home page of Security Support consumer & Microsoft Update Solution Center also offer support options
    https://consumersecuritysupport.Microsoft.com/
    http://support.Microsoft.com/ph/6527#tab3

    For more information about how to contact your local Microsoft subsidiary for security update support issues, visit the International Support Web site: http://support.microsoft.com/common/international.aspx

    For enterprise customers, support for security updates is available through your usual support contacts.

  • Cannot download the updates of Windows, or indeed all Microsoft downloads

    I recently bought a refurbished Dell Optiplex DX270 with XP Pro SP3 preinstalled. About a week later your beautiful auto update destroyed and I had an endless loop. After a lot of messing around and discussion with the supplier, I decided to re - install Windows using the recovery disk because there was very little on the machine.

    This started the following problem. Whenever I try to download updates or anything from Microsoft, I get the can't access to this message.

    After another 2 days of internet seaching and following instructions for this problem, that I still get nowhere, except that I have downloaded a lot of so-called patches using my laptop, then transferred to the Dell by using a memory stick.

    I'm about fed up with this now, as the refurbished PC was supposed to speed up my work and prevent me from having to use an old PC that reboots whenever it receives the inclination (usually in the middle of creating complex spreadsheets). Instead, I spend a lot of time that I could be making money, by sorting the MS caused me problems!

    I followed the advice on another thread to run WGA and display the results in the WGA forum, only to be told by the moderator of this forum that I should ask the question in the present case. The merry-go-round continues.

    I recently bought a refurbished Dell Optiplex DX270 with XP Pro SP3 preinstalled. About a week later your beautiful auto update destroyed and I had an endless loop. After a lot of messing around and discussion with the supplier, I decided to re - install Windows using the recovery disk because there was very little on the machine...


    ...

    Visit the Microsoft Solution Center and antivirus security for resources and tools to keep your PC safe and healthy.  If you have problems with the installation of the update itself, visit the Microsoft Update Support for resources and tools to keep your PC updated with the latest updates.


    Source: http://blogs.technet.com/msrc/archive/2010/03/02/update-ms10-015-security-update-re-released-with-new-detection-logic.aspx

    What application or antivirus security suite has been installed when you met the 'loop' and was your current subscription?

    What application or anti-virus security suite is installed now and your current subscription?  What anti-spyware (other than Defender) applications?  What third-party firewall (if applicable)?

    A (another) Norton or McAfee application has already been installed on the computer (for example, a test free version comes preinstalled when you buy it and that would have been reinstalled, but invalid, when you reinstalled Windows)?

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Problem detected by MS Fixit 50378

    Today, I read about MS Fixit solution would be to analyze your system for malware can affect your system. During the execution of this solution, she came back with the message "there is a problem with this windows package install." A script required for this installation could not be executed. Contact your supplier of staff or the package of support ". When you click OK it then tells you that your computer may have a known issue with the Microsoft MS10-015 Security Bulletin. I ran MSE 1.0.1611.1 with the latest updates and it does not detect. I ran the software Windows malicious removal tools v 3.4 and he found nothing and I ran malware bytes and it found nothing. Is there a way that it prevents the thing Fixit solution of race and whether I have malware on my system which is not detected? I am running Windows XP SP3. Thank you

    The error you received indicated that there is a problem with a security patch that was installed on your PC via Windows update. This does not mean that your PC is insecure, just that this patch is in question. It is not a problem MSE or infection.
    -steve ~ Microsoft MVP Windows Live ~ Windows Live OneCare | Live Mesh | MS Security Essentials Forums moderator ~.

  • XP crashed after auto update

    XP crashed after auto update on asus netbook. No recovery method does work it IE safe mode, last known config, bootlogging etc. Systems freezes at \drivers\mup.sys


    «.. . We have revised the installation packages for MS10-015 with new logic that prevents installation on systems if there is certain abnormal conditions of the security update. These conditions may be the result of an infection by a computer such as the Alureon rootkit virus. If these conditions are detected, the update will not install, and the result will be a standard Windows Update error. If a user receives this error, they should go to the following landing page for additional help:

    http://www.Microsoft.com/Security/Updates/015 "

    Source & more: http://blogs.technet.com/msrc/archive/2010/03/02/update-ms10-015-security-update-re-released-with-new-detection-logic.aspx

    Visit the Microsoft Solution Center and antivirus security for resources and tools to keep your PC safe and healthy. If you have problems with the installation of the update itself, visit the Microsoft Update Support for resources and tools to keep your PC updated with the latest updates.

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Blue error screen: STOP 0x0000007E (0xC0000006, 0x826163AF, 0x8881AA30, 0x8881A72C), after windows update.

    Vista SP2. Norton 360. The machine is my daughter so the only thing I know that all of a sudden it was pop-up that asked to start windows. She did-online the blue screen. Device is behind a firewall and Norton should also protect viruses?

    I tried the system restore from the last point before the update. But it fails with the error code 0 x 80070017, error in the cyclic redundancy check. What should I do? How to avoid this problem in the future?

    The laptop is acer aspire 5520. No Hw changes made.

    After reboot F8 and not the error code changed 0x0000008E (0 x 00000006, 0x81162C64, 0x8AA8B8AC, 0x00000000).

    [added 24.02.] I have Norton 360 version 2.0 is installed in my laptop. Is the version of Vista SP1 (could be SP2 in any case, it's the lates awailable), Home premium if I remember correctly (how to check it for laptop computer unbootable!) No other Defender running in the laptop. ADSL modem has fireware which is activated.

    No other fancy sw... ITunes, office 2007, Ovi suite.

    Quote your full version of Windows (for example, WinXP SP3;) Windows XP 64 - bit SP2; Vista SP1; Vista 64 - bit SP2; Win7; Win7 64 bit) when you post in a forum or a newsgroup. Please do it in your next reply.

    What application or antivirus security suite is installed and your current subscription?  What anti-spyware (other than Defender) applications?  What third-party firewall (if applicable)?

    A (another) Norton or McAfee application has already been installed on the computer (for example, a free trial version which is preinstalled when you bought it)?

    Related...?

    The Microsoft Security Response Center (MSRC): Problems of reboot [i.e. STOP error 0x0000007E & BSOD] after installing MS10-015 and the Alureon Rootkit
    http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-MS10-015-and-the-Alureon-rootkit.aspx

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Stop error 0x0000007e (0xC000001D, 0 x 80537008, 0xF7A2B3B8, QxF7A2B0B4)

    I got the following Stop error 0x0000007e (0xC000001D, 0 x 80537008, 0xF7A2B3B8, QxF7A2B0B4) after installing an update and restart the computer. Check out all the options does not work IE Mode without failure. Would not access the system restore either. 1 update installed on 2010-02-17. I don't remember the name.

    CrystalBall © SEZ...

    See http://blogs.technet.com/msrc/archive/2010/02/17/update-restart-issues-after-installing-ms10-015-and-the-alureon-rootkit.aspx ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Disaster after installation of Vista updates

    I have Vista Home Premium.  Thursday night, that prompted, I installed 7 new updates. KB971468, 977165, 905866, 975560, 974145 978262 and 978251.
    After restarting my laptop was totally different.  My office had lost a lot of icons, the background has been changed, the feel is different (not better!) and all links between my programs and document, photo, music, e-mail, Favorites etc. files have disappeared, along with some of my email account profiles.
    Since the incident, it took me several hours to restore links between programs (who acted as if they had never been used before) and my files, restore all my preferences personally chosen, the default values and options and rebuild some of my e-mail account information, which had also been lost.  My office always behaves not as I'm used to with my toolbar quick launch now appearing to the right rather than the left at the bottom of the screen and after completely losing, without any sign of being able to recover, the button that clears all back on the desktop.  Also, I seem to have lost a long list of iTunes playlists.

     
    I am now in trepidation each time I turn on my laptop, as it now does not always connects correctly to each time, sometimes having to be restarted to get in.  The first attempt to connect yesterday was greeted with the message "the user profile Service has no logon.  User profile cannot be loaded.  After re-booting, the opening of session acted properly.
     
    In the 2 years I've owned my Acer laptop it has been totally reliable, until the installation of these updates.  I certainly am now very reluctant to install more Windows updates (currently 2 waiting there) until I know what caused my problems.   I rely on my laptop so that away from home for the operation of bank accounts and investment, as well as to stay in touch with many people by e-mail, so that the present situation causes me considerable problems.

    Does anyone know why this happened, please?

    What application or antivirus security suite is installed and your current subscription?  What anti-spyware (other than Defender) applications?  What third-party firewall (if applicable)?

    A (another) Norton or McAfee application has already been installed on the computer (for example, a free trial version which is preinstalled when you bought it)?

    Backdoor.Tidserv [AKA Win32/Alureon] and MS10-015

    Backdoor.Tidserv did a very good job in this sense, especially with the latest version (TDL3), which uses an advanced rootkit technology to hide its presence on a system by infecting one of the kernel low-level drivers and then cover his tracks. While the rootkit is active there is no easy way to detect the infection, and because he's so deeply in the core, most of the users can't see something wrong in the system... Even worse, because the infected driver is essential for the system boot, Windows will not start in Mode safe either [after installing MS10-015 on a machine infected].

    http://www.Symantec.com/connect/blogs/Tidserv-and-MS10-015

    TDSS rootkit silently owns the net

    TDSS rootkit 3rd variant is the last member of the Tdss rootkit family that is spreading quickly all over the world. While a number of rootkits is just developed as a proof of concept, this is not the case. TDSS rootkit is well known corporate antivirus because of his goal to get full control over the infected computers and to use them as zombies for its botnet.

    During these years, that he has always shown a team of skilled people behind it, which always applied advanced techniques often able to bypass antirootkit software. In fact, this last Variant can be easily named as the stealth rootkit in the wild.

    This infection is having all the best of MBR rootkit, the best of the Rustock.C and the experience of the old Tdss variants. The result is an infection that spreads quickly on the Internet and it is without being detected by almost all security software and 3rd party anti rootkit software.

    .. [20 Nov-09] terms no antirootkit is able to bypass disk filtering technical used by Tdss rootkit but, even if it were possible, this rootkit could not be detected by file size cross check because the size of infected files and original file are exactly the same.

    http://www.prevx.com/blog/139/TDSS-rootkit-silently-owns-the-net.html

    ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

  • Update Windows computer 1 month just trashed

    The recent update of windows just trashed the OS.  Very nice work Microsoft!  That's why I never run the updates.  They do more harm than good.  Unfortunately I did not know that the automatic update (download and installation) has been activated. Like I said, it's a 1 month old computer and I did not realize its implementation in this way.   I've changed that! Note to all: turn off the automatic update if you want a decent computer and use a decent antivirus.  No need for all the Microsoft of all updates. I used XP service pack 2 for 5 years without an update.

    Please see: Restart issues after installing MS10-015 and free Microsoft Update Support Carey Frisch

  • How to remove the alureon rootkit

    so my pc is still down because of the ms10-015 update a few weeks ago Ive tried to repair in following some of the solutions that have been posted in another topic here nothing helps... so now that windows has determined the issue was the alureon rootkit how can I remove the infection if I can't open a windows session to scan my computer?  I tried to scan with some antivirus programs on ultimate boot cd with no luck it is said he had some missing files... y at - there another program I can boot from a cd and scan and remove this rootkit on my pc? and how long until windows comes with a fix for this?

    so my pc is still down because of the ms10-015 update a few weeks ago Ive tried to repair in following some of the solutions that have been posted in another topic here nothing helps... so now that windows has determined the issue was the alureon rootkit how can I remove the infection if I can't open a windows session to scan my computer?  I tried to scan with some antivirus programs on ultimate boot cd with no luck it is said he had some missing files... y at - there another program I can boot from a cd and scan and remove this rootkit on my pc? and how long until windows comes with a fix for this?

    Hello

    the only solution is to install MSE and scan the comp with the AV files and I'm updated

    http://www.Microsoft.com/security_essentials/

    prior to this, run the microsoft malicious software removal tool

    http://www.Microsoft.com/security/malwareremove/default.aspx

    or scanning with the onecare scanner, link below in the signature

    In addition, Microsoft has released a fix for this, update your windows to get the new updates

    Good day
    Scan with OneCare + 50 tips Windows 7even + tormented by the center of privacy? DELETE this Blog search & response threat Sysinternals Live Tools + TRANSLATOR+ Photosynth + Microsoft Security + Microsoft SUPPORT + Of Live Labs PIVOT + Microsoft Live Labs + Office 2010 beta + get Windows LIVE!

Maybe you are looking for