Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    December 2014
    S M T W T F S
    « Nov    
     123456
    78910111213
    14151617181920
    21222324252627
    28293031  
  • Email Subscription

  • About Us


    It seems that a recent Windows “patch” has been the cause of a series of blue screen crashes after users install a so-called Microsoft security update. The said patch, MS10-015, is said to be linked to this system malfunction, which leaves user systems with blue-screen-of-death (BSoD) errors.

    According to an entry in the official Microsoft Blog, the distribution of the said Windows Update has since been suspended.  However, the company also issued a statement that the cause of the BSoD error may be malware related.

    Trend Micro engineers found that TROJ_TDSS.AJD patches atapi.sys, which turns the .SYS file into a rootkit detected as TROJ_TDSS.SME. This then causes updated systems to crash right after installing the security update.

    Known for its ability to stealthily operate, TDSS variants are known malware components whose final payload comprises the malware’s careful, unseen operation. The discovery of new TROJ_TDSS.AJD samples even triggered Microsoft to release two important updates regarding the issue—Update—Restart Issues After Installing MS10-015 and the Alureon Rootkit and Restart Issues on an Alureon-Infected Machine After MS10-015 Is Applied to prevent further occurrences of BSoD crashes.

    Trend Micro product users should not worry, however, as Smart Protection Network™ protects them from similar occurrences.

    Update as of February 22, 2010, 1:17 a.m. (GMT +8:00):

    Please note that TROJ_TDSS.AJD has recently been renamed to TROJ_TDSS.SMG.

    Update as of February 23, 2010, 3:23 a.m. (GMT +8:00):

    Please note that TROJ_TDSS.SME has recently been renamed to PE_TDSS.MTR, which is now detected by this tool.





    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   del.icio.us   StumbleUpon






     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice