http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspxThis week you may have heard or read about a new rootkit that has been reported in the wild that uses the Master Boot Record (MBR) as its Auto-Start Entry Point (ASEP). The malware is being called VirTool:WinNT/Sinowal.A . First we want to let you knowen-USTelligent Evolution Platform Developer Build (Build: 5.6.50428.7875)http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspx#3230656Sun, 26 Apr 2009 19:37:34 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3230656Travis Spencer - Software Engineer<p>On day four and five of my first RSA Conference, I spent most of the day going to lectures about current and future hacks that are being launched against businesses by cyber criminals. I learned a lot, because, as I've...</p> <img src="http://blogs.technet.com/aggbug.aspx?PostID=3230656" width="1" height="1">http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspx#3146472Mon, 03 Nov 2008 17:12:16 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3146472Harry Waldron at myITforum.com<p>Users should ensure their AV protection is up-to-date , as a new variant of this highly stealth rootkit</p> <img src="http://blogs.technet.com/aggbug.aspx?PostID=3146472" width="1" height="1">http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspx#3146470Mon, 03 Nov 2008 17:12:11 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3146470Harry Waldron - Microsoft MVP Blog<p>Users should ensure their AV protection is up-to-date , as a new variant of this highly stealth rootkit</p> <img src="http://blogs.technet.com/aggbug.aspx?PostID=3146470" width="1" height="1">http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspx#3140399Wed, 22 Oct 2008 18:53:34 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3140399The Old New Thing<p>Playing with the free-form-text field.</p> <img src="http://blogs.technet.com/aggbug.aspx?PostID=3140399" width="1" height="1">http://blogs.technet.com/b/antimalware/archive/2008/01/10/mbr-rootkit-virtool-winnt-sinowal-a-report.aspx#2733952Fri, 11 Jan 2008 05:15:35 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:2733952Windows Update Installer » MBR rootkit: VirTool:WinNT/Sinowal.A report<p>PingBack from <a rel="nofollow" target="_new" href="http://windows-update-installer.blogyblog.info/?p=4076">http://windows-update-installer.blogyblog.info/?p=4076</a></p> <img src="http://blogs.technet.com/aggbug.aspx?PostID=2733952" width="1" height="1">