Microsoft Malware Protection Center

Threat Research & Response Blog

Browse by Tags

  • Blog Post: Operation b107 - Rustock Botnet Takedown

    Just over one year ago, Microsoft- with industry and academic partners- utilized a novel combination of legal and technical actions to take control of the Win32/Waledac botnet as the first action in Project MARS (Microsoft Active Response for Security).   Today, a similar action has had its legal...
  • Blog Post: MSRT January ‘11: Win32/Lethic

    Win32/Lethic is a trojan that communicates with a remote server to distribute spam. Variants of Lethic install executable files with varied file names such as “ shelldm.exe ” or “ xcllsx.exe ”. The malware loads as a process when Windows starts. The trojan establishes a connection to remote servers using...
  • Blog Post: Namaskar from New Delhi - AVAR 2008

    Recently I returned from the Association of anti-Virus Asia Researchers Conference (known as AVAR 2008 ) in New Delhi, India. Microsoft was a Gold Sponsor of the conference, at which there were a number of interesting presentations. This was also a great opportunity to meet other researchers in the anti...