I made the mistake of using IE9 to visit this website (I always use Firefox) and COMODO Firewall as well as Windows Defender detected tons of suspicious activity. It mentions Alureon.FO. No clue which advertisement did it (I figure it was one of the ads) but it certainly did it. Just a heads up everyone. Now running scans with AVG, HouseCall, and Malwarebytes to see if everything was blocked (think COMODO and Windows Defender blocked it.) Funny thing is AVG hasn't said a word about it, but I'll be running a manual scan.
All I know so far is that it created a file named C:\TEST\Sample.exe, then deleted itself. It attempted to elevate it's privileges but was stopped by UAC (UAC may be annoying to many of you folks but it's times like this that I'm thankful that I keep Windows 7 UAC on the strictest level.)
EDIT: Malwarebytes found Rootkit.TDSS.EXPD1 located in the %TEMP% directory. I was able to successfully remove it and luckily it was not able to get through any of my defenses. So it didn't execute or anything.
EDIT2: Windows Defender finished, came up clean, still running AVG, Spybot, going to also run TDSSKiller.exe.
EDIT3: TDSSKiller didn't find anything. Neither did SpyBot. AVG still running.
EDIT4: AVG came up clean on both Windows 7 and Windows 8. Guess I can stop worrying now. Never using IE again.
All I know so far is that it created a file named C:\TEST\Sample.exe, then deleted itself. It attempted to elevate it's privileges but was stopped by UAC (UAC may be annoying to many of you folks but it's times like this that I'm thankful that I keep Windows 7 UAC on the strictest level.)
EDIT: Malwarebytes found Rootkit.TDSS.EXPD1 located in the %TEMP% directory. I was able to successfully remove it and luckily it was not able to get through any of my defenses. So it didn't execute or anything.
EDIT2: Windows Defender finished, came up clean, still running AVG, Spybot, going to also run TDSSKiller.exe.
EDIT3: TDSSKiller didn't find anything. Neither did SpyBot. AVG still running.
EDIT4: AVG came up clean on both Windows 7 and Windows 8. Guess I can stop worrying now. Never using IE again.
Last edited: