Latest statistics from MS Malicious Software Removal Tool

50% infected:

Of the 4 million computers cleaned by the company's MSRT (malicious software removal tool), about 50 percent (2 million) contained at least one backdoor Trojan.

Rootkits down:

Despite increased industry interest in Windows rootkits in 2005, Microsoft found a surprising 50 percent reduction in the attacks, which employ stealthy tricks to maintain an undetectable presence on infected computers.

Mass mailing worms common:

Not so surprising is the data surrounding malware that employs social engineering tactics, especially those that lure targets via e-mail or P2P (peer-to-peer) networks. "For example, in the case of both the MSRT and Microsoft Windows OneCare, approximately 20 percent of computers cleaned were infected with a mass-mailing worm," Microsoft explained.

Turkish computers disproportionately affected:

Data collected by the MSRT suggests that computers that use certain languages are more likely to be infected with malicious software than others. For example, when the disinfection figures from an operating system language are normalized with the appropriate number of tool executions of that same language, Microsoft found that 16 percent of computers cleaned by the MSRT are from Turkish language computers.

New variants of backdoor Trojans maintain bot networks:

Backdoor Trojans: The first half of 2006 showed a significant number of new backdoor Trojans. A large number of those belong to bot families, such as Win32/Rbot and Win32/Sdbot. This trend is consistent with anecdotal industry knowledge; owners of bot networks are continually creating and delivering new variants of their bots to maintain their bot networks, and to evade detection by anti-malware products.

EDIT: Forgot the link for this one:

http://www.eweek.com/article2/0,1895,2036439,00.asp

MS Malicious Software Removal Tool may not be perfect but it is helping
in cleaning up some of the infected systems. :slight_smile:

Unfortunately only 4 million users took advantage of the tool, a very small number of the tens of millions of windows users out there and many of those are probably in need of a good system clean. So I suspect the true infection stats may be worse.

There will be a small number who feel they are capable of keeping their systems clean without this help, but it can’t possibly be the balance above the 4 million who did use the tool.

I get the updated MSR tool monthly along with other critical updates (and any optional ones which look useful, very rare).

Anyone know, does it alert the user if it turns up anything?

I’m not sure if it runs automaticaly and alerts the user or not, I thought you had to run it manually.

Anyways to run it manually go to Start, Run, then type in MRT.

According to the MS Update, supposedly it auto-runs once after installing.

Microsoft says it autoruns and then removes (or becomes inactive) once to go along with the updates. And the statistics show how many people aren’t protected or using the Windows Update built i feature … Kinda sad actually. It seems the individual people are being proven again and again the weakest link in healthy PC computing … :-\