What is the TDL4 MBR Rootkit Bootkit Virus Alureon TDSS?

The TDL4 and it variants have been around for the last couple of years. It is an especially difficult virus / rootkit / bootkit to remove. It is estimated that the TDL4 Bootkit is part of a large worldwide Botnet infection of over 4 million computers. The bad guys are selling development kits to other cyber criminals so there are many variations out in the wild.

Here is some more technical information concerning how it works http://blog.eset.com/2011/10/18/tdl4-rebooted

How to remove the TDL4 and its variants, but because it is changing every few days you may need to run several of the following:

Kaspersky - http://support.kaspersky.com/viruses/solutions?qid=208280748

Avast - aswMBR.exe - http://public.avast.com/~gmerek/aswMBR.htm

Hitman Pro - http://hitmanpro.wordpress.com/2011/12/23/hitmanpro-3-6/

Bit Defender BDRemoval Tool - http://www.malwarecity.com/blog/new-removal-tools-for-the-tdss-family-of-crimeware-1221.html

Video - How to remove TDL4 MBR Bootkit Alureon TDSS and repair its damage to your MBR Master Boot Record - http://www.youtube.com/watch?v=08OWh3aVpRI

Comodo Killswitch - diagnose all running applications and stop those pesky Malware programs - http://processhacker.sourceforge.net/forums/viewtopic.php?f=1&t=113#p341