Microsoft added following MS10-046 related threats to August version of MSRT: Win32/Stuxnet, Win32/CplLnk, Worm:Win32/Vobfus.gen!A, Worm:Win32/Vobfus.gen!B, Worm:Win32/Vobfus.gen!C, Worm:Win32/Vobfus!dll, Worm:Win32/Sality.AU, Virus:Win32/Sality.AU, and TrojanDropper:Win32/Sality.AU.
“Former blog posts have mentioned threats like Stuxnet, Vobfus, and Sality, which have incorporated the use of CVE-2010-2568 vulnerability fixed by 046 bulletin. It’s clear that an increasing number of malware families are incorporating this vulnerability. One of the threats using this vul is Sality. It’s a virus (a.k.a file infector) and has potential to infect many files on computer, making disinfection tricky and time consuming, since in many cases it must repair, not simply delete, troubled files,” informs MMPC.
Recall MSRT is a “cleanup” tool only, and for real-time protection, a full AV product such as Microsoft Security Essentials is needed.