Lansing Community College implemented Forefront in Summer 2011. Starting in 2011 Q4 Forefront was detecting and reporting Alureon infections. Forefront was not able to quarantine nor remove the malware. Currently our solution is to use a couple of anti-malware products in tandem to completely remove Alureon (certain variants).
· Forefront client, server, and reporting server are 2010.
· Clients are configured via AD/GP for daily, quick scans and weekly, full scans.
· Signatures are updated before all scans.