Publisher's Description
From Microsoft:
The Microsoft Product Support Services Security Team is issuing this alert to inform customers about a new worm named W32.Blaster.Worm which is spreading in the wild. This virus is also known as: W32/Lovsan.worm (McAfee), WORM_MSBLAST.A (Trendmicro), Win32.Posa.Worm (Computer Associates). Best practices, such as applying security patch MS03-026 should prevent infection from this worm.
This worm scans a random IP range to look for vulnerable systems on TCP port 135. The worm attempts to exploit the DCOM RPC vulnerability patched by MS03-026.
Once the Exploit code is sent to a system, it downloads and executes the file MSBLAST.EXE from a remote system via TFTP. Once run, the worm creates the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "windows auto update" = msblast.exe I just want to say LOVE YOU SAN!! bill
Symptoms of the virus: Some customers may not notice any symptoms at all. A typical symptom is the system is rebooting every few minutes without user input. Customers may also see:
- Presence of unusual TFTP* files
- Presence of the file msblast.exe in the WINDOWS SYSTEM32 directory
To detect this virus, search for msblast.exe in the WINDOWS SYSTEM32 directory or download the latest anti-virus software signature from your anti-virus vendor and scan your machine.
More Products to Consider
-
Detect and quickly remove malicious threats to your computer.DownloadInstalled
Smart Install -
Scan and remove the deepest malware that your antivirus/antiSpy...DownloadInstalled
Smart Install -
Search your hard disk and Registry for threats to your security...DownloadInstalled
Smart Install -
Protect your PC against the latest viruses and spyware.DownloadInstalled
Smart Install -
Protect your computer from viruses and malicious programs.DownloadInstalled
Smart Install -
Provide secure, anonymous, and private browsing on Wi-Fi hotspo...DownloadInstalled
Smart Install -
Detect and remove spyware, malware, rootkits, trojans, hijacker...DownloadInstalled
Smart Install -
Protect your personal computer against virus and spyware attack...DownloadInstalled
Smart Install -
Login everywhere automatically, so you'll never need to remembe...DownloadInstalled
Smart Install -
Detect and eliminate viruses, get free protection for home user...DownloadInstalled
Smart Install -
Protect PC from viruses, Trojans, worms, buffer overflows, zero...DownloadInstalled
Smart Install -
Guard your Windows PC from malware and Internet based attacks.DownloadInstalled
Smart Install -
Download and exchange files safely, enjoy games and Web surfing...DownloadInstalled
Smart Install -
Secure your connection to public Wi-Fi networks with premium VP...DownloadInstalled
Smart Install -
Protect your Windows PC from online threats.DownloadInstalled
Smart Install -
Protect computer against viruses, Trojans, adware, spyware, or ...DownloadInstalled
Smart Install -
Protect your PC against viruses, spyware, Trojans, worms, rootk...DownloadInstalled
Smart Install -
Track and analyze Web sites ranking in graphical form.DownloadInstalled
Smart Install - Protect your system with firewall from hacker attacks.Download
Installed
Smart Install - Remove infections of the W32.Nimda.A@mm (Nimda) virus.Download
Installed
Smart Install - Track and prioritize your technical support calls.Download
Installed
Smart Install -
Search and remove unwanted adware and toolbars from your comput...DownloadInstalled
Smart Install -
Securely backup and store your files on the cloud.DownloadInstalled
Smart Install - Geographically track web users in ASP.Download
This download is served from an external site
closeNOTICE: This link will open a connection to a third-party site. CNET cannot ensure the security of software that is hosted on external sites.
Sponsored ProductsInstalled
Smart Install
