FREE Registration is required
Overview:
The Microsoft Product Support Services Security Team is issuing this alert to inform customers about a new worm named W32.Blaster.Worm which is spreading in the wild. This virus is also known as: W32/Lovsan.worm (McAfee), WORM_MSBLAST.A (Trendmicro), Win32.Posa.Worm (Computer Associates). Best practices, such as applying security patch MS03-026 should prevent infection from this worm. This worm scans a random IP range to look for vulnerable systems on TCP port 135. The worm attempts to exploit the DCOM RPC vulnerability patched by MS03-026. Once the Exploit code is sent to a system, it downloads and executes the file MSBLAST.EXE from a remote system via TFTP. Once run, the worm creates the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "windows auto update" = msblast.exe I just want to say LOVE YOU SAN!! bill Symptoms of the virus: Some customers may not notice any symptoms at all. A typical symptom is the system is rebooting every few minutes without user input. Customers may also see: Presence of unusual TFTP* files Presence of the file msblast.exe in the WINDOWS SYSTEM32 directory To detect this virus, search for msblast.exe in the WINDOWS SYSTEM32 directory or download the latest anti-virus software signature from your anti-virus vendor and scan your machine.
(Is this item miscategorized? Does it need more tags? Let us know.)
| Format: | Software | ||
| Date: | Aug 2003 | Version: | MS03-026 |
| License: | Update | ||
| Platform: | Windows | ||
| System Req: | Windows XP, Windows 2000, Windows Server 2003, Windows NT 4.0, NT 4.0 Terminal Services Edition |
People who downloaded this item also downloaded
Top results from Antivirus Software
White Papers, Webcasts, and Resources
- Windows Phones and Unified Communications MicrosoftGain a more solid understanding of UC, why it’s essential for your business today, and what makes Windows phones ideal for secure UC environments.
- Enterprise and Web 2.0 application support in a modern mainframe environment IBMSee how IBM WebSphere Portal software can help you develop a Web presence based on individual needs while unlocking value for customers and employees.
- Work Smarter! Deliver Portal and Collaboration Solutions for smarter telecommunications IBMSee how leading telecommunications providers now use Web 2.0, digital media, and social networking technologies to transform their service offerings.
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Achieving Cost and Resource Savings with Unified Communications
-
Find out how to maximize your communications investments with Unified Communications.
- Click to download >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
-
-
Smart Tech
Expert advice on innovations in healthcare and the green technologies that make it happen.
Find out more
-
Smart Business
Discussion and advice on management issues that revolve around making your world smarter and more useful.
More Smart Advice
-
Smart People
The best and worst moves in the management and strategy trenches.
Learn More
