98 entries found. Displaying page 1 of 5.
Updated on Jan 08, 2005
Win32/Msblast.A is a network worm that can spread to a computer running Microsoft Windows 2000 or Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against windowsupdate.com if the day of the month is greater than 15 or the...
Alert level: severe
Updated on Apr 11, 2011
The Win32/Msblast family of network worms exploit a Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability on Microsoft Windows 2000 and Windows XP systems. The worm may also attempt denial of service (DoS) attacks on some server sites, or create a backdoor program that...
Alert level: high
Updated on Jan 31, 2005
Win32/Msblast.I is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. The worm attempts to spread using TCP port 135, UDP port 69, or TCP port 4444. The worm also drops a component that opens a...
Alert level: severe
Updated on Feb 03, 2005
Win32/Msblast.B is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. The worm performs a denial of service (DoS) attack against windowsupdate.com, if the day of the month is greater than 15 or...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.C is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against windowsupdate.com, if the day of the month is greater than 15 or the...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.D is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against windowsupdate.com, if the day of the month is greater than 15 or the...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.E is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against kimble.org, if the day of the month is greater than 15 or the month is...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.F is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against tuiasi.ro, if the day of the month is greater than 15 or the month is...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.G is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 installed. It performs a denial of service (DoS) attack against windowsupdate.com, if the day of the month is greater than 15 or if the month is...
Alert level: severe
Updated on Jan 08, 2005
Win32/Msblast.H is a network worm that can spread to a computer running Microsoft Windows 2000 and Windows XP that does not have Security Update MS03-026 or MS03-039 installed. It performs a denial of service (DoS) attack against windowsupdate.com, if the day of the month is greater than 15 or the...
Alert level: severe
Updated on May 13, 2005
Win32/HLLW.Nachi.A is a network worm that targets Microsoft Windows 2000 and Windows XP. It propagates by exploiting several known vulnerabilities. It tries to download and apply security updates if it detects the operating system is a certain language version. It also tries to remove the MSBlast...
Alert level: severe
Updated on Apr 11, 2011
Backdoor:Win32/Rbot.DF is a backdoor Trojan that connects to an IRC server to receive commands from remote attackers. Commands could include instructions to spread to other computers via open network shares or by exploit of a security vulnerability, or to launch a denial of service (DoS) attack...
Alert level: severe
Updated on Apr 11, 2011
Backdoor:Win32/Rbot.DG is a backdoor Trojan that connects to an IRC server to receive commands from remote attackers. Commands could include instructions to spread to other computers via open network shares or by exploit of a security vulnerability, or to launch a denial of service (DoS) attack...
Alert level: severe
Updated on Feb 02, 2005
Backdoor:Win32/Gaobot.X is a backdoor Trojan that connects to an IRC server to receive commands. The Trojan can spread to other machines by exploiting the vulnerabilities described in Microsoft Security Bulletins MS03-001, MS03-007, or MS03-026. It can also spread to machines with weak passwords.
Alert level: severe
Updated on Jan 10, 2005
Win32/Gaobot.ZG is a network worm that can spread across network connections by breaking weak passwords or by exploiting vulnerabilities described in multiple Microsoft Security Bulletins. The worm has backdoor capabilities, which allows attackers to control the infected computer using IRC...
Alert level: severe
Updated on May 17, 2005
Worm:Win32/Gaobot.RW is a worm that can spread across network connections by breaking weak passwords or by exploiting vulnerabilities described in Microsoft Security Bulletins MS03-001, MS03-007, or MS03-026. After the Trojan copies and runs itself on a remote computer, it connects to an IRC server...
Alert level: severe
Updated on May 16, 2005
Worm:Win32/Gaobot.CK is a worm that can spread across network connections by breaking weak passwords or by exploiting vulnerabilities described in Microsoft Security Bulletins MS03-001, MS03-007, or MS03-026. After the Trojan copies and runs itself on a remote computer, it connects to an IRC server...
Alert level: severe
Updated on May 16, 2005
Win32/HLLW.Gaobot.DB is a worm that can spread across network connections by breaking weak passwords or by exploiting vulnerabilities described in Microsoft Security Bulletins MS03-001, MS03-007, MS03-026, or MS03-049. After the Trojan copies and runs itself on a remote computer, it connects to an...
Alert level: severe
Updated on Sep 14, 2007
Worm:Win32/Pykspa.A is a worm that sends instant-messages on behalf of a user logged into Skype, an Internet chat client application. Messages sent contain a link to a remote Web site hosting a copy of the worm. Worm:Win32/Pykspa.A terminates processes, and redirects Web browser connections for...
Alert level: severe
Updated on Mar 10, 2005
Win32/Gaobot.ZN.worm is a backdoor Trojan that can spread across network connections by breaking weak passwords or by exploiting vulnerabilities described in Microsoft Security Bulletins MS01-059, MS02-061, MS03-001, MS03-007, MS03-026, or MS03-049. After the Trojan copies and runs itself on a...
Alert level: severe