Worldtradecenter.name

Restaurant.com Dining Certificates

Free Coupons - Free Ring tones & Wallpaper - Sharerent - Dine.com - Google Maps - Affiliate Programs - Classified Ads

Auctions

Electronics

Entertainment

Event Tickets

Flowers

Gifts

Love & Dating

Movies

Music

Shopping Malls

computer, software, antivirus, anti-virus, virus alert.

W32/Lovsan.worm is a Medium-On-Watch Internet Worm (Other names: Blaster, MSBlast)

** HIGH VIRUS ALERT - 'Bugbear' Worm**

McAfee.com Oil Change Online

McAfee.com

McAfee.com SpamKiller

Save over 30% on McAfee.com VirusScan Online

Save 15% on McAfee.com Personal Firewall

Save 15% on McAfee.com Privacy Services

** VIRUS ALERT - W32/MyLife.b@MM **

** VIRUS ALERT - W32/Goner@mm **

** VIRUS ALERT - W32/Fbound.c@MM **

Where can I get the latest Anti-Virus software?

Protect Your PC from Viruses with the McAfee.com VirusScan!

Scan your PC for viruses now!

Virus-Protection, PC Maintenance, and more!

Virus Protection and PC Maintenance Tools

McAfee.com Clinic

This worm spreads by exploiting a recent vulnerability in Microsoft Windows. The worm scans random ranges of IP addresses on TCP port 135. Discovered systems are targeted. Exploit code is sent to those systems, instructing them to download and execute the file MSBLAST.EXE from a remote system via TFTP.

Once run, the worm creates the registry key (may be either of the following):

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
CurrentVersion\ Run "windows auto update" = msblast.exe

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
CurrentVersion\ Run "windows auto update" = msblast.exe I just want to say LOVE YOU SAN!! bill

Indications of Infection:

Presence of unusual TFTP files

Presence of the file msblast.exe in the WINDOWS SYSTEM32 directory

Error messages about the RPC service failing (causes system to reboot)

Worldtradecenter.name | Add your site to our Store Directory | Advertisement | Site Map