Microsoft Security Update for Windows
Key Details of Microsoft Security Update
- Security patch to prevent Blaster Worm virus
- Last updated on 2/29/2024
- There have been 2 updates
- Virus scan status:
Clean (it's extremely likely that this software program is clean)
Developer's Description
This worm scans a random IP range to look for vulnerable systems on TCP port 135. The worm attempts to exploit the DCOM RPC vulnerability patched by MS03-026.
Once the Exploit code is sent to a system, it downloads and executes the file MSBLAST.EXE from a remote system via TFTP. Once run, the worm creates the registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "windows auto update" = msblast.exe I just want to say LOVE YOU SAN!! bill
Symptoms of the virus: Some customers may not notice any symptoms at all. A typical symptom is the system is rebooting every few minutes without user input. Customers may also see:
- Presence of unusual TFTP* files
- Presence of the file msblast.exe in the WINDOWS SYSTEM32 directory
To detect this virus, search for msblast.exe in the WINDOWS SYSTEM32 directory or download the latest anti-virus software signature from your anti-virus vendor and scan your machine.
Explore More
Complete Protection System - System Scanner
Trial versionReturnil System Safe Free 2011
FreeNo Autorun
FreeNo Autorun (64-Bit)
FreeProtea AntiVirus Tools (CA eTrustT, ESET NOD32 and Norman Virus Control version)
Trial versionHandy Diary
PaidHandy Password
PaidFOX Password Safe
PaidHandy Expense
PaidPicturePassword
PaidvisKey
PaidBluePoint Security 2010
Trial version