W32/Blaster.A
| W32/Blaster.A |
Destructivity:  Spreading:  Overall risk: 
|
| • Detected by virus detection files published: 8/12/2003 | • Type: Worm |
| • Virus characteristics first published: 8/12/2003 | • Spreading mechanism: Network |
| • Virus characteristics latest update: 9/20/2005 | • Overall risk: Medium |
| • Alias: MSBlast.A | • Payload: Performs a denial of service attack |
| • Infection type: Microsoft Windows 95/98/98 SE/ME/NT 4/2000/XP/2003/Vista |
| Virus type |
Spreading mechanism |
Destructivity and payload |
Additional descriptions |
Detection and removal |
||||||||||
|
The worm checks the time on the infected computer. If the date is the 16th or higher of any month; or if the date is lower than 16th, but month is higher than August, the worm will initiate an attack on Windowsupdate.com, sending a lot of packets on port 80. This attack takes place in a separate thread; the worm's original infection routine is still running as well. |
||||||||||||||