|
特 徴:
This worm exploits certain vulnerabilities to propagate. It takes advantage of the following Windows vulnerabilities:
- Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability
- IIS5/WEBDAV Buffer Overflow vulnerability
- RPC Locator Vulnerability
For more information about these Windows vulnerabilities, please refer to the following Microsoft Web pages:
It also attempts to log on to systems using a list of user names and passwords. It drops a copy of itself into accessible machines.
This worm has backdoor capabilities. It executes commands sent in via Internet Relay Chat (IRC) and can be used to launch as denial of service attack against specified target sites.
It terminates certain antivirus processes and files dropped by other malware. It steals the CD keys of popular game applications. It also modifies the HOST file so that any access to specific antivirus Web sites is redirected to the local machine.
It runs on Windows 2000 and XP.
このウイルスに関しては次の情報も参照してください。
対応方法
詳細
感染状況
情報公開日: 2004/04/27
ウイルスデータベース検索
このウイルス情報に関して. こちらのアンケートにお答えください。
|
