avast not decteted Blaster.F Worm

avast not decteted Blaster.F Worm :frowning: :o and worm can turn off VRDB!!!

avast should be able to dectect it, but if as you say it can disable VRDB then it could also disable avast.

Blaster gets into a system because it has a security vulnerability that although MS patched in 2003, the computer hasn’t been patched. Leave your door open and you will probably get burgled. There are likely to be other vulnerabilities if patches from 2003 haven’t been installed, regular visits to windowsupdate are a must.

W32.Blaster.F.Worm is a worm that exploits the DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026) using TCP port 135. The worm targets only Windows 2000 and Windows XP computers. While Windows NT and Windows 2003 Servers are vulnerable to this exploit (if not properly patched), the worm is not coded to replicate to those systems. This worm attempts to download the Enbiei.exe file into the %Windir%\System32 folder, and then execute it.