W32.Lovgate.R@mm is a variant of W32.Lovgate@mm
. It is also a mass-mailing worm that attempts to email itself to all the email addresses that it finds on the computer.
W32.Lovgate.R@mm spreads through the DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026
) using TCP port 135.
The "sender" of the email is spoofed, and the subject line and message body of the email vary.
This threat is written in the C++ programming language and is compressed with JDPack and ASPack.
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.