1. /
  2. Security Response/
  3. W32.Zindos.A

W32.Zindos.A

Risk Level 2: Low

Discovered:
July 27, 2004
Updated:
February 13, 2007 12:25:47 PM
Also Known As:
W32/Zindos.worm [McAfee], WORM_ZINDOS.A [Trend Micro], W32/Zindos-A [Sophos], Win32.Zindos.A [Computer Assoc, Worm.Win32.Zindos.A [Kaspersky
Type:
Worm
Systems Affected:
Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP


W32.Zindos.A is a worm that performs a Denial of Service (DoS) attack against the domain, microsoft.com. The worm spreads through the backdoor that Backdoor.Zincite.A opens on TCP port 1034.

Due to bugs in the code, when a system that is infected with Backdoor.Zincite.A becomes infected with W32.Zindos.A, an infinite infection loop is entered, with each infection of W32.Zindos.A re-infecting the system. This may cause the system to become slow and unresponsive.

Note: Backdoor.Zincite.A is a backdoor Trojan horse that W32.Mydoom.M@mm drops.


Antivirus Protection Dates

  • Initial Rapid Release version July 27, 2004
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version July 27, 2004
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date July 28, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 3 - 9
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Moderate

Damage

  • Damage Level: Medium

Distribution

  • Distribution Level: Medium

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report, Volume 17
Symantec DeepSight Screensaver