1. Symantec/
  2. Security Response/
  3. W32.Shelp


Risk Level 2: Low

May 17, 2005
February 13, 2007 12:39:01 PM
Also Known As:
Bloodhound.Exploit.8, Win32.Shelp.A [Computer Associ, Net-Worm.Win32.Shelp.a [Kasper, Exploit-MS04-011.gen [McAfee], WORM_SHELP.A [Trend Micro]
Systems Affected:

W32.Shelp is a worm that propagates by exploiting the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (as described in Microsoft Security Bulletin MS04-011).

Note: Virus definitions dated prior to May 18, 2005 detect this risk as Bloodhound.Exploit.8.

Antivirus Protection Dates

  • Initial Rapid Release version May 18, 2005
  • Latest Rapid Release version August 8, 2016 revision 023
  • Initial Daily Certified version May 18, 2005
  • Latest Daily Certified version August 9, 2016 revision 001
  • Initial Weekly Certified release date May 18, 2005
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Rodney Andres

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube