1. Symantec/
  2. Security Response/
  3. W32.Linkbot.M


Risk Level 1: Very Low

May 21, 2005
May 21, 2005 7:59:07 AM
Also Known As:
W32/Poebot-KF [Sophos], W32/Poebot-KO [Sophos], W32/Poebot-LR [Sophos], W32/Poebot-LQ [Sophos], W32/Poebot-MR [Sophos], W32/Poebot-MS [Sophos], W32/Poebot-MV [Sophos]
Infection Length:
90,624 bytes
Systems Affected:
CVE References:
W32.Linkbot.M is a worm that exploits the Microsoft Windows LSASS Buffer Overrun Vulnerability (BID 10108) in order to propagate. It also creates a back door on the compromised computer.

Antivirus Protection Dates

  • Initial Rapid Release version May 21, 2005
  • Latest Rapid Release version December 8, 2017 revision 022
  • Initial Daily Certified version May 21, 2005
  • Latest Daily Certified version December 9, 2017 revision 001
  • Initial Weekly Certified release date May 24, 2005
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Hiroshi Shinotsuka

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube