W32.Blaster.Worm (blaster virus) exploits the DCOM RPC vulnerability. This is described in Microsoft Security Bulletin MS03-026, and a patch for the Blaster virus / worm is available there. You must download and install the patch. In many cases, you will need to do this before continuing with the removal instructions. If you are not able to remove the blaster worm infection or prevent msblast re-infection using the following instructions, first download and install the MSblast / Blaster patch.

• Additional MSblast / Blaster virus information, and an alternate site from which to download the Microsoft patch is available in the Microsoft article What You Should Know About the MSblast / Blaster Worm and Its Variants.
• Because of the way the MSblast / Blaster virus works, it may be difficult to connect to the Internet to obtain the MSblast / Blaster patch, MSblast / Blaster definitions, or MSblast / Blaster removal tool before the MSblast / Blaster worm shuts down the computer. It has been reported that, for users of Windows XP, activating the Windows XP firewall may allow you to download and install the MSblast / Blaster patch, obtain virus definitions, and run the MSblast / Blaster removal tool. This may also work with other firewalls, although this has not been confirmed.

Follow these Steps to remove the MSblast / Blaster virus

• Step 1, Patch your computer
• Fix for worm MSblast / Blaster
  
  Step 2, Disable system restore
• Disable system restore
  
  Step 3, Free Blaster Worm Anti Virus
• Remove worm MSBLAST
  
  Step 4, Re enable system restore
• Re enable system restore

The MSblast / Blaster virus infects machines via network connections. The MSblast / Blaster worm targets only Windows 2000 and Windows XP machines. The MSblast / Blaster exploits the DCOM RPC vulnerability that is described in Microsoft Security Bulletin MS03-026. The MSblast / Blaster worm attempts to download the msblast.exe file to the %WinDir%\system32 directory and then execute it.

The MSblast / Blaster worm also attempts to perform a Denial of Service (DoS) on the Microsoft Windows Update Web server (windowsupdate.com). This is an attempt to prevent you from applying the MSblast / Blaster patch on your computer against the DCOM RPC vulnerability