Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It modifies the users data in the Windows Registry.
|First detected on:||Nov. 10, 1999|
|Detection updated on:||Feb. 6, 2003|
Bubbleboy is a worm that exploits a vulnerability in Internet Explorer to spread rapidly.
Bubbleboy reaches computers hidden in an e-mail message without an attachment. The virus code is inserted in the HTML code, which the worm uses to format the body of the message.
Then, it the user of the affected computer only needs to view the e-mail through Outlook’s Preview Pane in order to be infected.
Once the computer is infected, Bubbleboy changes the user data in the Windows Registry and sends it out to all contacts found in Outlook’s Address Book.
It is important to point out that this worm only infects computers with a English or Spanish version of the operating system.
Bubbleboy is easy to detect because:
- It reaches the computers in an e-mail without an attachment, which has the following appearance:
- Once infection has been carried out, it displays an error message on screen:
System error, delete "UPDATE.HTA" from the startup folder to solve this problem.