Event ID - 41337

Port No41337
Service NameJAVA_STORM
RFC Doc0
ProtocolTCP
DescriptionThis worm exploits a vulnerability of Microsoft Internet Information Services (IIS) 4.0 and 5.0 called Web Server Folder Traversal. It opens several ports to allow a remote user access to an infected system. It initiates a Denial of Service attack against www.microsoft.com and sends email to gates@microsoft.com
Reference LinkJAVA_STORM
AttackSolution:

Press the Ctrl-Alt-Del simultaneously and terminate the “java” interpreter that is running the worm in the Task Manager window.
Exit the registry.
Find and delete the folder C:\winnt\system32\storm.
Delete the file STORM.EXE located in C:\winnt\system32
Scan your system with Trend Micro antivirus and delete all files detected as JAVA_STORM.A. To do this Trend Micro customers must download the latest pattern file and scan their system. Other email users may use Hou

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.