Symptoms

Every time you connect to the internet, your computer will show a countdown box. At the finish of the countdown your computer reboots.

Cause

There is vulnerability in the part of RPC that deals with message exchange over TCP/IP.

Resolution

Make sure to turn off System restore. It can be turned off by right clicking on My computer, left click on properties, then left click on the system restore tab. Put a check mark in the box next to Turn off System Restore. Then click ‘OK’ when the message box comes up to verify turning off the system restore.

This procedure terminates the running MSBLAST.EXE process from memory.

1. Open Windows Task Manager. On Windows NT/2000/XP systems, press CTRL+SHIFT+ESC, and click the Processes tab.
2. In the list of running programs*, locate the process:
   MSBLAST.EXE
3. Select the MSBLAST.EXE process, and then press either the End Task or the End Process button, depending on the version of Windows on your system.
4. To check if the MSBLAST.EXE process has been terminated, close Task Manager, and then open it again. Close Task Manager.
5. Do the Windows Update/Patch
6. Have them update their Anti-virus software and do a full virus scan of their system.

To keep Windows from continuously rebooting:

1. Control Panel, Administrative Tools, Services
2. Find Remote Procedure Call, right click and go to Properties.
3. On Properties, go to the Recovery Tab, you\'ll see the "At first failure..", "At second failure..." and "At third failure".
4. Change those to "Take No Action" or "Restart the Service" instead of the default "Reboot the Computer" option, they then should be able to stay on for the patch.

GO TO http://windowsupdate.microsoft.com and scan for updates.

More Information

Make sure to go back in and enable the system store, once the virus is removed.