Agobot.winini32
Category: Trojan
Risk:
Severe Risk
* Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.
Description: In order to run automatically when Windows starts up the worm copies itself to the file winini32.exe in the Windows system folder and adds a registry entry.
Alias: None
Signatures:
process: winini32.exe: MD5 Hash: 2fbbd8cd737ccbd82db..
Copyright @2006 THR Computer Solutions: Agobot.winini32