W32.Zotob.D
Zotob D, W32.Zotob.D, is a memory-resident worm, which copies itself to the Windows System folder as Windrg32.exe, and uses the Microsoft Windows Plug and Play Buffer Overflow Vulnerability to spread across networks. Zotob creates a registry key to re-run itself on start-up, contains a backdoor, and can follow simple commands from remote users. Finally, Zotob attempts to delete other malware and spyware from the infected system and from its registry too.
<< Home