Welcome to the Virus Encyclopedia of Panda Security.
It passes itself off as a Word document, in order to deceive users making them think it is an inoffensive document. It carries out several modifications in the Windows Registry, which prevent the computer from working properly. It spreads through mapped drives.
|First detected on:||March 8, 2008|
|Detection updated on:||March 14, 2008|
|Yes, using TruPrevent Technologies
Winfake.A is a worm that passes itself off as a Word document in order to deceive users making them think it is an inoffensive file.
Additionally, it carries out several modifications in the Windows Registry, which prevent the user from viewing the processes that are being run through the Task Manager or access the command shell, among other actions.
Winfake.A spreads through mapped drives, making copies of itself in them.
Winfake.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.