If you are looking for ways to remove W32.Rotinom, then you can find it on this page. Free tools and removal procedure is included on this page to get rid of the Trojan instantly.
W32.Rotinom is a worm that will modify Windows registry for its own malicious purposes. W32.Rotinom usually spreads by making a copy of it on removable media drives. The worm will trick user by using folder icon on its executable file. Once opened, it results to actual execution of the worm.
Alias: W32/Rotinom, Trojan:Win32/Rotinom.B, Trojan.Win32.Agent2.ldt, Trojan:Win32/Folstart.A, TR/Agent2.ldt.36, Trojan-Dropper.Agent
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Windows Vista
Upon execution, W32.Rotinom will create a copy of itself on desired location.
%UserProfile%\Local Settings\Application Data\start\update.exe
Next, it will create numerous folders and configures registry entries. For the complete lists of these items, please see Associated Folders and Modified Registry Entries below.
Finally, W32.Rotinom will search for folders on the infected computer and create a duplicate copy in executable format. The worm will hide the original folder so that users may execute the worm if the fake folder is clicked.
W32.Rotinom arrives on computers in several methods. The most popular method is through spam email messages. It is attached as useful file like documents, image, or greeting card. User may also get contaminated when a questionable link from instant messaging application is executed. The link is originally sent from a trusted address, but sender is unaware that Worm on his computer is transmitting malicious information. Most of the time, the message will contain tempting links about trending news and events.