Agent.BKY is a worm and a trojan-downloader. It infects .HTML, .PHP and some other files with a small script that points to a website, hosting a file with the recently discovered (March/April 2007) ANI exploit.
The worm also spreads to remote and removable drives, modifies the HOSTS file and downloads more malicious files onto an infected computer. This malware is similar to the worm that we detect as Worm:W32/Anito.A.
Based on the settings of your F-Secure security product, it will either move the file to the quarantine where it cannot spread or cause harm, or remove it.
Our investigation revealed that this worm and trojan-downloader is similar to the one that we detect as Worm:W32/Anito.A and Worm.Win32.Diska.C.
More information on Anito.A worms can be found here: https://www.f-secure.com/v-descs/anito_a.shtml
Date Created: -
Date Last Modified: -