| Port No | 25 |
| Service Name | WinPC |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | We belive WinPC to be a Password emailing trojan. We are not sure who the passwords or even what passwords are emailed. |
| Reference Link | WinPC |
| Attack | Autoloads: Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Key: Microsoft Corporation
Features: Possible emailing of passwords Fix: Remove the load=winpc.exe key in the win.ini under [windows]. Which can be done with any other text editing program. Reboot the computer or close winpc.exe. Delete the trojan file winpc.exe in the windows directory |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.