I seem to be stumbling onto a new version of gaobot as w32\GaoBot.worm.gen.bi ...has anybody else run into this?

the file is named winhttps.exe and is hooking itself into the registry under the

LocalMachine\Software\Microsoft\Windows\CurrentVersion\RunServices

I've noticed that it has happened on about 5-6 computers where I work which are running Windows 2000. The newest DAT file from McAfee has been removing this, but I know that everybody doesnt have that. I think the newest windows updates are preventing this, but im not certain on that.

Has anybody else seen this, or have any information about it?

edit --
spelling error :-(