W32/Codbot-F is a backdoor Trojan containing functionality to spread via network shares.
The worm connects to an IRC channel and listens for backdoor commands from a remote attacker. The backdoor functionality of the worm includes the ability to steal passwords and system information, sniff packets or open an FTP or TFTP server.
W32/Sdbot-VL is a worm with backdoor functionality.
W32/Sdbot-VL may spread to remote network shares with weak passwords.
W32/Sdbot-VL connects to a predetermined IRC channel and runs in the background listening for backdoor commands.
W32/Sdbot-VL contains functionality to participate in denial of service attacks and download and run further code.
W32/Sdbot-VL may spread as an archive file that also drops the proxy Trojan Troj/Ranck-CC.