W32/Rbot-GAH is a Worm for the Windows platform.
W32/Rbot-GAH runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.
- to computers vulnerable to common exploits, including: LSASS (MS04-011),
SRVSVC (MS06-040), RPC-DCOM (MS04-012), ASN.1 (MS04-007) and RealVNC (CVE-2006-2369)
- to network shares protected by weak passwords
Type Spyware Worm
W32/QQRob-ABX is a worm for the Windows platform.
W32/QQRob-ABX includes functionality to access the internet and communicate with a remote server via HTTP, and attempts to download and execute a number of files to <Temp>\<random digits>.exe.
W32/QQRob-ABX may attempt to steal information from the infected computer.