W32/Sdbot-ZY is a worm and IRC backdoor Trojan for the Windows platform.
W32/Sdbot-ZY spreads by copying itself to network shares protected by weak passwords.
W32/Sdbot-ZY runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.
W32/Sdbot-ZY includes functionality to:
- steal confidential information
- carry out DDoS flooder attacks
- silently download, install and run new software, including updates of its software
Troj/Tompai-B is a backdoor Trojan for the Windows platform.