RDBot Worm Definition - Worm Spywares, Adwares, Viruses Reviews and Info

Main Menu

Categories

Adware
Adware Bundler
AOL Exploit
Backdoor
Browser Hijacker
Browser Plug-in
Commercial Key Logger
Commercial Remote Control
Cookie
Dialer
E-Mail Flooder
Hostile ActiveX Control
ICQ Exploit
Joke Program
Key Logger
Loader
Low Risk Adware
Misc
Nuker
P2P
Password Hijacker
Potential Privacy Risk
Potentially Dangerous Tools
RAT
Search Hijacker
Security Disabler
Spyware
Stealth Notifier
Surveillance
Toolbar
Trojan
Trojan Downloader
Trojan FTP
Trojan Telnet
Viruses
Worm

Partners
Web Hosting Hotel Reservations

RDBot Worm Information

Name:	RDBot
Category:	Worm
Alias:	- Alias: SilverRat.A, W32/Silver@MM
Advice:	Remove
Risk:	Severe Risk Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.
Description:	A LSASS vulnerability worm, that propogates itself via network shares. RDBot is used to steal passwords and product keys from a number of games and applications, can also terminate antivirus processes weakening your computer security. Some variants are known to contain keyloggers. When infected RDBot will insert itself into the HKEY_LOCAL_MACHINE>Software>Microsoft> Windows>CurrentVersion>Run with a variety of system security looking names. RDbot will also add itself as a system service further degrading the system stability.
Signatures:	process: random.exe: MD5 Hash: 3f3cc8a5afba6933aca... process: suge.exe: MD5 Hash: 68c75fdc65147831499... process: random.exe: MD5 Hash: 6da7b4aa4cdeced4b0d... process: vjbczzxzs.exe: MD5 Hash: f0c6c8c8e27f0f679ad... process: msupdsrv.exe: MD5 Hash: 1ffda4c95f527b02d54... process: random.exe: MD5 Hash: 2684ffd69f8c210a07c... process: mszk.exe: MD5 Hash: babfbc267f213749ffc... process: msmacroprot32.exe: MD5 Hash: 081c6f1b809b8f32e3e... process: taksmgr.exe: MD5 Hash: ... process: taksmgr.exe: MD5 Hash: b2af1db87610ab9cfc9..
Type:	Worm - Spyware's primary purpose is to collect demographic and usage information from your computer, usually for advertising purposes. Spyware usually that 'sneaks' onto a system or performs other activities hidden to the user. Spyware programs are usually bundled as a hidden component and downloaded from the Internet. These modules are almost always installed on the system secretively and try to run secretively as well.

Top Worm Visited Pages:

Wukill.mstray - Alias: Win32/HLLW.Wukill - 278 visits
Rbot - Alias: Backdoor.Rbot.Gen - 269 visits
SDBot - Alias: Wootbot.gen, Wootbot, Donk, spybot, Agobot - 221 visits
Trojan.Downloader.winstall - 174 visits
Worm.Brit.e - Alias: VBS/Chick.e@M virus - 84 visits
Worm.P2P.SpyBot.gen - 54 visits
Gaobot - 42 visits
Worm.Trilissa.e - 41 visits
Win32/Darby.O - 40 visits
JS.Lame - Alias: HTML.Lame - 39 visits

Random Worm Pages:

Worm.Valcard
DSC RootKit Worm
Worm.Vote.b
VBS Encrypter .001
IRC.Worm.Becky
Rbot.MShelp
Worm.Lorda
Worm.NewApt.b
Worm.P2P.Herpes
Worm.Silver - Alias: SilverRat.A, W32/Silver@MM

� 2006-2008 spyware32.com - Privacy Policy