SpyBot.AAV is a backdoor that opens a random port that is periodically modified. It prevents users and installed programs from accessing some websites, which belong to several antivirus companies, among others.
Additionally, it obtains information about the computer such as the IP address, free memory space, operating system, RAM memory and CPU clock speed. Then, it sends the gathered data via FTP.
SpyBot.AAV does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.