Welcome to the Virus Encyclopedia of Panda Security.
It connects to an IRC server in order to receive remote control commands: obtain hardware information, steal videogames passwords, update the worm, etc. It spreads across networks and it is also dropped by the worm Prex.AM.
|First detected on:||July 5, 2005|
|Detection updated on:||July 6, 2005|
|Yes, using TruPrevent Technologies
Gaobot.IUF is a worm with backdoor characteristics that allows hackers to gain remote control over the affected computer and carry out actions such as command execution, hardware information retrieval, theft of passwords belonging to several videogames, worm update, etc.
Gaobot.IUF uses different means to spread:
- It makes copies of itself in the shared network resources it accesses to.
- It is dropped in the affected computer by a worm that spreads via the instant messaging program MSN Messenger, detected as W32/Prex.AM.worm.
Gaobot.IUF is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.