Zotob is a worm that exploits a Windows buffer overflow vulnerability, allowing the attacker to gather personal and financial information from targeted computers and networks. In addition to obtaining and potentially exploiting critical information stored in a personal or business computer, Zotob can convert an infected computer into a so-called zombie for the purpose of spreading spam. Zotob, which has several variants, is an outgrowth of a worm called Mytob.
Some Zotob variants disable registry editing tools, firewalls, anti-spyware programs, and anti-virus programs. Most variants are targeted at computers running Windows 2000, but some can affect computers running any version of Windows.