- Connects to the internet without permission
- Installs itself without permissions
- Slow Computer
- Slow internet connection
- System crashes
W32.Rahack.H is a dangerous polymorphic worm that can change its code and spread easily from one system to another. Due to its ability to change its own code, W32.Rahack.H is very elusive and hard to catch, even though it has been around since 2006 and is also known as Worm:Win32/Allaple.A. Almost all Windows systems get infected by this worm. W32.Rahack.H spreads by exploiting weak Radmin software passwords. Then it connects to Radmin server and spreads further. Radmin (or Remote Administrator) is remote control software that users utilize to control another computer remotely.
Since W32.Rahack.H is a polymorphic network worm, it replicates by using existing networks and in this case it uses all computers connected to the Radmin server. It can also spread through local area networks. W32.Rahack.H is commonly used to perform DoS attacks against predestined websites or particular IP addresses. The DoS attack is executed by sending an echo ping request and then waiting for response. If W32.Rahack.H receives a response, then it floods the target server with overflowing traffic. The worm floods several network ports. It is common for W32.Rahack.H to attack websites that have a .ee domain suffix.
In case of exploit password vulnerabilities, W32.Rahack.H tries to connect to machines on the network using an extensive list of words that could easily be used as the passwords. For example, the words used by W32.Rahack.H include:
And so on. It proves the necessity of strong passwords, because such programs like W32.Rahack.H are quick to exploit password vulnerabilities.
Even though W32.Rahack.H is a polymorphic threat that changes with every new infection, still it IS possible to get rid of it. Naturally, manual worm removal is very difficult, but if you were to acquire a computer security tool, you could remove W32.Rahack.H automatically. Do not wait just because W32.Rahack.H does not infect system files directly. If left untreated, W32.Rahack.H can seriously damage system performance over time.