Published Sep 27, 2010|Updated Sep 15, 2017


Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: W32/Patcher (McAfee) BKDR_HTTPBOT.AV (Trend Micro) Backdoor.Win32.DarkShell.ed (Kaspersky)

Backdoor:Win32/Httpbot.A is a backdoor trojan that allows attackers unauthorized access and control of an affected computer. After a computer is infected, the trojan connects to a specific IRC server and joins a specific channel to receive commands from attackers. Commands can instruct the trojan to spread to other computers by scanning for network shares with weak passwords, exploiting Windows vulnerabilities, or possibly spreading through backdoor ports opened by other families of malicious software. The trojan may also allow attackers to perform other backdoor functions, such as launching denial of service (DoS) attacks and retrieving system information from infected computers.


Latest news