The Web    Google
1/7: Sdbot-TB Worm Lets Hackers In Via IRC

1/7: Sdbot-TB Worm Lets Hackers In Via IRC
January 7, 2005

W32/Sdbot-TB is a Windows network worm that contains backdoor functions that allow unauthorized remote access to the infected computer via IRC channels. Once installed, W32/Sdbot-TB is able to setup an HTTP proxy server, participate in denial-of-service (DoS) attacks, steal computer information and log keystrokes to the file keys.txt in the Windows System folder when instructed to do so by a remote attacker.

The worm also tries to spread using DCC file transfers over IRC channels.

More information can be found at Sophos page.

  • 11/8: IRC.Bifrut Trojan Lets Attacker In
  • 8/5: Toraja-I Macro Virus For Office 97
  • Mass-Mailing Worm Copies Itself to Windows Folder
  • AntiOnline Spotlight: Trojan Force
  • 1/3: Hilin Worm Written in Visual Basic
  • 4/29: Bropia-AJ Worm Messages IM Users
  • Microsoft to Strike IE URL Passwords
  • 1/25: Sdbot-TW Worm Has Backdoor Functions
  • Platform Logic Wraps OS, Apps With Security Protections
  • Macromedia Patches MX 2004 Security Flaws
  • Data Brokers Step Into Senate Panel's Fire
  • Discussion on Security Camera