Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It opens a communications port and spreads rapidly among KaZaA and iMesh users.|
|First detected on:||March 5, 2003|
|Detection updated on:||Oct. 21, 2003|
Kwbot.D is a worm that spreads through the P2P (peer-to-peer) file-sharing applications: KaZaA and iMesh.
Kwbot.D creates a large number of copies of itself in the Windows directory. The names of these files refer to IT applications, games, etc. By doing this, other users will download copies of the virus to their computer, thinking that they are downloading utilities.
For a list of the files created by Kwbot.D, click here.
Kwbot.D has a Trojan component that opens a communications port. By doing this, it leaves the infected computer vulnerable to remote attacks.
Kwbot.D is difficult to recognize, as it does not display any warnings or messages that indicate that it has infected a computer.