Backdoor.Khaos

Risk Level 1: Very Low

Printer Friendly Page

Discovered: February 20, 2003

Updated: February 13, 2007 11:43:21 AM

Also Known As: BKDR_KHAOS.A [Trend], Backdoor.Khaos [KAV], Backdoor.Win32/Khaos [RAV]

Type: Trojan Horse

Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP

Backdoor.Khaos is a backdoor Trojan that gives an attacker unauthorized access to your computer. Backdoor.Khaos usually arrives as the file, Server2.exe. By default it opens port 6969 for listening.

Backdoor.Khaos does not automatically install itself, as some other program usually installs it. As a result, even if Backdoor.Khaos is installed, in most cases, it will no longer run after you restart your computer.

Backdoor.Khaos is written in Microsoft Visual Basic 5 and it requires that the Visual Basic (VB) run-time libraries be installed on your computer in order for it to execute.

Protection

Initial Rapid Release version February 20, 2003
Latest Rapid Release version August 20, 2008 revision 017
Initial Daily Certified version February 20, 2003
Latest Daily Certified version August 20, 2008 revision 016
Initial Weekly Certified release date February 20, 2003

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy

Damage

Damage Level: High

Distribution

Distribution Level: Low

Writeup By: Jari Kytojoki

Technical Details

Search Threats

Search by name

_{Example: W32.Beagle.AG@mm}