Microsoft Helps Disrupt 4-year Old Botnet Dorkbot, Which has Infected 1M PCs

By: Ivan Jenic
2 minute read

A lot of people are worried about their security in Windows, but it turns out that Microsoft is worrying about keeping your personal info safe a lot. The company said a few days ago that it partnered with a few law enforcement agencies to disrupt a botnet called Dorkbot, which has infected more than a million computers worldwide.

The Dorkbot is a malware which collects your login data from services like Gmail, Facebook, PayPal, Steam, and other, and it could cause you a lot of damage. Dorkbot infects over 100,000 computers each month, and has owned more than one million PCs in over 190 countries so far, representing a major security threat.

Dorkbot was first spotted in 2011. It usually infects computers of users’ who were visiting suspicious websites, as these websites use special tools which automatically infiltrate the malicious software into people’s computers. Dorkbot can also spread through social media, so users who click on ‘strange’ links and answer to ‘strange’ messages might also get infected.

Microsoft didn’t reveal much info about how it plans to fight Dorkbot. If Microsoft attacks (along with its security partners) Dorkbot’s servers, it will have an immediate impact, but as the cybercriminals will probably set up new servers, so this isn’t a long term solution.

This isn’t the first time Microsoft tries to keep its operating system safe from this threat, as we know that the company has undertaken several similar actions in the past. It also partnered with vendors such as ESET, the Computer Emergency Response Team Polska, the Canadian Radio-television and Telecommunications Commission, the Department of Homeland Security’s U.S. Computer Emergency Readiness Team, Europol, the FBI, Interpol, and the Royal Canadian Mounted Police to deal with this harmful botnet.

The Dorkbot malware has been distributed in various ways, such as removable USB drives, instant messaging clients, social networks, drive-by downloads and spam emails, among others. Microsoft also ensures that their real-time security software, such as Windows Defender for Windows 10 will bring the latest protection against Dorkbot threats.

But it looks like cybercriminals don’t want to surrender, as they have sold a kit which allows all other ‘interested’ hackers to create their own botnets, using the Dorkbot. The kit is called NgrBot, and it is available for sale in underground online forums.

For various PC problems, we recommend this tool.

This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues now in 3 easy steps:

  1. Download this PC Repair Tool rated "Excellent" on
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues with Patended Technologies (requires upgrade).

Next up

Best Windows 10 antivirus software to use in 2018

By: Radu Tyrsina
7 minute read

Update – 2018 will soon come to an end and we already have a guide on what is the best antivirus you should get in […]

Continue Reading

These features are out for good with Windows 10 version 1809' By: Sovan Mandal
2 minute read

Microsoft is all set to launch its next big update, Windows 10 version 1809 in October. While that should be a nice piece of news […]

Continue Reading

Windows 10 18H2 builds no longer receive new features

By: Matthew Adams
3 minute read

The Windows 10 October 2018 Update (otherwise 18H2) rollout might now be two to three weeks away. For the last few months, new build previews […]

Continue Reading