We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Worm:Win32/Roopirs.A
Aliases: W32/VBTrojan.17E!Maximus (Command) TR/Swisyn.C (Avira) Backdoor.Agent.1 (BitDefender) Win32/Swisyn.T (CA) Win32/VB.NUV (ESET) Trojan.Win32.Swisyn.ubp (Kaspersky) Swisyn.e (McAfee) Mal/VB-F (Sophos) W32.SillyFDC (Symantec) TROJ_SWISYN.AJ (Trend Micro) Trojan.Swisyn.VJS (VirusBuster)
Summary
Recovering from recurring infections on a network
- Ensure that an antivirus product is installed on ALL computers connected to the network that can access or host shares.
- Ensure that all available network shares are scanned with an up-to-date antivirus product.
- Restrict permissions as appropriate for network shares on your network. For more information on simple access control, please see: http://technet.microsoft.com/library/bb456977.aspx.
- Remove any unnecessary network shares or mapped drives.