We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Worm:Win32/Neeris.AU
Detected by Microsoft Defender Antivirus
Aliases: Win32/IRCBot.MG (CA) Backdoor.Win32.IRCBot.jhz (Kaspersky) Win32/IRCBot.AMC (ESET) W32/Spybot.worm!i (McAfee) W32/Ircbot.CNJ.worm (Panda) Backdoor.IRC.Bot (Symantec)
Summary
Worm:Win32/Neeris.AU is the detection for an IRC backdoor that spreads by copying itself into removable drives and by exploiting the vulnerability discussed in Microsoft Security Bulletin MS08-067. It connects to a remote IRC server to receive commands from a remote attacker.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us
