W32.IRCBot

Risk Level 1: Very Low

Printer Friendly Page

Discovered: July 8, 2002

Updated: October 29, 2008 6:41:54 PM

Also Known As: W32/IRCbot.worm.dll!95744 [McAfee]

Type: Trojan, Worm

Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows NT, Windows 2000

W32.IRCBot is a back door Trojan horse that connects to an IRC server and awaits commands from a remote attacker, including spreading through network shares, spam email messages, IRC channels and to other computers.

Protection

Initial Rapid Release version July 9, 2002
Latest Rapid Release version February 9, 2010 revision 056
Initial Daily Certified version July 9, 2002 revision 007
Latest Daily Certified version February 9, 2010 revision 052
Initial Weekly Certified release date July 10, 2002

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy

Damage

Damage Level: Low
Payload: Opens a back door.

Distribution

Distribution Level: Low

Writeup By: Gor Nazaryan

Technical Details

Search Threats

Search by name

_{Example: W32.Beagle.AG@mm}

Learn more about Zero-Day / Operation Aurora / Hydraq