Discovered: September 11, 2002
Updated: February 13, 2007 11:40:27 AM
Also Known As: Trojan/Bounce [SecurityFocus], W32/Bounce
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
Trojan.IrcBounce is the detection for a collection of programs that a hacker can use to conceal intrusion and obtain administrator-level access to Microsoft Windows environments. These programs can be used to attack Windows environments that
- Have the default installation, in which the Administrator account has no password
- Use user names and passwords that are very common.
After it is installed into victim's system, it gives a remote attacker unobstructed access to the compromised computer.
NOTE: Definitions dated prior to September 11, 2002, may detect some components of this threat as IRC Trojan or IRC.Mimic.
Please see the following Microsoft Knowledge Base article for additional information:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q328691Protection
-
Initial Rapid Release version September 12, 2002
-
Latest Rapid Release version March 3, 2008 revision 035
-
Initial Daily Certified version September 12, 2002
-
Latest Daily Certified version March 3, 2008 revision 037
-
Initial Weekly Certified release date September 18, 2002
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Medium
-
Number of Infections: 50 - 999
-
Number of Sites: More than 10
-
Geographical Distribution: Low
-
Threat Containment: Moderate
-
Removal: Easy
Damage
Distribution
Writeup By: Yana Liu
