Backdoor:Win32/Nuwar!sys

Detected by Microsoft Defender Antivirus

Aliases: Win32/Pecoan.N (CA) Email-Worm.Win32.Zhelatin.ae (Kaspersky) W32/Generic.aac!worm (McAfee) W32/Tibs.gen37 (Norman) Troj/DwnLdr-GLV (Sophos) VIPRE.Suspicious (Sunbelt Software) Trojan.Packed.13 (Symantec) TROJ_MULP.AL (Trend Micro)

Summary

Backdoor:Win32/Nuwar!sys is the kernel mode driver component of Backdoor:Win32/Nuwar, a backdoor Trojan that allows unauthorized access to an infected computer. The Trojan receives commands indirectly from a remote attacker via its connection to a malicious peer-to-peer network.

To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Backdoor:Win32/Nuwar!sys

Summary

What to do now

Technical information

Threat behavior

Prevention

Symptoms