SUBOT dll infected with virus

Posted on 2004-08-09
Medium Priority
Last Modified: 2008-02-01

I ran Symantec AnitVirus on one computer and it found a virus in SUBOT.dll under winnt\system32. Error message "Access denied" when attempting to quarantine the file.

Is there a service that uses this DLL ?. If yes, please let me know the service name so I could stop it for Symantec to perform the Cleanup Action.


Can I just delete the 2 files found under winnt\system32 - SUBOT.dll and SUBOT.ini

Please advise

Thank you
Question by:nmahmo
  • 2
LVL 65

Accepted Solution

SheharyaarSaahil earned 2000 total points
ID: 11755912
Hello nmahmo =)

U can manually delete these two files, these are not system files !!!
and if u get any access denied error while trying to delete it, then take the permission of these files,,,,,,,

HOW TO: Take Ownership of a File or Folder in Windows XP:

HOW TO: Set, View, Change, or Remove File and Folder Permissions in Windows XP

After deleting,,,, run Stinger in Safemode to make sure it comes as Clean :)
Stinger >> http://vil.nai.com/vil/stinger


Author Comment

ID: 11757024
Ok, before deleting it,  I want to mention that this is a Windows NT server.
are you positive this is not a system file?

LVL 65

Expert Comment

ID: 11757284

Yes im sure that its not a System file, coz in the last five years, im hearing abt this file for the First time,,,, and moreover i cud find only one Record abt this file even on Google,,, and this site also termed it with a trojan >> http://vil.nai.com/vil/content/v_125081.htm

But still if u doubt me and this site,,, u can just delete this file to recycle bin,,,, restart and make sure that everything is working as fine as before,,,, once u make sure u can empty the recycle bin :)

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

You do not need to be a security expert to make the RIGHT security. You just need some 3D guidance, to help lay out an action plan to secure your business operations. It does not happen overnight. You just need to start now and do the first thin…
A discussion about Penetration Testing and the Tools used to help achieve this important task.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…

622 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question