?
Solved

SUBOT dll infected with virus

Posted on 2004-08-09
3
Medium Priority
?
1,004 Views
Last Modified: 2008-02-01
Hi

I ran Symantec AnitVirus on one computer and it found a virus in SUBOT.dll under winnt\system32. Error message "Access denied" when attempting to quarantine the file.

Is there a service that uses this DLL ?. If yes, please let me know the service name so I could stop it for Symantec to perform the Cleanup Action.

OR

Can I just delete the 2 files found under winnt\system32 - SUBOT.dll and SUBOT.ini

Please advise

Thank you
0
Comment
Question by:nmahmo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 2000 total points
ID: 11755912
Hello nmahmo =)

U can manually delete these two files, these are not system files !!!
and if u get any access denied error while trying to delete it, then take the permission of these files,,,,,,,

HOW TO: Take Ownership of a File or Folder in Windows XP:
http://support.microsoft.com/?kbid=308421

HOW TO: Set, View, Change, or Remove File and Folder Permissions in Windows XP
http://support.microsoft.com/default.aspx?scid=kb;en-us;308418

After deleting,,,, run Stinger in Safemode to make sure it comes as Clean :)
Stinger >> http://vil.nai.com/vil/stinger

!! GOOD LUCK !!
0
 

Author Comment

by:nmahmo
ID: 11757024
Ok, before deleting it,  I want to mention that this is a Windows NT server.
are you positive this is not a system file?

thanks,
0
 
LVL 65

Expert Comment

by:SheharyaarSaahil
ID: 11757284
:)

Yes im sure that its not a System file, coz in the last five years, im hearing abt this file for the First time,,,, and moreover i cud find only one Record abt this file even on Google,,, and this site also termed it with a trojan >> http://vil.nai.com/vil/content/v_125081.htm

But still if u doubt me and this site,,, u can just delete this file to recycle bin,,,, restart and make sure that everything is working as fine as before,,,, once u make sure u can empty the recycle bin :)
0

Featured Post

Enroll in August's Course of the Month

August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question