Solved

Infected by the 'Qakbot'

Posted on 2009-05-06
5
1,169 Views
Last Modified: 2013-11-22
Many machines appear to be infected by a new form of this virus. CA does not have solution for this strain of virus as of last night. Could this be an isolated infection or have others reported this to the Experts?
Thanks,
Lance
0
Comment
Question by:lloakley
  • 2
5 Comments
 
LVL 2

Expert Comment

by:FatManc
ID: 24314134
I would download the latest versions of the following malware removers and rescan the machines.

malwarebytes - http://www.malwarebytes.org/mbam.php
[Admin Edit - link removed. Vee_Mod]

make sure that both packages are up to date.

If nothing is identified please post a HiJackThis log -

http://download.cnet.com/Trend-Micro-HijackThis/3000-8022_4-10227353.html

Thanks
John
0
 
LVL 23

Accepted Solution

by:
Admin3k earned 500 total points
ID: 24317364
Please take a look at this write up for manual removal instructions
http://www.sophos.com/security/analyses/viruses-and-spyware/trojqakbota.html 
Malwarebytes should handle it as advised above, if all else fails, I am pretty sure Combofix can clean it.
0
 
LVL 2

Expert Comment

by:FatManc
ID: 24333700
Hi - any luck with the solutions on this page?
0
 

Author Comment

by:lloakley
ID: 24354184
Our virus protection vendor authored a solution. We've applied the updates and this seemed to fix the trouble. Thank you Experts for your efforts...
Lance
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

12 Steps to a more secure Internet experience (http://tekblog.teksquisite.com/) Everyone who is a licensed driver initially had to pass a driving test that consisted of taking:    1. a written test    2. a road test    3. a vision test Le…
PREFACE The purpose of this guide is to explain how to manually move a SEP client to a different client group by performing steps on the client-side. These steps may prove particularly useful because they allow the client to move after it has alrea…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question