• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 644
  • Last Modified:

virus/ toraj on the database server

hi
i have a virus name Wind32.Nbdd.azz  and others
this infected my db server and it made many problems
i found 1.exe file on c: drive / and many jobs created inside the sql server from this virus

symantec didnot remove it and also kasbersky

what i have to do; can any one guide me to a torjan horse remover even if it's pain i'll buy it
0
Sawyer
Asked:
Sawyer
  • 3
  • 2
  • 2
  • +1
1 Solution
 
younghvCommented:
speed15,
That appears to be a generic 'backdoor' trojan that is relatively old (in malware terms).

Which of the Kaspersky programs did you try to use against this?

You should have better success using RogueKiller and Malwarebytes (both server safe). Follow the instructions here:
Rogue-Killer-What-a-great-name
0
 
SuperTacoCommented:
Super anti-spyware and combofix work well too.

http://www.superantispyware.com/download.html

http://www.bleepingcomputer.com/download/anti-virus/combofix

if it give you any problems installing, and you can't fix it try running rkill

http://rkill.net
0
 
phototropicCommented:
According to the developers of Combofix, it is not designed to be run on a server os:

"...At this time ComboFix can only run on the following Windows versions:

•Windows XP (32-bit only)
•Windows 2000 (32-bit only)
•Windows Vista (32-bit/64-bit)
•Windows 7 (32-bit/64-bit)..."

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

I would be very cautious about trying to run it on your server.
 
0
A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

 
SawyerAuthor Commented:
what best to use under windows server 2003???
0
 
younghvCommented:
Did you try the suggestions I made in my first post?
0
 
SuperTacoCommented:
@ phototropic

You can run it on servers, but you are correct.  i would be very careful.  have you tried any of the anti malware we have suggested?
0
 
younghvCommented:
speed15,
The developer of ComboFix (sUBS) says that his product should not be run on any server platform and we would all do well to follow his guidelines.
0
 
phototropicCommented:
speed15,

What is your status?  Do you still require assistance?
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now