Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

virus/ toraj on the database server

Posted on 2011-09-04
8
601 Views
Last Modified: 2013-11-22
hi
i have a virus name Wind32.Nbdd.azz  and others
this infected my db server and it made many problems
i found 1.exe file on c: drive / and many jobs created inside the sql server from this virus

symantec didnot remove it and also kasbersky

what i have to do; can any one guide me to a torjan horse remover even if it's pain i'll buy it
0
Comment
Question by:Sawyer
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 38

Expert Comment

by:younghv
ID: 36480781
speed15,
That appears to be a generic 'backdoor' trojan that is relatively old (in malware terms).

Which of the Kaspersky programs did you try to use against this?

You should have better success using RogueKiller and Malwarebytes (both server safe). Follow the instructions here:
Rogue-Killer-What-a-great-name
0
 
LVL 10

Expert Comment

by:SuperTaco
ID: 36480806
Super anti-spyware and combofix work well too.

http://www.superantispyware.com/download.html

http://www.bleepingcomputer.com/download/anti-virus/combofix

if it give you any problems installing, and you can't fix it try running rkill

http://rkill.net
0
 
LVL 23

Expert Comment

by:phototropic
ID: 36481137
According to the developers of Combofix, it is not designed to be run on a server os:

"...At this time ComboFix can only run on the following Windows versions:

•Windows XP (32-bit only)
•Windows 2000 (32-bit only)
•Windows Vista (32-bit/64-bit)
•Windows 7 (32-bit/64-bit)..."

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

I would be very cautious about trying to run it on your server.
 
0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 

Author Comment

by:Sawyer
ID: 36485621
what best to use under windows server 2003???
0
 
LVL 38

Expert Comment

by:younghv
ID: 36485645
Did you try the suggestions I made in my first post?
0
 
LVL 10

Expert Comment

by:SuperTaco
ID: 36492986
@ phototropic

You can run it on servers, but you are correct.  i would be very careful.  have you tried any of the anti malware we have suggested?
0
 
LVL 38

Expert Comment

by:younghv
ID: 36494525
speed15,
The developer of ComboFix (sUBS) says that his product should not be run on any server platform and we would all do well to follow his guidelines.
0
 
LVL 23

Accepted Solution

by:
phototropic earned 500 total points
ID: 36541454
speed15,

What is your status?  Do you still require assistance?
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Can cell phone tracking be initiated by opening a text? 15 104
How to remove audio ad 4 73
svg file 10 104
I suddenly cannot write to C drive 20 86
Malware seems to be getting smarter and smarter. If you are having trouble being able to launch your malware removal tools such as (and recommended): MalwareBytes, HiJackThis, ComboFix, etc. you can try some of the workarounds listed below. 1. Ma…
Microsoft has released remote PowerShell capabilities to all commercial Office 365 customers. So you can be controlled via PowerShell and not from the Office 365 admin center Download Windows PowerShell Module for Lync Online http://www.micros…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question