 |  |  |  |  |  |  |  |
Trojan: IRC/SdBot.AFN
 |
This is a moving target.
Have observed morphing.
SYS32 item that seemingly does not have
an identifiable fixtool that I can find with
my resources.
Have discovered a remedy that 'tricks' this
SYS32 problem with non-hacking.
Have yet to fully identify the original exposure
date of this critter.http://www.daniweb.com/techtalkforum...cons/icon4.gif
Feed back from within this domain is invited
Have observed morphing.
SYS32 item that seemingly does not have
an identifiable fixtool that I can find with
my resources.
Have discovered a remedy that 'tricks' this
SYS32 problem with non-hacking.
Have yet to fully identify the original exposure
date of this critter.http://www.daniweb.com/techtalkforum...cons/icon4.gif
Feed back from within this domain is invited
•
•
•
•
Originally Posted by Catweazle
NOD32 AntiVirus should be able to clean that one - it's included in the signature file for it!
I rely on NOD32.
SIT: as reported
File C:\WINDOWS\System32\navmgrd.exe is infected with a trojan
IRC/SdBot.AFN.
SIT: Newly reinstalled Zonelabs 4.0 reports that navmgrd.exe is
attempting to act as a server.
SIT: NOD32 reports that it cannot clean this infiltration.
SIT: This is kind of tough!!
SIT: NOD32 has allready recieved a pointed comm from
me on this sit ( allways polite ).
Spent time with other issues this past week that seem to point back to
this same item. http://www.daniweb.com/techtalkforum...cons/icon4.gif
Last edited by webtor; May 30th, 2004 at 8:03 am. Reason: Additional input
NOD32 can't clean it because it's a trojan. Delete instead! There's quite a few other AntiVirus packages which should be able to deal with it, as far as I can determine. I doubt if any of them would clean rather than delete, though.
•
•
•
•
Originally Posted by Catweazle
NOD32 can't clean it because it's a trojan. Delete instead! There's quite a few other AntiVirus packages which should be able to deal with it, as far as I can determine. I doubt if any of them would clean rather than delete, though.
I repeat, this is a moving target.
Is a morphing item.
Have scanned and observed how quickly it has taken on other
nuances.
heh heh..... Looks like it's me standing still, I reckon. I'll leave this to others more knowledgeable than myself. All I know is NOD32 has never let me down, and I've seen reference to its signature files including mention of this particular trojan.
**** whistles and wanders off, awaiting developments......
**** whistles and wanders off, awaiting developments......
•
•
Join Date: Aug 2003
Posts: 9,549
Reputation: 
Solved Threads: 493
A goolgle search of navmgrd.exe ,show these , http://www.google.com/search?sourcei...=navmgrd%2Eexe ,
Linux boot cd http://www.knopper.net/knoppix/index-en.html
That's what I did caperjack.
The Google results indicate NOD32 has included this trojan in their signature files since version V.1.730
The Google results indicate NOD32 has included this trojan in their signature files since version V.1.730
•
•
•
•
Originally Posted by Catweazle
NOD32 AntiVirus should be able to clean that one - it's included in the signature file for it!
"Source" gave me advices.
Decided to go my own way and had a VERY,VERY,VERY successful resolution
without future compromises.
This was a GREAT learning experience and has given me
a whole new *^killer*^ marketing approach / perspective
on the AV industry. BIGTIME!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
•
•
•
•
Originally Posted by Catweazle
NOD32 can't clean it because it's a trojan. Delete instead! There's quite a few other AntiVirus packages which should be able to deal with it, as far as I can determine. I doubt if any of them would clean rather than delete, though.
Had to tell 'others' how to do their job as part of the remedy.
We accomplished our 'mission'.
|
Other Threads in the Viruses, Spyware and other Nasties Forum
- Previous Thread: please help me with my windows xp
- Next Thread: prosearching.com taking over my internet
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest Viruses, Spyware and other Nasties Posts
adware anti-malware antivirus apple attack audio avg backtoschoolspeech bar blackhat botnet botnets censorship china commercial commercials conficker control crosssitescripting cyber cybercrime cyberwarfare ddos domains e-mafia education email exam exploit facebook fancheckvirus gaming gtaiv gumblar halloween hijack hosting internet iphone kaspersky legal logfiles mail malware mcafee mega-d messagelabs microsoft msn nazi news obama onlinethreats paedophile panel parents patch phishing police policeprovirusmba-mblockedinternetaccess president privacy pro problem redirect redirecting reliability report research risk rogueantivirus samhain sans scareware school search security seopoisoning sites software spam spyware sqlinjection symantec system teen translate trojan unabletoaccessanti-virussites unwanted update virus viruses vista war warning windows worm yahoo zeroday
