When I suggested launching to stinger on the server, the client told me there was a virus on his system and he removed it with stinger .The virus called
W32/sdbot.worm.ftp
And when the public IP is connected after 3 or 4 hours the virus returns on his server. So he must launch the stinger every day twice to remove the virus. He also notice the virus create a file named “ I “ under system32 folder and every time he delete it. After 3 or 4 hours the file “ I “ appear again
The problem now that we cannot use the stinger anymore even on safe mode, when I tried to launch the stinger I received this message: Stinger maybe infected cannot continue,
It seams the virus blocked to stinger,
He installed the Vasta antivirus and he receives a message “dangerous u can’t continue “so he stopped all the services related to Vasta.
Now could u please help me to remove this virus completely from the system without reaffecting it again? What do you suggest?
Do you have any idea why the stinger is infected? Is there another tool can remove this virus
W32/sdbot.worm.ftp
And when the public IP is connected after 3 or 4 hours the virus returns on his server. So he must launch the stinger every day twice to remove the virus. He also notice the virus create a file named “ I “ under system32 folder and every time he delete it. After 3 or 4 hours the file “ I “ appear again
The problem now that we cannot use the stinger anymore even on safe mode, when I tried to launch the stinger I received this message: Stinger maybe infected cannot continue,
It seams the virus blocked to stinger,
He installed the Vasta antivirus and he receives a message “dangerous u can’t continue “so he stopped all the services related to Vasta.
Now could u please help me to remove this virus completely from the system without reaffecting it again? What do you suggest?
Do you have any idea why the stinger is infected? Is there another tool can remove this virus
