[Full-disclosure] Troj/Qbot-B

From: Robert Hudock <rhudock_at_nospam>
Date: Thu May 14 2009 - 16:36:49 GMT
To: bugtraq@securityfocus.com, vulnwatch@vulnwatch.org, full-disclosure@lists.grok.org.uk

Group:

I have seen a couple incidents involving Troj/Qbot-B -- have others recently encountered this virus?

Known alias are:

Backdoor.Win32.IRCBot
W32/Sdbot.worm
Backdoor:Win32/Qakbot.gen!A

Any details and insights about this virus would be most helpful.

Specifically, any hacking tools installed upon gaining remote control of system? Whether remote control is possible with this virus? The mechanism of control (ie. IRC issued instructions)?

Best regards, Robert Hudock

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

This message: [ Message body ]
Next message: Thomas Sader: "[Full-disclosure] eggdrop/windrop remote crash vulnerability"
Previous message: iDefense Labs: "[Full-disclosure] iDefense Security Advisory 05.14.09: Apple Mac OS X xnu Kernel workqueue_additem/workqueue_removeitem Index Validation Vulnerability"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]