Getting Hit Hard by W32.IRCbot and other Qbot Infections
The last week we have been hit really hard by the W32.IRCbot and other bot infections. Every system on our network is infected now with at least 20 - 30 infected files. We had this issue a few months ago but now it is back and in different file locations.
The SEP client is now catching it and by policy is cleaning by deletion however for some reason it is still able to spread across our network.
This includes all our Windows 2003 servers and Windows XP systems. So far Windows 7 systems are not being affected. All Service packs are installed and all systems have the current Microsoft security updates.
We are running the most current SEP 11 RU5 version as well.