Solved

backdoor.eggdrop

Posted on 2004-09-14
2
165 Views
Last Modified: 2013-12-04
Symantec Corp Edition discovered the backdoor.eggdrop thingy on my win2k server.  I've tried all my tricks with no success.  I can isolate two dll's associated w/svchost.exe and can kill the process, delete files, edit registry.  Darn thing keeps poppin back up on boot.  Please help.  
0
Comment
Question by:rmperrett
  • 2
2 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 500 total points
ID: 12058337
Hello rmperrett =)

Run Norton scan in Safemode,,,, u can also try running Stinger in Safemode ==> http://vil.nai.com/vil/stinger
Delete everything there, means the infected files and registries manually......
reboot back in Normal Mode and now check ??

Coz in normal Mode may be the virus\trojan variants are running in background, and cloflicting with the cleaning process !!
0
 
LVL 65

Expert Comment

by:SheharyaarSaahil
ID: 12058376
here are some more information on backdoor.eggdrop, may be can narrow down things for u >> http://www.pestpatrol.com/pestinfo/b/backdoor_eggdrop_17.asp
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now