Solved

backdoor.eggdrop

Posted on 2004-09-14
2
192 Views
Last Modified: 2013-12-04
Symantec Corp Edition discovered the backdoor.eggdrop thingy on my win2k server.  I've tried all my tricks with no success.  I can isolate two dll's associated w/svchost.exe and can kill the process, delete files, edit registry.  Darn thing keeps poppin back up on boot.  Please help.  
0
Comment
Question by:rmperrett
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 500 total points
ID: 12058337
Hello rmperrett =)

Run Norton scan in Safemode,,,, u can also try running Stinger in Safemode ==> http://vil.nai.com/vil/stinger
Delete everything there, means the infected files and registries manually......
reboot back in Normal Mode and now check ??

Coz in normal Mode may be the virus\trojan variants are running in background, and cloflicting with the cleaning process !!
0
 
LVL 65

Expert Comment

by:SheharyaarSaahil
ID: 12058376
here are some more information on backdoor.eggdrop, may be can narrow down things for u >> http://www.pestpatrol.com/pestinfo/b/backdoor_eggdrop_17.asp
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question