?
Solved

backdoor.eggdrop

Posted on 2004-09-14
2
Medium Priority
?
209 Views
Last Modified: 2013-12-04
Symantec Corp Edition discovered the backdoor.eggdrop thingy on my win2k server.  I've tried all my tricks with no success.  I can isolate two dll's associated w/svchost.exe and can kill the process, delete files, edit registry.  Darn thing keeps poppin back up on boot.  Please help.  
0
Comment
Question by:rmperrett
  • 2
2 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 1500 total points
ID: 12058337
Hello rmperrett =)

Run Norton scan in Safemode,,,, u can also try running Stinger in Safemode ==> http://vil.nai.com/vil/stinger
Delete everything there, means the infected files and registries manually......
reboot back in Normal Mode and now check ??

Coz in normal Mode may be the virus\trojan variants are running in background, and cloflicting with the cleaning process !!
0
 
LVL 65

Expert Comment

by:SheharyaarSaahil
ID: 12058376
here are some more information on backdoor.eggdrop, may be can narrow down things for u >> http://www.pestpatrol.com/pestinfo/b/backdoor_eggdrop_17.asp
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
Suggested Courses

755 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question