Hosting Provided By

Backdoor.IRC.Flood.E & Backdoor.Dvldr

From: Curt Snow <csnow(at)westerlyhospital.org>
Date: Wed Jun 04 2003 - 09:54:10 EDT

I have a user who has been "infected" with the above two Trojans. They have both been a real hassle to try to remove from her machine. I spent close to an hour a couple nights ago cleaning up the Backdoor.IRC.Flood.E Trojan, deleting any and all references to it in the file system and the registry, only to have it reappear again this morning.

The Backdoor.Dvldr Trojan evades even being seen on the machine in the file system or in the registry, yet Norton continues to detect it.

I have followed all instructions on the Symantec web site for cleaning these up, but to no avail.

My biggest question at this point is "where do these Trojans get in... what is the method of infection? And of course how can I eradicate these things without resorting to a complete format and rebuild?

Any and all help would be appreciated.

Received on Wed Jun 4 17:44:44 2003

This message: [ Message body ]
Next message: John: "Dameware Malcode? Is anyone aware of it?"
Previous message: Adharsh Praveen: "An exe (virus) called !Demo gets created"
Next in thread: Salvatore Poliandro: "Re: Backdoor.IRC.Flood.E & Backdoor.Dvldr"
Reply: Salvatore Poliandro: "Re: Backdoor.IRC.Flood.E & Backdoor.Dvldr"
Reply: Axel Pettinger: "Re: Backdoor.IRC.Flood.E & Backdoor.Dvldr"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:39 EDT