Event ID - 2589

Port No2589
Service NameDagger
RFC Doc0
ProtocolTCP
DescriptionThis client program of a backdoor enables a hacker full access to and control over the system infected with the server program. It compromises network security
Reference LinkDAGGER
AttackSolution:
Click Start>Run, type REGEDIT.EXE then hit the ENTER key.
In the left panel, double click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>Windows
>CurrentVersion>Run
In the right panel, look for this registry value and then delete it:
"WinVirusScan" "C:\Windows\System\VScan.exe"
Close the Registry.
Restart your system.
Click Start>Run, type this:
EXPLORER C:\WINDOWS\SYSTEM.
Press the keys, Ctrl-F, then type VSCAN.EXE. Delete the file when found.
Scan your system with Trend Micro antivirus and delete all files detected as BKDR_DAGGER.131. To do this Trend Micro customers must download the latest pattern file and scan their system. Other email users may use HouseCall

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.