Event ID - 2766

Port No2766
Service NameW32.HLLW.Deadhat.B
RFC Doc0
ProtocolTCP
DescriptionW32.HLLW.Deadhat.B:
1.Is a variant of the W32.HLLW.Deadhat worm.
2.Has backdoor capabilities.
3.Attempts to uninstall the W32.Mydoom.A@mm and W32.Mydoom.B@mm worms, and then spread to other systems infected with W32.Mydoom@mm variants.
4.Spreads through the Soulseek file-sharing program.
Reference LinkPort Number: 2766 Service Name:W32.HLLW.Deadhat.B Port:TCP
AttackAccording to Symantec

Resolution:
The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines.
1.Disable System Restore (Windows Me/XP).
2.Update the virus definitions.
3.Restart the computer in Safe mode or VGA mode.
4.Run a full system scan and delete all the files detected as W32.HLLW.Deadhat.B.
5.Reverse the changes made to the registry.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.