| Port No | 3127 |
| Service Name | W32.HLLW.Deadhat.B |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | W32.HLLW.Deadhat.B: 1.Is a variant of the W32.HLLW.Deadhat worm. 2.Has backdoor capabilities. 3.Attempts to uninstall the W32.Mydoom.A@mm and W32.Mydoom.B@mm worms, and then spread to other systems infected with W32.Mydoom@mm variants. 4.Spreads through the Soulseek file-sharing program. |
| Reference Link | Port Number: 3127 Service Name:W32.HLLW.Deadhat.B Port:TCP |
| Attack | According to Symantec Resolution: The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines. 1.Disable System Restore (Windows Me/XP). 2.Update the virus definitions. 3.Restart the computer in Safe mode or VGA mode. 4.Run a full system scan and delete all the files detected as W32.HLLW.Deadhat.B. 5.Reverse the changes made to the registry. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.