1. WinEggDrop.Shell Trojan Categorized as:
1.1 Trojan
A trojan is a program that is disguised as legitimate software but is designed to carry out some harmful actions on the infected computer.
Unlike viruses and worms, trojans don’t replicate but they can be just as destructive.
These days trojans are very common. Trojans are divided into a number different categories based on their function or type of damage.
1.2 Backdoor
Of all trojans, backdoor trojans pose the greatest danger to users’ PCs because they give their authors remote control over infected computers. They are downloaded, installed, and run silently, without the user’s consent or knowledge. Upon installation, backdoor trojans can be instructed to send, receive, execute and delete files, gather and transfer confidential data from the computer, log all activity on the computer, and perform other harmful activities.
1.3 RAT
Remote Access Tool. A program that enables a hacker to remotely access and control other people’s computers. A RAT can serve a variety of malicious purposes, including hijacking and transferring private information, downloading files, running programs, and tampering with system settings.
2. Detect WinEggDrop.Shell Trojan
The communication between client and server of Trojan is usually with TCP, UDP and ICMP protocol. Sax2 from Ax3soft is based on the analysis of protocol and can accurate tracking network connecting conversation and reorganize the TCP / IP data of the communication. When it detect that your network in the risk of Trojans, it will immediately suspended or interference with communications of Trojan to protect your network from attack. Sax2 will immediately upgrade it’s Security Policy Knowledge Base after finished installation. Below will introduce how to use Sax2 to detect whether your system has infected of the Trojan – WinEggDrop.Shell.
First of all, launch and run Sax2, switch to “EVENTS” pages. If there is WinEggDrop.Shell communication in your network, Sax2 will immediately report and interrupt Trojan communications. See the picture:
3. Remove WinEggDrop.Shell Trojan from Your Computer
You can effectively remove WinEggDrop.Shell from your computer with Exterminate It!.
After installing the program, run a scan to display a list of the files associated with WinEggDrop.Shell in the Scan Result screen and remove these files. For information about running scans and removing malware files, see the Exterminate It! Help.