Norton

Small Business

Enterprise

Partners

Store

About Symantec

Overview

Solutions

Cloud
Virtualization
Mobile
Small Business
Midsize Business
Enterprise Solutions
Industry Solutions

Products

Products A-Z
Software as a Service
Trialware & Downloads
Product Forums
Licensing Products
Activating Software
Upgrading Products
Renewals
Policies

Services

Consulting Services
Education Services
Managed Services
Support Services
Software as a Service

Training

Product Training
Certification Programs
Classroom Locations
Skills Assessment
About Training

Support

Supported Products A to Z
Support Fundamentals
Product Forums
Customer Support

Security Response

Threat Explorer
Spam Intelligence
Removal Tools
Virus Definitions & Security Updates
State of Spam Report
Internet Security Threat Report (ISTR)
Blogs
White Paper Listing
Glossary
Screensaver

Resources

Customer Success
Podcasts
CIO Digest
The Confident SMB
Articles
Webcasts & Events
SymantecTV
Downloads
Spotlight

Community

Symantec Connect
Archiving & eDiscovery
Backup & Recovery
Storage & Clustering
Security
Endpoint Management
Endpoint Virtualization
All Communities

Store

Purchase Online
Purchase Hosted Products
Renewals
Special Promotions

Symantec.com > Enterprise > Security Response > Backdoor.Bebshell

Bookmark & Share

Technorati

Digg

Delicious

StumbleUpon

Facebook

Yahoo

Twitter

Faves

Newsvine

Backdoor.Bebshell

Risk Level 1: Very Low

summary
technical details
removal

Printer Friendly Page|Rate this page

Discovered:: February 23, 2006
Updated:: February 13, 2007 12:51:33 PM
Type:: Trojan Horse
Systems Affected:: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

is a Trojan horse with back door capabilities that may arrive as a Windows Meta File that exploits the Microsoft Windows Graphics Rendering Engine WMF SetAbortProc Code Execution Vulnerability (as described in the Microsoft Security Bulletin MS06-001).

Antivirus Protection Dates

Initial Rapid Release version February 23, 2006
Latest Rapid Release version September 28, 2010 revision 054
Initial Daily Certified version February 23, 2006
Latest Daily Certified version September 28, 2010 revision 036
Initial Weekly Certified release date March 1, 2006

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy

Damage

Damage Level: Low

Distribution

Distribution Level: Low

Writeup By: Kaoru Hayashi

Technical Details

Search Threats

Search by name

Example: W32.Beagle.AG@mm

Careers|

About|

Site Map|

Legal Notices
License Agreements
Repository

Legal|

Privacy|

Cookies|

Norton Support
Business Support
Business Sales
Authentication Services
Corporate Information

Contact|

RSS

Symantec [+]
- AntiVirus|
- Backup Software|
- Encryption|
- Virtualization|
- Cloud Security|
- Configuration Management|
- Disaster Recovery|
- File Recovery|
- Remote Access Software|
- Business Continuity
Norton [+]
- AntiVirus|
- Backup Software|
- Internet Security|
- Malware|
- Online Backup|
- Phishing|
- Spyware|
- Virus Protection|
- Virus Removal|
- Virus Scan
Symantec Authentication Services [+]
- SSL|
- SSL Certificates|
- Extended Validation|
- Norton Safe Site|
- Two-Factor Authentication|
- Identity Protection|
- Website Malware Scan|
- Code Signing|
- Public Key Infrastructure|
- Website Vulnerability Assessment
PC Tools [+]
- Internet Security|
- Spyware Doctor with Antivirus|
- Performance Toolkit|
- Mobile Security|
- File Recovery|
- Spyware Doctor|
- Privacy Guardian|
- Free Antivirus|
- Password Manager|
- Registry Mechanic