trojan horses

[saintyli]

everything i do on the net is being watched and i found tons of trojan horse virses using norton virus

i think there are more than that

it caught an IP 61.235.154.90 on port 50806 once
not quite sure if that was it

dont really know where it really comes from
is there a department or thingy where i can file charges whoever or whatever is doing the harassment because its more than a major disturbance

thanks to any help

[saintyli]

and there is a bent geocities site,
it says its over its bandwidth and would come back within an hour time

but i am sure its like remotecontrolled

its like it responds to me by going away or coming back when i do something on the screen

here is the link, <Removed>

yea its in chinese

[saintyli]

any computer expert or professional here?

i am troubled, profoundly.

what i would like to ask here is whether the following is possible:

u find trojan horses on the pc at home and realize whatever you're doing on the internet is being watched by something.
and then u go in a public place and go on the net there and find that you're still being watched.
and then u go in another and it goes the same.

yes i type things on the address bar and this thing <Removed> responds


does this mean the page could carry a virus which spreads by simply viewing it?

downloaded in less than a second and begins functioning already (seeing everything u're doing on the screen)

[saintyli]

the status bar on the bottom tells u things as well by going faster, slower, showing more or less

can this be done in computer programming

by the best professional?

sorry to have built up so many posts
this is really bothering me

[ronjor]

saintyli

Please refrain from posting links to possible malware type sites. Give your posts time and someone will respond. Thanks.

[Don Pelotas]

Why not take a look at this:http://www.wilderssecurity.com/showthread.php?t=50662,before this you could run the Kaspersky Webscanner from my signature.

[Beefcarver]

This site is very handy in identifying responsible IP addresses it will give you whos responsible, abuse reporting addresses and all info on where and who owns the offending domain. http://www.spamid.net/ Click on enter LSPCI software.
Dont worry nothing to download just put the IP numbers in and it will find it.

[Vikorr]

Saintyli

Hi (not a computer expert), but I can suggest a few things.

Firstly, since you don't mention it, I hope you have a firewall (not windows firewall either).


Secondly - just so you know, Nortons AV is not the best for detecting trojans.

Don Pelotas link to Kaspersky would be the best. But I would suggest you run a couple of other programs just to make sure you're clean.

Microsoft Antispyware (free)
Spybot S&D (free)
Ad-Aware SE (free)
Ewido (free anti-trojan)
A2 (free anti-trojan)
Rootkit Revealer from sysinternals (free)

If you want to try trial versions of some products (that I know of)
TrojanHunter
Webroot Spysweeper

There's also other free online anti-virus scanners out there, including Trend Micro , but I don't know the others off the top of my head.

You may have a remote access trojan on your computer, or perhaps a keylogger.

Lastly, once you have a clean system, you may want to take steps to prevent re-infection.

-harden your IE settings, or switch to Mozilla Firefox. To harden IE settings, see this link, halfway down left hand column http://www.spywarewarrior.com/uiuc/main-nf.htm
- use SpywareBlaster
- use IE-SPYAD if you use IE
- Add a HOSTS file,like this one http://www.mvps.org/winhelp2002/hosts.htm

-keep the above programs handy, update them regularly, and scan regularly

-Consider using a 'Host Intrusion Prevention System' program, like Prevx1, Safe-n-Sec, Online Armor (they are the most user friendly of the ones I know of), or a webbrowser sandbox like Shadowsufer, or surfinguard Pro (I think that's it's name, from Finjan)