Backdoor Trojan Detection

deaditeash · #1 March 14th, 2002, 01:16 PM

Ok - I was using ProPort to monitor my port activity and it identified a suspicious active port = port 80 and says I possibly have the Backdoor Trojan. *I ended the connection in ProPort but what program should I use to scan for backdoor? *I have ANTS and it didn't detect anything...how can I know for sure. *I would prefer to use something without having to purchase...

deaditeash

Checkout · #2 March 14th, 2002, 04:51 PM

Quote:

how can I know for sure. *I would prefer to use something without having to purchase...

TDS-3 is inexpensive and you can't get better. *I understand completely how important peace of mind is when it comes to trojans, so don't short-change yourself. *However, try a few freebies from Wilders' anti-trojan page first, by all means.

deaditeash · #3 March 14th, 2002, 05:26 PM

Thanks for the info - I am going to install the evaluation version tonight...

Deaditeash

Checkout · #4 March 14th, 2002, 05:58 PM

There's a great deal to it, more than you might guess at first. *It works out-ofthe-box but you'll benefit from investing time in the docs - and you'll be eligible for the upcoming V4 release, which promises to be v. cool indeed. *I hope you have a good experience with it. *I have, and I still have a lot to learn about it.

No, apart from being utterly in love with Jooske, I have no affiliation with DCS.

But I'm open to offers, Wayne!

UNICRON · #5 March 14th, 2002, 07:45 PM

you are making me jealous after all those PMs!

Checkout · #6 March 14th, 2002, 07:55 PM

Quote:

you are making me jealous after all those PMs!

Oh, Unicron, you know you're the only DCS Moderator for me!

('Scuse me, I need to find a bown paper bag...)

Jooske · #7 March 14th, 2002, 09:53 PM

Johoo UNICRON, Girlspower and i'm not even blond... but i've other qualities. I'm so happy the TDS family is here1

wizard · #8 March 14th, 2002, 10:15 PM

Quote:

Ok - I was using ProPort to monitor my port activity and it identified a suspicious active port = port 80 and says I possibly have the Backdoor Trojan. *I ended the connection in ProPort but what program should I use to scan for backdoor? *I have ANTS and it didn't detect anything...how can I know for sure. *I would prefer to use something without having to purchase...

deaditeash

Which Windows version do you use? Some Windowsversion (NT/Win2k) maybe installed the Microsoft Internet Information Server (IIS). Did you checked if this is installed on your computer? Do you run any other web server software? Or maybe spyblocker?

If you use NT/2k/XP you can download Active Ports from http://www.ntutility.com/freeware.html . It is a freeware tools which gives you more information about which program opened a port.

wizard

deaditeash · #9 March 15th, 2002, 04:01 AM

I have Win ME and actually now I realize that it's probable just detecting SpyBlocker since that is listening on port 80...I also have Spybot, ad-aware, and I just scanned with eval of TDS and no trojans found!

deaditeash

wizard · #10 March 15th, 2002, 08:28 AM

Yes Spyblocker keeps Port 80 open. So need to worry.

wizard

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search