remote system

Discussion in 'malware problems & news' started by rajasekhar, Jan 12, 2007.

Thread Status:
Not open for further replies.
  1. rajasekhar

    rajasekhar Registered Member

    Joined:
    Jan 12, 2007
    Posts:
    2
    Hi Every one,

    I got find Trojan Horse in my system.
    But I don't know how to recover from that and got susccessful with AVG anti virus software.
    And I got message box every time that some remote system is want's to access it with some IP address.
    I don't know how to recover from that.
    Can any one help me to find out this problem.

    Thank you,

    With regards,

    Rajasekhar Reddy.
     
  2. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    Hello,

    I must ask - how do you know you got a trojan horse?
    And if you do, keep the machine offline until you can clean it.

    Furthermore, I'll try to offer some help if possible, but you must give me precise details about the problem.

    Mrk
     
  3. rajasekhar

    rajasekhar Registered Member

    Joined:
    Jan 12, 2007
    Posts:
    2
    Thank you for your reply,

    I got confirmed that Trojan Horse is found from by scaning system with some anti virus software.
    And whenever I open mozilla firefox I usually get confirmation box that Application "Firefox" is trying to establish TCP connection with some remote IP address and here we can choose two optinx like allow and deny.
    So what con i do to solve this problem.

    Thank you.

    with regards.
    Rajasekhar.
     
  4. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    Hello,

    Firefox needs to establish a connection with a remote IP if you want to browse the Internet. And it will ask every time unless you create a permanent rule.

    What scans did you do?

    Before you declare trojan, you should:

    Make scans with at least 2-3 different anti-virus, anti-trojan, anti-spyware products.
    Check for strange files, folders, processes.
    Check for strange behavior - errors, BSOD, CPU etc.
    Try to analyze how you got infected.

    Here are a few tools you should scan you PC with:

    Kaspersky Free Online Virus Scanner
    http://www.kaspersky.com/virusscanner

    Panda ActiveScan
    http://www.pandasoftware.com/products/ActiveScan.htm

    Trend Micro Free online virus Scan
    http://housecall.trendmicro.com/

    BitDefender Online Scanner
    http://www.bitdefender.com/scan8/ie.html

    You can also download, in addition to your resident AV:

    ClamAV
    http://www.clamav.net/

    Download and use:

    asquared 2.0
    http://www.emsisoft.com/en/software/free/

    AVG AS 7.5 - you got it already, you say.
    http://free.grisoft.com/doc/20/lng/us/tpl/v5

    SuperAntiSpyware
    http://www.superantispyware.com/

    Spybot Search & Destroy
    http://www.safer-networking.org/en/download/index.html

    Ad-Aware SE
    http://www.lavasoft.com/

    Also download ATF Cleaner and empty temporary files of your system:
    http://www.atribune.org/content/view/19/2/

    After that, check for symptoms.

    BTW, what is your resident AV? Do you use a firewall?

    Mrk
     
Loading...
Thread Status:
Not open for further replies.