trojan horses

Discussion in 'malware problems & news' started by saintyli, Jul 21, 2005.

Thread Status:
Not open for further replies.
  1. saintyli

    saintyli Registered Member

    Joined:
    Jul 21, 2005
    Posts:
    4
    everything i do on the net is being watched and i found tons of trojan horse virses using norton virus

    i think there are more than that

    it caught an IP 61.235.154.90 on port 50806 once
    not quite sure if that was it

    dont really know where it really comes from
    is there a department or thingy where i can file charges whoever or whatever is doing the harassment because its more than a major disturbance

    thanks to any help
     
  2. saintyli

    saintyli Registered Member

    Joined:
    Jul 21, 2005
    Posts:
    4
    and there is a bent geocities site,
    it says its over its bandwidth and would come back within an hour time

    but i am sure its like remotecontrolled

    its like it responds to me by going away or coming back when i do something on the screen

    here is the link, <Removed>

    yea its in chinese
     
    Last edited by a moderator: Jul 21, 2005
  3. saintyli

    saintyli Registered Member

    Joined:
    Jul 21, 2005
    Posts:
    4
    any computer expert or professional here?

    i am troubled, profoundly.

    what i would like to ask here is whether the following is possible:

    u find trojan horses on the pc at home and realize whatever you're doing on the internet is being watched by something.
    and then u go in a public place and go on the net there and find that you're still being watched.
    and then u go in another and it goes the same.

    yes i type things on the address bar and this thing <Removed> responds


    does this mean the page could carry a virus which spreads by simply viewing it?

    downloaded in less than a second and begins functioning already (seeing everything u're doing on the screen)
     
    Last edited by a moderator: Jul 21, 2005
  4. saintyli

    saintyli Registered Member

    Joined:
    Jul 21, 2005
    Posts:
    4
    the status bar on the bottom tells u things as well by going faster, slower, showing more or less

    can this be done in computer programming

    by the best professional?

    sorry to have built up so many posts
    this is really bothering me
     
  5. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,772
    Location:
    Texas
    saintyli

    Please refrain from posting links to possible malware type sites. Give your posts time and someone will respond. Thanks.
     
  6. Don Pelotas

    Don Pelotas Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    2,257
  7. Beefcarver

    Beefcarver Registered Member

    Joined:
    Jan 23, 2005
    Posts:
    263
    Location:
    michigan
    This site is very handy in identifying responsible IP addresses it will give you whos responsible, abuse reporting addresses and all info on where and who owns the offending domain. http://www.spamid.net/ Click on enter LSPCI software.
    Dont worry nothing to download just put the IP numbers in and it will find it.
     
  8. Vikorr

    Vikorr Registered Member

    Joined:
    May 1, 2005
    Posts:
    662
    Saintyli

    Hi (not a computer expert), but I can suggest a few things.

    Firstly, since you don't mention it, I hope you have a firewall (not windows firewall either).


    Secondly - just so you know, Nortons AV is not the best for detecting trojans.

    Don Pelotas link to Kaspersky would be the best. But I would suggest you run a couple of other programs just to make sure you're clean.

    Microsoft Antispyware (free)
    Spybot S&D (free)
    Ad-Aware SE (free)
    Ewido (free anti-trojan)
    A2 (free anti-trojan)
    Rootkit Revealer from sysinternals (free)

    If you want to try trial versions of some products (that I know of)
    TrojanHunter
    Webroot Spysweeper

    There's also other free online anti-virus scanners out there, including Trend Micro , but I don't know the others off the top of my head.

    You may have a remote access trojan on your computer, or perhaps a keylogger.

    Lastly, once you have a clean system, you may want to take steps to prevent re-infection.

    -harden your IE settings, or switch to Mozilla Firefox. To harden IE settings, see this link, halfway down left hand column http://www.spywarewarrior.com/uiuc/main-nf.htm
    - use SpywareBlaster
    - use IE-SPYAD if you use IE
    - Add a HOSTS file,like this one http://www.mvps.org/winhelp2002/hosts.htm

    -keep the above programs handy, update them regularly, and scan regularly

    -Consider using a 'Host Intrusion Prevention System' program, like Prevx1, Safe-n-Sec, Online Armor (they are the most user friendly of the ones I know of), or a webbrowser sandbox like Shadowsufer, or surfinguard Pro (I think that's it's name, from Finjan)
     
Loading...
Thread Status:
Not open for further replies.