PDA

View Full Version : Trojan?



Brian
04-08-2003, 01:22 PM
My CD-Rom drive has been popping out randomly recently, and sometimes my mouse becomes relatively unresponsive (wobbles from side to side when trying to move it) So I quickly diagnosed it as a trojan, and hit the standby button on my cable modem. After running a complete scan with AVG, and changing my firewall from cygate to zonealarm I found absolutely nothing. I blocked some incoming packets on port 1640 1641 1639 afterwards all from the same source ip.

I don't know what this could be

Brian
04-08-2003, 01:43 PM
Ah I got the $$$$$, it was optix pro. Don't know how much of my personal data, ie credit card $$$$, passwords etc was stolen yet. This appears to be quite a nasty guy. If you think you could have this, I highly recommend you go here http://scan.sygate.com/trojanscan.html and get your ports probed remotely, because optix disables many firewalls/virus scanners with scary effectiveness.

dP munky
04-08-2003, 02:06 PM
sounds like a trojan to me. i used to be into that, just to mess w/peoples computers, opening cdrom's, resetting desktop backgrounds w/adult entertainment ...ya know, normal teenager stuff...the thing is, a trojan could be running from any hidden dll or exe on your computer. i'd disconnect and go through every .exe or .dll created or modified in the last week

if you know any cops, they might be able to help you find the ass hole who screwed you

Brian
04-08-2003, 02:08 PM
Yeah. I found and got rid of the trojan (i hope) with a very up to date trojan-specific scanner. I'm just hoping he didn't bother with the keystroke logging. But it didnt give me much information about the trojan which sucks, because I was gonna root through it for IP addresses and such.

Fountain
04-08-2003, 02:41 PM
Scanning . . .
Scanning . . .
Scanning . . .
Scanning . . .
Scanning . . .
Scanning . . .
Scanning . . .

You have blocked all of our probes! We still recommend running this test both with
and without Sygate Personal Firewall enabled... so turn it off and try the test again.
If you are not already running our Enterprise Security Agent or our Personal Firewall,
try our Award-Winning Personal Firewall now. <<

Why try it with firewall off? Somebody explain!

Brian
04-08-2003, 03:52 PM
Originally posted by Fountain

Why try it with firewall off? Somebody explain!

Because if you do if a trojan and your firewall does block it, what if your firewall isnt working for a while? you'd be vulnerable and wouldnt know you had a trojan.

RoD
04-08-2003, 07:13 PM
and i came looking for a condom discussion....:(

Brian
04-09-2003, 12:37 AM
Originally posted by RoD
and i came looking for a condom discussion....:(

haha. i liked it in the simpsons episode where they reinacted the seige of troy. and when it was all over ned said
"now whenever somebody sees wood, they'll think of trojans"

RoD
04-09-2003, 04:06 AM
lmfao yea the simpsons rock.

LuckY
04-09-2003, 11:26 AM
Hahahaha. good quote... Yeah, the Simpsons own.

Xei
04-09-2003, 03:09 PM
Originally posted by LuckY
Hahahaha. good quote... Yeah, the Simpsons own.

"I second that!"

Hahaha, Sygate is funny. Port 2003 & 5000 are open! You must have a trojan!

Anyways, if you are all that paranoid... go get ZoneAlarm, its for free and it does the best job of any FireWall I have ever seen. However, Firewalls arn't really necessary for personal use.

Commander
04-09-2003, 09:18 PM
Originally posted by Xei
go get ZoneAlarm, its for free and it does the best job of any FireWall I have ever seen. However, Firewalls arn't really necessary for personal use. I used to use it, but stopped because it can be a real pain in the arse....it's blockes some NEEDED javascripts shut