Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Citrix Spyware Solution?

Status
Not open for further replies.
Chambers

Chambers

IS-IT--Management
Jan 19, 2001
257
US
So I found out today that all of my Citrix Server somehow got spyware on them! Any of you come across this? How did you handle it? What's the best software for Metaframe Servers? I never thought Citrix could get spyware?
 
Sort by date Sort by votes
Any suggestions? I'm going to be doing some house cleaning tomorrow.
 
Upvote 0 Downvote
AFAIK any windows PC can get malware. Other OS's less so, perhaps because they don't use activeX, but that's a religous arguement for another place and time. I would suggest running spybot and ad-aware in safe mode after updating their definitions. And I've heard ( haven't seen yet ) that some malware will install in that single user's context only, so you would have to log in and run the antispyware apps as each user... perhaps.

 
Upvote 0 Downvote
Guess it wasn't as hard as I thought it would be. Logged into the Server in Safe mode, deleted the bad directories, ran hyjackthis, got rid of some bad entries, rebooted Server, back to normal :)
 
Upvote 0 Downvote
Good deal. I've seen three or four where the malware is aware of your attempts to remove it even in safe mode. Great fun if you have the time to track them down. <BG>
 
Upvote 0 Downvote
We use Trend's Server Protect product and have no issues with Citrix.

Just this week I went to a website that immediately tried to download two viruses while in my Citrix session.

They were caught and deleted before I even new about it.
 
Upvote 0 Downvote
Had this happen recently and it was a pain to gt rid of.

The spyware kept jumping around between two users so I had everybody shut down their thin clients/PC's for the night to prevent any memory resident stuff. Disconnected the server from the network and ran the following -- repeatedly.

Here's how:
Run A/V software
Run Anti-spyware (Ad-Aware or Spybot)Although Ad-aware found over two hundred items more.
You will get a message showing you where the spyware is located. Sometimes you have to turn on 'show system files'.
Safely delete the items mentioned.

Hope this helps,
Kevin
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

damienenglish
  • Locked
  • Question
Citrix Replication Fault Detection
Replies
0
Views
102
damienenglish
damienenglish
DreemaGurl
  • Locked
  • Question
Can't log on to Citrix through emote access portal
Replies
1
Views
245
ntinlin
ntinlin
Hfnet
  • Locked
  • Question
Office 2010 KMS stoppped working on PVS Citrix
Replies
0
Views
82
Hfnet
Hfnet
dpsmith
  • Locked
  • Question
Citrix Policy disappears?
Replies
0
Views
71
dpsmith
dpsmith
SpenceWaller
  • Locked
  • Question
Citrix CSG - Allow users to change password
Replies
0
Views
78
SpenceWaller
SpenceWaller

Part and Inventory Search

Sponsor

Back
Top