Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Secure? computer infected by Trojan

Status
Not open for further replies.
mdforchildren

mdforchildren

MIS
Mar 28, 2003
2
US
A webserver running IIS 4 with the Microsoft Lockdown utility and URL Scan, which is presumably secure became infected with the bat/ircflood trojan. Fortunately, a realtime virus scanner caught and deleted the trojan, but we are hoping to find out how the computer became infected in the first place (trojan found in winnt\system32). The IIS logs didn't show anything, and neither did the URL Scan, FTP, and event logs. The only access to the computer is through several users with FTP access. We do have an adminstrative share on the winnt folder and a web application which must use some files under the winnt folder (presumably DLLs).
If anyone has any suggestions as to where to look to determine how someone got in and infected the computer it would be greatly appreciated.
 
Sort by date Sort by votes
Status
Not open for further replies.

Similar threads

texwiz
  • Locked
  • Question
need some help to properly set up, segregate and secure a network with an ASA 5505
Replies
2
Views
202
texwiz
texwiz
kythri
  • Locked
  • Question
Restrict access to SSL VPN by IP (ASA 5540 - 8.4(7))
Replies
0
Views
151
kythri
kythri
Spork52
  • Locked
  • Question
Is this secure? Serving content from two servers with SSL
Replies
3
Views
187
ChrisHirst
ChrisHirst
jrothwell88
  • Locked
  • Question
Secure network design
Replies
2
Views
97
jrothwell88
jrothwell88
RodneyMcSnow
  • Locked
  • Question
Hardware firewall bypassed access to the lan network. Please Help! No it's not a root kit or virus
Replies
1
Views
168
ChrisHirst
ChrisHirst

Part and Inventory Search

Sponsor

Back
Top