bigstusexy
2[H]4U
- Joined
- Jan 28, 2002
- Messages
- 3,194
I have a computer and I think its sending spam, I can't find what is doing it. The only reason why I noticed is a went to do a routine check on it as it had been marked as trying to access a spyware page and possibly having a Trojan.
When I loged it it was fine but then I logged in as an admin and I started to see tons of scanning messages from Symantec Antivirus Corporate 10 and then a few error messages about not being able to send messages etc etc.
I updated the patterns and the only thing it found was Trojan.Pandex in a few files. They were cleaned and I scanned with spybot as well and nothing really big was found.
Whenever I go back to the system and give it internet access again the mail scanning messages start again and the realtime finds Trojan.Pandex in attachements its trying to put into messages.
I can't for the life of me find what is doing it! I've ran a netstat -b -n -v and found no dlls or attached processes that I didn't recgonize, no processes themselves were contacting the netnet also. The only contact I can see with SMTP seems to be symantec exes and well as svchost (the real one) and system process sometimes!
When I loged it it was fine but then I logged in as an admin and I started to see tons of scanning messages from Symantec Antivirus Corporate 10 and then a few error messages about not being able to send messages etc etc.
I updated the patterns and the only thing it found was Trojan.Pandex in a few files. They were cleaned and I scanned with spybot as well and nothing really big was found.
Whenever I go back to the system and give it internet access again the mail scanning messages start again and the realtime finds Trojan.Pandex in attachements its trying to put into messages.
I can't for the life of me find what is doing it! I've ran a netstat -b -n -v and found no dlls or attached processes that I didn't recgonize, no processes themselves were contacting the netnet also. The only contact I can see with SMTP seems to be symantec exes and well as svchost (the real one) and system process sometimes!