So I went to school and when I came back I connected remotely into my spare computer in the living room. I saw the black DOS panel in winblows up with some activities on it. This computer is a bit insecure, can anybody explain to me what you think may be going on. From the looks of it it's viruses up do to a new roommate being of Indian origin using it as his public computer.

In the screen you can see port used, and IP which is not my IP as well as it's from a different location but still local as I did a whois on the IP it's just a few miles away. Also note user t g, and filed xj.exe which I know off hand is a trojan. I assume their is a trojan on that machine and they will be using it for a zombie or maybe out of curiosity. Anybody else have any input on this. Just wondering if I should pursue this person virtual or not. suppsoe if he's interested I'd like to contact him because it's cool to meet others locally with same interests well that was a interest when I was a kid.


http://img5.imageshack.us/img5/1413/infected112233.jpg

Looks like somebody was able to exploit something in order to run some code. They started a command prompt, opened FTP, and tried to download and run a file. Your firewall prevented it from happening.

Trace him to death! >:O

Stowen did it.

I was able to find out it was a file that the India dude downloaded onto the computer. This file allowed backdoor access to my computer extending port numbers. The computer dial into for XJ.exe file was a zombie computer per say it was also infected the same way as this computer through e-mail then attempted to access some computer to receive the rest of the commands. The file it was going to download is a keylogger at least that's what I would guess. The file from my records was downloaded when this Indian individual accessed his e-mail and clicked something inside of it...

I suppose what I'll try to do is notify the person who is infected as well and see what else can be done in the mean time I reformatted the spare computer and left a nasty note on the desktop do the Indian who barely speak Engresh can read... Now I have to observe my logs more closely >_<

___Merged doublepost__________________

Looks like somebody was able to exploit something in order to run some code. They started a command prompt, opened FTP, and tried to download and run a file. Your firewall prevented it from happening.

Anyone recommend any programs for this computer? I'm thinking spy bot with tea timer on it...

lol why do you keep referring to him as "The Indian Dude"... does it matter that he's Indian?

lol why do you keep referring to him as "The Indian Dude"... does it matter that he's Indian?

No he pisses me off that's why or he wouldn't be mi roommate.

Stowen did it.

Actually, no. I didnt. xD

Dont lie stowen you indian dude..

lol I'm not the indian dude living with him xD

r u sure?

Yes lol

HINDIBINDIBABITYBOOP!

pfft, right.

... I'm not the indian dude living with him...

Thats what all indian dudes say tbh...

Thats what all indian dudes say tbh...

LMAO

lmao

Laugh my ass off.

r u sure?

Naw he is lying he is indian!:eek:

Hush, you!