« previous next »
Pages: [1]   Go Down

Author Topic: Trojan.Gen/Bot-Dropper  (Read 4303 times)

0 Members and 1 Guest are viewing this topic.

bran34

  • Guest
Trojan.Gen/Bot-Dropper
« on: January 03, 2010, 10:25:59 AM »
I was going through my processes today after my firefox acting up and found this. Searched it on Bleepingcomputer, and it's not on there. So, what could it be?  :-\
Browser isn't hijacked, but firefox is running slow. (although it usually does anyways)

My friend sent me to a site (it was a .com site, not .tk, so I stupidly thought it was legit...)
He then proceeds to tell me it was actually a keylogger...

Currently running an SAS scan, after that i'll run a MBAM scan, and then I'll run an Avast! Scan (they take the longest, so i'm saving that for last.)

EDIT: Googled it (Next time I need to google before I post.), apparantly it's part of Bing... Why does microsoft have to give their processes such random names?!  >:(

It also appears I am coming off as a bit paranoid about my processes.  :-X

However, there still remains that problem of my friend telling me the site was a keylogger...
 THIS PART IS RESOLVED, NEW PROBLEM



Well, this has escalated...
SUPER anti-spyware ran into a file called
Trojan.Gen/Bot-Dropper... I removed it and restarted as it said, Now i'm running a MBAM scan to make sure it's gone.

However, MBAM is intent on going through every single file in my fallout 3 folder...  Roll Eyes


MBAM came up with something called Rogue.Installer... When will this end?!
« Last Edit: January 03, 2010, 11:14:51 PM by bran34 »
Logged

CharleyO

  • Guest
Re: SeaPort.exe
« Reply #1 on: January 03, 2010, 11:20:56 AM »
***

Do you use any Windows Live applications? If so, see the link below :

http://forevergeeks.com/why-is-seaport-exe-process-running-on-my-computer

This could also be part of Microsoft's Search Enhancement Pack :

http://www.pcpitstop.com/libraries/process/i/SeaPort.exe.html

Also, see the below links for more information :

http://www.what-is-exe.com/filenames/seaport-exe.html

http://hubpages.com/hub/Windows-Live-Writer-Blogging-Tool-Seaport-Office-Add-in


Also, compare the MD5 hash numbers :

http://www.backgroundtask.eu/Systeemtaken/Taakinfo.php?ID=21078


***
« Last Edit: January 03, 2010, 11:24:40 AM by CharleyO »
Logged

bran34

  • Guest
Re: SeaPort.exe
« Reply #2 on: January 03, 2010, 12:52:24 PM »
Well, this has escalated...
SUPER anti-spyware ran into a file called
Trojan.Gen/Bot-Dropper... I removed it and restarted as it said, Now i'm running a MBAM scan to make sure it's gone.

However, MBAM is intent on going through every single file in my fallout 3 folder...  ::)
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33897
  • malware fighter
Re: SeaPort.exe
« Reply #3 on: January 03, 2010, 03:13:43 PM »
SeaPort.exe is part of a software pack.
You can diable it when you need more memory or of CPU
http://theparallaxview.com/2009/01/seaportexe-2/

Classification           Backgroundtask               Part of Microsoft search enhancement

Firm Microsoft          Safe

Further info:            SeaPort.exe is part of the Microsoft search enhancement van Microsoft. Is being installed with apllications like MSN.

Advice:                   You may close down SeaPort.exe to free memory power or processor power to be used for other purposes.

File versions   

Version number    MD5 Hash for SeaPort.exe

1.2.121.0            58DC20EB15F071804C56FCCC796417A2        Safe
   

1.2.123.0            D358E077A0A05D9B12DA22D137EE8464         Safe
   
1.3.59.0              271077B91D7AD1B616F8AFDFE8E3F981         Safe

2.0.264.0            CA7E42E0B8D117165ED553A7D681352A         Safe
   
polonus

Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »