Mainframeguy
Debiant by way of Ubuntu
- Joined
- 29 Aug 2002
- Messages
- 3,763
since about six weeks ago (been on holidays meantime) I have been getting the following intercepted by my AV - see screenie attached.
This usually occurs whilst I am away from the machine, I think it always has actually. I believe the JAR file is the key and this is a JAVA Runtime of some sort, my question is if anyone could give me some idea of the origins? Scans of my machine come up clean after the interception so I don't think anything is getting through.
I believe cidaemon is a legitimate service - presumably this trojan is attempting to hijack it?
I run Adaware and Spybot regularly and will post a hijackthis! log if anyone thinks it will help.
Any ideas of lines to persue appreciated - or if anyone thinks my AV is simply doing it's job and I should continue without concern, equally useful information.
This usually occurs whilst I am away from the machine, I think it always has actually. I believe the JAR file is the key and this is a JAVA Runtime of some sort, my question is if anyone could give me some idea of the origins? Scans of my machine come up clean after the interception so I don't think anything is getting through.
I believe cidaemon is a legitimate service - presumably this trojan is attempting to hijack it?
I run Adaware and Spybot regularly and will post a hijackthis! log if anyone thinks it will help.
Any ideas of lines to persue appreciated - or if anyone thinks my AV is simply doing it's job and I should continue without concern, equally useful information.