I've been trying to use FTP to add items to my weblog, but whenever I try to connect to an FTP site, my norton firewall blocks access from the site stating 'Sokets de Trois V1.0 Trojan'. I've performed a full trojan scan, and I don't appear to have it on my system. I've also tried connecting to other ftp addresses and encoutered the same problem. Any ideas?

Give this a try, its free; Swat It

hi bastian, here's some info on sockets de troie. Name: Sockets des Troie Aliases: Sockets23, Lame, BACKDOOR.KAMIKAZE, IRC_TROJAN, TROJ_BACKDOOR,W32/Cheval.gen , Backdoor.Sockets23, Ports: 1 (UDP), 5000, 5001, 30303, 50505, 60000, 65000 Files: Sdt2.3.zip - 855,872 bytes Sockets23.zip - 849,499 bytes Sockets23.exe - 1,082,880 bytes Genvirus.exe - 779,797 bytes Mschv32.exe - Mgadeskdll.exe - 339,456 bytes Rsrcload.exe - 339,456 bytes Csmctrl32.exe - 339,456 bytes DrvCtrl95.exe - 322,560 bytes Lcv_sys.exe - Discv.dll - Tcv.exe - Dcv.exe - Winstart.bat - Created: June 1998 Requires: Actions: Remote Access / ICQ trojan Sockets des Troie is French for Trojan Sockets and was one of thevery first Remote Access trojans being published. Versions: 1.0, 1.1, 2.1, 2.2, 2.3, 2.5, Registers: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\HKEY_CLASSES_ROOT\DirectSocketsDrv\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunLoad\ Notes: Works on Windows 95 and 98, together with ICQ. Features as telnetand finger for more info on trojans go to: www.thepublicworks.com security section and link to simovits consulting, trojan ports, you may also want to link to pcflank and do a trojan and port scan as ftp ports are 20 and 21, sockets de troie affects among others port 5000 which is also a plug and play port. all the best, take care, murve

Thanks for your help. No trojans seem to be present on my system though. When I try to do a port scan the firewall kicks in again warning me of a backdoor trojan from the scan site. I think I'm just gonna give up on this one. Trojans everywhere! *huddles in corner*