Trojan horse Agent.4.bc
Posted 16 January 2010 - 02:59 AM
1) I've this persistent trojan, which AVG labels as trojan agent.4.bc.
Previously, my laptop (HP DV6000, Windows XP Home SP3) ran only with Zone Alarm, A-Squared Anti Trojan and AVG, all free versions and had performed well. At my last update of Zone Alarm (sometime November, I think) the laptop became sluggish so I sometimes made the wrong decision to lower the security level of ZA or turn it off altogether. It was a month thereafter that this trojan (as associated with svchost.exe) appeared and remained persistent.
Pop ups in AVG identified agent.4.bc frequently (detected on start). Although it offered to remove the infection, it never was quarantined (in fact, the quarantine log showed December 2009 as the latest entires, no 2010 entries). In Asquared, most infections were caught, but those found in svchost.exe (there's another system32 file which name escapes me) were never removed.
This week, I resolved to research on this and several discussions pointed to using MBAM. Installed, it got 15 infections, but agent.4.bc remains. Reading further, there is mention of ESET scan, HJT, Combofix, and AdAware or Spybot (both anti Spywares which I used years ago but discontinued when Asquared, AVG and ZA combo worked for years). Basically in that order.
I've installed AVG by now, relying on recommendations to use the more effective MBAM.
ESET scan got 7 infections. I didn't dare try HJT for now without expert help. It turns out, when I read on Combofix, it also requires expert help.
By the way, I tried looking into past forum posts but failed to find the same problem (maybe these are at the back of the archive list already).
So, this request for assistance. MBAM installed, ZA is on, HJT and Combofix downloaded. Kindly?
On my wits' end.
BC AdBot (Login to Remove)
Posted 16 January 2010 - 05:04 AM
I just noticed in the past week that there's a persistent pop-up page happening with my browser (Firefox 3.5.7). HP DV6000 running WinXP Home SP3. Might be related with my previous post:
Removed link since merged topics. ~ OB
Further assistance please? thanks!
Edited by Orange Blossom, 16 January 2010 - 10:08 PM.
Posted 16 January 2010 - 10:08 PM
==>PLEASE DO NOT NOW POST LOGS<== unless a log is specifically requested.
An ounce of prevention is worth a pound of cureSpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript