• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 301
  • Last Modified:

virus information Win32.Agent.xjl

one of my users got this virus last night, my anti-virus told me about it but couldn't fix it. (its old)
I wanted to know more about this virus since this seems to be the second time someone got it.

I want to know how they are getting it,  What does it specifically do and so on.

I know it renders the users profile inoperable, and if I went into the folder where the virus was it would close that folder and then I was locked out of basically all folders saying I didn't have permission, until I rebooted.  Even from across the network I couldn't delete the file.  Only in safe mode could I delte the file and then run a virus scan to fix the rest of it.

Thank you
  • 2
1 Solution
Its being listed as a trojan dropper/downloader.

They usually sit around calling in re-inforcements. meaning, the downloaders are used to install other malware.

No way of telling how they got it.

to stave off more attacks -

Use an account in limited mode to do general stuff like surfing the web etc.

Have a real time scanner running to prevent attacks.

Stay away from sites with "Free full version software" in the title...lol.
codeyelloAuthor Commented:
For some reason it dropped an svchost.exe file in documents and settings\%username%\ folder.
We are currently looking into a newer virus software.
I can suggest a great one, and its free for personal use -

If you're looking for a new anti-virus suite you might take a look at this link. It gives a top ten review for 2009.

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now