• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 301
  • Last Modified:

virus information Win32.Agent.xjl

Win32.Agent.xjl
one of my users got this virus last night, my anti-virus told me about it but couldn't fix it. (its old)
I wanted to know more about this virus since this seems to be the second time someone got it.

I want to know how they are getting it,  What does it specifically do and so on.

I know it renders the users profile inoperable, and if I went into the folder where the virus was it would close that folder and then I was locked out of basically all folders saying I didn't have permission, until I rebooted.  Even from across the network I couldn't delete the file.  Only in safe mode could I delte the file and then run a virus scan to fix the rest of it.

Thank you
Mike
0
codeyello
Asked:
codeyello
  • 2
1 Solution
 
Dirtpatch-JenkinsCommented:
Its being listed as a trojan dropper/downloader.

They usually sit around calling in re-inforcements. meaning, the downloaders are used to install other malware.

No way of telling how they got it.

to stave off more attacks -

Use an account in limited mode to do general stuff like surfing the web etc.

Have a real time scanner running to prevent attacks.

Stay away from sites with "Free full version software" in the title...lol.
0
 
codeyelloAuthor Commented:
For some reason it dropped an svchost.exe file in documents and settings\%username%\ folder.
We are currently looking into a newer virus software.
0
 
Dirtpatch-JenkinsCommented:
I can suggest a great one, and its free for personal use -

http://www.avast.com/
0
 
David-HowardCommented:
If you're looking for a new anti-virus suite you might take a look at this link. It gives a top ten review for 2009.
http://anti-virus-software-review.toptenreviews.com/
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now