Avast WEBforum

Other => Viruses and worms => Topic started by: Peter_in_Sweden on February 24, 2023, 11:15:05 AM

Title: VBS:Agent-BCH
Post by: Peter_in_Sweden on February 24, 2023, 11:15:05 AM: Yesterday, AVAST removed the malicious code, but in any case, I wonder what other people's experience is with all the code being gone. Have read here on the forum that it does not always succeed.
Ciao from Sweden

This is the message I got:
Everything is gone!
We've removed all the harmful stuff, so now you can blow off steam.
VBS:Agent-BCH

Everything is gone!
We've removed all the harmful stuff, so now you can blow off steam.
VBS:Agent-BCH
Title: Re: VBS:Agent-BCH
Post by: polonus on February 24, 2023, 01:00:35 PM: The script is embedded into HTML websites and designed to exploit a vulnerability described here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0003

Damage:
Stolen banking information, passwords, identity theft, victim's computer added to a botnet.

Infested webpages, fake software are often ways for cybercriminals to infest with VBS:Agent-BCH.
Always be careful with opening suspicious mails, never use so-called cracking-tools, fake software etc.

Be aware now to not being re-infested.

polonus
Title: Re: VBS:Agent-BCH
Post by: Peter_in_Sweden on February 24, 2023, 07:20:21 PM: Thanks for feedback on this issue Polonus!
I think its time for me to do an startup full scan
Scan for threats before Windows starts.
Ciao!
Peter

SMF 2.0.18 | SMF © 2015, Simple Machines