Author Topic: Eeeks! Should I Be Concerned? (Read 2998 times)

as400 · « **on:** October 12, 2004, 01:45:40 PM »

PC seems to have been losing its connection A LOT recently, have a 2mb ADSL with Nildram, the orange dot in taskbar says connected but any page I go to is 'not available'.

Scanned with Avast but found nothing, scanned with Trends free on line service and it found

WORM AGOBOT.XM in E/WIN/SYS32/UPC32.EXE

not removalable!

Is this causing my loss of connection issues every 40 min utes and PC lock ups?...any clues on how to rid the nasty worm and why doesnt Avast pick it up?!!

RejZoR · « **Reply #1 on:** October 12, 2004, 01:54:22 PM »

Recently there has been many Agobot variants so its posible that avast! misses certain one. I recommend you to manually delete the file in Safe-Mode. Id also like you to send the copy of sample to avast! virus gurus, so they'll add it to definitions.

as400 · « **Reply #2 on:** October 12, 2004, 01:56:23 PM »

OK remove it yes, good, but Trend said it wasn't removable?..how do I remove it in 'safe mode'?...excuse my dumbness!...and then how do I send it to Avast?...isn't that dodgy?

Cheers!... $:-\$

Eddy · « **Reply #3 on:** October 12, 2004, 03:08:11 PM »

- Boot in safe mode
- Put the file in a password protected zip
- send it to virus@avast.com (mention in the mail you think it is infected and the password)
- Delete both the original as well as the zip from your system
- Reboot

It is reported as "not removable" because it is in use. Safe mode only loads things really needed for the system to work at a minumum, so that file shouldn't be in use and you can delete it.

Author Topic: Eeeks! Should I Be Concerned? (Read 2998 times)

as400

Eeeks! Should I Be Concerned?

RejZoR

Re:Eeeks! Should I Be Concerned?

as400

Re:Eeeks! Should I Be Concerned?

Eddy

Re:Eeeks! Should I Be Concerned?