Trojan.agent.bgy
Need help to solve virus problem. Bitdefender found trojan.agent bgy but couldn't fix or move problem. I even tried to run is safe mod, but pc stops responing during RUN type in cmd. 
" /> I also can find a removal tool.
Comments
-
Hi thegr8one,
Nobody can help you if you don't provide more details, like:
- what files were infected
- where are those files
- the number of infected files, etc...
Please post all this info and then someone might be able to help you.
Cris.0 -
Hi thegr8one,
Nobody can help you if you don't provide more details, like:
- what files were infected
- where are those files
- the number of infected files, etc...
Please post all this info and then someone might be able to help you.
Cris.
//-----------------------------------------------------------------
//
// Product BitDefender Antivirus Plus v10
// Product 10.2
//
// Created on: 11/10/2007 12:08:06
//
//-----------------------------------------------------------------
Virus Statistics
Scan path : C:\
Folders : 6811
Files : 245214
Memory processes scanned : 35
Archives : 8132
Runtime packers : 6814
Identified viruses : 1
Infected files : 3
Memory processes infected : 0
Suspect files : 0
Warnings : 0
Disinfected files : 0
Deleted files : 0
Moved files : 0
I/O errors : 29
Scan time : 01:43:22
Scan speed (files/sec) : 39
Spyware Statistics
Registry keys scanned : 1736
Registry keys infected : 0
Cookies scanned : 1065
Cookies infected : 0
Spyware files infected : 0
Spyware threats detected : 0
Virus definitions : 899496
Scan plugins : 16
Archive plugins : 41
Unpack plugins : 7
Mail plugins : 6
System plugins : 5
Virus scan options
Detection
[X] Scan boot sectors
[X] Memory Processes
[X] Scan archives
[X] Scan runtime packers
[X] Scan email
File mask
[ ] Programs
[X] All files
[ ] User defined extensions:
[ ] Exclude extensions: ;
Action
Infected objects
[ ] Ignore
[X] Disinfect
[ ] Delete
[ ] Move to quarantine
[ ] Prompt user
Second action
[ ] Ignore
[ ] Delete
[X] Move to quarantine
[ ] Prompt user
Virus scan options
[X] Enable warnings
[X] Enable heuristics
[ ] Show all files in log
[X] Report file: C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1192118886.log
Spyware scan options
[X] Scan for riskware
[ ] Skip dial and applications from scan
[X] Registry keys
[X] Cookies
Summary:
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\5M5R3MMJ\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Infected: Trojan.Agent.BGY
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\5M5R3MMJ\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Disinfection failed
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\5M5R3MMJ\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Move failed
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Infected: Trojan.Agent.BGY
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Disinfection failed
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[1].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Move failed
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[2].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Infected: Trojan.Agent.BGY
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[2].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Disinfection failed
C:\Documents and Settings\Deb Bond\Local Settings\Temporary Internet Files\Content.IE5\WH440PVE\bpftp245[2].exe=>(Instyler o)=>(Instyler Module 8)=>(Instyler o)=>(Instyler Module 3) Move failed0 -
Hi thegr8one,
Now it's all a lot more clear.
The infected files cannot be disinfected or moved because they are placed in the Temporary internet Files. Those files are compressed. BitDefender can decompress and scan the files, but it cannot recompress them, so it cannot do anything to remove/modify files that are infected.
The solution is simple:- Disable BitDefender Realtime protection
- Go to Start -> All Programs -> Applications -> System tools and select Disk cleanup (select Drive C for scan)
- After the scan is complete, select from the list Temporary internet files (you can leave the otherones unselected, but you can also select them. It's your choise)
- Click OK and confirm by pressing Yes
- Re-enable BitDefender Realtime protection
- Make another scan with BitDefender to assure that the virus is gone
Cris.0 -
Cris. Thank you for the info. Problem solved.
0 -
Cris. Thank you for the info. Problem solved.
I thought problem was solved but it's not still got it.0 -
Is it about the same file, or is another file?
Try to disable BitDefender Realtime Protection and delete the infected file(s) manually. Don't forget to re-enable the Realtime Protection.
To manually find and delete the file(s), you have to set Windows to show you the Hidden Files and Folders. Do this:- Open Explorer
- Go to Tools -> Folder options... -> View
- At the section Hidden files and folders select Show hidden files and folders
- Click OK
If, after you delete the files, they appear again (the same files, or different files with the same infection), it means you have another infection that restores the viruses.
Cris.
P.S.: Keep Internet Explorer closed until after you have deleted the file.0 -
Sorry for the late update. Well I tried everything but couldn't get rid of virus, virus stay in same location. Couple days later after many hours pc is format and tweak. Needed to make beer during it all.
Thanks for all ideas!0
