Getting rid of BackDoorAgent.BA

I have been trying to remove this nasty thing from my son's computer for a week now. I have done everything I have read about and it won't go away.

I might have made a mistake when I read to rename it and drag it to the desktop. I did that and have run the Symantec Fix it software with no luck.

I can't reboot in safe mode, it won't let me go to safe mode. I can't download anything from the net, because the home page is hijacked. Everyonce in a while I can get to google. When I do searches they all come back to the hijacked pages.

I am ready to reformat and I don't want to. He has a lot of stuff on here and the CD drive has somehow been disabled. He didn't keep anything updated, which he has been told about. I have removed at least 13 viruses with AVG and so far none are coming back, but this BackDoorAgent thing.

Do I give it up and reformat? I can't spend much more time on it, this is my business's busy season and I also work full time.

Help?

nancy

 

I tried going to Start/Run and then typed in msconfig. It says it can not find, make the path and file name are correct.

I have tried tapping F8 at least a dozen times when I have rebooted and it just won't let me go into safe mode.

There are additional programs installed also, and it won't let me remove them through the control panel. The remove button is greyed out.

I think I have a mess, huh?

nancy

 

I have tried the fix it from Symantec and it doesn't find it. I ran AVG again last night and it is still there. I am ready to give up and reformat. I have Windows 2000 as the OS, but I can't even see the CD drive in the hardware list. I was just going to reformat and reinstall Windows XP Pro. But, without the CD drive being recognizable, I am lost.

I am going to download those other files on my computer and put them on a floppy if they will fit.

I was ready to throw in the towel and start over, but I can't even do that. He just got a new game today also and is patiently waiting for me to see if I can get this fixed.

Thanks.

Nancy

 

I know it is getting really difficult. I can't even open My Computer to access the drive that I downloaded the files too.

I can get to the task manager, but there is a huge list of processes and I don't see one that says Back Door, I am sure it is there under an alias. I am not sure what should be there and what shouldn't. I probably need to close any programs in the task bar to make sure I don't kill something I shouldn't.

I am really ready to reformat, but if I can't get the CD drive to work then it won't do me any good.

Nancy

 

I found a list of everything I should have in task manager, deleted what I could. There are a few left that I am not sure about, they weren't in the list from MS, but they won't allow me to delete them.

avgserv.exe (I closed AVG and this till shows)
hidserv.exe
regsvc.exe
MsPMSPSv.exe

Everything else is legitimate.

I am to the point of just thinking about repalcing the hard drive. This machine has the memory, graphics and sound card he needs for his games. Hard drives aren't that expensive anymore, so that may be an answer. I have replaced CD burners and done a very small amount of hardware stuff, but I can ask a guy that used to work for me to replace it, if it overwhelms me.

I am to the point of feeling this "thing" is winning and it makes me mad. I can't believe how hard it is to find and eliminate. I have cleaned up people's computers before and taught them how to do the disk clean up and defrag. I don't give up easily and sounds like you guys don't either.

Thanks!

Nancy

 

I did start out there before posting my message the first time. I did get the services.msc to come up and neither of those items are there. I have the clean up programs on my USB memory stick, but I can't access My Computer and when I right cilck on start and click explore, I get an error that explorer.exe has generated errors and has been closed by windows and needs to be restarted.

I have all those programs ready to load, but don't know how to get them to open since I can't access the drive anywhere.

I didn't make it very far. If I could figure out how to access the memory stick, I could run them. I can even load Internet Explorer with getting the same error.

Nancy