Stealthy Virus Randomly Wakes UP

Discussion in 'Malware Help (A Specialist Will Reply)' started by gorbysbm, May 24, 2009.

  1. gorbysbm

    gorbysbm Private E-2

    Hi, this one got missed by AVG, and will randomly wake itself up to do malicious acts on my computer.
    Sometimes AVG will alert me that Agent2.hh has been caught by the Virus Scan.
    Other times the virus will just shutoff my antivirus and firewall, and restart my machine. Mainly I experience random slowness with the performance.

    Appreciate any help.
    -Seva
     

    Attached Files:

    gorbysbm, May 24, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are going to have to tell me exactly what AVG is reporting.

    Please go here and do the virus scan Kaspersky
     
    Last edited: May 26, 2009
    TimW, May 26, 2009
    #2
  3. gorbysbm

    gorbysbm Private E-2

    Unfortunately I uninstalled AVG a few weeks ago, since when I would run a full scan and it would find nothing. When I did have AVG running, I remember that once every few months it would find the Agent2.hh virus, but it was never fully able to get rid of it. Here is what Kaspersky found.
    Thank you!

    KASPERSKY ONLINE SCANNER 7.0 REPORT
    Tuesday, May 26, 2009
    Operating System: Microsoft Windows XP Professional Service Pack 2 (build 2600)
    Kaspersky Online Scanner version: 7.0.26.13
    Program database last update: Tuesday, May 26, 2009 21:48:38
    Records in database: 2253631
    Scan settings
    Scan using the following database extended
    Scan archives yes
    Scan mail databases yes
    Scan area My Computer
    D:\
    E:\
    F:\
    Z:\
    Scan statistics
    Files scanned 102063
    Threat name 1
    Infected objects 1
    Suspicious objects 0
    Duration of the scan 02:19:19

    File name Threat name Threats count
    D:\Temp\Downloads\tightvnc-1.3.9-setup.exe Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.1370 1
     
    gorbysbm, May 26, 2009
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Kaspersky is only telling you that you have tightvnc installed and because of the nature of that program, it thinks it could be a threat. It isn't.

    It is possible that the threat is gone, but continues to return as a function of your surfing habits. You will need to have it "reappear" and let me know exactly what reports it and the full path to it.
     
    TimW, May 29, 2009
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds