Win32/AgentBypass.gen!K detected, help
Hello,
I am infected with a Torjan since yesterday and I can not remove it.
Detected with Windows Defender, here is the background:
Category:
Trojan
Description:
This program is dangerous and it attacks the computer on which it runs.
Tip:
Remove this software immediately.
Resources:
process:
pid: 2588
file:
C:\WINDOWS\system32\optyhww1.dll
file:
C:\WINDOWS\system32\optyhww0.dll
containerfile:
C:\WINDOWS\system32\optyhww1.dll
containerfile:
C:\WINDOWS\system32\optyhww0.dll
With avast, I find a file named C:\qs.exe
I am a novice, therefore thank you in advance for Results.
Re: Win32/AgentBypass.gen!K detected, help
Downloads Random's System Information Tool (RSiT) by random / random and saves it on your desktop.
- Double-click your "RSIT.exe.
- in the window that will open selected for 1 month for the option "List files / folders created ..." ,
- then click "Continue" to begin the analysis ...
Re: Win32/AgentBypass.gen!K detected, help
Every process has a file associated with his name, so Windows Defender should detect a file too. If not, this might be an issue with Windows Defender. Please check Windows Defender logs for details.
Re: Win32/AgentBypass.gen!K detected, help
I just did a little research and found that Malwarebytes should remove your crafty Trojan. You can get a free copy here http://www.malwarebytes.org/mbam.php Download it, install it, update it and do a quick scan first. Follow any removal instructions suggested.
Do a full scan to make sure it's all cleared up. It might take a while so be prepared.
