Found Trojan-Spy.Win32.Agent.bdrd files -- frustrated with ZA Security Suite

[chuckgco]

Found Trojan-Spy.Win32.Agent.bdrd files -- frustrated with ZA Security Suite

I am running a paid and fully functional multi-P.C. ZoneAlarm Security Suite license.
(version 9.1.008, anti-virus/spyware engine version 8.0.2.42)

I have recently had a ZA scan pick Trojan-Spy.Win32.Agent.bdrd
in several locations on my C: drive. ZA says it has put the file in
quarantine. Unfortunately, every time I reboot my P.C., the damn
thing returns and within a short time ZA says it found it again.
I can't delete what is in quarantine. I cannot select or delete the items.

Not trusting ZA, I installed another reputable malware application.
It found Trojan entries in my registry that ZA missed. It found them
and deleted them.

After a reboot, I did another scan with ZA which came up clean.
Then WHAMO, about an hour later the Trojan alert was back, many of them:

C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056950.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056951.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056952.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056953.exe

etc ...

I am not one to travel to obviously risky websites. I update my
ZA database each day that I turn on my P.C.

So what now? I am losing trust and patience in my fully paid for ZA?
What good is it to have a security suite that can't protect you?
And is there really any live tech support available?

Besides having to reformat and restore my entire system, what can I do?
Any thoughts would be appreciated.

[GeorgeV]

Welcome to the Zone Alarm User Forum..

This Forum exist to allow Volunteer experienced Zone Alarm Users to help the Few Users who encounter a problem with ZoneAlarm and need to be guided in the right direction..


You did say you only updated ZA once a day..?

In todays environment with 100's of new threats created evey day, no Security program can provide 100% protection against everything.
Zone Alarm AV, Suite and Extreme 9.1 can be configured to check for AV/AS updates every 30 minutes.. on my computers I have noticed as many a 16 updates in one day..

http://forums.zonealarm.com/showthread.php?t=72655


You asked if there was access to Live Tech Support?
With a Valid ZA Licence you can Contact ZA Tech Support Live Chat Free of charge..

Click on the Support link in my Signature..

[fax]

Quote:

Originally Posted by chuckgco

After a reboot, I did another scan with ZA which came up clean.
Then WHAMO, about an hour later the Trojan alert was back, many of them:

C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056950.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056951.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056952.exe
C:\System Volume Information\_restore{7F7BE6F8-OD6A-488B-ABDC-75393719A72D}\RP525\A0056953.exe

Follow ALL steps suggested here:
Malware Clean-up Guidance

One last step of the procedure includes the purge of restore points.
Exactly what you are probably missing judging from the above restore points lines

See here below how to setup yoru system and keep it clean!
xyz was not detected. What I should do?

Fax