A trojan, or trojan horse, is a seemingly legitimate program which secretly performs other, usually malicious, functions. It is usually user-initiated and does not replicate.

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Rootkit Detection

If the rootkit is hidden so that F-Secure Anti-Virus cannot detect its file, it is still possible to detect the malicious activity by scanning the system with a generic rootkit scanner, such as F-Secure BlackLight. The BlackLight utility is also able to disinfect computers that are infected by rootkits.

Trojan:W32/Agent.AFB is a trojan with rootkit functionality. It is usually associated with Adware programs.

Activity

Trojan:W32/Agent.AFB may drop .DLL , .SYS or .EXE files as its component. It typically drops its components in the following locations on the infected machine:

The dropped .SYS file is a driver that is use to hide some registry entries. This is done by hooking several APIs related to registry operations.