Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

Win32:Agent-AOEG [trj] and weird behavior, HELP!

  • Please log in to reply



    Malware Expert

  • Expert
  • 20,885 posts
  • MVP
Another request:


as shown in:

SRV - [2011/12/26 18:29:26 | 000,114,000 | ---- | M] (Joosoft.com GmbH) [Auto | Running] -- C:\Windows\System32\UpdSvc.dll -- (Update-Service)

May be part of this same infection. Can you upload UpdSvc.dll to http://virustotal.com and see if it comes back 0/43? Did you ever use JooSoft.com to get software? I don't see any mention of JooSoft in the install list. Did you ever get an UpdateChecker program from them?

  • 0





  • Topic Starter
  • Member
  • PipPip
  • 62 posts

My isp just messed up big time thus I was offline for 5 days. Took them 7 attempts to get me back online :)

Anyway, I submited the file to avast, it said it'll do so "with the next update".
I also ran a check on updsvc.dll. As I couldn't upload it directly from the system32 folder I made a copy of the file to my desktop. Not sure if that has any influence. Anyway the file seems to be clean (0/43): https://www.virustot...sis/1331803576/

I have no idea where this joosoft file comes from. Maybe it was bundled with some download and I've been stupid enough to not uncheck the install option...

  • 0

Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP