I do NOT understand all the techinical jargon which I have attempted to wade through here. Bottom line is, I d/l the Avast Virus remover, ran it and still have the TH. I am scared and do not know what to do.
The TH is: "Win32:AgentGII(Trj). It is in my log viewer listed as such under “Warning”. What do I do to get rid of it? When I ran the virus remover it said that there are no infections.
I run WXP home; Zone Alarm; AdAware(free, but newly updated and a new System Restore set to that date).
I would appreciate non-tech, step by step instructions on what to do, if anything.
I was not offered the option of a boot-time scan when the icon that looked like a “radiation shelter here” popped up and began to twirl. As for the Task Manager I do not know how to access what you ask for. Where do I find this?
If you have XP or Win2k, you could enable a boot time scan. Right click the avast icon, select Start avast! Antivirus, Menu, ‘Schedule boot-time scan…’ Or see http://www.digitalred.com/avast-boot-time.php
The three finger shuffle, press the control (Ctrl) + Alt + Delete keys together and that will display the Task Manager, click the Processes tab for Process information.
I can enable a boot scan, but when I do the three finger shuffle all I get is a long list of processes, among which is “taskmgr.exe”. I have no options to see what it is doing.
Aria…off to enable…(does this need to be permanent???)
I enabled a boot scan (which was done) but I had a difficult time finding “delete it”…duh! There was a second option under “Advanced” and I chose “Ask for confirmation” which is what I chose. Hope that was correct. I find myself mired in confusion, helpless and lost. I despise not being able to learn all the “ins and outs” of this technical stuff.
It is also hard for me to sit/type for any length of time.
Thanks for all the help thus far. I hope to get this resolved in a reasonable period of time. I know guys don’t particularly care to deal with ignorant females. I apologize.
Task Manager will also display the fact that taskmgr.exe is a running process in that list there are other processes. At the top of the Task Manager interface are column headings, you are looking for the PID column and for the 386 value, this will show the process name.
Notice how the names are in alphabetical order, if you click the column heading it will sort the column, you could click the PID column heading and that will sort the PIDs in order.
The important thing however is to be able to run the boot-time scan, have you done that and did it find anything ?
Ensure if anything is found that you ‘move to the chest’ (deletion shouldn’t be used), so yes you should always have the ask for confirmation.
It is a very good tool, very quick to work with, takes seconds to capture add effects, resize and save all in one operation. There are others, freeware, but I find this is worth it as I use it a lot and I’m only using a small part of its functionality
First thing: When I do the three finger shuffle there is absolutely nothing that is alphabetized! Second: I don’t know what PID is (except a medical term) so I am unable to sort anything as I do not know what I am looking for. I did run the boot-time scan (45 minutes) and it didn’t tell me it found anything, prompt me for anything nor did it put anything in the “chest”. I am left at square one. I also have no pictures to send you! Sheesh! I’m such a duh!
Aria…who is grateful for such patience from enlightened folk.
Do you see the image I posted, when you press the Ctrl+Alt+Delete together ?
Nothing is in order until you click the column heading to order it.
The PID, I thought I explained is the Process Identity number (as indicated in the arrowed column in the image), each process in the task manager list has a unique process identity number. We are looking for the “FILE NAME: Process386,” mentioned in the pop-up information you gave, I’m hoping that it might be the PID I’m talking about and reveal something that may help us track down what it is.
It may be that avast blocked it when it was loaded into memory, but we are trying to find what tried to load it, that remains undetected. It is never at square 1 you have tried something that didn’t work, we move on to the next step.
Try downloading these one at a time (the blue text is a link) and running them to see if they find anything, what ever is found make notes and don’t delete anything quarantine is the safest option. Try not to see it as a huge task, but see it as a series of steps, take one step, report your findings and if need be take the next step.
All I see when I hit Ctrl Alt Del is: Applications; Processes; Performance; Networking; Users. I clicked and alphabetized it. Nothing said “FILE NAME: Process386”.
I am using dialup here and everything is painfully (in more ways than one) slow for me. I will attempt the download but have no idea what “safe mode” is much less how to run anything in it.
I am terribly weary, but thanks so much for help thus far.
I d/l the AVG antispyware and when I tried to run it was told it was corrupted. So…I have done a system restore to five days ago and I am content with the way things are now. If this thing crashes, I will holler for #1 daughter who is an IT (but knows zip about software - yet - as she is still in school).
I have had the same problem with AVG Antispyware. Re-installing it will probably fix the problem but, if it doesn’t, you could try SuperAntiSpyware instead
I am d/l your suggestion. It is after midnight here and my eyelashes hurt from all I’ve done!
I like being back to five days ago. I feel safer. If things go bump then I will worry about it. Until then I shall be Scarlett O’Hara and concern myself later.
As you will see from the image I have clicked the Processes Tab, whilst there might not be a File Name called Process386, I was asking you to check if there was a Process Identity number (PID) entry for 386, if that was there then to the left of that in the Image Name (I hate the column naming too) for the associated process/file.
However, since this is so long after the fact and you have used system restore to go back 5 days, that is a lost cause.
You aren’t the only one on dial-up, that is my means of connection and one thing you learn from dial-up is patience ;D
Just wanted you to know the d/l of Super antispyware worked beautifully and I think the program is grand! It has taken a tiny bit of tweaking but I believe I will really enjoy it. I have run several scans and it found nothing, nada, zero, zip on my machine. I would assume that is good???
Yes that is good.
I would also try what mauserme suggested when you are refreshed and raring to go ;D
Try to reinstall avg-as and see if that installs this time round. I second opinion (scan) never hurts, and the avg-as gives resident protection for 30 days and then reverts to and on-demand scanner, so there should be no conflict with either avast or superantispyware.
