Computing.Net > Forums > Security and Virus > AVG shows virus I can't rid of

Computing.Net: Over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to sign up now, it's free!

AVG shows virus I can't rid of

Reply to Message Icon

Original Message
Name: kathez
Date: March 1, 2005 at 07:54:37 Pacific
Subject: AVG shows virus I can't rid of
OS: Windows 98 SE
CPU/Ram: Pentium II 256 RAM
Comment:

I have AVG 7.0 free edition and it keeps telling me that I have a virus. Trojan Horse Dialer.20.AG. I have deleted the file. Healed the file. But for some reason it keeps coming back. Does anyone know how to get rid of this. The file name is 41.exe and it is located in the C:\Windows\Temp\ folder. It's weird that I can't get help from AVG, because I have run several online virus scans and AVG is the only one who seems to find this virus, and since I don't pay for the AVG, I can't get help. (which sucks) Thanks in advance.


Report Offensive Message For Removal


Response Number 1
Name: Bob (by BigBob)
Date: March 1, 2005 at 10:17:39 Pacific
Reply: (edit)

have you tried booting into safe mode??
Reboot your computer and tap the F8 key while you are booting up then enter safe mode then run the scan

" IF IT AINT BROKE - LEAVE IT ALONE "


Report Offensive Follow Up For Removal

Response Number 2
Name: Bob (by BigBob)
Date: March 1, 2005 at 10:20:23 Pacific
Reply: (edit)

also download and run Adaware Se
ADAWARE SE

" IF IT AINT BROKE - LEAVE IT ALONE "


Report Offensive Follow Up For Removal

Response Number 3
Name: smifff
Date: March 1, 2005 at 13:28:30 Pacific
Reply: (edit)

As it's in a TEMP folder Download and run CCleaner from
http://www.ccleaner.com/
Then as mentioned above run AVG in safe mode

You can get help from AVG by joining the forum http://gappa2.grisoft.cz/freeforum/

If any advice helps, please post back as it might help others.


Report Offensive Follow Up For Removal

Response Number 4
Name: smifff
Date: March 1, 2005 at 13:38:18 Pacific
Reply: (edit)

This might also help
http://forum.grisoft.cz/freeforum/read.php?4,24675,backpage=

If any advice helps, please post back as it might help others.


Report Offensive Follow Up For Removal

Response Number 5
Name: Derek
Date: March 1, 2005 at 16:26:18 Pacific
Reply: (edit)

This program is mainly a Trojan finder/fixer so it might be worth a shot:

A2FREE - SEE DOWN PAGE

Derek.W


Report Offensive Follow Up For Removal


Response Number 6
Name: Mike123456
Date: March 6, 2005 at 08:44:43 Pacific
Reply: (edit)

Re: AVG and Trojans
Posted by: mmf123456 (IP Logged)
Date: February 28, 2005 11:42PM

I had the exact same problem with AVG detecting Trojan 20.AG and the associated 41.exe file in my temp directory. None of the anti-virus/anti-spyware solutions could fix the problem. Here's what I did to fix it.

There was a file on my C drive named C:\Program Files\Parallel Tasking\ptask.exe. That's the culprit. If you have this file, delete it. You may have to kill the ptask.exe process first in the Windows Task Manager. I also deleted the Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Parallel Tasking, which kicks off ptask.exe each time you boot windows. I did all this with Windows Restore turned off, just to be sure.


Ptask.exe would run once an hour. It would connect to a website www.amxgames.net and download a program (41.exe) from that site. The program 41.exe would then create a small .exe file (around 6K). The name of the newly-created .exe file was random each time, but it was always a series of numbers with an .exe extention (i.e., 2653.exe). This program would then run. It connected to the internet and send data somewhere (I don't know where). The file would then disappear.


I'd been trying for about 2 weeks to get rid of this thing with no luck, so I decided to try and trap it. I installed ZoneAlarm firewall (much better than Windows XP firewall because ZoneAlarm doesn't let anything get in or out of your computer without your explicit permission) and waited for the next hourly run of the trojan. As soon as ptask.exe woke up and tried to run, ZoneAlarm trapped it and the resulting alert log enabled me to see what was happening and take corrective action.


Good luck!

p.s. AVG started detecting this trojan on Feb 22nd, but I'd had the trojan since Jan 11. AVG recognized the 41.exe, but not the ptask.exe causing the problem


Report Offensive Follow Up For Removal

Response Number 7
Name: smifff
Date: March 6, 2005 at 10:50:54 Pacific
Reply: (edit)

Mike12345 I understand that your trying to help but if you bothered to read the post in Response 4 you will see I already posted the web address where you got this information from 5 days ago, so that Kathez could read all the information on that thread for themself not copy and paste it to gain myself a status tick

If any advice helps, please post back as it might help others.


Report Offensive Follow Up For Removal






Post Locked

This post is quite old and has been locked from receiving new replies. Please create a new posting instead.


Go to Security and Virus Forum Home








Do you have your own blog?

Yes
No
I did before
I will soon


View Results

Poll Finishes In 4 Days.
Discuss in The Lounge
Poll History




Data Recovery Software