My AVG resident shield keeps popping up saying I have trojan horse Backdoor.Agent.2.H. in C:\system volume information\_restore
It did this a few days ago and i ran avg and it said it found 2 and healed them and moved them to the vault. I then deleted them out of the vault.(bad mistake?) Now it keeps saying I still have it though even though Ive ran avg, trend micro and norton and nothing is found. Can someone please offer me some advice. Thanks so much for any help.

You need to disable the system restore feature on ME and rerun the AVG AV . This will get rid of all instances , then you can turn the restore feature back on .

Yes, disable sytem restore:

http://download.nai.com/products/mcafee-avert/SystemHelpDocs/DisableSysRestore.htm

Run these, in order in Safe Mode with your updated Av:

Trojan Hunter trial version:

http://www.misec.net/

Trojan Scan:
http://www.windowsecurity.com/trojanscan/

SWATIT:

http://swatit.org/download.html

Diagnostics once you are clean:

Jason’s Browser Security Test:

http://www.jasons-toolbox.com/BrowserSecurity/

Gibson tests:
http://www.grc.com/default.htm

I use LeakTest, DCOMbobulator, ShieldsUp, and UnplugNpray

if you are geting trojans wither you need a friewall, or you need to reconsider the settings on the one you have, or get rid of it. This oneis free, simple and effective:

http://smb.sygate.com/products/spf_standard.htm

Thresher

Ok Folks,
I had a Trojan horse BackDoor.Agent.2.H
I have Windows ME and I disabled the restore function and scanned with AVG and the virus is no longer detected . But I know the virus is still in my computer - I mean I wil never be able to activate my restore capabilities if i cant delete the files the virus is in -- SO who amongst you know how to do this ???

HELLLLP!!
Thanks -