My son just called from college stating he had picked up a virus called
JS/downloader.agent. AVG keeps popping up telling him a threat has been
detected but won't heal the infection, just move it to the vault. I had him
run a Trend Online scan but he said it just told him he had some cookies. Is
Smitfraud a viable fix or does he need better removal tools? Smitfraud
sounds a little complex possibly for him since I guess from looking quickly
at it, it needs to be run in safe mode. Laptop is an HP with Vista for the
OS. He was home for the weekend and I suspect he might have picked up the
virus here as opposed to school because of their firewall protections.

"the staring frogs of Southern Iberia" <nobody@xxxxxx> wrote in message
news:ew8lktYqIHA.4716@xxxxxx

> My son just called from college stating he had picked up a virus called
> JS/downloader.agent. AVG keeps popping up telling him a threat has been
> detected but won't heal the infection, just move it to the vault. I had
> him run a Trend Online scan but he said it just told him he had some
> cookies. Is Smitfraud a viable fix or does he need better removal tools?
> Smitfraud sounds a little complex possibly for him since I guess from
> looking quickly at it, it needs to be run in safe mode. Laptop is an HP
> with Vista for the OS. He was home for the weekend and I suspect he might
> have picked up the virus here as opposed to school because of their
> firewall protections.

This should sort it out. You might need to make sure that IE7 is not run in
Protected Mode.

http://www.eset.com/onlinescan/

ss.

"the staring frogs of Southern Iberia" <nobody@xxxxxx> wrote in message
news:ew8lktYqIHA.4716@xxxxxx

> My son just called from college stating he had picked up a virus called
> JS/downloader.agent. AVG keeps popping up telling him a threat has been
> detected but won't heal the infection, just move it to the vault. I had
> him run a Trend Online scan but he said it just told him he had some
> cookies. Is Smitfraud a viable fix or does he need better removal tools?
> Smitfraud sounds a little complex possibly for him since I guess from
> looking quickly at it, it needs to be run in safe mode. Laptop is an HP
> with Vista for the OS. He was home for the weekend and I suspect he might
> have picked up the virus here as opposed to school because of their
> firewall protections.

Try this as well.

http://www.ewido.net/en/onlinescan/

I just run NOD32 on my machines, and use that the ewido online scan once in
a while, but I never get malware, due to the way I have everything set-up.

ss.

Most of the JavaScript download/injection infections cannot be cleaned since
it's the hostile code on the web page or in the IE cache that's triggering
the warning. Best bet is to empty all files from the IE cache, reboot
immediately, then run a full scan to be sure you've cleaned it.

--
Richard G. Harper [MVP Shell/User] rgharper@xxxxxx
* NEW! Catch my blog ... http://msmvps.com/blogs/rgharper/
* PLEASE post all messages and replies in the newsgroups
* The Website - http://rgharper.mvps.org/


"the staring frogs of Southern Iberia" <nobody@xxxxxx> wrote in message
news:ew8lktYqIHA.4716@xxxxxx

> My son just called from college stating he had picked up a virus called
> JS/downloader.agent. AVG keeps popping up telling him a threat has been
> detected but won't heal the infection, just move it to the vault. I had
> him run a Trend Online scan but he said it just told him he had some
> cookies. Is Smitfraud a viable fix or does he need better removal tools?
> Smitfraud sounds a little complex possibly for him since I guess from
> looking quickly at it, it needs to be run in safe mode. Laptop is an HP
> with Vista for the OS. He was home for the weekend and I suspect he might
> have picked up the virus here as opposed to school because of their
> firewall protections.
>