JS Downloader Agent (Virus) and Trojan Horses

M

Michael

Trojan horses are Downloader Generics 3 and 5 PIO
Downloader zlob.AFD
Lop.3D

My AVG Free warns me, I send the JS downloader Agent and all Trojan
horses to the virus vault. The warnings come up even on apparently
"safe-site" downloads like File Hippo.

Is there any obvious danger is just sending them all to AVG virus
vault as they occur? How do I try to remove these download-triggered
viruses and trojans?

There does not seem to be any present obvious effect otherwise on my
system or its functions. I keep all my AV, anti-spyware and anti-
adware protections updated regularly.

Thanks for any feedback.

Michael
 
D

David H. Lipman

From: "Michael" <Temprock@hotmail.com>

| Trojan horses are Downloader Generics 3 and 5 PIO
| Downloader zlob.AFD
| Lop.3D
|
| My AVG Free warns me, I send the JS downloader Agent and all Trojan
| horses to the virus vault. The warnings come up even on apparently
| "safe-site" downloads like File Hippo.
|
| Is there any obvious danger is just sending them all to AVG virus
| vault as they occur? How do I try to remove these download-triggered
| viruses and trojans?
|
| There does not seem to be any present obvious effect otherwise on my
| system or its functions. I keep all my AV, anti-spyware and anti-
| adware protections updated regularly.
|
| Thanks for any feedback.
|
| Michael


Put them in the vault. Once quarantined they're sagfe and if something is deemed to be a
False Positive it could be restored from the vault at a lter time/date.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
 
M

Michael

On Jan 27, 2:36 pm, "David H. Lipman" <DLipman~nosp...@Verizon.Net>
wrote:
> From: "Michael" <Tempr...@hotmail.com>
>
> | Trojan horses are Downloader Generics 3 and 5 PIO
> | Downloader zlob.AFD
> | Lop.3D
> |
> | My AVG Free warns me, I send the JS downloader Agent and all Trojan
> | > | > |
> |
> Put them in the vault. Once quarantined they're sagfe and if something is deemed to be a
> False Positive it could be restored from the vault at a lter time/date.
>
> --
> Davehttp://www.claymania.com/removal-trojan-adware.html
> Multi-AV -http://www.pctipp.ch/downloads/dl/35905.asp

Mr. Lipman:

I guess my concern is that the warnings keep occurring even after I
send a few to the vault. Something is on the system that I can't
totally/permanently get rid of even if no obvious impact on
functionality (yet?).

Thanks for your feedback.
 
D

David H. Lipman

From: "Michael" <Temprock@hotmail.com>


|
| Mr. Lipman:
|
| I guess my concern is that the warnings keep occurring even after I
| send a few to the vault. Something is on the system that I can't
| totally/permanently get rid of even if no obvious impact on
| functionality (yet?).
|
| Thanks for your feedback.

Please don't be so formal. Dave or David :)

Lets see what's up then...


Download MULTI_AV.EXE from the URL --
http://www.pctipp.ch/downloads/dl/35905.asp

To use this utility, perform the following...
Execute Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose Unzip
Choose Close

Execute C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }

NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
FireWall to allow it to download the needed AV vendor related files.

C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the PC.

You can choose to go to each menu item and just download the needed files or you can
download the files and perform a scan in Normal Mode. Once you have downloaded the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode [F8 key
during boot] and re-run the menu again and choose which scanner you want to run in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.

When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive PDF help
file.

Additional Instructions:
http://pcdid.com/Multi_AV.htm


* * * Please report back your results * * *


--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
 
P

paul

On Jan 28, 12:24 am, Michael <Tempr...@hotmail.com> wrote:
> Trojan horses are Downloader Generics 3 and 5 PIO
> Downloader zlob.AFD
> Lop.3D
>
> My AVG Free warns me, I send the JS downloader Agent and all Trojan
> horses to the virus vault. The warnings come up even on apparently
> "safe-site" downloads like File Hippo.
>
> Is there any obvious danger is just sending them all to AVG virus
> vault as they occur? How do I try to remove these download-triggered
> viruses and trojans?
>
> There does not seem to be any present obvious effect otherwise on my
> system or its functions. I keep all my AV, anti-spyware and anti-
> adware protections updated regularly.
>
> Thanks for any feedback.
>
> Michael

1. Download and run firefox to protect your from future spyware
attacks and pop ups which are coming in through internet explorer
(Trojan downloaders, win32 ) .Then update your windows through firefox
http://securitynewsfromthenet.blogspot.com/2007/05/spyware-fighter-essentials.html

2. Run the vundo and combo fix
http://securitynewsfromthenet.blogspot.com/2007/05/vundofix-and-combo-fix.html

3. Run the anti spyware remove programs spybot
http://securitynewsfromthenet.blogspot.com/2007/03/spybot-search-and-destroy-spyware-and.html

and superantispyware
http://securitynewsfromthenet.blogspot.com/2007/04/superantispyware-home-edition-free.html
to get rid of the nasties

4. Run a free online virus scan to be sure you computer is virus and
spyware free.
http://securitynewsfromthenet.blogspot.com/2007/03/online-virus-scan.html
download and run McAfee Avert Stinger
Stinger is a stand-alone utility used to detect and remove specific
viruses
http://vil.nai.com/vil/stinger/stinger.htm

5. Get the clean up tools to clean up the spyware from your temp
folder (the place they are stored when downloaded by internet
explorer)
http://securitynewsfromthenet.blogspot.com/2007/03/clean-up-tools-to-prevent-people-from.html
 
You must log in or register to reply here.
Back
Top Bottom