I am running windows xp home edition. AVG ran and alerted me to this. It said virus could not be healed and move it into the vault. I noticed for about the past three weeks something was wrong. Windows media player would try to access the internet upon booting up each time. I would not let it access and could not figure how to stop it from loading when i started my computer. I ran a virus check over it with AVG and no virus was found. So, I downloaded the latest version of windows media player from microsoft and a couple of days later AVG tells me I have a virus called downloader.small5.y and it cannot be healed so it moved it to the vault. I did let the new version of windows media player access the internet one time. When I go to the AVG site and look up virus definitions, there is no such virus. HELP! What do I need to do.

Suzanne, I am working with Floss, who also uses Windows XP and NAV, on removing a Download.Trojan detected by Norton, we are close to removing the malware file, C:\WINDOWS\Downloaded Program Files\dowload.mp3.exe. You may have a different type of trojan, but our hunt for the unseen trojan should give you some ideas of the steps to get you started. Here is the link to subject: Trojan Virus, http://www.computing.net/security/wwwboard/forum/11814.html Please review the detailed steps we took and about to take and the necessary links to the technical information to removing the trojan. If you have specific questions about removing your type of trojan after reviewing the processes and necessary steps (not yet completed as of now) posted in the other link, please post the exact detection message as it appears from Norton Antivirus as to the exact directory where the malware filename with extension is, and I will be happy to help you here at this link.

thanks for you response. AVG alerted me to downloader.small.5.y AVG said the directory was C:\programfiles\windowsmediaplayer\wmplayer.exe.tmp I will check back on your response when I can. I will be gone for about a week. Hopefully this trojan is isolated and not doing anything nefarious. AVG shows it in the vault. I will take the steps you suggested when I return. I have had a cable connection since about 1996 and my computer has been been online about 90% of that time. I usually never shut it down. I guess it was about time that my computer finally got infected by something. I have a firewall and I use AVG. I don't open mail unless I know the sender and I never open attachments. So, I'm new to this. But, I will read the other forum when I return and follow the instructions.

1. Here are the manual removal instructions for downloader.small5.y trojan. http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ_SMALL.IJ 2. Disable System Restore, and you may want to update NAV and scan in Safe Mode and clear the IE Temporary Folder as instructed by Symantec. http://securityresponse.symantec.com/avcenter/venc/data/download.trojan.html 3. Once the trojan is removed and all programs running, do the usual clean and maintenance routine, scan and defrag your hard drive, and create a full backup. 4. You may have to uninstall and reinstall Windwos Media Player. 5. Install Windows security updates (and reinstall and update Windows Media Player) from Microsoft

my moms pc has this trojan horse downloader.small.5.y it is in file c:/sysinfoline restore, we can't get rid of it can anyone tell me how to get rid of this trojan.

Sounds like her pc is either Windows ME or XP. Disable System Restore and run antivirus in the Safe mode as described in the document in the URL link above. Make sure the added value in the registry is reversed. Antivirus Tools Cannot Clean Infected Files in the _Restore Folder http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/Q263/4/55.ASP&NoWebContent=1