He wrote down the pop up info as follows (I didn't get to see it):
"RESIDENT SHIELD alert!
Accessed file is infected:
filename: c:\System Volume
Threat name: Trojanhorse DownLoader Agent8PNF
Detected on open
Details: Process Name c:\Windows\System32\svchost.exe
More information on this threat
[Box] Remove threat as Power User
[Box] HEAL [Box] MOVE TO VAULT [Box] IGNORE"
He clicked on 'Remove' but he said it "didn't seem to do anything." To me it looks like a system restore file may be infected. Thanks for any advice and let me know if you need more information.
Edited by Orange Blossom, 07 December 2008 - 09:03 AM.
Moved from XP forum to Am I Infected. ~ OB