Results 1 to 3 of 3
  1. #1
    New Lounger
    Join Date
    Sep 2002
    Posts
    22
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Flooder.ake trojan horse

    Just spent a whole evening trying to find a fix for getting rid of a trojan horse, identified by AVG as Flooder.ake.
    A late search (std European time) on Google gave one good hit, which I want to share with you. Flooder.ake seems to be a new trojan horse which comes with AVG, according to the link, but (the good thing is that it works! <img src=/S/smile.gif border=0 alt=smile width=15 height=15> ) thanks to the folks here: http://www.adwarereport.com/

    Regards
    Hougs

    PS Edited by my own self to make the link work

  2. #2
    Star Lounger
    Join Date
    Nov 2005
    Location
    Edmonton, Alberta, Canada
    Posts
    66
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Flooder.ake trojan horse

    Well well well... I was wondering! AVG did claim to have found Flooder.ake on my system, but only in my C:I386 directory and in one of the system restore directories. I was wondering whether that was a false positive of some sort, since I practice "safe hex" and haven't had any reports of virus, worms, etc. for years. I just checked manually - my winlogon.exe in system32 is still intact (I'm sure windows would have got violently ill if that copy went away, but I thought I'd look manually). See the comments in the AVG forum.

    (After posting the above I looked again and saw "Please note that this issue may happen on a very old Windows XP systems without any Service Packs. This issue doesn't appear on Windows XP Service Pack 1 or Service Pack 2.". I'm guessing that's why it saw it in C:I386 and not C:WindowsSystem32 - I think the C:I386 folder is a holdover from when I first got my Dell way back when).

  3. #3
    2 Star Lounger
    Join Date
    Jan 2001
    Location
    Windy Wellington, Wellington
    Posts
    123
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Flooder.ake trojan horse

    Tis the season for false positives? I updated AVG on Sat night and the following scan reported a "generic2.lni" trojan in "migrate.dll" in an "Eastman' subfolder of C:I386. Migrate.dll being some code for upgrading Eastman software in a Win9x to XP upgrade.

    Spent a lot of Sun morning trying to track it down and eventually found a thread on Usenet where the migrate report had been identified as a false positive and reported to Grisoft. By then, Grisoft had a new update and after loading it there was nothing to be found.
    Keith Rodgers
    <img src=/S/flags/NewZealand.gif border=0 alt=NewZealand width=30 height=18>

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •