Re: Trojan horse Downloader.Generic.ML
From: Ron Reaugh (ron-reaugh_at_worldnet.att.net)
Date: Mon, 20 Jun 2005 18:43:38 GMT
"Gabriele Neukam" <Gabriele.Spamfighter.Neukam@t-online.de> wrote in message
> On that special day, Ron Reaugh, (firstname.lastname@example.org) said...
> > That it isn't by your findings a "32 bit executable" and therefore a
> > alarm does NOT follow logically. The detection did coincide with some
> > nefarious virus like activity and was therefore NOT a false alarm.
> Why do you insist that this file is *actively* malign? It might be the
> remnants of what happened in another place, and was left instead of
> being cleared after action (installaion? be it for good or evil
> purposes). I had leftovers of stuff, mostly in C:\windows\temp all the
> time, but a bad coder might use C:\null instead and then fail to remove
> it properly.
ALL very true. The fly in that ointment is that AVG chose that moment
unrelated to anything seemingly going on suddenly to find that file. A file
that seems not to contain some arbitrary fragments but something "not
Maybe it just found the smoke from the smoking gun but apparently it did
find a shooting.