Learn how to a build a cloud-first strategyRegister Now


Trojan Horse virus when downloading Adobe Flash from Adobe website

Posted on 2008-11-14
Medium Priority
Last Modified: 2013-11-22
Hello Experts!

I am using free version of AVG anti-virus software.  I visited the Adobe website to download the latest version of Flash.  Upon doing this it indicated there was a virus:

Trojanhorse: PSW.Generic6.AQPD  in the Window/System32/ directory.

Any idea if this is a legit virus and how I could get it from a legitimate site like Adobe?

Question by:Allan62
  • 2
LVL 10

Accepted Solution

Kieran_Burns earned 500 total points
ID: 22959677
Those generic ones are a REALLY misleading as they are simple autorun wrappers for the blasted install app you WANT to install!
autorun.inf is reguarly blocked by McAfee as GenericDX! trojan
So it ISN'T a virus, it's the install wrapper for flash.

Assisted Solution

originalbiffmalibu earned 500 total points
ID: 22960896
Kieran is most likely correct.  Many virus programs identify legitimate packagers and installers as "potential" malware just to warn you.  The only way this would be a virus was if the browser settings got messed up and any website-initiated installer prompted a virus package to run in its place.  Very rare.  You may want to download:

Combofix (bleepingcomputer.com)
Smitfraudfix (search google)
superantispyware (superantispyware.com)
spybot search and destroy (safer-networking.org)
antivir  (free-av.com)

Please install/run Combofix first.  When that has completed and while still in safe mode, install spybot S&D and update it.  Also run Smitfraudfix while in safe mode.  Smitfraud also offers a DNS hijack fix on its menu, run that as well.  Install anti-vir and superantispyware.  Update and run these as well.  After that, you will definitely be clean.  You do not NEED to install Anti-vir but it will validate or invalidate AVG's claim.
LVL 29

Expert Comment

ID: 22960942
Another False Positive that is being reported everywhere.

Either add to the exclusion list (AVG > Tools > Advanced Settings > Resident Shield > Exceptions > Add Path) or do nothing until a new update corrects the problem.

LVL 29

Expert Comment

ID: 22964772
The false positive on vdb update 270.9.3/1787 corrected by 270.9.3/1788 was confirmed by the AVG Team [freeforum.avg.com]. Check that your Macromedia Flash Player 10 is now functioning OK.


Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OVERVIEW This guide provides information on the process performed when the Symantec Endpoint Protection (SEP) client checks in with the Symantec Endpoint Protection Manager (SEPM). AUDIENCE Information Technology personnel responsible for suppo…
HOW TO REMOTELY CLEAN MEROND.O WITH ESET SILENTLY PROBLEM       If you have the fortunate luck to contract the Merond.O virus on your network, it can be quite troublesome to remove as it propagates to network shares on your network. In my case, the …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question