Re: Strange New Trojan
Posted by Juim on Sun Jul 8th at 7:33pm 2007
I have a new and interesting problem as of this morning. Whenever I try to run HL2DM, I get a Virus warning. Seems a Trojan has infected my system, and when I follow all the steps recommended by Norton it does'nt seem to help. So far it only happens when I try to open up HL2DM. I actually have to disable Norton to run it. Very frustrating. Heres the message I get:
C:DOCUME~1ADMINI~1L...~32.TMP
This is the address of the Trojan, but I can't seem to find it based on this abbreviation. I have updated virus protection, re-scanned the entire system, with no errors, looked in the steam folders for something out of the ordinary, and still nothing. HL2DM runs fine when I disable Norton, but I would really love to find this little bugger and delete it. BTW Every time I get the message the number at the end (32.Tmp) increases. Any suggestions?
Juim
member
726 posts
183 snarkmarks
Registered: Feb 14th 2003
Location: Los Angeles
Occupation: Motion Picture Grip
Quote from Nietzsche....God is dead
Quote from God....Nietzsche is dead
Re: Strange New Trojan
Posted by Crono on Sun Jul 8th at 8:21pm 2007
You're running as the user "Administrator" ? That's not a good idea, once you get this solved I would strongly suggest making a new user with admin rights and using that instead. It isn't as pertinent to guard your admin account as in Linux or something, but it still has quite a bit of power that a normal admin-able account does not.
Strange. You could try deleting all the temp files in the temp folder (%temp%) none of those are needed. If the hl2.exe has been infected I'm sure someone can send you a copy of theirs. If the cache isn't infected, you could try deleting the hl2 folder under your steam games (go ahead and grab all the unique stuff, though, like your maps, sounds, and things like that, that you have downloaded personally), run HL2 again and it will unpack all those things again.
Go through the other usual methods at virus removal. Check your processes for something weird, google is your friend there, just look up the names of the processes. If you find that you can't delete anything, run msconfig and select diagnostic startup. The bad side of doing that is you'll have to reconfigure your selective startup (if you were using that).
It will re-boot with nothing but the base utensils for Windows and you can do all the stuff you can't do in Safe Mode. (It basically turns off all startup items and services). You'll be able to catch it that way.
Crono
super admin
6628 posts
633 snarkmarks
Registered: Dec 19th 2003
Location: Oregon, USA
Blame it on Microsoft, God does.
Re: Strange New Trojan
Posted by RedWood on Sun Jul 8th at 8:28pm 2007
Delete Norton form your computer, hope it doesn't crash it, and download Avast.
RedWood
member
719 posts
176 snarkmarks
Registered: Sep 13th 2006
Re: Strange New Trojan
Posted by OtZman on Mon Jul 9th at 10:25am 2007
I'm with RedWood, Norton is worse than virus.
OtZman
member
1890 posts
199 snarkmarks
Registered: Jul 12th 2003
Location: Sweden
Occupation: Student
