Re: Strange New Trojan
Posted by Juim on
Sun Jul 8th 2007 at 7:33pm
Juim
member
726 posts
386 snarkmarks
Registered:
Feb 14th 2003
Occupation: Motion Picture Grip
Location: Los Angeles
I have a new and interesting problem as of this morning. Whenever I try to run HL2DM, I get a Virus warning. Seems a Trojan has infected my system, and when I follow all the steps recommended by Norton it does'nt seem to help. So far it only happens when I try to open up HL2DM. I actually have to disable Norton to run it. Very frustrating. Heres the message I get:
C:\DOCUME~1\ADMINI~1\L...\~32.TMP
This is the address of the Trojan, but I can't seem to find it based on this abbreviation. I have updated virus protection, re-scanned the entire system, with no errors, looked in the steam folders for something out of the ordinary, and still nothing. HL2DM runs fine when I disable Norton, but I would really love to find this little bugger and delete it. BTW Every time I get the message the number at the end (32.Tmp) increases. Any suggestions?
Quote from Nietzsche....God is dead
Quote from God....Nietzsche is dead
Re: Strange New Trojan
Posted by Crono on
Sun Jul 8th 2007 at 8:21pm
Crono
super admin
6628 posts
700 snarkmarks
Registered:
Dec 19th 2003
Location: Oregon, USA
You're running as the user "Administrator" ? That's not a good idea, once you get this solved I would strongly suggest making a new user with admin rights and using that instead. It isn't as pertinent to guard your admin account as in Linux or something, but it still has quite a bit of power that a normal admin-able account does not.
Strange. You could try deleting all the temp files in the temp folder (%temp%) none of those are needed. If the hl2.exe has been infected I'm sure someone can send you a copy of theirs. If the cache isn't infected, you could try deleting the hl2 folder under your steam games (go ahead and grab all the unique stuff, though, like your maps, sounds, and things like that, that you have downloaded personally), run HL2 again and it will unpack all those things again.
Go through the other usual methods at virus removal. Check your processes for something weird, google is your friend there, just look up the names of the processes. If you find that you can't delete anything, run msconfig and select diagnostic startup. The bad side of doing that is you'll have to reconfigure your selective startup (if you were using that).
It will re-boot with nothing but the base utensils for Windows and you can do all the stuff you can't do in Safe Mode. (It basically turns off all startup items and services). You'll be able to catch it that way.
Blame it on Microsoft, God does.
Re: Strange New Trojan
Posted by RedWood on
Sun Jul 8th 2007 at 8:28pm
RedWood
member
719 posts
652 snarkmarks
Registered:
Sep 13th 2006
Delete Norton form your computer, hope it doesn't crash it, and download Avast.
