posted
I've lost the package to my Halo CD, and needed to download a key generator to re-install my computer. I downloaded one, but then Norton Antivirus pops up telling me I have a virus and it can't do anything about it. I'm running a virus scan right now, but the little box from Norton's repeatedly said it can't repair or delete the file.
Just how screwed am I right now?
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
Probably, but I'm in debt with this computer, and in no financial shape or mood to spend another couple grand on a pretty-boy computer with a one-button mouse.
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
Usually if you go to McAfee's or Norton's web sites, and type in the name of the trojan you system has caught, there will be instructions on how to manually rip it from your system and registry.
posted
It provided a link to the page, and it told me I have a Trojan horse virus and no other information. Literally, they had something along the lines of "You have a Trojan Horse virus. There is no further information for you because we like to watch you squirm."
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
Sometimes, virus breeders program to attack&defeat the most common anti-virus software, so go to TrendMicro.
Posts: 8501 | Registered: Jul 2001
| IP: Logged |
posted
Uh. This is strange. I ran Norton Antivirus to find it, and it finds nothing. I had an online thing from Symantec (same company) doing a virus check, then played a game of AoM online -- when I get back, the window's gone.
Does this mean the virus died?
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
By the way, Fugu, if you can suggest a way to get a keygen for this game, I'd appreciate it. It's not piracy -- I do own the game -- but I've lost my key and I could really use one.
If only to see how Halo performs on my brand new DSL.
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
Why don't you just call Microsoft, tell them you have the CD, and that you lost the packaging with the key on it? They would most likely just give you a new key once you answered a couple questions. They are usually that easy with software that costs way more and is more important than just a game.
Posts: 346 | Registered: Jan 2003
| IP: Logged |
posted
Lalo, I think it's very likely that you never actually had a trojan horse virus, and were just a victim of a common web browser exploit that pops up a fake window TELLING you that you have a trojan horse.
For one thing, both Norton and McAfee will always tell you the NAME of the virus, even before they tell you the type, when they find it.
Posts: 37449 | Registered: May 1999
| IP: Logged |
posted
Damn Greeks! How dare they put a giant wooden horse inside your computer. What's worse, they didn't even fill it with murderous hoplites! What nerve! ;-)
Posts: 903 | Registered: May 2003
| IP: Logged |
posted
You know, Bok, I bet that's it. Eddie just got DSL, and I doubt he sprung for a hardware firewall because I don't think he really knows what one does.
Eddie, be sure to turn off the Messenger service on your machine. Do you know how to do that?
Posts: 37449 | Registered: May 1999
| IP: Logged |
posted
I may be computer-illiterate, but I'm not dumb, Tom. Regardless of how often Pete repeats it. I know what a firewall is, and I currently have a six-month trial of McAfee Guardian running. If this virus was a hoax, it was a damn good one -- the virus scanner caught it during the download of the keygen, and after starting Norton Antivirus it linked to a Symantec site which proceeded to ID the virus -- or rather, tell me the brand without telling me the product -- and scan my computer.
That's a damn good hoax.
Windows Messenger boots with startup, and it's never been compromised before -- it'd be one hell of a coincidence for it to act as a backdoor for this exploit, whatever it is, right when I was downloading the keygen. I can't turn off Windows Messenger because it claims I have IE open -- even after I close all windows. If I can't turn it off from the taskbar, how do I do it?
Posts: 3293 | Registered: Jul 2002
| IP: Logged |
posted
I don't mean Windows Messenger, the IM. I mean the Messenger service, which is used by machines on a network to communicate to each other with the "NET SEND" command. It's a common way of spreading spam -- although I believe Guardian shuts it down by default, so that may not be it.
I've just never heard of a virus alert from Symantec that didn't identify the virus prominently by name. What do the Norton logs say? By default, NA logs all detected viruses in a text file -- date, time, name, and action taken.
----
A possibility: the keygen software could indeed have had an easily recognizable virus in it, and either Norton or Guardian -- both of which are capable of doing this -- could have noticed the virus as a component of the file during the download. By default, I believe, both programs automatically delete any virus-laden program coming in over FTP or HTTP. In this case, you would have received a warning -- which STILL should have had the name, but anyway -- and subsequent scans would display nothing, since the download would have been aborted before it completed and the temp file purged.
posted
I'm pretty sure I had the Trojan Horse last year. I don't think I actually lost anything, but it wasn't me who got rid it, it was my brother, so no help except encouragement.
Posts: 8473 | Registered: Apr 2003
| IP: Logged |
posted
To disable Messenger Service: Start Menu->Administrative Tools->Services, go down to messenger, right click it, go to properties, set start up type to disabled.
Posts: 331 | Registered: Oct 2003
| IP: Logged |
posted
In this case, trojan horse is referring to the type, rather than the name, of the virus. Which does suggest it came along in the keygen program.
Yeah, the best solution if you own the software is call the maker.
Posts: 15770 | Registered: Dec 2001
| IP: Logged |