Hi - I have a .zip file I need to expand and run that Norton detects a Trojan in the setup.exe file. Obviously Norton cleans it by removing the setup.exe file such that I can't install the application.
What are the risks/outcomes of running the setup.exe without cleaning it, then running Norton to purge the Trojan once the applicationis installed? Any steps to take before do this? I'm on Windows 7 64-bit. Thanks.
Hi,stimo. The consensus is DON'T ! Easier to avoid problems than to fix them.
I do not think you are going to find anyone on a security product forum that will recommend you deliberately open a flagged file, and hope that the security product will fully fix anything that file messes up on your system.
What can be so important that you would risk your system, or your personal data on your system?
If Norton detects / quarantines a file and you allow / restore it, all bets are off. Why take the risk? If you must, ensure you image your machine before hand so as to restore your system back to its current state.
Hi F4 E - for sure that is the wisest path. However, sometimes wisdom has to be set aside and pragmatism wins the day. My thoughts are crystalising with each helpful exchange. And I'm now at:
Will Norton successfully and completely remove a Trojan after infection?
Which is pretty much the title of my original post
Thanks
Hi,stimo. Norton will jump in if it finds anything suspicious, so it's wise to leave that file alone whether it's been quarantined and/or deleted, and look for a known good copy.
Hi - I think I have to assume its malicious. I am exploring options for getting a clean copy of the file I want, but I need to have this resolved as a back-up. I guess it comes down to whether Norton is able to clean and re-instate anything the malicious content has accessed while it was air-gapped. If I had inadvertently opened a malicious file, my expection would be yes it could, as that is one of the supposed benefits/capabilities of Norton. I guess thats what I need confirmation of - is my understanding of that aspect correct? It's just the deliberate act of opening a presumed malicious file has me questioning/valdating before I do so.....
That is obviously only a decision only you can make. Personally I would not take the risk until I could confirm the safety of the file.
You do not say where you got the file? Is it a reputable source? Is there no alternative to this file that you can use?
Hi peterweb - thanks. I was imagining to silo the computer/airgap the internet, and install the app I want, then run Norton to clean up the infection before it does anything - or at least can communicate regarding anything it has done. Or am I being naive? (which is an acceptable conclusion if it is the case). Thanks
The risk of running the file is that it is actually malicious and could cause any kind of mischief on your system and maybe steal all your personal information and passwords.
Did you get the zip file from a reputable source? See if you can get the files in an unzipped format and submit them to www.virustotal.com