or you can just reinstall, of course.
guy lifting weight (animated smiley):
O-IC
OI-C
"Oh, I see it"
O-IC
OI-C
"Oh, I see it"
Just here for the activity... well not really
yeah, this virus (security 2012 and ping.exe) is new enough that you can't just do this alone: you need to post on one of those special websites for help.
or you can just reinstall, of course.
or you can just reinstall, of course.
OVERWATCH STATUS GO
At this rate it seems like it would be faster to start over. 
Currently Working On:
My Overwatch addiction.
Currently Working On: My Overwatch addiction.
We can't explain the universe, just describe it; and we don't know whether our theories are true, we just know they're not wrong. >Harald Lesch
Quote from 
TiKels
TiKelsedat:My goal is to not wipe my computer and still get rid of the virus.
Ask any expert and he'll tell you that formatting the harddrive is the recommended procedure to kill viruses.
Partitioning into a small C: drive and the rest for a data drive D: makes this much more convenient, especially when you can use the transfer settings feature of Windows without reinfecting yourself.
Friend got the same virus, along with ping.exe
I was able to beat it just by googling the things that came up. I'm surprised you haven't...
I was able to beat it just by googling the things that came up. I'm surprised you haven't...
http://waitbutwhy.com/2013/09/why-generation-y-yuppies-are-unhappy.html
"We're being taught to hate downwards"
"We're being taught to hate downwards"
Yeah, since you know the name of it, it should be pretty straight forward. The instructions I came across didn't look like much, just deleting a few registry entries and a few files.
None.
👻 👾 👽 💪
Ohey I saw this one once.
ping.exe is constantly created by some other process ..but I forgot what it was. I just remember all the internet tabs would close and some retarded "Anti-virus" window would appear randomly.
I did the malware removal guide in the sticky topic after I was manually deleting .exes. Stuff stopped breaking and working badly, so I assume it worked.
(I reformatted after). (First virus that I'm aware I've encountered in a looong time.)
Oh, also with programs running as themselves I just did open with and selected itself.
Post has been edited 1 time(s), last time on Jan 12 2012, 10:21 pm by FaRTy1billion.
ping.exe is constantly created by some other process ..but I forgot what it was. I just remember all the internet tabs would close and some retarded "Anti-virus" window would appear randomly.
I did the malware removal guide in the sticky topic after I was manually deleting .exes. Stuff stopped breaking and working badly, so I assume it worked.
(I reformatted after). (First virus that I'm aware I've encountered in a looong time.)Oh, also with programs running as themselves I just did open with and selected itself.
Post has been edited 1 time(s), last time on Jan 12 2012, 10:21 pm by FaRTy1billion.
TinyMap2 - Latest in map compression! ( 7/09/14 - New build! )
EUD Action Enabler - Lightweight EUD/EPD support! (ChaosLauncher/MPQDraft support!)
EUDDB - topic - Help out by adding your EUDs! Or Submit reference files in the References tab!
MapSketch - New image->map generator!
EUDTrig - topic - Quickly and easily convert offsets to EUDs! (extended players supported)
SC2 Map Texture Mask Importer/Exporter - Edit texture placement in an image editor!
This page has been viewed [img]http://farty1billion.dyndns.org/Clicky.php?img.gif[/img] times!
EUD Action Enabler - Lightweight EUD/EPD support! (ChaosLauncher/MPQDraft support!)
EUDDB - topic - Help out by adding your EUDs! Or Submit reference files in the References tab!
MapSketch - New image->map generator!
EUDTrig - topic - Quickly and easily convert offsets to EUDs! (extended players supported)
SC2 Map Texture Mask Importer/Exporter - Edit texture placement in an image editor!
This page has been viewed [img]http://farty1billion.dyndns.org/Clicky.php?img.gif[/img] times!
I don't think you're on the right website for virus help. Try going to this website here. The people on here are pros at this kinda stuff and have helped me numerous times with my computer issues in the past. The help is free and all you need is an account for the help forums, and a few tools that they use to gauge the virus's attributes, spread, and the best way to remove it. Gl.
None.
I actually had to deal with the virus a few weeks ago - it's surprisingly insidious yet also quite easy to get rid of. If you know anything about computers, do the following:
The virus controls your program execution by overwriting the registry executor keys for .exe files. Use any method to access a terminal (safe mode with command prompt if necessary), and then do the following
>cd %LocalAppData%
Here, you should notice two things. There will be some executable you don't recognize, named xyz.exe where xyz is a random 3-character string (this will match a process running named xyz.exe), and a folder called longstring (some really long random string). Briefly memorize these strings so you can pick them out.
(note: I use cygwin, so you might need to switch to dos commands)
>rm xyz.exe
>rm longstring
>cd %CommonAppData%
>rm longstring
>cd %Temp%
>rm longstring
>cd %UserProfile%/Templates
>rm longstring
This is all the places the virus has written itself to your computer. Now, to fix the registry, remove the following keys, if they look infected:
HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = 'ah'
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah
HKEY_CURRENT_USER\Software\Classes\ah "(Default)" = 'Application'
HKEY_CURRENT_USER\Software\Classes\ah "Content Type" = 'application/x-msdownload'
HKEY_CURRENT_USER\Software\Classes\ah\DefaultIcon "(Default)" = '%1'
HKEY_CURRENT_USER\Software\Classes\ah\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "IsolatedCommand"
Repair the registry with the following correct key copy (I attached it).
If you don't know what I am talking about, try finding someone to help you.
Attachments:
The virus controls your program execution by overwriting the registry executor keys for .exe files. Use any method to access a terminal (safe mode with command prompt if necessary), and then do the following
>cd %LocalAppData%
Here, you should notice two things. There will be some executable you don't recognize, named xyz.exe where xyz is a random 3-character string (this will match a process running named xyz.exe), and a folder called longstring (some really long random string). Briefly memorize these strings so you can pick them out.
(note: I use cygwin, so you might need to switch to dos commands)
>rm xyz.exe
>rm longstring
>cd %CommonAppData%
>rm longstring
>cd %Temp%
>rm longstring
>cd %UserProfile%/Templates
>rm longstring
This is all the places the virus has written itself to your computer. Now, to fix the registry, remove the following keys, if they look infected:
HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = 'ah'
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah
HKEY_CURRENT_USER\Software\Classes\ah "(Default)" = 'Application'
HKEY_CURRENT_USER\Software\Classes\ah "Content Type" = 'application/x-msdownload'
HKEY_CURRENT_USER\Software\Classes\ah\DefaultIcon "(Default)" = '%1'
HKEY_CURRENT_USER\Software\Classes\ah\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "(Default)" = "%LocalAppData%\<random 3 chars>.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "IsolatedCommand"
Repair the registry with the following correct key copy (I attached it).
If you don't know what I am talking about, try finding someone to help you.
Attachments:
None.
Options
[11:49 pm]
O)FaRTy1billion[MM] -- o, due to a donation i now have enough minerals to send you minerals[2024-4-17. : 3:26 am]
O)FaRTy1billion[MM] -- i have to ask for minerals first tho cuz i don't have enough to send[2024-4-17. : 1:53 am]
Vrael -- bet u'll ask for my minerals first and then just send me some lousy vespene gas instead[2024-4-16. : 5:05 pm]
Vrael -- Its simple, just send all minerals to Vrael until you have 0 minerals then your account is gone
Members Online: 
Ultraviolet, Sylph-Of-Space, Roy
Ultraviolet, Sylph-Of-Space, Roy