Author Topic: my computer is sick...  (Read 9561 times)

0 Members and 1 Guest are viewing this topic.

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« on: May 14, 2007, 11:00:00 am »
recently my comp got a virus that i looked up and is called petty/pretty park virus or something. the main thing is that i cant execute exe's on the computer (btw i have no clue how i got it since i have adaware and mcaffe virus protection on simultaneusly at all times). any way the only way i found to get rid of it is by editing the registry. now as some of you think to yourself "just use regedit" remember that this is an exe rendered useless by the stupid virus and therefor cant be used. specifically i need to know if anyone knows how to edit the registry without regedit or any other exe. also, the website said something about changing the format of regedit to a dot com, but this has proven fruitless so either they're wrong or im doing it wrong (open with notepad and saving as a dot com file [the new file's properties reads that the filetype is COM but it wtill wont open...]) so if anyone knows how to do that then i'd be grateful. i can acess the internet somehow on that computer, operah still works as my default browser when i choose to see if windows can find the program that made the exe idk if that adds some options or something... anyway, any help would be appreciated as my mom hates me using her computer and i have 4 projects due friday.

Offline Speler

  • LV8 Addict (Next: 1000)
  • ********
  • Posts: 857
  • Rating: +6/-2
    • View Profile
my computer is sick...
« Reply #1 on: May 14, 2007, 11:04:00 am »
Well, mcaffe sucks and adaware isn't for viruses so that's how it got on your computer, anyway did you try booting into safe mode?

Offline Spellshaper

  • LV10 31337 u53r (Next: 2000)
  • **********
  • Posts: 1690
  • Rating: +0/-0
  • This is me. Or maybe not.
    • View Profile
my computer is sick...
« Reply #2 on: May 14, 2007, 11:10:00 am »
I'm going to bed now, first thing that crosses my mind is WinPE, fully bootable windows cd, you can integrate any windows-approved program.

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« Reply #3 on: May 14, 2007, 11:28:00 am »
i have like adaware PE or something, anyway it defenitely has virus protection but i guess not good enough... and ya, i've tried that, it seems the virus just moved a thing in the registry so its not a process or anything so safemode doesnt change anything...i guess ill have to check out this winPE thing though perhaps that will work.

spengo

  • Guest
my computer is sick...
« Reply #4 on: May 14, 2007, 12:32:00 pm »
QuoteBegin-Super Speler+14 May, 2007, 22:04-->
QUOTE (Super Speler @ 14 May, 2007, 22:04)
Well, mcaffe sucks and adaware isn't for viruses so that's how it got on your computer, anyway did you try booting into safe mode?  

 ditto that. Use Nod32. Symantec corporate edition is okay too.

Also, If all else phails you can always back up your stuff to an external drive or another computer and do a wipe and clean install.

graywolf

  • Guest
my computer is sick...
« Reply #5 on: May 14, 2007, 01:21:00 pm »
Try renaming regedit.exe to regedit.com & then run it. This is supposed to work, but like you said, it didn't for you.

So try doing the following:

1. Click Start, and then click Run.

2. Type "command.com" , and then press Enter. (A DOS window opens.)

3. Type the following:

 "cd\"

 "cd \windows"

    Press Enter after typing each one.

4. Type copy "regedit.exe regedit.com" and then press Enter.

5. Type "start regedit.com" and then press Enter.

6. Navigate to and select the key:

    HKEY_CLASSES_ROOT\exefile\shell\open\command

7. In the right pane, double-click the (Default) value.

8. Delete the current value data, and then type:

     "%1" %*

 Tip: Type the characters: quote-percent-one-quote-space-percent-asterisk.

9. Close Regedit utility.


EDIT: Actually, take a loot at this first http://us.mcafee.com/virusInfo/default.asp?id=description&virus_k=100662

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« Reply #6 on: May 14, 2007, 02:08:00 pm »
nod32? is that virus protection or how to edit the registry? not sure, "n" might be norton but then "32" is where regedit is stored so im not sure.

the "funny" thing is that i just switched from a harddrive that had been virused but i hadnt gotten around to transferring everything to the new one.

edit: com files dont work so, command.com doesnt work. i tried other ways to get to cmd but none of them worked.. on the website you gave it listed the files that i couldnt use but dat was not not listed, so either it lists only major file types or it doesnt have the specificvirus i have. although since both this and the pretty park virus give the exe/shell/open/command as the main area to be fixed, i assume that WAS what was ruined. although at another glance the page says that a random string should popup at startup which does happen.

spengo

  • Guest
my computer is sick...
« Reply #7 on: May 14, 2007, 04:59:00 pm »
nod32 is virus protection. The very best. =D
http://www.eset.com/
Kinda expensive, but worth it.

Also, oh teh shits @ not being able to use com files either. :oohmy.gif Maybe you *should* do a clean install. I like to reinstall windoze on all my machines every 6 months to a year anyways. It gets bogged down you know, windows is just like that. :Ptongue.gif I keep all my crap organized so it's fairly painless when I do it. You might also try booting to a different OS. Download one of the linux distros and get rid of the virus from there. It only affects the windows os it looks like.

Offline Spellshaper

  • LV10 31337 u53r (Next: 2000)
  • **********
  • Posts: 1690
  • Rating: +0/-0
  • This is me. Or maybe not.
    • View Profile
my computer is sick...
« Reply #8 on: May 14, 2007, 09:19:00 pm »
there is also f-prot, a DOS-based anti-virus program, you can simply copy it onto a boot discette. Only used it once though.

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« Reply #9 on: May 15, 2007, 08:49:00 am »
yeh, i guess ill just reinstall windows, and see if i can get that nod32 vp program

graywolf

  • Guest
my computer is sick...
« Reply #10 on: May 15, 2007, 11:54:00 am »
Yeah, just do that.

spengo

  • Guest
my computer is sick...
« Reply #11 on: May 15, 2007, 12:36:00 pm »
Well I also think if you install linux you can get rid of it pretty easily from there. If you don't feel like doing a wipe that is.

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« Reply #12 on: May 15, 2007, 12:52:00 pm »
i hear theres like a linux disk that allows you to use linux as long as you have the cd inserted, could i just use that and not install linux?

spengo

  • Guest
my computer is sick...
« Reply #13 on: May 15, 2007, 02:44:00 pm »
knoppix you mean?

Offline dinhotheone

  • LV6 Super Member (Next: 500)
  • ******
  • Posts: 410
  • Rating: +2/-1
    • View Profile
my computer is sick...
« Reply #14 on: May 16, 2007, 09:15:00 am »
im not sure of the name, does knoppix require no installation to run linux? if so then yes thats what i meant. would that work though?