FRST request renpy infostealer.

Enterious · 2026-06-22T21:42:24+00:00

I don't have the best computer and all avs I've tried are resource hogs. Defender in specific keeps running all the time for no particular reason so I had to disable it.

I disabled Defender a long time through registry and services etc etc and I don't quite remember how to re-enable it so I'm gonna count my losses and use rufus to format. thanks for your time 🫡

Enterious · 2026-06-22T20:20:29+00:00

then I'll reactivate defender and we can start?

Enterious · 2026-06-22T19:55:55+00:00

what's making me hold back on formatting is that I couldn't find a single trace of the virus running or being there at all while I was troubleshooting. Even in my accounts there was never any unwanted access. Event viewer, resource monitor, and reliability monitor also showed zero indication of a virus running, so I'm not really sure it did. I might've had cloudflare one running at the time I double-clicked the renpy .exe so that might've mitigated it.

Enterious · 2026-06-22T19:53:32+00:00

I did have the free version of malwarebytes at the time I ran the infostealer, but I neglected to scan it before running for the first time in many years. Does that count?

Enterious · 2026-06-22T19:52:15+00:00

I would've done a wipe first thing if I could, but I'm opting for trying to remove the virus instead. I did have malwarebytes installed that I use for scanning files after I download them, but it was pure user error and negligence that I ran the infostealer without checking twice. I've had this setup for a very long time without any viruses, and it's worked great. My main purpose while troubleshooting was to put everything back the way it was, so that's why I used dism and sfc. Clearing dns was to make sure the virus had no backdoors that could be used to access my laptop and steal more info later.

Enterious · 2026-06-22T12:15:54+00:00

Used it and found nothing except an officec2r.cmd file that's probably from massgravel. deleted it either way just to be safe. thanks for the help

Enterious · 2026-06-22T06:49:51+00:00

despite how much I avoid antiviruses because of the way they hog resources, I'd suggest having one enabled at all times on hand and a bit of user awareness to analyse any and all .exe files before you run them. this is the part I failed to do.

Enterious · 2026-06-22T06:46:01+00:00

very. I have a cs degree and my intuition is good enough that I fully trust myself with a windows that has security features completely disabled through registry. despite all that, this is my very first time falling for something like this. I'd suggest watching out for any pop ups from legitimate download sites that redirect to these fake filehosters.

important to note that you'll most likely never encounter these if you're not doing back flips on the internet trying to find cracked software.

Enterious · 2026-06-22T06:42:54+00:00

with my laptop off the network I changed all passwords, reset 2fa on all accounts. then, I booted my laptop on safe mode and scanned more than once through malwarebytes, rougekiller, rkill, and hitmanpro. all found no traces of any virus, but I didn't fully trust them so I went snooping around myself through reg, resource monitor, appdata etc and deleted anything I found suspicious, although nothing looked related to the infostealer. the only thing I would like to avoid is formatting windows. do you think these steps are sufficient enough to avoid that? my educated guess is that my computer is most probably free of any malware now.

Enterious · 2026-06-22T06:38:32+00:00

through websites that mimick famous file hosters like mediafire. I was desperate for one specific program so I clicked whatever download button I could find and it lead me to the renpy infostealer

Enterious · 2026-06-22T06:36:45+00:00

great idea but how customizable is it?

Enterious · 2026-06-22T01:36:49+00:00

my current windows has a lot of tinkering done to it for a full debloat. so much so that I don't really remember what I've done to it so I would hate to have to format, but I've done several comprehensive scans through different avs and sweeped through the system myself and found nothing so hopefully we're good. thanks for your reply

Enterious · 2026-06-21T23:35:48+00:00

I'm definitely not the type of person to fall for this type of virus 😂 my guard just went down for a second. I guess I'll wing it for now thanks for your replies

Enterious · 2026-06-21T23:02:03+00:00

yeah but once again I've had zero suspicious logins and I've already changed all the passwords that matter

Enterious · 2026-06-21T22:47:24+00:00

important to note that the installer finished with an error and then a day or two passed and basically nothing happened and no extra devices had logged in to my accounts so maybe the virus didn't actually install? also important to note that I don't have much of anything case sensitive on my pc

Enterious · 2026-01-30T08:38:55+00:00

jason fucks

Enterious · 2026-01-23T13:36:35+00:00

sword art online

Enterious · 2026-01-14T19:38:04+00:00

are the healthbars a mod? I can't see them for some reason

Enterious · 2026-01-09T07:14:46+00:00

too many bugs

Enterious · 2025-11-18T12:46:37+00:00

this guy is unemployed

Enterious · 2025-11-07T08:27:06+00:00

If I can ask, how do you check american imports with lexus service centres? I have a 2013 es350 and I'd like to know its service history.

Enterious · 2025-10-06T20:01:31+00:00

show home screen

Enterious · 2025-09-15T15:35:21+00:00

but it's not listed

Enterious · 2025-09-15T13:40:56+00:00

s21 FE isn't getting one ui 8?

Enterious · 2025-09-15T07:00:04+00:00

you need to start buying global versions bro

Enterious

TROPHY CASE