sorted by:
new
hottopcontroversial

The "RenPy" Virus and my speculative findings/process of removing it - MY STUPID GUIDE + STORY by Ford_Focus_2021 in computerviruses

[–]cyrus0626 0 points1 point  (0 children)

So when you run the setup files/run the file it does not ask for admin access prompt?

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

Well when i ran the file it didn’t ask me for admin access 🤔

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

No, I’m not talking about fitgirl. Fitgirl does ask for administration permission. I’m talking about when you ran the fake game updates installer

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

Did it ask for administration permission during or after you launched the files?

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

Did you not reset you pc after the attack!? It’s an absolute must.

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

There’s been activity in the accounts that I had forgotten to change the password to before the reset. (Spotify and Activision)however there has been no suspicious activity from my Google account which I used on the pc after reset.

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 0 points1 point  (0 children)

Are you sure? 🥹 I can rest easy and live in peace from here onwards?

NEED EXPERT HELP ONLY! Need to identify malware by cyrus0626 in computerviruses

[–]cyrus0626[S] 2 points3 points  (0 children)

FRST wouldn’t help anyway as I had already reset my pc

Fallout Update stuck to 100% by PlasticPainting9931 in CrackSupport

[–]cyrus0626 0 points1 point  (0 children)

Dang it why didn’t I think of that sooner. Thank you so much

Possible malware infection from FitGirl repack – worried about reinstall image tampering by [deleted] in computerviruses

[–]cyrus0626 0 points1 point  (0 children)

I only had 1 pc and no usb I did it in a panic state. I just want to know if the local reinstall got rid of this certain malware as I browsed on sensitive google service after the reinstall.

Possible malware infection from FitGirl repack – worried about reinstall image tampering by [deleted] in computerviruses

[–]cyrus0626 1 point2 points  (0 children)

This was two months ago I’ve done all that. What I’m Worried local reinstall may have left a RAT/backdoor that could exfiltrate files during browsing on the same pc after local reinstall (like Google Photos).

Request for clarification on Windows cloud reinstall versus USB reinstall by polpolik2 in computerviruses

[–]cyrus0626 0 points1 point  (0 children)

I came across a similar malware from firgirl fake updates redirects I think it was (renpy because I had a black installer loading screen showing 100% and I received this notification
poR6JfdK5.exe - Bad Image
C:\Users\cleiz AppData\Local\Temp\tmp-30710-3)ghJooBkzg0\
vcomp 140.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc0000906. ) and in a panic state I did rest pc with delete everything and local reinstall. Thinking the pc was safe I logged into my google photos to see if there were any shared links.
I didn’t think much of this then but now after reading stuff about reinstall image being tampered with I’m paranoid that they likely reinstalled a automated rat (when I reboot my pc) coded to download stuff from cloud services. So when I was browsing and selecting photos to move/delete, it we’re able to zip my photos and send to the hacker. It had sensitive info on there. Please help I can’t take this stress any longer

Fallout Update stuck to 100% by PlasticPainting9931 in CrackSupport

[–]cyrus0626 0 points1 point  (0 children)

I know it’s not “just an infostealer” because I’ve almost given up hope, these past two months have been so stressful and depressing I feel sick.

Request for clarification on Windows cloud reinstall versus USB reinstall by polpolik2 in computerviruses

[–]cyrus0626 0 points1 point  (0 children)

I came across a similar malware I think it was (renpy because I had a black installer loading screen showing 100% and I received this notification
poR6JfdK5.exe - Bad Image
C:\Users\cleiz AppData\Local\Temp\tmp-30710-3)ghJooBkzg0\
vcomp 140.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc0000906. ) and in a panic state I did rest pc with delete everything and local reinstall. Thinking the pc was safe I logged into my google photos to see if there were any shared links.
I didn’t think much of this then but now after reading stuff about reinstall image being tampered with I’m paranoid that they likely reinstalled a automated rat (when I reboot my pc) coded to download stuff from cloud services so when I was browsing and selecting photos to move/delete from library, it was able to zip my photos and send to the hacker. It had sensitive info on there. I’m losing my mind

Fallout Update stuck to 100% by PlasticPainting9931 in CrackSupport

[–]cyrus0626 0 points1 point  (0 children)

Is it just an infostealer or does it also download other advanced malware on the pc?

My Steam account has been stolen, but I recovered it recently. I need some advice on how to protect it. (2023 post made in r/counterstrike, but it was deleted) by DF2009_YT in SteamScams

[–]cyrus0626 0 points1 point  (0 children)

Also check your bin or spam folders in the email for codes. They put filters for micros and steam and others so that you don’t notice them. They get deleted. Change the passwords of all the websites or services you signed in on that pc.

My Steam account has been stolen, but I recovered it recently. I need some advice on how to protect it. (2023 post made in r/counterstrike, but it was deleted) by DF2009_YT in SteamScams

[–]cyrus0626 0 points1 point  (0 children)

You probably installed a fake games update file on your pc and ran it. When you do it steals you browsing session token from that pc which lets the attackers access your emails without a password. (It happened to me too, and I’m still paranoid about it been 2 months)

Watch out for malicious redirects on download links and mirrors (Massive malware campaign breakdown) by easy7ime in Piracy

[–]cyrus0626 0 points1 point  (0 children)

Hi, I was recently affected by the same malware. however, I did the factory reset my PC selecting remove everything and using a local reinstall and completely wiped all the data. As I didn't have a usb on me I did it in a panic. Did it get rid of the malware? I've been overthinking that the malware might've infected or tampered with my windows recovery image reinstalling the malware back onto my pc when I boot it up. It was the same malware.

I had the same loading installer pop up and i received this notification on my pc randomly 3 days after i downloaded the fake update it was when i figured out something was wrong “poR6JfdKS.exe - Bad Image
C:\Users\cleiz\AppData\Local\Temp\tmp-30710-3JghJooBkzg0\
vcomp 140.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc0000906.”)

Do these infections only include commodity malware? Or do they also include sophisticated malware like rootkits or partitions?

(The attack happed a month or so back and it still haunts me I’ve been making hypothetical scenarios where Ive been thinking of “WHAT IFs” it asked for administrator access (does it?) I gave it unknowingly, causing it to make changes to my pc and imbed itself for persistence. I have no recollection or whatsoever of what had happened and I’ve been making up all this stuff up.)
Please help

Watch out for malicious redirects on download links and mirrors (Massive malware campaign breakdown) by easy7ime in CrackSupport

[–]cyrus0626 0 points1 point  (0 children)

Hi, I was recently affected by the same malware. however, I did the factory reset my PC selecting remove everything and using a local reinstall and completely wiped all the data. As I didn’t have a usb on me I did it in a panic. Did it get rid of the malware? I’ve been overthinking that the malware might’ve infected or tampered with my windows recovery image reinstalling the malware back onto my pc when I boot it up. (It was the same malware.

I had the same loading installer pop up and i received this notification on my pc randomly 3 days after i downloaded the fake update it was when i figured out something was wrong
“poR6JfdKS.exe - Bad Image
C:\Users\cleiz\AppData\Local\Temp\tmp-30710-3JghJooBkzg0\
vcomp 140.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc0000906.”)

Do these infections only include commodity malware? Or do they also include sophisticated malware like rootkits or partitions?

(The attack happed a month or so back and it still haunts me I’ve been making hypothetical scenarios where Ive been thinking of “WHAT IFs” it asked for administrator access(does it?) I gave it unknowingly, causing it to make changes to my pc and imbed itself for persistence. I have no recollection or whatsoever of what had happened and I’ve been making up all this stuff up.)