Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
A malicious BAT file did something to my registry. Now I don't have anything working.
I lost all file associations. From the small txt file to the biggest exe possible, lnk, html, shortcuts, zip, reg... every damn thing... there is no more recognizable files on my computer. I am now writing from my office...I've been at dougknox.com, got all those REG files... but how can I import the reg files if the reg extension isn't recognize anymore????
How can I manually edit the registry? And even if it's possible to do this, my notpad won't work anymore...
What are my last possible option(s)? I DO NOT want to format and forget about system restore...
I've search in here, found some stuff so I will go back home and try some. Please answer quick and please read everything I've said so I do not have to repeat that NOT ANY FILES WORK.
I'll come back here, solved or not...
Smumdax in deep deep booboo...
Set your bios to boot from cd, then hardrive.
Boot with the XP cd into the recovery console. Run sfc (system file checker) from the disc or reinstall windows over the current install. You will then need to reinstall all your drivers (sound, video, etc).
0 
How about going into programs, accessories, system tools, system restore and restore system to the last restore point.
0
... pmarion please... read what I've type. No files work, no shortcut work, no nothin. So forget about going here and there, because that won't work.
Also, I think I've said to forget about system restore... Please read so I won't have to reapet... but I'm doing it anyways...
Sorry to be so hard on you, but I'm quite stressed right now...
...efabes: I'll try what you said about the sfc, but I won't reinstall my Windows, not an option. Must find other way... please.
0
Hey, no prob. Sorry, I misunderstood. How about I send you the reg key to import into your registry?
You can manually create the file association, or run it without the association manually.
What OS? I have win2k, winxp, and win 98 available herealso, did you try a F8 boot and restore to last known good?
Lastly, you COULD do a parallel installation in order to acces the existing partition. You could then hexedit the registry, or use remote registry service to view it.
Many options...
0
I am trying to remember which file you append the .reg too...
it's regini.exe or refile.exe to merge manually. checking the web. I set up my work pc in this fashion to merge a regfile through task scheduler. Give me 10...
0
OK, try this: regedit /S nameofile.reg
if it wont run without the file extension, use the .exe extension for regedit.
0
I have never done a reinstall over XP. A reinstall of WinME or Win98 could be done without losing files or settings.
This is what I was talking about: reinstalling the windows files over the old windows files.
You are right, though, it is best to stay away from that option. I was looking up so info on it and it seems others have done it and lost access to the documents on their drive because they no longer had administrative rights to those files.
Other note re SFC:
It is also possible your registry was damaged. You may need to reinstall your software also.
0
Smumdax, You may want to try downloading the Fixswen.inf file to a floppy on another computer, then transfer the floppy to the problem computer and run the Fixswen.inf file.
Save the fixswen.inf file to your local hard disk, right-click on the file and choose install.
A Setup INF file to undo registry changes made by W32/Swen@MM and other threats that prevent REGEDIT, BAT, COM, EXE, PIF, REG and SCR files from running.
Here's the link and I hope it works for you.
HTH
Tufenuf
0
Hello everyone!...
Well, I'm back on my compu now. Turns out it was BAT.trojan.Tally Damn viruses. Of course, it needed my stupidity to activate himself and completely destroy my registry.
It deleted HKCR (which explains my lost of all file associations), HKCU, HKLM, HKU & HKCC... welll, it deleted my whole damn registry, for the mot part. It did stop somewhere, because I still got a lot of configurations. Maybe some XP protection... thanks for that...
Now, I'm in the process of settnig everything back. I have a lot of strange errors, still got prob with some file associations, lost some registrations... well, I think you all know in what kind of mess I am...
Thanks to pmarion for finding the name of the virus. If I ever meet the guy who made this, I'll strangle him until his neck becomes a straw, twist it firmly and snap the air out of it..!!!
0
...forgot to tall you how I've got my compu running again.
First, I went at work with my hard drive and plugged it in my work's computer.
I took each and every reg files available at dougknox.com, unzipped them and copied them back on my hard drive. The reason I unzipped them right there is because even if I got back home with those, I wouldn't have been able to unzip, since my progs didn't work anymore...
A friend of mine also gave me his entire HKCR, just in case.
I manage to get to my folder where the fix were. Don't remember how I did this, though. Then I double-clicked on the exe fix and it asked me what prog to use. So I browsed to regedit.exe and it worked! I went crazy and started ading each and every reg fix I had, including my friend's... maybe that was to much, because now I get some errors asking for installation CD I never had. Probably some infos from my friend's...
Finally, I've put in the XP CD to install and repair.
When everything started to look great and I was connectnig to the internet again, look who got back... Blaster. RPC shutdown... Oh how great!
So up to now, I had to reinstall Win Media Player, Adobe Premiere, Acrobat Reader, ATI drivers and all XP fixes. I also had to reconfigure my services, reassociate many other files, put back some custom icons... and so on...
Right now, I'm reinstalling Office. So much fun. And I thought I would have a long relaxing week-end....!
0
By the way... I can't seem to get my html and htm files' normal icons. Still got the unknow type. And I tried to change it, to no avail... any ideas?
Oh, and when I open up my Folder Options in the registered file types list, it always pops the Windows Installer, them ask about some componant I'm supposedly trying to install, and ask for a CD. I cancel the box, it asks again, same CD. I close a third time, it asks again for a CD, not the same one this time, and does this again 2 other times...
What's happening?
0
Hi. Glad to hear you are almost back to speed!
Try reloading your browser to restor the associations. If it's IE, just re-run the latest service pack 1.You may want to run Windows Update to verify you have patched all of your OS vulnerabilities.
Also, and VERY IMPORTANT, go here and install this excellent and free Antivirus program!!!
http://www.grisoft.com/us/us_dwnl_free.php
Good luck, and best wishes!
0  |
 webhost at home, hiding i...
|
Network Download Ctrler
|
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
