it worse then just a bitcoin miner it hijack edge and webview likely to see passwords and credit card info it create lot of stuff like "program" auto start and trustedinstaller processes that kill/remove themselves when you find out about them (of course they get installed back either when you're idle or you restart) and lot more stuff that aren't as scary then the fact it mines bitcoins (at least tries since it would take millions of years to get one on my gpu) also all anti-viruses that i have tested can't remove it but that isn't as scary as losing some performance when idle and away from the computer that the worse thing this virus does
- Thread starter Bob69
- Start date
anyway someone still got the virus (the batc- i mean exe file that is totally not just a batch file) i want to upload it to every antivirus that don't detect it
Looks encoded rather than encrypted so if you know the character set and encoding you could probably read it
Yeah I thought so to so i did attempt to run it through a decoder using well known character sets but didn't get anything. Yeah I remembered to remove the :: comment on each line
I ran the game awhile back and it was caught by a anti maleware application, any way to find out if my pc is infected or is thing slippery and hard to find?
Can we get a confirmation on the virus situation. I just loaded up the game today, found no problems, and ran my basic windows defender scan found no threats. This was all before I read the thread unfortunately, so I'm not entirely sure.
There is no update to be said. The people that were talking about it never showed any time of evidence to show that it's the case. At least a screenshot of what they are seeing would help at least for other users to collaborate and figure out what is going on but they haven't.
- Jul 14, 2018
- 51
- 76
tbf I did a full scan of my "games" and come across this
exactly what I had come across as well when it had stopped it after I ran it the first time
I have paid kaspersky and everything came out clean on my end. I used dl link from the start of the thread, the archive itself was fine, it was fine when i unzipped it, i had no issues or pop ups when running the game.
I know what I saw and read, it was def infected, maybe the version I downloaded was infected, I believe I downloaded the mega folder but it was awhile ago, which website did you download from?
- Oct 16, 2020
- 548
- 1,132
the actual game is in the "game" folder, don't run the .exe outside of it (you can delete it).
I'm not convinced it does anything but deleting it the exe and just running the game.exe in the rpgm folder doesn't hurt.
This thread, the zip from Mega.
What exe outside of the game folder? In the zip i downloaded there's nothing outside of it.
- Oct 16, 2020
- 548
- 1,132
this is not the game folder. this is the folder that's inside the .zip.
the .exe in it is not the game, it's the malware. there's another folder in there that has the actual RPGM game, and you can run that .exe instead.