Slash
02-19-2000, 04:34 AM
Ok... I got this virus. And what it did is associate Program files in which the registry would think that it had to open the virus in order to run the program...
HKEY_CLASSES_ROOT\exefile\shell\open\command\
That value there *should* be ""%1" %*" but now, it's appearantly set to "mueexe.exe "%1 %*". mueexe.exe is the virus file. Now, as you may guessed, I deleted mueexe.exe without knowing what it did to the registry. So every time I try to open any .exe file it says "Cannot find mueexe.exe. This file is required to run type 'Program' " So I can't go into REGEDIT- or anything. Just explorer. I can open .txt files thru notepad(not wordpad, tho). Sure, I *could* reformat, but I'd lose so much stuff. I was wondering if there was a way to edit the registry thru dos or something. Is there some kind of dos command I can do? Like
C:\WINDOWS\REGEDIT.exe HKEY_CLASSES_ROOT\exefile\shell\open\command\ = ""%1" %*"
or something!? I don't want to mess around with it b/c I might mess something up more than it is now... Please reply if you have any comments or suggestions. Thanks.
-Slash
PS - I already tried the restore thingy in dos and it says "Restore Failed" or if one of them do work, it's the bad registry still =(
PSS- Also, I just noticed that I can open other file types that point to an .exe file and then that file will open the .exe without a problem. For example: If I try and open WinAMP, it will not open. BUT, if I try to open a MP3, it will open WinAMP and be played. Perhaps if I make a file that will somehow try to open REGEDIT.exe? Any ideas?
HKEY_CLASSES_ROOT\exefile\shell\open\command\
That value there *should* be ""%1" %*" but now, it's appearantly set to "mueexe.exe "%1 %*". mueexe.exe is the virus file. Now, as you may guessed, I deleted mueexe.exe without knowing what it did to the registry. So every time I try to open any .exe file it says "Cannot find mueexe.exe. This file is required to run type 'Program' " So I can't go into REGEDIT- or anything. Just explorer. I can open .txt files thru notepad(not wordpad, tho). Sure, I *could* reformat, but I'd lose so much stuff. I was wondering if there was a way to edit the registry thru dos or something. Is there some kind of dos command I can do? Like
C:\WINDOWS\REGEDIT.exe HKEY_CLASSES_ROOT\exefile\shell\open\command\ = ""%1" %*"
or something!? I don't want to mess around with it b/c I might mess something up more than it is now... Please reply if you have any comments or suggestions. Thanks.
-Slash
PS - I already tried the restore thingy in dos and it says "Restore Failed" or if one of them do work, it's the bad registry still =(
PSS- Also, I just noticed that I can open other file types that point to an .exe file and then that file will open the .exe without a problem. For example: If I try and open WinAMP, it will not open. BUT, if I try to open a MP3, it will open WinAMP and be played. Perhaps if I make a file that will somehow try to open REGEDIT.exe? Any ideas?