Warpath  

Home | Forums | Salary Cap Info | Shop | Donate | Stay Connected




Go Back   Warpath > Off-Topic Discussion > Parking Lot


Ping.exe

Parking Lot


Reply
 
LinkBack Thread Tools Display Modes
Old 12-14-2011, 08:19 AM   #1
Gamebreaker
 
CRedskinsRule's Avatar
 
Join Date: Aug 2008
Location: Pasadena, Md
Age: 47
Posts: 12,683
Ping.exe

So this is for the computer hacks among us. I have decided to shoot my laptop. ok no not really, however, I have gotten a virus/malware which launches a PING.exe process every 5 or so minutes. At one point my system disk had gotten corrupt to the point of having to run the Windows recovery system. Steps I have taken include running Malwarebytes in safe mode, and a generic disk cleaner(not Windex :cheeky-sm )

It definitely came attached with the google re-direct virus. I think I have mostly cleared that up, although on sporadic searches an eleven tab Firefox window is spawned, so somethings lurking somewhere.

Finally,the corruption erased all my past restore points, so the only one I have probably won't do much good in terms of wiping this thing out.

Googling it wasn't much help, but I came across several places saying to run combofix, but that seems more drastic then I am prepared to go. SOOO

any suggestions, has anyone else dealt with this thing successfully.
__________________
Dirtbag59, sending songs to oblivion 1 writer at a time.
CRedskinsRule is offline   Reply With Quote

Advertisements
Old 12-14-2011, 09:15 AM   #2
Playmaker
 
724Skinsfan's Avatar
 
Join Date: Jan 2006
Location: Roanoke, VA
Posts: 3,507
Re: Ping.exe

I would try Super Antispyware first, then go ahead with combofix. I've run combofix close to a hundred times and the only problem I've ever run into has been a corrupt profile, which I renamed.
__________________
"I hope I'm getting better. I hope you haven't seen my best." - Jim Zorn
724Skinsfan is offline   Reply With Quote
Old 12-14-2011, 09:32 AM   #3
Gamebreaker
 
CRedskinsRule's Avatar
 
Join Date: Aug 2008
Location: Pasadena, Md
Age: 47
Posts: 12,683
Re: Ping.exe

Quote:
Originally Posted by 724Skinsfan View Post
I would try Super Antispyware first, then go ahead with combofix. I've run combofix close to a hundred times and the only problem I've ever run into has been a corrupt profile, which I renamed.
Thanks I will try it. Also, I deleted PING.exe from 2 spots in the registry (one was a key, and the other data) for browser emulation, and they re-generated once, so i deleted them again, and so far it hasn't kicked into any high CPU usage. Hopefully that was where the little bugger was hiding...
__________________
Dirtbag59, sending songs to oblivion 1 writer at a time.
CRedskinsRule is offline   Reply With Quote
Old 12-14-2011, 10:54 AM   #4
Mann Up HOF!
 
Lotus's Avatar
 
Join Date: Sep 2008
Location: Hattiesburg, MS
Posts: 10,596
Re: Ping.exe

I hope it all works out CRed.

Can someone enlighten me about computer viruses like this? Why would someone create such a virus? There is no apparent financial gain for the attacker. And victims are anonymous - it's not like the attacker is getting revenge. I just don't get the point of trying to create such a virus. With all the things that one can do with one's time, why spend time creating such a virus?
__________________
Rooting for the Dallas Cowboys should be recognized as a treatable mental disorder.
Lotus is offline   Reply With Quote
Old 12-14-2011, 12:51 PM   #5
Registered User
 
firstdown's Avatar
 
Join Date: Oct 2004
Location: chesapeake, va
Age: 50
Posts: 15,818
Re: Ping.exe

Stop looking at porn or buy better protection.
firstdown is offline   Reply With Quote
Old 12-14-2011, 01:32 PM   #6
Living Legend
 
skinsfaninok's Avatar
 
Join Date: Mar 2005
Location: Oklahoma City (Originally from Biloxi, Ms)
Age: 27
Posts: 16,104
Re: Ping.exe

Quote:
Originally Posted by firstdown View Post
Stop looking at porn or buy better protection.
Eh buy protection
__________________
THUNDER UP

"if you're good at something, never do it for free"- The Joker

skinsfaninok is offline   Reply With Quote
Old 12-14-2011, 02:14 PM   #7
Gamebreaker
 
CRedskinsRule's Avatar
 
Join Date: Aug 2008
Location: Pasadena, Md
Age: 47
Posts: 12,683
Re: Ping.exe

Quote:
Originally Posted by Lotus View Post
I hope it all works out CRed.

Can someone enlighten me about computer viruses like this? Why would someone create such a virus? There is no apparent financial gain for the attacker. And victims are anonymous - it's not like the attacker is getting revenge. I just don't get the point of trying to create such a virus. With all the things that one can do with one's time, why spend time creating such a virus?
Thanks Lotus,

The conspiracy theorist would tell you that the antivirus companies have people who make them and put them out, just to keep their business going. (they do in fact have people who develop them, but I doubt with the intention of releasing them)

2nd reason is vendettas against mega corps like Microsoft, OWS folks apply here

3rd, and probably the most common reason, is the "because it's there group" You get teenagers who are learning to code, think they have hit on cool techniques and get some acclaim in there circle for making them. Mostly they are repetitive and common ways of attacks, pretty straight-forward even for the free protection.

4th, a few people use them for identity theft etc


Everything seems good now so, I can go back to my surfing FD, LOL
__________________
Dirtbag59, sending songs to oblivion 1 writer at a time.
CRedskinsRule is offline   Reply With Quote
Old 12-14-2011, 03:10 PM   #8
Mann Up HOF!
 
Lotus's Avatar
 
Join Date: Sep 2008
Location: Hattiesburg, MS
Posts: 10,596
Re: Ping.exe

Quote:
Originally Posted by CRedskinsRule View Post
Thanks Lotus,

The conspiracy theorist would tell you that the antivirus companies have people who make them and put them out, just to keep their business going. (they do in fact have people who develop them, but I doubt with the intention of releasing them)

2nd reason is vendettas against mega corps like Microsoft, OWS folks apply here

3rd, and probably the most common reason, is the "because it's there group" You get teenagers who are learning to code, think they have hit on cool techniques and get some acclaim in there circle for making them. Mostly they are repetitive and common ways of attacks, pretty straight-forward even for the free protection.

4th, a few people use them for identity theft etc


Everything seems good now so, I can go back to my surfing FD, LOL
I was talking about viruses which don't strike back at megacorporations like Microsoft and don't seem to help anyone to steal your identity.

But I think you are right about kids who need to be cool. That's a helpful insight. Thank you for that.
__________________
Rooting for the Dallas Cowboys should be recognized as a treatable mental disorder.
Lotus is offline   Reply With Quote
Old 12-14-2011, 06:43 PM   #9
Pro Bowl
 
SirClintonPortis's Avatar
 
Join Date: Oct 2008
Posts: 6,052
Re: Ping.exe

Use Spybot S&D and go to their forums for support. They'll probably tell you to use Hijackthis! for a log to analyze and help diagnose the problem.
__________________
Analysis using datasets (aka stats) is an attempt at reverse-engineering a player's "goodness".

Virtuosity remembered, douchebaggery forgotten.

The ideal character profile shoved down modern Western men and women's throats is Don Juan.
SirClintonPortis is offline   Reply With Quote
Old 12-14-2011, 06:46 PM   #10
Pro Bowl
 
SirClintonPortis's Avatar
 
Join Date: Oct 2008
Posts: 6,052
Re: Ping.exe

Oh, and do not use an administrator account in the future, unless you have to. Create one of those user accounts and use that.
__________________
Analysis using datasets (aka stats) is an attempt at reverse-engineering a player's "goodness".

Virtuosity remembered, douchebaggery forgotten.

The ideal character profile shoved down modern Western men and women's throats is Don Juan.
SirClintonPortis is offline   Reply With Quote
Old 12-14-2011, 06:54 PM   #11
Living Legend
 
That Guy's Avatar
 
Join Date: Jun 2004
Location: Springfield, VA
Age: 31
Posts: 16,278
Re: Ping.exe

zombies and root kits... they get paid for making your computer look at ads, and they get paid to be able to make your computer DDoS servers on command... plus they can also look for financial data and send that in too if they're feeling froggy.
__________________
Who says shameless self promotion is stupid? oh yeah, that was me... Click For Tunes!
That Guy is offline   Reply With Quote
Old 12-14-2011, 07:03 PM   #12
Pro Bowl
 
SirClintonPortis's Avatar
 
Join Date: Oct 2008
Posts: 6,052
Re: Ping.exe

Quote:
Originally Posted by Lotus View Post
I hope it all works out CRed.

Can someone enlighten me about computer viruses like this? Why would someone create such a virus? There is no apparent financial gain for the attacker. And victims are anonymous - it's not like the attacker is getting revenge. I just don't get the point of trying to create such a virus. With all the things that one can do with one's time, why spend time creating such a virus?
Who makes computer viruses and why? - JREF Forum

Have fun.
__________________
Analysis using datasets (aka stats) is an attempt at reverse-engineering a player's "goodness".

Virtuosity remembered, douchebaggery forgotten.

The ideal character profile shoved down modern Western men and women's throats is Don Juan.
SirClintonPortis is offline   Reply With Quote
Old 12-15-2011, 12:19 PM   #13
Pro Bowl
 
skinsguy's Avatar
 
Join Date: Feb 2004
Location: Greensboro, North Carolina
Posts: 6,523
Re: Ping.exe

I'm not sure about the issue with ping.exe. If this is one of those rogue anti-virus programs, then they usually hide in c:\documents and settings \ all users \ application data. It's also quite possible that it hides in system restore, which could be why it regenerates some of its attacks. You could try unplugging the Ethernet cable from your computer, or shutting down the wireless and see if the ping.exe thing goes away. It could possible tell you which program is trying to access the internet, and from there, you'd know where it's at and what to get rid of.

I'm curious to know how you got your computer infected. We have people at work who tell me they have not been to any questionable websites at any time, not even facebook, yet they get these nasty viruses on their computers and I'm having to get rid of the viruses. Luckily for me, I've become somewhat of an expert in getting rid of the rogue anti-virus viruses, but you didn't say for sure if this was that type of virus or not.
__________________
Not the same Skinsguy that posts on ES.
skinsguy is offline   Reply With Quote
Old 12-15-2011, 01:36 PM   #14
Eternally Legendary
 
saden1's Avatar
 
Join Date: Feb 2004
Location: Seattle
Age: 35
Posts: 9,914
Re: Ping.exe

Install Linux Mint...why waste time an energy on a product whose performance degrades over time and is susceptible to viruses?
__________________
"The Redskins have always suffered from chronic organizational deformities under Snyder."

-Jenkins

Last edited by saden1; 12-15-2011 at 01:38 PM.
saden1 is offline   Reply With Quote
Old 12-15-2011, 05:21 PM   #15
Gamebreaker
 
CRedskinsRule's Avatar
 
Join Date: Aug 2008
Location: Pasadena, Md
Age: 47
Posts: 12,683
Re: Ping.exe

Quote:
Originally Posted by skinsguy View Post
I'm not sure about the issue with ping.exe. If this is one of those rogue anti-virus programs, then they usually hide in c:\documents and settings \ all users \ application data. It's also quite possible that it hides in system restore, which could be why it regenerates some of its attacks. You could try unplugging the Ethernet cable from your computer, or shutting down the wireless and see if the ping.exe thing goes away. It could possible tell you which program is trying to access the internet, and from there, you'd know where it's at and what to get rid of.

I'm curious to know how you got your computer infected. We have people at work who tell me they have not been to any questionable websites at any time, not even facebook, yet they get these nasty viruses on their computers and I'm having to get rid of the viruses. Luckily for me, I've become somewhat of an expert in getting rid of the rogue anti-virus viruses, but you didn't say for sure if this was that type of virus or not.
I used the SuperAntispyware and it got rid of the last remnants of the PING thing. In terms of when I got it/where I got it, the most traceable thing that I can say is I switched to Google Chrome, nothing else in my surfing behaviour changed, and perhaps, I missed a setting when I switched to it. But I got the google re-direct virus within a few hours of installing chrome, and the PING thing seemed to be attached to that. I won't begin to say I avoid all "questionable" sites, but nothing that I hadn't been to many many times before.

I doubt it was in Chrome, but I have gone back to Mozilla just cause.
__________________
Dirtbag59, sending songs to oblivion 1 writer at a time.
CRedskinsRule is offline   Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -4. The time now is 12:55 AM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
This site is not officially affiliated with the Washington Redskins or the NFL.
Page generated in 0.29270 seconds with 9 queries

Search Engine Friendly URLs by vBSEO 3.2.0 RC5

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25