Nail.exe/Aurora, you are my *****.

[dustin_c1]

That is all.

No, that isn't all. We need a crazed nut who mails explosive packages to people who work at ABI and Direct Revenue. This is friggin' ridiculous.

For anyone who as been hijacked by this friggin' nasty, nasty, nasty program, I found a fix here:

The Link

edit: The instructions in that link are slightly wrong. They say to look for and delete "c:windowssystem32zpnhof.exe." It won't always be named zpnhof.exe. Everytime nail.exe executes, it saves a copy of itself in windowssystem32 as a random name and enters a new registry key in HKLM. Look for something that is randomly named, around 74K in size. To make sure that is the correct file, ensure that there is a Hijack This entry for an HKLM registry key to run that program at startup.

 

[JohnnyM]

Thank you.

My gf's computer at home has aurora and she gets violently upset about it. She constantly tells me to "fix it". I tell her that my computer is fine, she must have ****** it up somehow. By the way, that's not a good course of action

 

[HenryGandorf]

ok, somehow aurora found its way onto my computer. it's not really ******* anything up yet, but there's a random popup every half hour or so.

these instructions seem to be for a much more serious problem, and nail.exe hasn't entered the picture yet.

what can i do to rid myself of aurora?

 

[dustin_c1]

nail.exe *is* aurora. Unless there are variants of aurora, you'll have a file C:WndowsNail.exe

 

[TexasEd]

How long has this been around?

I have uptodate protection at work, but I let my subscription lapse on my home computer about a month ago.

Ed