The file may be part of a virus called VBS.Zodgila, or VBS.Runauto (there are loads of different ones) which when executed attempts to write that file to your hard drive and puts in registry keys. Im assuming that it either wrote the registry key incorrectly or misplaced the file the key was referring to.
What anti virus program are you running and have you been able to update it and run a current scan?
I ask because it is best to be sure the cause of the problem has been removed before we fix the reg. problem.
Do you have any registry editing experience? There are a few ways to fix the error but as I said want to make sure the cause is removed first then we can repair the registry.
hi! thanks for the reply.
I've done them all, but the problem still there.
I forgot to tell you, around 6 months ago my antivirus found a virus (it said Wins32 or something, maybe), so I just delete them but as soon as I delete it, the warning message kept pop up over and over again, it kept telling me that it found a virus. Until I got my laptop restarted then it's gone. Please help me solve this problem. Thank you!
The solution provided by Kieferchild is always a good and recommended first step to remove a virus. If Malwarebyte can't remove it, a larger system analysis must be performed.
To help you, I must make a diagnostic and to do so, I require a log.
I think spyware is not the right term becasuse software is installed with user's knowledge and permission and can be removed easily using uninstall program from the control panel. It's not malicious. It is just a program that gathers some information about user's browsing habits. It is a genuine piece of software.
The infection came from Bittorent, BitComet and IMesh
After analysys, I have found
1. Baidu spyware,
2. Pop Cap Adware,
3. Relevant Knowledge Spyware,
4. Rogue Trojan Horse
5. USB viral infection.
Yes your system is in a extremely sad state.
To answer your question, not only will these viruses slowdown your machine but it is vulnerable to intrusions. If you let them prosper, your system will blank out!
Also, I found:
a) 19 useless processes
b) 13 useless toolbars or Browser helper objects
Can you tell me about this software:
Dachshund Software-- C:\WINDOWS\Integrator.exe
And what about Freeze.com
Another very important question do you use any removal USB devices? If you do, do not use them, they are probably infected and will recontaminate your system and may contaminate others.
No antivirus is perfect and in this instance, Avast was incapable of the detecting and removing all of those viruses, but I insist, you Ximxim have let them in through your torrent downloads.
Lets deal with the main infections first.
After you applied my medicinal compound, please run another ZHP log for me to look at.
I shall prescribe to you a very powerfull antidote that is able to kill and send any virus to the glue factory. It is of very last resort and should not be abused of, as matter of a fact, once you have used it, I suggest you delete it from your system.
To keep your system safe, you must follow the instructions hereunder to the letter:
First step, boot your system in safe mode with networking
Close or disable all running Antivirus, Antispyware, and Firewall programs as they may interfere with the proper running of ComboFix.
3. Double click on the ComboFix icon.
Windows is issuing this prompt because ComboFix does not have a digital signature. This is perfectly normal and safe and you can click on the Run button to continue.
4. Accept the disclaimer and the recovery
5.You should now press the Yes button to continue. If at any time during the Recovery Console installation you receive a message stating that it failed to install, please allow ComboFix to continue with the scan of your computer.
ComboFix will disconnect your computer from the Internet, so do not be surprised or concerned if you receive any warnings stating that you are no longer on the Internet. When ComboFix has finished it will automatically restore your Internet connection.
While the program is scanning your computer, it will change your clock format, so do not be concerned when you see this happen. When ComboFix is finished it will restore your clock settings to their previous settings.
If you see your Windows desktop disappear, do not worry. This is normal and ComboFix will restore your desktop before it is finished. Eventually you will see a new screen that states the program is almost finished and telling you the programs log file, or report, will be located at C:\ComboFix.txt.
During the process, please do not mouse click nor must you tap on the keyboard. Let the tool run.
Once you are done, report to me on how your system is behaving and send the ZHP log.
Dachshund Software-- C:\WINDOWS\Integrator.exe This program I got it from a forum and people there said that this program will speed up my computer and fix any crashed programs.
About Freeze.com, I have no idea what that is nor where that came from.
And about removal USB, I have it once, but I already uninstalled it long ago. I don't know if the program still exist in my laptop. >.<
It's not I don't trust you, but I am no expert for this program thing, so I kinda scared if I mess up. So, should I ask someone who is an expert for this thing to do it for me or common person can do it alone? Are all my programs going to be gone after I do this?
By removable usb devices, I mean things like pendrives, flashdrives or external disk which you plug in your computer.
The Dachshund software which you downloaded contains a virus.
You can very well desinfect your system yourself as long as you carry out my instructons to the letter.
To get into safemode with networking, since you have Windows XP professional, reboot (restart) your machine and as soon as it begins keep tapping F8. You will come to a screen giving you several options. Using the arrow key, select safemode with networking and press enter. After that continue on with disabling Avast, I think that if click right on the Avast icon, you will get the option of disabling it.
Then carry on with my instructions above, print them if needed.
After we put your system back into shape, I will give you instructions to remove the viruses from your external disk and we will vaccinate it against future infections.
Now please proceed.
I must sign out now and will return in 8 to 9 hours from now.
I hope by then you have sent me the new ZHP Diag log.
I have no idea which file I should sent, so I just upload 3 of them.
http://www.speedyshare.com/files/27753251/log.txt
http://www.speedyshare.com/files/27753252/Add-Remove_Programs.txt
http://www.speedyshare.com/files/27753253/ComboFix-quarantined-files.txt
and I run the ZHP Diag:
http://www.speedyshare.com/files/27753838/ZHPDiag.txt
After the ComboFix finish its work and reboot my computer, the error message has gone!
My laptop seems fine and working properly.
5808 users have said thank you to us this month
