regedit.com ??? What the?

R

RB

Start, Run, I type in regedit. I get a blank command window which reads windows/system32/regedit.com. There is no such file as regedit.com in the directory. So I scanned for viruses, adware and spyware. Nothing. I can only acess the registry via regedit.exe. I consulted different web sites, including Symantec's and Microsoft, and there are no recipes to fix this. Many have the same identical problem. No explanation on the causes.

Any ideas?

Richard
 
P

PA Bear

This script creates usable copies of REGEDIT, MSCONFIG and Task Manager http://www.dougknox.com/xp/uti­ls/xp_emerutils.htm

%windir%/system32/regedit.com is mostlikely a file dropped by a Trojan or hijackware. It is not a valid Window file.

Check for Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/Darnit.htm
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine.blogspot.com/

--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE) & Security
Start, Run, I type in regedit. I get a blank command window which reads windows/system32/regedit.com. There is no such file as regedit.com in the directory. So I scanned for viruses, adware and spyware. Nothing. I can only acess the registry via regedit.exe. I consulted different web sites, including Symantec's and Microsoft, and there are no recipes to fix this. Many have the same identical problem. No explanation on the causes.

Any ideas?

Richard
 
R

RB

Thank you for your advice. Did my reading homework. And found the problem. "Win32.P2P-Worm.Alcan.a" which modifies your shell command. Thank you AdAware!!!! for finding it... and killing it. Nonrton AV, Panda, and Trend Micro were not effective with this worm, I ma very disappointed. Does not even come up on their radar.

RB
This script creates usable copies of REGEDIT, MSCONFIG and Task Manager http://www.dougknox.com/xp/uti­ls/xp_emerutils.htm

%windir%/system32/regedit.com is mostlikely a file dropped by a Trojan or hijackware. It is not a valid Window file.

Check for Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/Darnit.htm
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine.blogspot.com/

--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE) & Security
Start, Run, I type in regedit. I get a blank command window which reads windows/system32/regedit.com. There is no such file as regedit.com in the directory. So I scanned for viruses, adware and spyware. Nothing. I can only acess the registry via regedit.exe. I consulted different web sites, including Symantec's and Microsoft, and there are no recipes to fix this. Many have the same identical problem. No explanation on the causes.

Any ideas?

Richard
 
Y

Yves Leclerc

That worm may not have been categorized as a "virus" but may have been placed as "spyware". Most current anti-virus do not normally remove spywares. Several anti-virus companies are coming out with revised anti-virus systems that also do spyware removals.

Thank you for your advice. Did my reading homework. And found the problem. "Win32.P2P-Worm.Alcan.a" which modifies your shell command. Thank you AdAware!!!! for finding it... and killing it. Nonrton AV, Panda, and Trend Micro were not effective with this worm, I ma very disappointed. Does not even come up on their radar.

RB
This script creates usable copies of REGEDIT, MSCONFIG and Task Manager http://www.dougknox.com/xp/uti­ls/xp_emerutils.htm

%windir%/system32/regedit.com is mostlikely a file dropped by a Trojan or hijackware. It is not a valid Window file.

Check for Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/Darnit.htm
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine.blogspot.com/

--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE) & Security
Start, Run, I type in regedit. I get a blank command window which reads windows/system32/regedit.com. There is no such file as regedit.com in the directory. So I scanned for viruses, adware and spyware. Nothing. I can only acess the registry via regedit.exe. I consulted different web sites, including Symantec's and Microsoft, and there are no recipes to fix this. Many have the same identical problem. No explanation on the causes.

Any ideas?

Richard
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Regedit.com??? What the? 4
Program Files Associations 9
My System32 Folder is missing 4
Regedit and Task Manager problems 8
Regedit 2
R.com, T.com, Regedit.com, taskmgr.com in Winnt directory - what are these files? 6
R.com, T.com, Regedit.com, taskmgr.com in Winnt directory - what are these files? 2
Regedit 5

Top