G
Guest
Hello,
Can't find any meaningful info on this error on the 'net, so thought I would
ask here. I am not skilled at preparing a problem report, so if the data I
provide is disorganized, please forgive me. My intention is to provide as
much information as possible to help somebody give a meaningful response.
Since last Tuesday, August 21 2007, any time my computer is rebooted,
Windows Defender gives me a little pop-up telling me that "changes were
detected."
Upon looking at the change the first time, I saw something from "HiTRUST"
wanting to install a BHO. Not knowing what it is, I selected "Deny" and
clicked on the "Apply" button. But when I did that, I got this error data:
Error encountered:
Code 0x80508019. The file or drive you are trying to scan does not exist on
this computer. Choose another file or drive, and then scan your computer
again.
Description:
This program has potentially unwanted behavior.
Advice:
Permit this detected item only if you trust the program or the software
publisher.
Resources:
clsid:
HKLM\SOFTWARE\CLASSES\CLSID\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
regkey:
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
regkey:
HKLM\SOFTWARE\CLASSES\CLSID\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
bho:
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
file:
C:\WINDOWS\system32\ActiveToolBand.dll
Category:
Not Yet Classified
That continues to happen every time the machine is rebooted. And when I
choose "Deny" is when Defender gives me the error.
Though Defender claims that the file does not exist, it DOES exist. But
when I do full scan, Defender give me no indication of any problems.
I also have done full scan with NOD32, and it gives the system a clean bill
of health as well.
I uploaded the "ActiveToolBand.dll" file to virustotal.com, where it is not
reported as a problem. Admittedly, I have NO idea if a BHO would be reported
by the software they scan with (but would hope so).
The browser "Manage Add-ons" panel shows that "Acer eDataSecurity
Management", published by HiTRUST, is in fact loaded, but is disabled. It
shows the name as ToolBand.dll, but I am assuming it is what Defender
referred to.
And, the computer IS an Acer (running XP current with all critical updates),
but I've had it for almost a year, and it's never had any issues before this.
So, I've been on the phone with Acer support for literally hours each day
since Tuesday. I am not convinced that Acer has anybody in their employ that
know anything about computers or software.
I am linguistically challenged, being able to communicate in English only,
so it was a real battle trying to communicate with Acer support, as it seems
they have nobody native to any English-speaking country. But what I did
understand is that 6 different support reps told me that there is no such
thing as ActiveToolBand.dll nor ToolBand.dll installed from Acer. They told
me repeatedly to reformat my hard-drive and reinstall the operating system,
because "You have a virus!"
And so far, no response at all from HiTRUST.
I uninstalled Defender, then downloaded and installed the current version,
just in case it was not completely up to date, but the symptom persists.
I restored from a "pre-Tuesday" restore point, but the symptom persists.
A further note is that this is happening on my notebook computer, which I
almost never connect to the internet except to get updates. All my surfing,
email, etc., is done on desktop machine.
I would greatly appreciate if somebody could shed some light on
1) Why is this suddenly being reported?
2) How can I find out if it really IS a problem, and if so, what to do
about it?
If you've read this far, I applaud your dedication.
Thanks very much for your time.
J. Fish
Can't find any meaningful info on this error on the 'net, so thought I would
ask here. I am not skilled at preparing a problem report, so if the data I
provide is disorganized, please forgive me. My intention is to provide as
much information as possible to help somebody give a meaningful response.
Since last Tuesday, August 21 2007, any time my computer is rebooted,
Windows Defender gives me a little pop-up telling me that "changes were
detected."
Upon looking at the change the first time, I saw something from "HiTRUST"
wanting to install a BHO. Not knowing what it is, I selected "Deny" and
clicked on the "Apply" button. But when I did that, I got this error data:
Error encountered:
Code 0x80508019. The file or drive you are trying to scan does not exist on
this computer. Choose another file or drive, and then scan your computer
again.
Description:
This program has potentially unwanted behavior.
Advice:
Permit this detected item only if you trust the program or the software
publisher.
Resources:
clsid:
HKLM\SOFTWARE\CLASSES\CLSID\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
regkey:
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
regkey:
HKLM\SOFTWARE\CLASSES\CLSID\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
bho:
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}
file:
C:\WINDOWS\system32\ActiveToolBand.dll
Category:
Not Yet Classified
That continues to happen every time the machine is rebooted. And when I
choose "Deny" is when Defender gives me the error.
Though Defender claims that the file does not exist, it DOES exist. But
when I do full scan, Defender give me no indication of any problems.
I also have done full scan with NOD32, and it gives the system a clean bill
of health as well.
I uploaded the "ActiveToolBand.dll" file to virustotal.com, where it is not
reported as a problem. Admittedly, I have NO idea if a BHO would be reported
by the software they scan with (but would hope so).
The browser "Manage Add-ons" panel shows that "Acer eDataSecurity
Management", published by HiTRUST, is in fact loaded, but is disabled. It
shows the name as ToolBand.dll, but I am assuming it is what Defender
referred to.
And, the computer IS an Acer (running XP current with all critical updates),
but I've had it for almost a year, and it's never had any issues before this.
So, I've been on the phone with Acer support for literally hours each day
since Tuesday. I am not convinced that Acer has anybody in their employ that
know anything about computers or software.
I am linguistically challenged, being able to communicate in English only,
so it was a real battle trying to communicate with Acer support, as it seems
they have nobody native to any English-speaking country. But what I did
understand is that 6 different support reps told me that there is no such
thing as ActiveToolBand.dll nor ToolBand.dll installed from Acer. They told
me repeatedly to reformat my hard-drive and reinstall the operating system,
because "You have a virus!"
And so far, no response at all from HiTRUST.
I uninstalled Defender, then downloaded and installed the current version,
just in case it was not completely up to date, but the symptom persists.
I restored from a "pre-Tuesday" restore point, but the symptom persists.
A further note is that this is happening on my notebook computer, which I
almost never connect to the internet except to get updates. All my surfing,
email, etc., is done on desktop machine.
I would greatly appreciate if somebody could shed some light on
1) Why is this suddenly being reported?
2) How can I find out if it really IS a problem, and if so, what to do
about it?
If you've read this far, I applaud your dedication.
Thanks very much for your time.
J. Fish