Unsolved
This post is more than 5 years old
19 Posts
0
6155
June 30th, 2008 11:00
Run C:\Windows\Prefetch\w32service.exe at start up message
Someone please help me!!! Everytime i boot my computer I get a message that goes something like this:
"windows cannot identify the publisher of the file C:/windows/prefetch/w32service.exe do you want to run this file , the digital signiture of this file could not be validated. "
thats not an exact quote of the message but thats the main parts. I dont know if this is a virus or if this is a genuine windows service . My antivirus (avast fully up to date ) does not pick it up as any kind of threat but i still dont run it at start up. what should i do. I is this file normally in the C:\Windows\Prefetch folder on windows Xp media centre edition . I really dont kmow what to do with it .
HELP ME PLEASE !!!!!!!!!!!!!!!!!!!!! :smileysad:
joe53
2 Intern
•
5.8K Posts
•
17.3K Points
0
June 30th, 2008 21:00
That is not a valid Windows file- you might be infected with a variant of the IRCBot family of worms/backdoor trojans:
http://www.bleepingcomputer.com/startups/w32service.exe-23361.html
I would suggest you download the free scanner HijackThis, run a scan, and post a logfile in the HJT forum for expert analysis and advice. Full instructions on how to do this are here:
http://www.dellcommunity.com/supportforums/board/message?board.id=si_hijack&message.id=52014
RadaRadaRada
19 Posts
0
July 1st, 2008 00:00
thanks for the advice but after several boot time scans avast finally picked it up and deleted it or moved it to the virus chest . I dont get the message at start up anymore and i cant find it in the registry anymore so is the problem solved or should i still download the HijackThis software like u said ?
Much thanks for replying :smileyhappy:
joe53
2 Intern
•
5.8K Posts
•
17.3K Points
0
July 1st, 2008 00:00
RadaRadaRada
19 Posts
0
July 1st, 2008 13:00
Cool, well i think im clean but i might still try the hijackthis just to be sure.
Thanks for responding:smileyhappy: