Sign In
Create Account
0
Hi, I recently had a bunch of malware on my computer that has since been cleaned, but it appears to have altered my registry. BITS and Automatic Updates has been stopped and won't start, and I noticed that the path to executable says %fystemRoot%\system32\svchost.exe -k netsvcs
I figured this was the source of the problem and after none of the troubleshooting procedures Microsoft Support offered me worked, I figured I had to edit the registry to fix it. So I backed it up, went to regedit, looked in BITS and went to change the f into a S.
I got the following error message: Error Editing Value Cannot edit ImagePath: Error writing the value's new contents.
If anyone can help me I would really appreciate it. I hate to leave my computer outdated and vulnerable after finally getting it cleaned. Thanks!
Back to top
#2
Posted 24 February 2009 - 07:50 AM
-
- Administrators
-
- 22,574 posts
Forum Deity
- Gender:Male
- Location:US
IF the Malware is gone you need to change the PERMISSIONS on that registry key.
Start REGEDIT and click on the KEY in question and select PERMISSIONS. Then click ADVANCED then click the OWNER tab and click on ADMINISTRATORS and then put a check mark in the REPLACE OWNER ON SUBCONTAINERS AND OBJECTS and click APPLY, OK
Then open Permissions again and verify that the ADMINISTRATORS have FULL rights and click OK.
Then try to edit that key again to change it. As long as the MALWARE is GONE you should be able to change it now.
Start REGEDIT and click on the KEY in question and select PERMISSIONS. Then click ADVANCED then click the OWNER tab and click on ADMINISTRATORS and then put a check mark in the REPLACE OWNER ON SUBCONTAINERS AND OBJECTS and click APPLY, OK
Then open Permissions again and verify that the ADMINISTRATORS have FULL rights and click OK.
Then try to edit that key again to change it. As long as the MALWARE is GONE you should be able to change it now.
#3
Posted 24 February 2009 - 08:19 AM
-
- Members
-
- 2 posts
New Member
Thank you so much! That worked perfectly, and it feels so good to finally have all this taken care of. I really appreciate your help, and your response came so much faster than I expected. Thanks.
#4
Posted 24 February 2009 - 10:20 AM
-
- Administrators
-
- 22,574 posts
Forum Deity
- Gender:Male
- Location:US
#5
Posted 22 April 2009 - 01:51 AM
-
- Members
-
- 1 posts
New Member
AdvancedSetup, on Feb 24 2009, 03:50 AM, said:
IF the Malware is gone you need to change the PERMISSIONS on that registry key.
Start REGEDIT and click on the KEY in question and select PERMISSIONS. Then click ADVANCED then click the OWNER tab and click on ADMINISTRATORS and then put a check mark in the REPLACE OWNER ON SUBCONTAINERS AND OBJECTS and click APPLY, OK
Then open Permissions again and verify that the ADMINISTRATORS have FULL rights and click OK.
Then try to edit that key again to change it. As long as the MALWARE is GONE you should be able to change it now.
Start REGEDIT and click on the KEY in question and select PERMISSIONS. Then click ADVANCED then click the OWNER tab and click on ADMINISTRATORS and then put a check mark in the REPLACE OWNER ON SUBCONTAINERS AND OBJECTS and click APPLY, OK
Then open Permissions again and verify that the ADMINISTRATORS have FULL rights and click OK.
Then try to edit that key again to change it. As long as the MALWARE is GONE you should be able to change it now.
I found this thread during my roughly 10 hours of searching and trying to fix my wife's laptop, which was ridden with Malware. THIS POST WAS THE ONE that saved our computer!!! Created a user account here simply to Thank You so much!
Chris
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
