Hi,
This is my first post here having just registered, due to a friend of mine speaking most highly of you guys.
I hope somebody here can help me sort this issue out, as it is drying me nuts at this stage!
To start with, every time I boot up my Laptop, which is running XP Pro with SP2, I keep getting a warning message from "WinPatrol Pro" telling me that "timezone.exe is trying to load in "start up" and it gives the directory address as C:\Program Files\Microsoft Time Zone\TimeZone.exe , but this DOES NOT exist in my C directory!
I have tried deleting the registry entry for the same, but it just re-spawns itself back into the same part of the registry as if it were never deleter. The same thing happens when I try and disable it using WinPatrol Pro..it just pops back up again in Start up as though I had never touched it! I have tried everything I can think of..including deleting on reboot using WinPatrol Pro and/or Windows Task Manager..nothing seems to work!
WinPatrol Pro gives the following info on this program on their site..
"Multiple Programs – TIMEZONE.EXE
Timezone.exe is Microsoft's Daylight Saving Time Update Utility. This command-line tool that updates the daylight saving information for the current time zone in the registry. In some countries and regions, the start and end of daylight saving time are changed every year, and there is no fixed start or end date. TimeZone allows you to adjust the start and end of daylight saving time so that the computer's time setting is automatically updated on the correct dates. More info can be found at http://www.microsoft.com/resources/...ndowsserv/2003/all/techref/en-us/timezone.asp.
A file called timezone.exe may also install with third party time-set utilities. One example is CoolTimeZone by CoolTick software. More info can be found at http://www.cooltick.com/timezone/.
Unfortunately, a file by this name also installs with the W32/Agobot-ADY virus. This virus spreads across weakly protected network. It places timezone.exe in your Windows\System or System32 folder. You may see it described as "MS Time". The virus may modify your Windows Hosts file making it difficult to get to antivirus or firewall related websites. It can also allow a remote user to access your computer. We'd recommend removing this file using WinPatrol. First, kill it under Active Tasks then remove it from your Startup Programs. If running WinPatrol 8.x or later, right click on the file then select "Delete file on reboot". Additional background information on this virus can be found at http://www.sophos.com/virusinfo/analyses/w32agobotady.html
# Safe if not Virus"
It is REALLY bugging me as it is trying to load every other minute or so and I have to keep denying it the right to..which is obviously interfering with using my Laptop in any sort of normal way!
For the record, I have the following installed and use them frequently..
Firefox
Pegasus Mail
ZoneAlarm
Avast Anti Virus
KL-Detesctor
Vundofix
Ad-Aware SE Personal
A-Squared Free
A-Squared HiJack Free
AVG Anti Virus
AVG Anti Rootkit
CCleaner
Clean My Registry
CyberScrub
Spybot S&D
SpywareBlaster
System Mechanic 4
System Safety Monitor
Wise Registry Cleaner
I know some will think that having all the above is over-kill, but I don't think so, as they do a good job to date and do not cause any conflicts either on my system.
The thing that I can't work out is that no program/file shows up every time I run a scan on my system, even System Safety Monitor, which shows all processes that are running on my system, is not showing this!
It's as though there is some sort of software ghost lurking on my HD, that is trying to load itself as MS Timezone.exe..even though Timezone.exe is not on my PC..or at least, cannot be found by myself!
Can somebody here please help me with this or walk me through how I can get rid of this thing once and for all?
If you need logs or anything, just let me know, as well as how to get them so I can post them here.
Here's hoping..
All the best to everyone concerned..
Dan
(scribbler)
This is my first post here having just registered, due to a friend of mine speaking most highly of you guys.
I hope somebody here can help me sort this issue out, as it is drying me nuts at this stage!
To start with, every time I boot up my Laptop, which is running XP Pro with SP2, I keep getting a warning message from "WinPatrol Pro" telling me that "timezone.exe is trying to load in "start up" and it gives the directory address as C:\Program Files\Microsoft Time Zone\TimeZone.exe , but this DOES NOT exist in my C directory!
I have tried deleting the registry entry for the same, but it just re-spawns itself back into the same part of the registry as if it were never deleter. The same thing happens when I try and disable it using WinPatrol Pro..it just pops back up again in Start up as though I had never touched it! I have tried everything I can think of..including deleting on reboot using WinPatrol Pro and/or Windows Task Manager..nothing seems to work!
WinPatrol Pro gives the following info on this program on their site..
"Multiple Programs – TIMEZONE.EXE
Timezone.exe is Microsoft's Daylight Saving Time Update Utility. This command-line tool that updates the daylight saving information for the current time zone in the registry. In some countries and regions, the start and end of daylight saving time are changed every year, and there is no fixed start or end date. TimeZone allows you to adjust the start and end of daylight saving time so that the computer's time setting is automatically updated on the correct dates. More info can be found at http://www.microsoft.com/resources/...ndowsserv/2003/all/techref/en-us/timezone.asp.
A file called timezone.exe may also install with third party time-set utilities. One example is CoolTimeZone by CoolTick software. More info can be found at http://www.cooltick.com/timezone/.
Unfortunately, a file by this name also installs with the W32/Agobot-ADY virus. This virus spreads across weakly protected network. It places timezone.exe in your Windows\System or System32 folder. You may see it described as "MS Time". The virus may modify your Windows Hosts file making it difficult to get to antivirus or firewall related websites. It can also allow a remote user to access your computer. We'd recommend removing this file using WinPatrol. First, kill it under Active Tasks then remove it from your Startup Programs. If running WinPatrol 8.x or later, right click on the file then select "Delete file on reboot". Additional background information on this virus can be found at http://www.sophos.com/virusinfo/analyses/w32agobotady.html
# Safe if not Virus"
It is REALLY bugging me as it is trying to load every other minute or so and I have to keep denying it the right to..which is obviously interfering with using my Laptop in any sort of normal way!
For the record, I have the following installed and use them frequently..
Firefox
Pegasus Mail
ZoneAlarm
Avast Anti Virus
KL-Detesctor
Vundofix
Ad-Aware SE Personal
A-Squared Free
A-Squared HiJack Free
AVG Anti Virus
AVG Anti Rootkit
CCleaner
Clean My Registry
CyberScrub
Spybot S&D
SpywareBlaster
System Mechanic 4
System Safety Monitor
Wise Registry Cleaner
I know some will think that having all the above is over-kill, but I don't think so, as they do a good job to date and do not cause any conflicts either on my system.
The thing that I can't work out is that no program/file shows up every time I run a scan on my system, even System Safety Monitor, which shows all processes that are running on my system, is not showing this!
It's as though there is some sort of software ghost lurking on my HD, that is trying to load itself as MS Timezone.exe..even though Timezone.exe is not on my PC..or at least, cannot be found by myself!
Can somebody here please help me with this or walk me through how I can get rid of this thing once and for all?
If you need logs or anything, just let me know, as well as how to get them so I can post them here.
Here's hoping..
All the best to everyone concerned..
Dan
(scribbler)
