asp_indi
asked on
Problem with Chess.exe and Windows Vista
Seem to be having a bit of a strange problem. We have a network of about 15-20 desktops running a mixture of operating systems from 2000/XP and Vista.
Recently we have installed a Windows Server 2008 file server and moved our data over to this.
Now on all of our Windows Vista computers show an option for chess everytime we right click on our mapped drive and we can't double click to open the drive. We can get to the drive if we go through a unc path and we have checked permissions on the new server .
If we search through the registry on a vista machine it refers to a program called chess.exe in the root of the mapped drive, however we can't find this file on either servers.
This only seems to be causing an issue with our windows vista computers, all of our other computers are working fine.
We can delete any registry keys that relate to chess.exe and the issue looks like it disappears but when you reboot the machine the issue comes back again. We have ran malwarebytes on the computer but it doesn't detect anything. We have anti virus running on all computers and both servers.
Any help would be much appreciated.
Recently we have installed a Windows Server 2008 file server and moved our data over to this.
Now on all of our Windows Vista computers show an option for chess everytime we right click on our mapped drive and we can't double click to open the drive. We can get to the drive if we go through a unc path and we have checked permissions on the new server .
If we search through the registry on a vista machine it refers to a program called chess.exe in the root of the mapped drive, however we can't find this file on either servers.
This only seems to be causing an issue with our windows vista computers, all of our other computers are working fine.
We can delete any registry keys that relate to chess.exe and the issue looks like it disappears but when you reboot the machine the issue comes back again. We have ran malwarebytes on the computer but it doesn't detect anything. We have anti virus running on all computers and both servers.
Any help would be much appreciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks for that had a look but do not see the subkeys :-(
dbhsupport, are you using Vista (if so what versuion) or XP?
ASKER
Hi interactit
performed your fix and also noticed that the autorun.ini was still in the root of the of the drive and this so far has fixed my problems on the vista computers. We have rebooted all of them and the issue hasn't come back.
I'll give it until tomorrow to see if the virus is regenerating itself.
performed your fix and also noticed that the autorun.ini was still in the root of the of the drive and this so far has fixed my problems on the vista computers. We have rebooted all of them and the issue hasn't come back.
I'll give it until tomorrow to see if the virus is regenerating itself.
It is on Windows 2003 server. Not done a reboot yet to see if it will come back.
thanks
thanks
I have this also on a customer machine.
Noticed it on one laptop which was reinstalled and it came back today - deleted the keys of which one was..
C:\WINDOWS\system32\RunDLL
which I assume is the culprit which is creating this file.
Really surprised there are no fixes from AV people. Is it a virus or malware?
Noticed it on one laptop which was reinstalled and it came back today - deleted the keys of which one was..
C:\WINDOWS\system32\RunDLL
which I assume is the culprit which is creating this file.
Really surprised there are no fixes from AV people. Is it a virus or malware?
We have the same problem, chess.exe and autorun.inf showing on the root of shares on a windows 2003 server.
Fully updated Trend running on the Server and nothing reported.