 Startup Programs And Autoruns, Not sure how this works |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
BleepingComputer.com > Bleeping Computer Applications and Guides > Windows Startup Programs Database  |
 Dec 10 2007, 04:46 PM
Post
#1
|
|
|
New Member  Group: Members Posts: 13 Joined: 17-February 07 Member No.: 112,298  |
Database says: explorer.exe added by worms, trojans or viruses shell32.dll worm shmgrate.exe added by GASTER Trojan regsvr32.exe ActiveX control or daily winner adaware logonui.exe detected by Ewido as Backdoor.sdbot.aad (I have already been advised by people in this forum to leave this alone as it is an important Windows file.) |
 |
 
|
|
Feb 6 2008, 12:52 AM
Post
#2
|
|
 The Bookworm Group: Moderator Posts: 6,390 Joined: 14-July 06 From: Bloomington, IN Member No.: 76,150 |
An important key to understanding if the file you have is legitimate or malware is the file path. Where is the file located on your computer? Another important key is the exact spelling. Slight differences in spelling also distinguish good files from bad ones.
Orange Blossom 
-------------------- Orange Blossom An ounce of prevention is worth a pound of cure ESET NOD32, AVG Anti-spyware Free, SuperAntiSpyware Pro, SpywareBlaster, Spybot 1.5, WinPatrol Plus, Sunbelt Personal Firewall - Full, Comodo BOClean 4.27, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript |
|
|
|
|
Feb 7 2008, 03:09 PM
Post
#3
|
|
|
New Member Group: Members Posts: 13 Joined: 17-February 07 Member No.: 112,298 |
Thank you. What might be a bad place for bad files to be?
|
|
|
|
|
Feb 7 2008, 03:22 PM
Post
#4
|
|
|
The Bookworm Group: Moderator Posts: 6,390 Joined: 14-July 06 From: Bloomington, IN Member No.: 76,150 |
That has no easy answer. Let's take the explorer.exe file as an example. Normally, it doesn't run at start-up, but some computer administrators set up the computer so it does. Therefore, if someone removed it because he/she thought it was malware, a good file would have been removed instead and cause problems. On a different computer, however, the file could very well have been malware. The best thing you can do is to find out where files should be, know what has been done on the computer, and if a file is where it shouldn't be, be suspicious but verify first. If you have questions about a file, feel free to ask about it on the forums.
Orange Blossom -------------------- Orange Blossom An ounce of prevention is worth a pound of cure ESET NOD32, AVG Anti-spyware Free, SuperAntiSpyware Pro, SpywareBlaster, Spybot 1.5, WinPatrol Plus, Sunbelt Personal Firewall - Full, Comodo BOClean 4.27, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript |
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 9th January 2009 - 03:28 AM |
© 2003-2008 All Rights Reserved Bleeping Computer LLC.