Bleeping Computer

Welcome Guide    Blogs    Chat    Help    Search    RSS

Welcome Guest (Log In | Create Account) New Member? Join for free.

  Have a problem and would like to ask us for help? To learn how to ask your question Click Here!
  Do you have popups or other malware infecting your computer? If so, Start Here!
  Are you having trouble using this site? Then you should visit the New User Orientation Center!

BleepingComputer.com -> Startup Programs Database -> Filenames that start with Other

A    B    C    D    E    F    G    H    I    J    K    L    M    N    O    P    Q    R    S    T    U    V    W    X    Y    Z    Other    HJT: F0, F1, F2, F3 · O4 · O20 · O21 · O22 · O23 Rootkit List · Submit a Startup · Top Submitters  Startup Index · Newest Entries · Mozilla Search Tools · WebMaster Site Tools · Status Key Startup Database Forum · Computer Help Forums · How to use the Startup Database Enter the filename or keyword you would like to search for: Advanced Search Name Filename Status Description search.vbs X Hijacker vs.vsn Y Part of eSafe antivirus "SmartScan" - alerts the user if files have been changed/added ... Read More com servoce wowexecl "" X Added by the Troj/Vanity-A Trojan. This infection includes the files C:\Windows\System32\wowexecl.dll and c:\Windows\System32\wowexecl.ini. Due to ... Read More legalnoticeapplication "" U Added by the Spyware.PCProwler surveillance software. If this program was not installed by yourself, it should be uninstalled immediately. ... Read More $sys$cor.sys $sys$cor.sys U Added by the Sony/XCP DRM security software. This service is part of the digital rights management system utilized on certain Sony CDs. If you remove ... Read More Plug and Play Device Manager $sys$DRMServer.exe U Added by the Sony/XCP DRM security software. This service is part of the digital rights management system utilized on certain Sony CDs. If you remove ... Read More $sys$drv $sys$drv.exe X Added by the Backdoor.Ryknos Trojan backdoor that attempts to utilize the SecurityRisk.First4DRM security risk to hide itself on the compromised compu ... Read More $sys$crash $sys$sonyTimer.exe X Added by the Trojan.Welomoch Trojan. $sys$crash $sys$sos$sys$.exe X Added by the Trojan.Welomoch Trojan. $sys$crash $sys$WeLoveMcCOL.exe X Added by the Trojan.Welomoch Trojan. $sys$cmp $sys$xp.exe X Added by the Troj/Stinx-F backdoor Trojan. Troj/Stinx-F may be stealthed on an infected system by exploiting Sony DRM (Digital Rights Management) sof ... Read More Flash Media %%%%%.exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. <not used> %%%.exe X A variant of the Troj/Nymod-A malware. @ %1 X Added by the W32/Protorid-AD WORM! Ctykd %Malware path and filename% X Added by the TSPY_SMALL.SN spyware. PAV.EXE %Number% X Added by the KITRO.D (or ARGEN.A) WORM! %Number% can be any number DumpFaultCheck %system% N Added by the W32/Scanbot-A worm and IRC backdoor. Though this infection adds these entries, they have no effect on your computer other than open the ... Read More Installs SP4 %system%\ekrlgc\repcale.exe c:\windows\system32\ekrlgc\p0rd.exe X Added by the W32/Randon-AK worm. This infection, when started, connects to an IRC server using a provided MIRC client to receive commands. ... Read More RGZCDHTN %System%\RGZCDHTN.exe /install X Added by the adware/redirector. SystemWideHook for Windows NT %WinHook32.exe X Added by the MYDOOM.AC WORM! ShowLOMControl (No file name) U Shows as O4 - HKLM\..\Run: [ShowLOMControl] (note strange symbol here) HKLM\Software\Microsoft\Windows\Current Version\Run ShowLOMControl Reg_DWORD ... Read More vbs.ipnuker@mm (original worm file name).vbs X Added by the VBS.Nukip ... Read More windowz (original worm file name).vbs X Added by the VBS.Nukip ... Read More bcnswsx (path to file) X Added as result of a Ranck-AJ trojan infection ... Read More ibin (Pathname of the Trojan executable) X Added by the Troj/Perda-C ... Read More virus removal tool (pathname of the Trojan executable) X Added by the Troj/Tometa-B ... Read More Volume Task (Random 10 Letter).exe X A variant of the SpyBot.bn family of worms and IRC backdoor Trojans. This family of worms spread via mIRC and the Kazaa file sharing network. ... Read More Windows update 55 (Random 10 Letter).exe X A variant of the Backdoor.Win32.Rbot.aus family of worms and IRC backdoor Trojans. ... Read More Program Access Service (Random 10 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Services Aganters (Random 10 Letter).exe X A variant of the WORM_RBOT.CUN family of worms and IRC backdoor Trojans. MicroSoft Getway mqbol (Random 12 Letter).exe X A variant of the Backdoor.Win32.Rbot.etg family of worms and IRC backdoor Trojans. ... Read More syswin.txt (Random 3 Letter).exe X A variant of the Backdoor.Sdbot family of worms and IRC backdoor Trojans. Service PAck SFVP (Random 4 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Service Ag3nt (Random 4 Letter).exe X A variant of the Backdoor.Win32.Rbot.gox family of worms and IRC backdoor Trojans. ... Read More Winds Sers Agts (Random 5 Letter).exe X A variant of the RBot family of worms and IRC backdoor Trojans. Mioft Wiws Seice ent (Random 5 Letter).exe X A variant of the W32/Rbot-GIJ family of worms and IRC backdoor Trojans. proses (Random 5 letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows haz Layer (Random 5 Letter).exe X A variant of the Backdoor.Win32.Rbot.fbx family of worms and IRC backdoor Trojans. ... Read More Auto Scroll Loader (Random 6 Letter).exe X A variant of the SpyBot.dw family of worms and IRC backdoor Trojans. This family of worms spread via mIRC and the Kazaa file sharing network. ... Read More Windows NTFS Volume Manage (Random 6 Letter).exe X A variant of the Backdoor.Win32.Rbot.edl family of worms and IRC backdoor Trojans. ... Read More ivhost (Random 6 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Sysconf32 (Random 7 Letter).exe X A variant of the SpyBot.am family of worms and IRC backdoor Trojans. This family of worms spread via mIRC and the Kazaa file sharing network. ... Read More Windows Secure talal32 (Random 7 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Microsoft Live 8.5 (Random 7 Letters).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Winsocgfhk driver (Random 7.Letter).exe X A variant of the SpyBot.a family of worms and IRC backdoor Trojans. This family of worms spread via mIRC and the Kazaa file sharing network. ... Read More ifperx (Random 8 Letter).exe X Identified as the Trojan-Proxy.Win32.Slaper Trojan. mmsddlx (Random 8 Letter).exe X Identified as a variant of the Trojan-Proxy.Win32.Slaper Trojan. rtkernsw (Random 8 Letter).exe X Identified as a variant of the Trojan-Proxy.Win32.Slaper Trojan. vbcdtm (Random 8 Letter).exe X Identified as a variant of the Trojan-Proxy.Win32.Slaper Trojan. wpxmls (Random 8 Letter).exe X Identified as a variant of the Trojan-Proxy.Win32.Slaper Trojan. Windows Services alges2 (Random 8 Letter).exe X A variant of the Backdoor.Win32.Rbot.esc family of worms and IRC backdoor Trojans. ... Read More Windows Service alge (Random 8 Letter).exe X A variant of the WORM_RBOT.GJO family of worms and IRC backdoor Trojans. Windows Microsoft Service (Random 8 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Microsoft Services (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. xswdmse (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. reszrv (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. icccomp (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. idlesam (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. kdmsx (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. mceipww (Random 8 Letter).exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. Windows Service Agnts (Random 8 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Serces Agnt (Random 9 Letter).exe X A variant of the Rbot.civ family of worms and IRC backdoor Trojans. Ipod Help (Random 9 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Servcesc (Random 9 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. MicroSoft Getway Dire (Random 9 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. Windows Serviece Agents (Random 9 Letter).exe X A variant of the Worm.Rbot.ABFK family of worms and IRC backdoor Trojans. kerberos4 (Random Name).dll X A variant of the Win32:Agent-NZR malware. sklfc94krteetj (Random Name).dll X Identified as a variant of the Trojan-Downloader.Win32.Small.hko malware. JGhsdk393ktrfggh9dtj (Random Name).dll X Identified as a variant of the Trojan-Downloader.Win32.Small.hko malware. UpdateWin (Random Name).exe X Identified as a variant of the Trojan.Dropper.LDPinch.Q Trojan. DeviceSys (Random Name).exe X Identified as a variant of the Backdoor.Win32.VB.btu Trojan. mssysif (Random Name).exe X Identified as a variant of the Trojan-Downloader.Win32.Agent.pnv malware. Virtual Memory Protector (Random Name).exe X Identified as as variant of the Win32:Agent-XKO/Backdoor.Hamweq.B malware. Microsoft (R) Windows Protocol Deployment Manager (Random Name).tmp X Added by the Backdoor.Ranky backdoor Trojan. mssysif (Random Name).tmp X Identified as a variant of the Trojan-Downloader.Win32.Agent.pnv malware. SfKg6wIP (RandomName).exe X Identified as a variant of the TrojanDownloader.Matcash malware. Virtual Memory Dispatcher (RandomName).exe X Identified as a variant of the Win32:Agent-XKO/Backdoor.Hamweq.B malware. clock (various file names) X LiveChat Adware - known file names include: mssetup.exe, kstatus.exe, spoolsv.exe, sptsupd.exe, osk.exe, msswchx.exe, netdde.exe, msbkup.exe ... Read More romahere2 ************.exe [* = random char] X SuperSpider hijacker - a CoolWebSearch parasite variant romahere3 ************.exe [* = random char] X SuperSpider hijacker - a CoolWebSearch parasite variant Control handler ***********.exe [* = random char] X CoolWebSearch parasite variant Network Security Guard **********.exe [* = random char] X CoolWebSearch parasite related WindowsRegKey upd4te2d4te *********.exe [* = random char] X Added by the RBOT.XQ WORM! sr64 ********. exe X Adware, as yet unidentified rate.exe ********.exe [* = random char] X Unidentified adware ms window update ******.exe (* = random character) X Added by a variant of the WIN32.RBOT WORM! ... Read More Cryptographic Service ******.exe [* = random char] X Added by the KORGO.W or KORGO.X or KORGO.AB WORMS! Narrator ******.exe [* = random char] X Transponder/VX2 related adware web ******.exe [* = random char] X Added by a variant of the EASTO.A TROJAN! pnpsvc_lock ******.exe [* = random digit] X Browser hijacker 0utlook express *****.exe (where * = random char) X Added by the W32/RBOT-CC WORM! ... Read More outlook express config *****.exe (where * = random char) X Added by a variant of the WIN32.RBOT WORM! ... Read More cyberfree.exe ****.dat [* = random char] X Unidentified adware microsoft software ****.exe E255 [* = random char] X Added by an unidentified WORM or TROJAN! Microsofts Security Manager ****.exe [**** = random char] X Added by the RBOT-WH TROJAN! Win32SystemMonitor ***.exe [* = random char] X Browser hijacker Nero.ma ***.exe [*** = 2 to 3 digits] X Added by the JONBARR.D WORM! Description of Shortcuts *.exe ? * seems to be a sequence of alphanumerics that can be different, i.e., 1960F8A9, 4EBD23F5, etc. Each of these files would appear to be a shortcut, i.e ... Read More FLASH32 -flash32.exe ? ?? rarup dns ...explore.xe X Identified as the Rbot.cnn worm and IRC backdoor. ccapp .EXE X Added by the W32/RBOT-LJ WORM! ... Read More supernova .exe X Added as a result of the SURNOVA (or SUPOVA) VIRUS! .exe is the chosen name ... Read More ccapp .EXE X Added by the W32/RBOT-LJ WORM! ... Read More Gray_Pigeon .exe X Added by the Troj/GrayBrd-EH backdoor Trojan. This infection also creates the file c:\windows\temp\8e4ds4.dll. ... Read More sInErA .exe X Added by the W32/SillyFDC-AB worm. W32/SillyFDC-AB will attempt to copy itself to removable drives and create a file autorun.inf in an attempt to auto ... Read More present .exe X Added by the W32/Rubble-C worm. value .svchost.exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. SB Audigy 2 Startup Menu /l:eng N Related to the Dell OEM version of the Sound Blaster Audigy 2 sound card. If this item is listed and checked in startup, the System32 Folder will appe ... Read More ZeroAds 0 U ZeroAds - culls ads, cookies and pop-ups. Tells ZeroAds not to run at startup - needed to start it manually ... Read More Zonavirus 0 X Added by the KITRO.D (or ARGEN.A) WORM! begins 0.exe X Added by the W32/Mytob-HE mass-mailing worm and IRC backdoor. solid 0.exe X Added by the WORM_MYTOB.PP worm and IRC backdoor. 0000000 0.exe X Added by the W32/Sdbot-CPP worm and IRC backdoor. W32/Sdbot-CPP spreads to other network computers by exploiting common buffer overflo ... Read More 000StTHK 000StTHK.exe U Toshiba Hot key functionality for the function keys (Fn-Esc, Fn-F1 (lock), Fn-F2, Fn-F3, Fn-F4, Fn-F5 (switching between laptop and CRT display output ... Read More 0050726-007-i32-1 0050726-007-i32-1.exe X Added by the Troj/Bancban-EC ... Read More 00THotkey 00THotKey.exe U For Toshiba Satellite notebook series to use the front buttons, play, stop, next, prev. ... Read More block 05.vbs X Added by the W32.Pusia.A@mm worm. vbs_auto_update 0548656X.vbs X Added by the VBS/Gormlez-A ... Read More {AD11A17C-83C2-4121-89C8-D0660555685C} 08835b.dll X Added by the Troj/Lineag-ANA password-stealing Trojan for the online game Lineage. ... Read More 0b82c247.exe 0b82c247.exe X Added by the Troj/Tiny-Q Trojan. 0mcamcap 0mcamcap.exe X Added by the Troj/Cosiam-H proxy Trojan. OpenGL Drivers 0penGLD.exe X Added by the W32/Yimp-A Instant Messaging worm. Numerical Xterm Agent 0x32.exe X Added by the W32/Rbot-FWP worm and IRC backdoor. Rundll32_8 1.dll X Added by the Adware.BrowserAid adware. 1.exe 1.exe X Added by the Troj/Multidr-C Trojan! This file is found in the Windows folder. SysStart 1.exe X Added by the Adware.ZenoSearch adware. 1.bat 1.exe X Added by the Troj/Banload-LK Trojan. Microsoft (R) Windows Network Latency Controller 1.tmp X Added by the Backdoor.Ranky backdoor Trojan. This infection also installs a Windows service of the same name and filename. ... Read More [Various Names] 10010.exe X Part of the Wareout infection as described here. ASDPLUGIN 100171be.exe X AsdPlug premium rate adult content dialer variant ASDPLUGIN 100176br.exe X Added by a variant of the ASDPLUG adult content premium rate dialer! Wupdate 1037v.exe X Added by the Troj/Clagger-AR Trojan. 104D840A 104D840A.EXE X Added by the Troj/Agent-ENR Trojan. Human Interface Device Access HidServNetDDEdsdm 1054j.exe X Added by the Troj/Agent-GVN Trojan. load32 1111a.exe X Added by the DUMARU.AH WORM! 1111swapmgr.exe 1111swapmgr.exe X Added by the Troj/Bdoor-IC backdoor trojan. Watch 1200UBWATCH.EXE ? ?? WinSysW 124327L.exe X Added by the Infostealer.Gampass information stealing Trojan for online games. 12Ghosts Popup-Killer 12popup.exe U 12Ghosts Popup-Killer stup 138762763.exe X Added by the Troj/FireSpy-A Spyware Trojan. This Trojan monitors the browsing behaviour of the FireFox browser. ... Read More windowsregkey update 16winupdate32.exe X Added by a variant of the WIN32.RBOT WORM! ... Read More 180adsolution 180adsolution.exe X 180Solutions/N-Case adware variant 180ax 180ax.exe X 180Solutions/N-Case adware variant 18wheelsofsteelconvoy.exe 18wheelsofsteelconvoy.exe X Added by the Adware.Trymedia.D adware. 1916435341.exe 1916435341.exe X Added by the Troj/Dloadr-AXU Trojan downloader. 196_150_ni 196_150_ni.exe X Added by WinSoftware/WinFixer.Process TROJAN! ... Read More 197_150_ni_3 197_150_ni_3.exe X A variant TROJAN! ... Read More 19E7E238 19E7E238.EXE X Added by the Troj/Agent-ELX Trojan. spyclean 1ClickSpyClean.exe X The application "1 Click Spy Clean" is using a database that was stolen from SpybotS&D A Rogue anti-spyware program see note ... Read More ni.uwfx5_0001_n57m2112 1D7C.tmp X This is WinFixer Malware. avptask 1explore.exe X Added by the Troj/Nofere-G Trojan. Troj/Nofere-G contains functionality to communicate with a remote server using HTTP, execute downloaded files, kill ... Read More HELLBOT TEST 1hellbot.exe X Added by the W32/Mytob-BC worm/trojan. 1on1 1on1.exe X Adult content dialler One Touch Monitor 1tou~2.exe N For Visioneer OneTouch scanners. System tray access to the control panel for the scanner ... Read More OneTouchMonitor 1tou~2.exe N For Visioneer OneTouch scanners. System tray access to the control panel for the scanner ... Read More ONETOU~2 1tou~2.exe N For Visioneer OneTouch scanners. System tray access to the control panel for the scanner ... Read More 1u7 1u7.exe X Added by the Troj/Bckdr-PQL backdoor Trojan. Numerical Xtermz Agent 1x32.exe X Added by the W32/Rbot-FWX worm and IRC backdoor. Numerical Xtermz Agent 1x32.exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. 2.exe 2.exe X Added by the Troj/Multidr-C Trojan! This file is found in the Windows folder. 20050726-007-i32-1 20050726-007-i32-1.exe X Added by the Troj/Bancban-EC information stealing Trojan. 2006Server 2006.exe X Added by the Troj/Feutel-DA backdoor Trojan. Notebook Manager Service anbmServiceNetman 2052d.exe X Unknown malware. Mike3 222.exe X Added by the Troj/Wombat-A Trojan. {2C1CD3D7-86AC-4068-93BC-A02304BB2236} 2236_27.dll X Identified by Kaspersky Anti-Virus as Backdoor.Win32.Agent.adr. {47994C89-1857-4D33-B196-263ED6FA4CFF} 231346E28D27.dll X Added by the Troj/PWS-AOV password-stealing Trojan. {56CF31C1-A46F-4B57-886C-6638DA412087} 28bfe5.dll X Added by the Troj/Lineag-AD password-stealing Trojan for the online game Lineage. ... Read More 29547098.exe 29547098.exe X Identified as Downloader.Win32.Small.equ. {3771BD45-B3B5-46FF-B309-028D126B9103} 299E55F.dll X Added by the Troj/Gampass-H password-stealing Trojan for online games. {79FC744E-75CA-49B0-8F02-AEAE4CAACBE0} 2ACE4CFBAF2C.dll X Added by the Troj/Lineag-CG password-stealing Trojan for the online game Lineage. ... Read More 2kadiras 2kadiras.exe Y Allied_Telesyn AT series router/modem related - apparently required ChanService 2pack.exe X Identified as a variant of Backdoor.Win32.SpyBoter.fb. 2wSysTray 2portalmon.exe U 2Wire Homeportal user interface gramdate 2Stop.exe ? ?? Numerical Xterm Agents 2x32.exe X Added by the W32/Rbot-FWY worm and IRC backdoor. W32/Rbot-FWY spreads to other computers by exploiting common buffer overflow vulnerabilities like SRV ... Read More {1A2B5BD6-5867-48C3-B826-807FC6AE8F3D} 30835167.dll X Added by the Troj/Lineag-ANB password-stealing Trojan for the online game Lineage. ... Read More {A0EE316A-316A-0EE6-6A0E-16AEE16A0EE6} 316a0ee6.dll X Added by the Troj/QQRob-AAS Trojan. The filename can be random but will be found in the same location. ... Read More [Various Names] 321102.exe X Part of the Wareout infection as described here. [Various Names] 321102.exe X Part of the Wareout infection as described here.