Bleeping Computer

Welcome Guide    Blogs    Chat    Help    Search    RSS

Welcome Guest (Log In | Create Account) New Member? Join for free.

  Have a problem and would like to ask us for help? To learn how to ask your question Click Here!
  Do you have popups or other malware infecting your computer? If so, Start Here!
  Are you having trouble using this site? Then you should visit the New User Orientation Center!

BleepingComputer.com -> Startup Programs Database -> Filenames that start with Other

A    B    C    D    E    F    G    H    I    J    K    L    M    N    O    P    Q    R    S    T    U    V    W    X    Y    Z    Other    HJT: F0, F1, F2, F3 · O4 · O20 · O21 · O22 · O23 Rootkit List · Submit a Startup · Top Submitters  Startup Index · Newest Entries · Mozilla Search Tools · WebMaster Site Tools · Status Key Startup Database Forum · Computer Help Forums · How to use the Startup Database Enter the filename or keyword you would like to search for: Advanced Search Name Filename Status Description $sys$cmp $sys$xp.exe X Added by the Troj/Stinx-F backdoor Trojan. Troj/Stinx-F may be stealthed on an infected system by exploiting Sony DRM (Digital Rights Management) sof ... Read More $sys$cor.sys $sys$cor.sys U Added by the Sony/XCP DRM security software. This service is part of the digital rights management system utilized on certain Sony CDs. If you remove ... Read More $sys$crash $sys$WeLoveMcCOL.exe X Added by the Trojan.Welomoch Trojan. $sys$crash $sys$sos$sys$.exe X Added by the Trojan.Welomoch Trojan. $sys$crash $sys$sonyTimer.exe X Added by the Trojan.Welomoch Trojan. $sys$drv $sys$drv.exe X Added by the Backdoor.Ryknos Trojan backdoor that attempts to utilize the SecurityRisk.First4DRM security risk to hide itself on the compromised compu ... Read More $Volumouse$ volumouse.exe U Having this program started allows you to control the sound volume on your computer by using the mouse wheel on your mouse. ... Read More %cmpmixtitle% Unknown N Possibly related to C-Media Mixer Control panel? (default) [random filename].exe X Added by the BLACKMAL WORM! (default) ~~.exe X Added by the Troj/DownLdr-QR Trojan downloader. (default) ¡¡NOTEPAD.EXE X Added by the Troj/Vaq-A Trojan downloader. (Default) 5640.exe X Added by the Troj/DownLd-ABF advertising related downloader Trojan. (randomly chosen existing folder name) _setup.exe X Added by the W32/Antinny-L ... Read More *ms setup [random file name] X Virtumondo adware, also known as the VUNDO TROJAN! ... Read More *WinLogon [trojan path] X Added by the VUNDO TROJAN! 0000000 0.exe X Added by the W32/Sdbot-CPP worm and IRC backdoor. W32/Sdbot-CPP spreads to other network computers by exploiting common buffer overflo ... Read More 000StTHK 000StTHK.exe U Toshiba Hot key functionality for the function keys (Fn-Esc, Fn-F1 (lock), Fn-F2, Fn-F3, Fn-F4, Fn-F5 (switching between laptop and CRT display output ... Read More 0050726-007-i32-1 0050726-007-i32-1.exe X Added by the Troj/Bancban-EC ... Read More 00THotkey 00THotKey.exe U For Toshiba Satellite notebook series to use the front buttons, play, stop, next, prev. ... Read More 0b82c247.exe 0b82c247.exe X Added by the Troj/Tiny-Q Trojan. 0mcamcap 0mcamcap.exe X Added by the Troj/Cosiam-H proxy Trojan. 0utlook express *****.exe (where * = random char) X Added by the W32/RBOT-CC WORM! ... Read More 1.bat 1.exe X Added by the Troj/Banload-LK Trojan. 1.exe 1.exe X Added by the Troj/Multidr-C Trojan! This file is found in the Windows folder. 104D840A 104D840A.EXE X Added by the Troj/Agent-ENR Trojan. 1111swapmgr.exe 1111swapmgr.exe X Added by the Troj/Bdoor-IC backdoor trojan. 128 Module win128.exe X Added by the W32/Forbot-ES WORM/backdoor Trojan, which allows unauthorized access to the PC using the IRC network and registration of a new service pr ... Read More 12Ghosts Popup-Killer 12popup.exe U 12Ghosts Popup-Killer 180adsolution 180adsolution.exe X 180Solutions/N-Case adware variant 180ax 180ax.exe X 180Solutions/N-Case adware variant 18wheelsofsteelconvoy.exe 18wheelsofsteelconvoy.exe X Added by the Adware.Trymedia.D adware. 1916435341.exe 1916435341.exe X Added by the Troj/Dloadr-AXU Trojan downloader. 196_150_ni 196_150_ni.exe X Added by WinSoftware/WinFixer.Process TROJAN! ... Read More 197_150_ni_3 197_150_ni_3.exe X A variant TROJAN! ... Read More 19E7E238 19E7E238.EXE X Added by the Troj/Agent-ELX Trojan. 1on1 1on1.exe X Adult content dialler 1u7 1u7.exe X Added by the Troj/Bckdr-PQL backdoor Trojan. 2.exe 2.exe X Added by the Troj/Multidr-C Trojan! This file is found in the Windows folder. 20050726-007-i32-1 20050726-007-i32-1.exe X Added by the Troj/Bancban-EC information stealing Trojan. 2006Server 2006.exe X Added by the Troj/Feutel-DA backdoor Trojan. 29547098.exe 29547098.exe X Identified as Downloader.Win32.Small.equ. 2kadiras 2kadiras.exe Y Allied_Telesyn AT series router/modem related - apparently required 2thousandbuck [path to file] X Added by the RANKY.L TROJAN! 2wSysTray 2portalmon.exe U 2Wire Homeportal user interface 357aa41a-b7a8-4632-a27d-5b980b25cf43 [path to svchost.exe] X Added by the SMALL-AQ TROJAN! ... Read More 36Osafe 36Osafe.exe X Added by the Troj/Dloadr-BKC Trojan. 39672EA4 39672EA4.EXE X Added by the Troj/GrayBir-EW backdoor Trojan. 3c1807pd 3cmlink.exe 3cpipe-3c1807pd Y 3Com WinModem driver. See here for more WinModem information 3capplnk 3capplnk.exe Y US Robotics Modem driver 3cdminic 3CDMINIC.EXE N 3Com DMI (DynamicAccess Desktop Management Interface) Agent associated with 3Com network cards ... Read More 3CM Link 3cmcnkw.exe ? ?? 3Cmlink 3CmlinkW.exe Y For a US Robotics WinModem. Provides the link to Windows as the CPU does the processing on WinModems - won't work without it. See here for more WinMod ... Read More 3ComDMIAgent 3CDMINIC.EXE N 3Com DMI (DynamicAccess Desktop Management Interface) Agent associated with 3Com network cards ... Read More 3D Text 3D Text.scr X Added by the JERMY.A WORM! 3Deep Control Panel 3DeepCTL.EXE U From LightSurf Technologies (nee E-Color) - 3Deep corrects lighting, shading and color for all your 2D and 3D games ... Read More 3dfx Task Manager 3dfxMan.exe N System Tray application for 3dfx Voodoo 3/4/5 functions. Available via Start -> Programs ... Read More 3dfx Tools 3dfxCmn.dll Y Updates the registry with information that can't be held for Voodoo 3/4/5 series graphics cards. Important for owners of these cards ... Read More 3dfxv2ps.dll 3dfxv2ps.dll Y Updates the registry with info that can't be held for 3dfx Voodoo 2 video cards. Important for owners of these cards ... Read More 3Dlabs Taskbar Display Manager 3DLman.exe ? 3DLabs graphics driver related. System Tray access to display settings? 3DLabsHelperDemon 3dldemon.exe U Directly from the programs author "It is a tiny program that is installed by the Permedia2/3 and probably other Oxygen-series cards. Normally it sits ... Read More 3DMouse.EXE 3DMouse.EXE Y Dritek System Inc. 3D Mouse drive 3d_sound 3d_sound.exe X Added by the Troj/Riados-A Trojan that attempts a distributed denial of service (DDoS) attack against www.riaa.com. ... Read More 3klagia 3klagia.dll X Added by the Backdoor.Rustock backdoor rootkit. 3qdctl.exe 3qdctl.exe U Provided with Terratec 128i PCI and similar sound cards. Loads a sound profile at bootup, restoring volume and other audio settings to a pre-determine ... Read More 3ware 3DM 3dm.exe Y Monitors status of the disk array on 3ware IDE RAID controllers 49ersScreenServer 49ersScreenServer.exe N Software from the MercurySports for streaming information about the San Francisco 49ers US Football team. Slightly loose Terms or Use and Privacy pol ... Read More 49ersScreenServerSvc 49ersScreenServer.exe N Software from the MercurySports for streaming information about the San Francisco 49ers US Football team. Slightly loose Terms or Use and Privacy pol ... Read More 4c0f6e34.exe 4c0f6e34.exe X Added by the Troj/Dloadr-XP downloader Trojan. 4ccc3cea.exe 4ccc3cea.exe X Added by the TROJ_ZLOB.ACB Trojan. 4da92ad5.exe 4da92ad5.exe X Added by the Troj/Dloadr-WZ Trojan. 4fdw 4fdw.dll X Added by the Backdoor.Rustock backdoor rootkit. 4k51k4 4k51k4.exe X Added by the W32/Brontok-BH worm. 5-2-46-112 5-2-46-112.exe X Adult content pop-up dialler. Removal instructions here 55euf6 55euf6.sys X Added by the Troj/DwnLdr-GWX Trojan downloader. 5p4m [path to Trojan] X Added by the Troj/Litebot-C Trojan. 63cica 63cica.sys X Added by a variant of the Troj/NTRootK-CL rootkit. 7v3j <filename.exe> X Added by the Troj/Dloadr-ARK Trojan downloader. The filenames associated with this infection are random. ... Read More 7VGAV 7VGAV.exe X Part of the Adware.Winpup infection. File is found in the Windows system folder. ... Read More 80xFire daemon 80xFire.exe X Added by the W32/Tilebot-BK worm and IRC backdoor. This also infects your computer with the rootkit rdriv.sys. ... Read More 9xadiras 9xadiras.exe Y Allied_Telesyn AT series router/modem related - apparently required ... Read More ;Rundll [filename] X Added by the PWSLEGMIR.E TROJAN! <not used> r3hook.dll Y Related to Kaspersky Antivirus. <not used> eNetHook.dll Y Related to Acer's eNet Management software for Acer laptops. <not used> ^^^^^.exe X A variant of the IRCBot family of worms and IRC backdoor Trojans. <not used> %%%.exe X A variant of the Troj/Nymod-A malware. <not used> .security X Identified as part of the Fake.Alert Trojan. <unknown> asusrx25.sys X Variant of the Troj/Haxdor-Fam rootkit. <Various Startup Names> _qbotinj.exe X Added by the Troj/Dloadr-BLP Trojan. The components of this infection are C:\documents and settings\all users\_qbothome\_qbotinj.exe and C:\documents ... Read More ?ekio Startups ?nksvc32.exe X Added by the W32/Agobot-OV WORM/IRC backdoor. ? is a random character. It will kill processes, record keystrokes, allowing unauthorised access to enab ... Read More @ %1 X Added by the W32/Protorid-AD WORM! @liberamovilespt @liberamovilespt X Added by the Dialer.UDIS premium adult dialer. @tour_ww @tour_ww[1].exe X Adult content dialler A5118r _default32142.pif X Added by the W32/Brontok-AK mass-mailing worm. AAAKeyboard <unknown> ? ?? aaprotect <Trojan Filename> X Added by the Troj/Bancban-MJ Trojan. ACCDEFRAGINFO [path to worm] X Added by the DARBY-O WORM! AccuWeather.com® Desktop <unknown> N Desktop weather from AccuWeather.com AddClass [Installation_Path] X Added by the STARTPAGE.F TROJAN! admggxp admggxp.dll X Added by a variant of the MyGeek/CPVFeed adware. Adobe SpeedLaunch (Random 6 Letter).exe X A variant of the Rbot family of worms and IRC backdoor Trojans. agent browser [random file name] X Added by the PPdoor.M-bdr backdoor TROJAN! AHU [path to worm] X Added by the ANACON-B WORM! AIM Instant Message Cookies [random filenames] X Added by the W32/Rbot-AFV worm. When started, this infections connects to a remote IRC server where it waits for commands to execute. ... Read More AIMster <unknown> N Peer to Peer (P2P) file sharing client that runs over the AOL Instant Messenger network. Available via Start -> Programs ... Read More AlevirOld [worm filename] X Added by the OPASERV.G WORM! Alexa bridge <random>.exe X Added by the Troj/Agent-EBL Trojan. alkasr ÎäÒíÑ.exe X Added by the BALKART TROJAN! angnan <random filename.exe> X Added by the W32/Bobax-DB worm. ansjava [path to mirc application] X Added by the W32/Randon-AN worm and IRC backdoor.. Anti-Virus <random>.exe X Added by the Troj/Caprobad-A proxy Trojan. anti-virus product sync [AN UNPRINTABLE CHARACTER][3 CHARACTERS]log.exe X Added by the W32.Kedebe.D(AT)mm ... Read More Anti-Virus Update Scheduler V1.39.12R [path to .exe] X Added by the Troj/Fireby-A proxy TROJAN! AOL Messenger [random filename] X Added by an unidentified VIRUS, WORM or TROJAN! ApachInc <random>.dll X Unknown malware typically bundled with LiveProtect. The dll is random but the registry entry will always be named ApachInc. ... Read More Apoint System <Trojan Executable> X Added by the Troj/Banker-WK Trojan. App.EXEName [path to worm]\.exe X Added by the BODIRU WORM! ara-key [random filename] X Added by the ANTINNY WORM! arprmdg0 arprmdg0.dll X Added by the Troj/Haxdoor-DI trojan. This infection utilizes the arprmdg5.sys rootkit to hide itself. ... Read More ASDPLUGIN 100176br.exe X Added by a variant of the ASDPLUG adult content premium rate dialer! ASDPLUGIN 100171be.exe X AsdPlug premium rate adult content dialer variant asfqft [random] X Added by the Troj/Ranck-BU proxy Trojan, allowing HTTP traffic to be routed through the computer by malicious attackers. ... Read More Auth Starter Ident startauth.exe X Added by the W32/Rbot-WP WORM! Auto Scroll Loader (Random 6 Letter).exe X A variant of the SpyBot.dw family of worms and IRC backdoor Trojans. This family of worms spread via mIRC and the Kazaa file sharing network. ... Read More avptask 1explore.exe X Added by the Troj/Nofere-G Trojan. Troj/Nofere-G contains functionality to communicate with a remote server using HTTP, execute downloaded files, kill ... Read More Avril Lavigne - Muse [random filename] X Added by the AVRIL-A WORM! Avxnews <unknown> ? ?? AWatch Awatch.exe U Diagnosis tool that monitors DSL connections, installed alongside DSL drivers from AVM Fritz's range of modem products. ... Read More Background Intelligent Transfer Service rundll32.exe X Added by Troj/VB-ZD, which also adds another to insure starting. Band-Aid [path to file] X Added by the RANKY.O TROJAN! bbdjmrxcX [random filename] X Added by the Troj/Ranck-AX proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location. ... Read More bcnswsx (path to file) X Added as result of a Ranck-AJ trojan infection ... Read More BD [random] X The Troj/Agent-CM backdoor TROJAN will first place DC.EXE in the Temporary folder, then modify HKCUSoftwareMicrosoftWindowsCurrentVersionRun to ensu ... Read More bdffefqes32 [random filename] X Added by the Troj/Ranck-Z proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location. ... Read More begins 0.exe X Added by the W32/Mytob-HE mass-mailing worm and IRC backdoor. BelNotify [path] NPBelv32.dll, RunDll32_BelNotify U "BelTech enables licensees to offer automated, Web-based problem resolution to their end-users. BelTech allows the end-user to simply go to a web page ... Read More BIOS XP Loader [random] X Added by the W32/Rbot-IC trojan backdoor. This infection, when started, connects to an IRC server where it sits on a channel awaiting commands. ... Read More block 05.vbs X Added by the W32.Pusia.A@mm worm. bluestart [random] X Added by Troj/Dloader-IR, a TROJAN! Bmsnwss [random filename] X Added by the Troj/Ranck-BK proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location. ... Read More Bnexe [random filename] X Added by the KITRO.D (or ARGEN.A) WORM! boarddata [path] repcale.exe [path] palsp.exe X Added by a variant of the RANDON.AN WORM! ... Read More Bonzi Buddy <unknown> X Spyware - read here for information and here for removal instructions BrasilOld [worm filename] X Added by the OPASERV.P WORM! Bron-Spizaetus-5118REPM _default32142.pif X Added by the W32/Brontok-R mass-mailing worm. c7 [name of worm] X Added by the W32.MEDIAKILL.A WORM! ... Read More CacheLoader [random] X Troj/Dloader-IX will download the [random] file to the Windows folder, sub-folder "Cache". That done, it moves to "Security iGuard.exe", found in the ... Read More Caesvrn [path to .exe] X Added by the Troj/Ranck-CQ. This infection sits on a randomly selected TCP port between 1025 and 9997, awaiting contact by a remote attacker. ... Read More cAgOu [filename].hta X Added by the KAKWORM WORM! ccApp [random filename] X Added by the OBSORB TROJAN! Note the random filename compared to the valid Norton AntiVirus ... Read More ccApp [path to .exe] X Added by the W32/Rbot-LJ WORM/IRC backdoor Trojan! ccapp .EXE X Added by the W32/RBOT-LJ WORM! ... Read More ccapp .EXE X Added by the W32/RBOT-LJ WORM! ... Read More Cekirge [path to worm] X Added by the KERGEZ.A WORM! center [random name]32.exe X Added by the BOFRA.A WORM! ChanService 2pack.exe X Identified as a variant of Backdoor.Win32.SpyBoter.fb. ChkDsk32 <random>.exe X Added by the Troj/DwnLdr-GZO downloader Trojan. cintaku [RANDOM CHARACTERS].exe X Added by the Trojan.Nickzul Trojan. Client Agent [path to .exe] X Added by the Troj/PPdoor-F trojan. It will target Windows XP firewall and other security related processes for termination. ... Read More clock [various filenames] X LiveChat Adware - known file names include: mssetup.exe, kstatus.exe, spoolsv.exe, sptsupd.exe, osk.exe, msswchx.exe, netdde.exe, msbkup.exe ... Read More clock (various file names) X LiveChat Adware - known file names include: mssetup.exe, kstatus.exe, spoolsv.exe, sptsupd.exe, osk.exe, msswchx.exe, netdde.exe, msbkup.exe ... Read More com servoce Compaq Video CD Watcher <unknown> N For Compaq PC's. MPEG viewer Configuration [filename] X Added by the SDBOT-ML WORM! Configuration apphost.exe X Added by W32/Sdbot-VP, a network WORM! Configuration Loader seru32.exe X Added by the 32/Forbot-EL WORM! File is found in the Windows system folder. Connectivity Tool [path to trojan] X Added by the Troj/Litebot-E IRC backdoor Trojan. Content connector <various filenames.exe> X Added by the Troj/Dialer-Y dialer. Control handler ***********.exe [* = random char] X CoolWebSearch parasite variant ControlPanel [path] cmd32.exe internat.dll, LoadKeyboardProfile X Awmcash.biz foistware Coupon Offers <unknown> ? ?? cppc <Trojan executable> X Added by the Troj/VB-NV Trojan. This trojan pretends to be a Half-Life 2 crack. ... Read More CQSCP2P SERVER <unknown> ? "Compaq printer utility which is required in the startup menu in order to make the printer work correctly". Personally I doubt whether it is actually ... Read More CQSCP2PS <unknown> ? "Compaq printer utility which is required in the startup menu in order to make the printer work correctly". Personally I doubt whether it is actually ... Read More crtfmon <random>.exe X Added by the Troj/Dialer-EM dialer. Cryptographic Service ******.exe [* = random char] X Added by the KORGO.W or KORGO.X or KORGO.AB WORMS! CSRS Windows NT [various names] X Added by the Backdoor.WinShell.50 backdoor. CSRSWIN [trojan filename] X Added by the WINSHELL.50 TROJAN! CSRSX [trojan filename] X Added by the WINSHELL.50.B TROJAN! ctfmonn [random filename] X Added by the Troj/Ranck-O proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location. ... Read More CTime [path to trojan] X Added by the HTTPDOS TROJAN! Ctykd %Malware path and filename% X Added by the TSPY_SMALL.SN spyware. cyberfree.exe ****.dat [* = random char] X Unidentified adware Danton*