But it seems to be contrast with this : http://www.bleepingcomputer.com/tutorials/windows-program-automatic-startup-locations/ :
"The following are files that programs can autostart from on bootup:
3 . windir\wininit.ini - Usually used by setup programs to have a file run once and then get deleted.
5. windir\win.ini - [windows] "load"
6. windir\win.ini - [windows] "run"
7. windir\system.ini - [boot] "shell"
8 . windir\system.ini - [boot] "scrnsave.exe"
9. windir\dosstart.bat - Used in Win95 or 98 when you select the "Restart in MS-DOS mode" in the shutdown men
My question : Can malware's files that are included in win.ini and system.ini be run/loaded in Windows NT based systems from these .ini files ?
Thank you for your kind attention :D .
EDIT: moved to a more suitable forum
Edited by garmanma, 30 March 2009 - 04:11 PM.