Windows Startup Entries, Symbol: [i]
Powered by: sysinfo.org (Archived @ web.archive.org)
Internet download manager service
File Name: idman.exe
Description:
Added by the External: RBOT-BMS WORM!
Added by the External: RBOT-BMS WORM!
Internet Exploere Services
File Name: urlmon32.dll.exe
Description:
Added by the External: EVIAN.C WORM!
Added by the External: EVIAN.C WORM!
Internet Explore Microsoft
File Name: lEXPLORE.EXE
Description:
Added by the External: RBOT-AOF WORM! Note - the executable is spelt with a lower case "L" rather than an lower or upper case "i" which is the case with Internet Explorer
Added by the External: RBOT-AOF WORM! Note - the executable is spelt with a lower case "L" rather than an lower or upper case "i" which is the case with Internet Explorer
Internet Explorer
File Name: iexplorer.exe
Description:
Added by the External: LORSIS WORM! Note - this is not the legitimate Internet Explorer (iexplore.exe)
Added by the External: LORSIS WORM! Note - this is not the legitimate Internet Explorer (iexplore.exe)
Internet Explorer
File Name: IEXPLORE.EXE
Description:
Added by the External: RBOT-EY WORM! Note - this is not the legitimate Internet Explorer (External: iexplore.exe) which is always located in %ProgramFiles%\Internet Explorer and should not normally figure in Msconfig/Startup! This one is located in %System%
Added by the External: RBOT-EY WORM! Note - this is not the legitimate Internet Explorer (External: iexplore.exe) which is always located in %ProgramFiles%\Internet Explorer and should not normally figure in Msconfig/Startup! This one is located in %System%
Internet Explorer
File Name: IExplorer.exe
Description:
Added by the External: NETHIEF-O BACKDOOR! Note - this is not the legitimate Internet Explorer (iexplore.exe)
Added by the External: NETHIEF-O BACKDOOR! Note - this is not the legitimate Internet Explorer (iexplore.exe)
Internet Explorer
File Name: http.exe
Description:
Added as part of a new potential CWS infection, and part of a suite of programs that installs a web server, php, ftp server, socks, and mail server on your computer without your knowledge. These files are known to be part of an infection that transmits information about your bank accounts, passwords, and other financial information. It should be deleted immediately, you should enable your firewall, and you should contact your financial services in order to report the issue and to have your passwords changed
Added as part of a new potential CWS infection, and part of a suite of programs that installs a web server, php, ftp server, socks, and mail server on your computer without your knowledge. These files are known to be part of an infection that transmits information about your bank accounts, passwords, and other financial information. It should be deleted immediately, you should enable your firewall, and you should contact your financial services in order to report the issue and to have your passwords changed
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80