6.Userinit: there is an entry for userinit.exe but subkey can accept multiple comma- separated values. Can't find where your program starting, Look here.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit =C:\windows\system32\userinit.exe,c:\windows\any program.exe,c:\program files\any program.exe.
Explorer\Run subkey :
7.Explorer Run:
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
8.Browser Helper Objects: The now imfamous Browser Helper Objects (BHO). This application launch location was intended to provide for third party helper applications extensions for the Windows Explorer shell. Sadly, like all Virus entry points, the virus programmer has abused a feature of Microsoft Windows software that was ripe to provide for more competitive Windows products.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
9.AppInit_DLLs: Are attatched to any launched application.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Window
10.SharedTaskScheduler - If any key exists in Task Scheduler programs automatically starts specific time,date you can delete directly in the registry
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
11:Common Startup locations( Folder Level ): You can directly delete programs in this location
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
C:\Documents and Settings\{Username}\Start Menu\Programs\Startup
Editing windows registry is risk of without prior Incorrect Registry editing caused to completely hang up your operating system.
If you don't want to take risk, just just a program to quickly scan these keys and produce a list for you, you can use following programs . While you are at thease sites, you should browse some of the other excellent utilities.
1. Sysinternals Autoruns ( My favourite Programme and Recommended )
2. Source Forge Startaup Manager
Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Quisque sed felis. Aliquam sit amet felis. Mauris sem
Post a Comment