View Full Version : Startup Programs
coliboy
June 1st 04, 12:41 AM
What are yzqngbip.exe and axcfel.exe??
I've searched Microsoft.com and Google with no results found on either. Both are located in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr ent Version\Run.
Are they legit or to be gotten rid of?
Col
Carey Frisch [MVP]
June 1st 04, 12:41 AM
Download Ad-Aware 6.0 and scan your PC for spyware:
http://download.com.com/3000-2144-10045910.html?part=69274&subj=dlpage&tag=button
Symantec Security Check
http://security.symantec.com/sscv6/default.asp?langid=ie&venid=sym
--
Carey Frisch
Microsoft MVP
Windows XP - Shell/User
Be Smart! Protect your PC!
http://www.microsoft.com/security/protect/
----------------------------------------------------------------------------------------------
"coliboy" > wrote in message:
...
| What are yzqngbip.exe and axcfel.exe??
| I've searched Microsoft.com and Google with no results found on either. Both are located in
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr ent Version\Run.
|
| Are they legit or to be gotten rid of?
|
| Col
Rick \Nutcase\ Rogers
June 1st 04, 12:41 AM
Hi,
Both are likely trojans. Neither are valid file names.
Boot into Safe mode, delete both the files and the registry entries. Restart
normally.
--
Best of Luck,
Rick Rogers aka "Nutcase" MS-MVP - Windows
Windows isn't rocket science! That's my other hobby!
http://mvp.support.microsoft.com/
Associate Expert - WinXP - Expert Zone
www.microsoft.com/windowsxp/expertzone
Win98 Help - www.rickrogers.org
"coliboy" > wrote in message
...
> What are yzqngbip.exe and axcfel.exe??
> I've searched Microsoft.com and Google with no results found on either.
Both are located in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr ent
Version\Run.
>
> Are they legit or to be gotten rid of?
>
> Col
coliboy
June 1st 04, 12:41 AM
Thanks Carey,
I've had AdAware for ages and I keep it updated. Likewise SpywareBlaster, Spybot S&D and CWShredder.
None of them have reported these 2 entries. Checking their properties reveals very little, only internal name,build etc but no Company info.
I'm no expert when it comes to these matters but I have found that in general, a file's name usually gives some sort of indication of what it is or what program it belongs to, but not these two. "yzqngbip" seems to be totally random.
Any more ideas?
vBulletin® v3.6.4, Copyright ©2000-2012, Jelsoft Enterprises Ltd.