Support Forum Articles File Help Startup DB Tips Service DB Hijack This! Analyzer

 

NEW HijackThis automated log analyzer! Get your logs analyzed INSTANTLY!

If you're not finding what you're looking for please go to this forum and submit a new startup entry.

Key:

  • "Y" - Normally leave to run at start-up
  • "N" - Not required - typically infrequently used tasks that can be started manually if necessary
  • "U" - User's choice - depends whether a user deems it necessary
  • "X" - Definitely not required - typically viruses, spyware, adware and "resource hogs"
  • "?" - Unknown



Startup Name Process Name Details
XDirectXddhelp32.exe"Added by the BIONET.318 TROJAN! Note - not the DirectX helper which is ddhelp.exe"
XdirectxDirectx.exe"Added by the SDBOT.D TROJAN!"
XdirectxSqlexploit.exe"Added by the SDBOT.D TROJAN!"
XDirectXDirectX.exe"Added by the BLAXE or LOGPOLE WORMS!"
XdirectxNTCmd.exe"Added by the SDBOT.D TROJAN!"
XdirectxPipeCmd.exe"Added by the SDBOT.D TROJAN!"
XDirectX 32directx32.exe"Added by a variant of the AGOBOT/GAOBOT WORM!"
XDirectX Driverstdhost.exe"Added by the SDBOT.GVJ BACKDOOR!"
XDirectX For Microsoft Windowsdtxservice.exe"Added by the PROGENT TROJAN!"
XDirectX for Microsoft WindowsFservice.exe"Added by the PRORAT TROJAN!"
XDirectX for Microsoft WindowsSservice.exe"Added by the PRORAT TROJAN!"
XDirectX For Microsoft® Windowsfservice.exe"Added by the PRORAT-P TROJAN!"
XDirectX For Microsoft® Windowsfservice.exe"Added by the PRORAT-L TROJAN!"
XDirectX shell driver[path to trojan]"Added by the MARKTMAN-B TROJAN!"
XDirectx Startup Driversdirect.exe"Added by the RBOT.UXL WORM!"
XDirectX Video Driverdxterm5.exe"Added by the WILAB-A TROJAN!"
XDirectX64DirectXset.exe"Added by the BROWNEY.A WORM!"
XDirectX9direct3d.exe"Added by the AGENT.EAK TROJAN!"
XDirectX9svchost32.exe"Added by the RBOT.AQG WORM!"
XDirectX9 Diagdx9diag.exe"Added by the RBOT-ALT WORM!"
XM S DVD DirectX Dll Driversmsxdl.exe"Added by the SDBOT-BJN WORM!"
XMicrosoft DirectXSpoolserv.exe"Added by the DINFOR WORM!"
XMicrosoft DirectXrasmngr.exe"Added by a variant of the RBOT WORM!"
XMicrosoft DirectXPDSched.exe"Added by the SDBOT.CN WORM!"
XMicrosoft DirectXwuamgrd.exe"Added by the SDBOT.MY WORM!"
XMicrosoft DirectXtime123.exe"Added by the SDBOT.MD WORM!"
XMicrosoft Directxdirectxat.exe"Added by the SDBOT-BXF WORM! Note - disables autostart for the SharedAccess service and deactivates the Microsoft Internet Connection Firewall (ICF)"
XMicrosoft DirectXwupdate.exe"Added by the RBOT-L WORM!"
XMicrosoft Directx clickdirectxclick.exe"Added by a variant of the RBOT-GHT WORM!"
XMicrosoft Directx clicksdirectxclickers.exe"Added by the RBOT-GHT WORM!"
XMicrosoft Directx pushdirectxpushup.exe"Added by a variant of the RBOT-GHT WORM!"
XMicrosoft Directxspdirectxbt.exe"Added by a variant of the RBOT-GHT WORM!"
XMicrosoft Directxspnewdirectxnew.exe"Added by a variant of the RBOT-GHT WORM!"
XMS DirectX Sound Driversmsdrvdx.exe"Added by the RBOT.BCX WORM!"
XMS DVD DirectX Dll Driversmdxdl.exe"Added by the SDBOT-XI WORM!"
XMS DVD DirectX Sound Driversmsdrvdx.exe"Added by the SDBOT-XJ WORM!"
XWindowsXP ModuleDirectX3D.exe"Malware


DISCLAIMER: It is assumed that users are familiar with the operating system they are using and comfortable with making the suggested changes. I will not be held responsible if changes you make cause a system failure.

This is NOT a list of tasks/processes taken from Task Manager or the Close Program window (CTRL+ALT+DEL) but a list of startup applications, although you will find some of them listed via this method. Pressing CTRL+ALT+DEL identifies programs that are currently running - not necessarily at startup. For a list of tasks/processes you should try WinTasks 5 Standard/Professional from LIUtilities or the list at AnswersThatWork. Therefore, before ending a task/process via CTRL+ALT+DEL just because it has an "X" recommendation, please check whether it's in MSCONFIG or the registry first. An example would be "svchost.exe" - which doesn't appear in either under normal conditions but does via CTRL+ALT+DEL. If in doubt, don't do anything.