Startup Programs

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I am running Windows 2000 with NAV and Ad-aware and Agnitum Outpost.
Lately I noticed that 3 programs load at startup all from the
windows/system32 directory: up2date.exe, vr32.exe and mcmp386.exe.
I tried disabling these programs but every time I restart my computer they
return.
Does anyone know what they do as they seem to keep my Internet connection
very busy. I firewalled them and haven't noticed any problems but still they
use up resources and slow down my computer and my connection.
Any help will be welcome.
 
You may have a virus or spyware. First try scanning your computer for both
using the latest definitions for your antivirus program and use a spyware
program such as the new Microsoft Spyware program that is in beta but seems
to work very well. Make sure you are using a firewall, that your antivirus
scans all your emails, and that you keep current with critical updates at
Windows Updates as those will significantly reduce your chances of getting
infected with malware. You could also try using the free Autoruns program
from SysInternals to see if a publisher name is associated with those files
which may jog your memory as to if they may be legitimate files. --- Steve

http://www.microsoft.com/athome/security/spyware/software/default.mspx ---
Microsoft Spyware program
http://www.sysinternals.com/ntw2k/freeware/autoruns.shtml --- Autoruns.
http://free.grisoft.com/freeweb.php/doc/2/ -- free for home use high
quality antivirus program.
 
Steven,
Thanks for your reply, but it didn't help me much.
I already had antivirus and anti-malware programs running and scanning
everything.
My problem is that no one seems to know what these files are. They don't
appear as viruses nor can I find any mention of them in Google.
Maybe they are legitimate Windows programs, but no one seems to be able to
give me an answer.
 
If they did not turn up in a Google search then almost surely are not
legitimate operating system files. If Autoruns did not show a publisher name
associated with them then they probably are some sort of spyware. So much
new stuff turns up all the time that it is impossible to keep track of
everything so it is not surprising that no one was able to identify them
with any application legitimate or otherwise . I would also try to run your
Spyware removal and antivirus program in safe mode to see if that makes a
difference. Make sure you are using the latest up to date definitions as of
today for your antivirus program. I would also try a second opinion with the
free Sysclean from Trend Micro which is a stand alone malware detection and
removal tool. Just download Sysclean and the pattern file to a common
folder, unzip the pattern file and run Sysclean. If nothing is still found,
I would rename the files and reboot your computer. Those definitely are not
critical system files that would interfere with operating system
functioning. If everything runs fine after a day or two and all your
applications run, delete those files. --- Steve

http://www.trendmicro.com/download/dcs.asp --- Sysclean
http://www.trendmicro.com/download/pattern.asp --- pattern file in .zip.
 
Back
Top