Inactive RegEdit Startup Approved and possible Unknown entries?

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Irregular

Thread Starter
Joined
Jun 6, 2021
Messages
2
Hello people,

Since morning I have been looking through different Registery directories to remove one "Unknown Program " Running in my processes which I was successful at removing, During my search I came across this directory
Computer\HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run
and I have identified 2 Registery StartupApproved entries which I had no idea about.

Can you help me identify if there is a potential threat regarding these two entries?
I am more concerned about the LDNEWS entry but If possible I would also like to know the ServiceRun as well

Thank you in advance !
 

Attachments

Last edited:

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,906
Before beginning the cleanup process, it's very important that you back up all of your important data such as documents, photos, music, emails, etc. to other media such as CDs or an external hard drive. An infected computer can be highly unstable and even a healthy one can crash and become unbootable at any time for a number of reasons so you should regularly back up anything that you wouldn't want to lose.

Also, many infections these days allow hackers to take control of your computer and obtain passwords and other sensitive information it may contain. With any infection, you should immediately change all passwords for logins, especially if you use your computer for banking and/or other types of financial transactions, but you must do so from a clean computer and not use the infected one for any such purposes.

Now you are ready to begin the cleanup process. Please follow the steps outlined below and include the requested information in your initial post.
  1. Please provide a detailed description of the problems or symptoms you are experiencing along with any steps that you have already taken yourself, if any, before posting for assistance.

  2. Please download Farbar Recovery Scan Tool and save it to your desktop.

    Note: You need to run the version compatible with your system (32-bit or 64-bit). If you are not sure which version applies to your system then download both and try to run them. Only one of them will run and that will be the right version.
    • Right-click FRST.exe or FRST64.exe then select "Run as administrator"
    • When the tool opens, click Yes to the disclaimer
    • Press Scan
    • When finished it will produce two logs, FRST.txt and Addition.txt in the same directory where the tool was run
    • Please copy/paste both logs in your initial post or upload them as attachments
Once you've posted the requested information please be patient and wait for assistance. Our qualified helpers are all volunteers who are very busy and they will try to get to you as soon as possible. If you haven't received a reply within 48 hours, you can add a post to your thread that will simply "bump" it back up to the top where it's more likely to be noticed.

Other Important Notes:

There are two types of "helpers" who are qualified and authorized to assist in the Virus & Other Malware Removal forum; Malware Specialists and Malware Trainees. Please note that Trainees are in training at other sites and work here under the supervision of their teaching experts as part of the learning process so all of their replies have to be approved by their teachers before they can be posted.

When you start a new thread in the Virus & Other Malware Removal forum, you will see the word "New:" to the left of your thread title. This indicates to the Specialists and Trainees that you are still awaiting assistance. The "New:" indicator will remain there, even if you reply back to your thread to add additional information or to bump it up after waiting at least 48 hours, until a Malware Specialist or Trainee replies. Once a "helper" starts working with you, they will change that indicator to read "In Progress:" so that other helpers will know that you are now receiving assistance. Please follow your helper's instructions carefully and provide any requested information or logs in a timely manner. Also, please do not edit your logs as the information is used to prepare a fix for you to run so editing the reports can have undesired results. If you need to add information or change something it's best to make a new reply as responders are not notified when edits to existing posts are made.

When the matter is solved then you should click on the "Mark Solved" button that appears on the upper left side so the indicator can be changed to read "Solved".

Threads will automatically close after 45 days of inactivity (meaning no further posts have been made).

IMPORTANT NOTE REGARDING CORPORATE/COMPANY OWNED COMPUTERS

Please do not request assistance for corporate/company owned computers. Many changes/deletions are made during the cleanup process, some of which may involve uninstalling programs, deleting folders/files, changing settings and/or removing policies etc. As we have no way of knowing for sure if these are actually needed for company operations, malware issues in these cases should be handled by your own IT Departments in order to avoid any undesirable results.
 

iMacg3

Malware Specialist
Joined
Nov 3, 2018
Messages
983
Welcome.

I'm reviewing your logs and will get back to you soon.
 

iMacg3

Malware Specialist
Joined
Nov 3, 2018
Messages
983
Due to lack of feedback, this topic has been marked Inactive. If you still need assistance, send me a Personal Message with a link to your topic. Everyone else, please begin a new topic.
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top