[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

MS Security Hotfix = "Spoolsvc32.exe" a valid registry entry or virus?

Posted on 2004-09-26
3
Medium Priority
?
449 Views
Last Modified: 2013-12-04
I have an Acer Laptop, running XP Home and notice a Registry Entry that I can't find any information for.
Has anyone seen this in HKLM/Software/Microsoft/Windows/CurrentVersion/Run, and ../RunServices:
       MS Security Hotfix             "Spoolsvr32.exe"
I could not actually find the file on the C: drive.
SPOOLSV.EXE is running in processes.
Is it legit or some form of virus/trojan?
Ad-Aware SE Personal does not flag it, neither does Mcafee VirusScan.


Many thanks.
Lisa
0
Comment
Question by:carrot999
3 Comments
 
LVL 16

Accepted Solution

by:
JamesDS earned 375 total points
ID: 12158078
carrot999
MS do not issue hotfixes that operate in this way.
This is almost certainly a trojan of some description.

You have probably unwittingly downloaded something nasty.

This link (largely courtesy of COBOLDinosaur) contains everything you need to know about spyware, scumware, adware, hijacked home pages etc and the tools you need to get rid of them:

http://www.experts-exchange.com/Web/Browser_Issues/Q_20975384.html


Cheers

JamesDS
0
 
LVL 2

Expert Comment

by:Ke11ie
ID: 12158108
Hi Lisa

I checked my regedit and couldn't find anything called spoolsvr32.exe. The Print process you have called spoolsv.exe is the correct process for the Print Spooler - so that's no problem. If you do a google search for 'spoolsvr' a few sites come up - all in German though (which are all regarding printing and nothing with regards to viruses, etc.) Maybe it is just another name for the Print Spooler? If your computer isn't having any problems (like it's infected by a virus or something) I'd just ignore it!


Kellie
0
 

Author Comment

by:carrot999
ID: 12158125
Thanks Kellie,
Its reassuring to have my suspicions confirmed.  Appreciate your speedy assistance.

Cheers, Lisa
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
Suggested Courses
Course of the Month19 days, 14 hours left to enroll

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question