Should keyboard.exe be in Win2K pro registry?

Posted on 2005-03-26
Medium Priority
Last Modified: 2013-12-04
Hi all,
I've been super stressed by a multipally infected Win2K machine at a small business office. While cleaning off several infections I noticed that keyboard.exe is in


under a key called ConfigurationsLoader which is set with keyboard.exe

I know keyboard.exe can be a malicious file in some instances but I dobn't know if it is also a valid file sometimes.  Is it normal for it to be where I'm finding it in the registry?

Question by:akus1
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
LVL 12

Expert Comment

ID: 13636899
I'd look where it's running from and check it's properties.
I'm running 2000 Pro - no keyboard.exe.

LVL 12

Expert Comment

ID: 13636907
Also, check in Task Manager and services.msc for any info on it.

LVL 85

Accepted Solution

oBdA earned 2000 total points
ID: 13639183
The complete RunServices key shouldn't be there in W2k; that's the pseudo-services entry for Win9x. In addition, keyboard.exe is nothing that's part of a default Windows 2000 installation.

Definition of the RunOnce Keys in the Registry

So, no, it's definitely not normal to have this entry.

Author Comment

ID: 13639445
Thanks to both rossfingal and oBdA. I'm a lot more confident of removing that keyboard.exe entry now.  After a backup of the registry of course. :)
LVL 12

Expert Comment

ID: 13639469

Glad someone here could help!  :)

Good luck!


Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
OfficeMate Freezes on login or does not load after login credentials are input.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses
Course of the Month10 days, 18 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question