v46n
asked on
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options spyware program
Hi i keep have a re-encountering problem that i can easily fix but its a shared computer and i would like to know which piece of spyware is responsible for it. I boot up the computer and it cannot load explorer.exe i goto the registry and remove explorer.exe from HKEY_LOCAL_MACHINE\SOFTWAR E\Microsof t\Windows NT\CurrentVersion\Image File Execution Options
and everything works but it will happen twice a month. It would be nice to figure out what culprit is causing this. For now i plan on blocking write access to this key by everyone.
and everything works but it will happen twice a month. It would be nice to figure out what culprit is causing this. For now i plan on blocking write access to this key by everyone.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Sorry for delayed reply.
If you can lock or change permissions on that key so no one can write or add to it, it would help.
Thanks!
If you can lock or change permissions on that key so no one can write or add to it, it would help.
Thanks!
ASKER