To fight agains new generation of viruses and trojans RegRun Security Suite has a new powerful weapon - Windows Core Components.
Windows Core Components contains Active Setup items, Browser Helper Objects, Shell Loggers DLLs, Static VxD (Windows 9X/Me only). These components are very important for stable Windows work. You should have administrator privilege to modify these components. Anyway, we suggest you make a backup copy before doing any changes. We give you a simple way to make backup.
- Active Setup registry key is used to store information about installed software components and to automatically launch downloaded ActiveX components.
Read C-NET article about IE browser security hole.
Some examples of the viruses/trojans that use this method:
Read more about SubSeven Trojan,
Trojan Oblivion,
Backdoor.SchoolBus,
I-Worm.Badtrans, etc.
- The ShellExecuteHooks registry key contains the list of the COM objects that trap execute commands.
Value Name is the GUID of the COM object. Program column refers to the COM server. By default you must have the "shell32.dll" item. Never delete this item!
Other objects in this list are not required and may contain viruses and trojans.
- Browser Helper Objects are the COM components that Internet Explorer will load each time it starts up.
For example, a BHO could spy all browser events, access the browser's menu and toolbar and make changes, create windows to display additional information, etc.
Read more about BHO.
Collection of BHO objects.
By default the BHO list on your computer is empty. There are no required items.
- "VxD" stands for Virtual "something" Device, where 'x' stands for "something".
Microsoft often names drivers according to this convention, thus "VKD" is the Virtual Keyboard Device.
VxDs are loaded into the protected (ring-0) operating system address space, and have full access to the system hardware.
Static VxD are loaded automatically at Windows startup. Please, do not change required VxD.
Several advanced viruses and trojans install own VxD modules to infect your computer.
Remember! VxD modules work as part of operating system and they have absolute power.
Be careful!
RegRun analyses information about each listed item and displays it on the left pane of the Windows Core window.
In addition to information stripped from the file, RegRun uses
RegRun Application Database.
- Type (Necessary/Useless/At your option/Dangerous.)
- Value Name. This may be the registry or ini file value name.
- Program/DLL name.
- Manufacturer (extracted from execution file, may be empty.)
- Product Name (extracted from execution file, may be empty.)
Simply uncheck unwanted values (or delete them) and press Apply button to accept changes.
If you have installed RegRun Gold Edition you may automatically monitor changes in Windows Core Components.
Click on the "Monitor Key" link.
Read more information >>