Index Introduction Database Detailed Entries Updates Concise List HJT Forums Rogues Message Board

Windows startup programs - Browse database

If you're frustrated with the time it takes your Windows 10/8/7/Vista/XP PC to boot and then it seems to be running slowly you may have too many programs running at start-up - and you have come to the right place to identify them. This is the original start-up programs (as opposed to processes/tasks) list - one of the most accurate and comprehensive. Services are not included - see below. For further information on this and how to identify and disable start-up programs please visit the Introduction page.

See here for further information on random entries - which are typically added by viruses and other malware or unwanted programs.

Last database update :- 31st January, 2017
50984 listed

Entries are sorted by the Command/Data field. Alternatively, you can search the full database or use the alphabetical index on that page.

FIRST PREV ( Page 507 of 1023 ) NEXT LAST

You can also manually change the page number in the address bar.

Startup Item or Name Status Command or Data Description Tested
FilmFanatic EPM SupportUpamedint.exeFilmFanatic toolbar - powered by the Ask Partner Network toolbars by IAC Applications (was Mindspark). Detected by Malwarebytes as PUP.Optional.MindSpark. The file is located in %ProgramFiles%\FilmFanatic\bar\*.bin - where * represents a number or letter. If bundled with another installer or not installed by choice then remove itYes
pamela.exeUpamela.exePamela is a plug-in or add-on that adds features to Skype peer to peer voice serviceNo
Panda Software IntrenetXpanda.pifDetected by Sophos as W32/Rbot-ATZNo
PandaAVEngineXPandaAVEngine.exeAdded by the NETSKY.R WORM!No
System handlerXPandawas.exeAdded by the BHARAT.A WORM!No
Panda Security URL FilteringYPanda_URL_Filtering.exeURL checking feature of Panda Cloud Antivirus by Panda SecurityNo
PandoNPando.exePando by Pando Networks - "is free, secure software that makes sending, receiving, and publishing files up to 1GB in size a breeze." No longer availableNo
KN_PanelAppUPanelApp.exeKnowledgePanel online survey softwareNo
[various names]Xpanel_its.exeFake startup entry created by the Wareout rogue spyware and dialer remover - not recommended, removal instructions here. Archived version of Andrew Clover's original pageNo
PanteraXpantera.exeDetected by Trend Micro as WORM_SDBOT.AYNNo
Configuration LoaderXpany.exeDetected by Trend Micro as WORM_RBOT.L and by Malwarebytes as Backdoor.BotNo
PapeleraXpapeleraxp2.exeDetected by Malwarebytes as Trojan.Qhost. The file is located in %Recycled%No
PapeleraXpapeleraxpn.exeDetected by Malwarebytes as Trojan.Qhost. The file is located in %Recycled%No
PapeleraXpapeleraxpt.exeDetected by Malwarebytes as Trojan.Qhost. The file is located in %Recycled%No
PowerDOCSAPIHostUpapihost.exeHummingbird PowerDOCS - "delivers powerful enterprise document management functionality via a tightly integrated Microsoft WinNT/98/2K environment"No
paqezgulhapaXpaqezgulhapa.exeDetected by Intel Security/McAfee as RDN/Generic.tfr!ed and by Malwarebytes as Trojan.Agent.USNo
Paraben's Password ManagerUParaben.exeParaben's Password Manager by Paraben Corporation - personal password management program for online accounts, ATM numbers, PIN numbers, bank accounts, password protected documents, etcNo
ParadoxXParadox.exeDetected by Dr.Web as Trojan.Siggen4.25429 and by Malwarebytes as Trojan.BackdoorNo
MetoSystemXparalise1.exeDetected by Intel Security/McAfee as RDN/Ransom!de and by Malwarebytes as Trojan.Agent.RNSNo
Parallels Tools?ParallelsToolsCenter.exePart of Parallel Tools utility suite for guest operating systems included with virtualization software from Parallels - such as Parallels WorkstationNo
ParentalControlUParentalControl.ExeCrawler Parental Control - "Get perfect control of websites your children browse, software they use, and folders they access. Regulate the time when they can use your computer and connect to the Internet. Hide content on your computer that you don't want them to see"No
ParetoLogic Anti-SpywareYPareto_AS.exe"ParetoLogic Anti-Spyware delivers Active Protection in the form of real-time blocking"No
[various names]XParisM.exeFake startup entry created by the Wareout rogue spyware and dialer remover - not recommended, removal instructions here. Archived version of Andrew Clover's original pageNo
macroXparivac.exeDetected by Dr.Web as Trojan.DownLoader8.19816 and by Malwarebytes as Trojan.Agent.PVNo
parsazqacvolXparsazqacvol.exeDetected by Intel Security/McAfee as RDN/Generic Downloader.x!kp and by Malwarebytes as Trojan.Agent.USNo
PartSealUPartSeal.exeSystem backup for Sony Vaio PCs. Adds a recovery mechanism for users over and above any System Restore features - allowing users to revert a drive back to the state it was when bought form the factory by hitting F10. The user obviously loses any data stored if not backed-up elsewhereNo
VAIO RecoveryUPartSeal.exeSystem backup for Sony Vaio PCs. Adds a recovery mechanism for users over and above any System Restore features - allowing users to revert a drive back to the state it was when bought form the factory by hitting F10. The user obviously loses any data stored if not backed-up elsewhereNo
Winsock32 driverXparty.exeDetected by Intel Security/McAfee as MultiDropper-DCNo
party.taskXparty.exeDetected by Intel Security/McAfee as MultiDropper-DCNo
P Antispyware 09Xpas.exeP Antispyware 09 rogue security software - not recommended, removal instructions hereNo
PersonalAntiSpy FreeXpas.exePersonalAntiSpy rogue spyware remover - not recommended, removal instructions hereNo
Pas Windows MonitorXpas.exeDetected by Malwarebytes as Backdoor.Agent. The file is located in %System%No
Palo Alto Software Update Manager 8.0NPAS8_UD.exeUpdate manager for small business planning software from Palo Alto Software - such as Business Plan Pro, Marketing Plan Pro and Email Center ProNo
SalestartXPASmon.exePart of rogue security tools, including ErrorSafe and PcTurboProNo
cmonitorXpasmon.exeSystemDoctor rogue security software - not recommended, removal instructions hereNo
was_checkXPASmon.exePart of the ErrorSafe rogue system error and cleaning utility - not recommendedNo
pas_checkXpasmon.exeSystemDoctor rogue security software - not recommended, removal instructions hereNo
FilmFanatic Search Scope MonitorUpasrchmn.exeFilmFanatic toolbar - powered by the Ask Partner Network toolbars by IAC Applications (was Mindspark). Detected by Malwarebytes as PUP.Optional.MindSpark. The file is located in %ProgramFiles%\FilmFanatic\bar\*.bin - where * represents a number or letter. If bundled with another installer or not installed by choice then remove itNo
Windows DLL LoaderXPASSCFG16.EXEDetected by Sophos as Troj/Domwis-ENo
Windows System ConfigurationXPASSCFG16.EXEDetected by Sophos as Troj/Domwis-ENo
NETVISIONPasse-partoutXPasse-partout.exeDetected by Sophos as Dial/DialCar-MNo
PassLockerYPassLocker.exe"PassLocker is a complete password manager helping you to manage and safely store your passwords"No
Panda Antispam Server ServiceUPasSrv.exeAntiSpam of an older version of the Panda Security range of internet security products. Runs as a service on Windows XPNo
[various names]XPasswdMon.exeFake startup entry created by the Wareout rogue spyware and dialer remover - not recommended, removal instructions here. Archived version of Andrew Clover's original pageNo
Password DepotYPasswordDepot.exePassword Depot by AceBIT Gmbh - is a "powerful and very user-friendly password manager which helps to organize all of your passwords - but also, for instance, information from your credit cards or software licenses"No
pwdirUPasswordDirector.exePassword Director by LastBist Software - "provides a safe and secure way to keep all your passwords and sensitive records (such as system logins, credit card information, PINs, private phone numbers and other sensitive records) in the single well-protected password database"No
SPM14_PasswordManagerUPasswordManager.exeLoads version 14 of the Steganos Password Manager in windowed mode at startup (which is configured via Settings? → General Settings → "Start automatically on log on")Yes
Steganos Password Manager 14UPasswordManager.exeLoads version 14 of the Steganos Password Manager in windowed mode at startup (which is configured via Settings? → General Settings → "Start automatically on log on")Yes
Steganos Privacy Suite 14UPasswordManager.exeLoads version 14 of the Steganos Password Manager in windowed mode at startup (which is configured via Settings? → General Settings → "Start automatically on log on"). This entry is for the version included with Steganos Privacy SuiteYes
SSS14_PasswordManagerUPasswordManager.exeLoads version 14 of the Steganos Password Manager in windowed mode at startup (which is configured via Settings? → General Settings → "Start automatically on log on"). This entry is for the version included with Steganos Privacy SuiteYes

 

FIRST PREV ( Page 507 of 1023 ) NEXT LAST

You can also manually change the page number in the address bar.

Notes & Warnings

If you can help identify new entries and verify/identify those entries with a "?" status (especially hardware specific - such as laptops and motherboards) then please E-mail us (startups_at_pacs-portal_dot_co_dot_uk).

"Status" key:

Variables:

DISCLAIMER: It is assumed that users are familiar with the operating system they are using and comfortable with making the suggested changes. We will not be held responsible if changes you make cause a system failure.

WARNING: This is NOT a list of tasks/processes taken from the Task Manager (CTRL+SHIFT+ESC) "Processes" tab. This displays some startup programs AND other background tasks and "Services". These pages are concerned with startup programs from the common startup locations shown above ONLY. Please do not submit entries collected from this method as they will not be used. For a list of tasks/processes you should try the list at PC Pitstop, the Process Library from Uniblue or one of the many others now available.

Therefore, before ending a task/process via CTRL+SHIFT+ESC just because it has an "X" recommendation, please check whether it's in the registry or common startup locations first. An example would be "svchost.exe" - which doesn't appear in either under normal conditions but does via CTRL+SHIFT+ESC. If in doubt, don't do anything.

To avoid the database becoming too large, all malware entries are only shown using the registry version which is common to all Windows versions. Otherwise there would be multiple entries for popular filenames that viruses often use - such as "svchost.exe" above for example. Multiple malware can also use the same start-up entries, in this case only those with significant differences (such as file location) are repeated in this database.

As more than 25K entries in this database related to malware you should use a quality internet security package. Which ever you choose, keep it updated and get the latest version at least every two years.

There are a number of virus and malware entries listed in this database where specific removal instructions haven't been given. If this is the case then you could try ComboFix, a program written by sUBs that can remove many different types of Trojans and Worms. See here for a tutorial on how to use the program.

NOTE: A number of entries are repeated due to the way that different operating systems display startup items. For example, WinMe lists "POPROXY.EXE" as "Norton eMail Protect" in both MSCONFIG and the registry whereas WinXP lists it as "Poproxy" in MSCONFIG and "Norton eMail Protect" in the registry.

SERVICES: "Services" from the Windows 8/7/Vista/XP/2K/NT operating systems are not included. We fully understand that some programs with these OS's use "Services" as an alternative to load their component parts at startup but these are handled in a different way. We recommend you try BlackViper for information on services for the relevant operating systems.

Copyright

Presentation, format & comments Copyright © 2001 - 2017 Pacman's Portal
Portions Copyright © Peter Forrest, Denny Denham, Sylvain Prevost, Tony Klein, CastleCops & Bleeping Computer
Powered by Malwarebytes
All rights reserved

Valid XHTML 1.0 Transitional

Privacy Policy Site Map Home