Startup Defender

Startup Defender

http://www.zardssoftware.com/startup/startup.html

Startup Defender is a small Windows startup manager program that sits in your Windows tray and constantly monitors in real time the startup locations on your PC to help prevent programs from auto starting up behind your back. If a program tries to write itself into any startup location Startup Defender will pop up a windows and ask if the program is allowed to place itself to start automatically with Windows. Also you can disable/enable any programs that are currently installed to startup automatically. If there is an entry you are not sure what it is then you can Google it to see if it is needed or even harmful and choose if you want it to load it at startup or not. For the annoying programs that try to repeatedly place themselves in the autorun for Windows you can click the auto block so that Startup Defender stops them without you having to bother with them anymore. Also you can now view all processes and services then selectively start/stop each one.

This software does not change the Windows boot time.

STARTUPDEFENDER.EXE
Description: Startup Defender Zards Software Startup Defender 3.9.1.0
MD5= F12D9DAD9F8906F7B3767D5D5498B5F5
File is not signed.
File size= 1562624
Related registry changes:
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\STARTUP DEFENDER: “C:\WINDOWS\STARTUPDEFENDER.EXE -SILENT”
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{43127A2A-C2FB-4D12-BD8A-17A2F7A67BC8}_IS1\DISPLAYICON: “C:\WINDOWS\STARTUPDEFENDER.EXE
BABYLONTOOLBAR.DLL
Description: Babylon BHO Babylon Toolbar 1.4.35.0
MD5= C471B1EEF9DF1C55B5261006CE04E11F
File is signed and the signature was verified.
File size= 270960
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}\INPROCSERVER32\: “C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BH\BABYLONTOOLBAR.DLL
HKLM\SOFTWARE\CLASSES\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}\INPROCSERVER32\: “C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BH\BABYLONTOOLBAR.DLL
HKLM\SOFTWARE\CLASSES\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}\INPROCSERVER32\: “C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BH\BABYLONTOOLBAR.DLL
BABYLONTOOLBARTLBR.DLL
Description: Babylon Ltd. Babylon Toolbar 1.4.35.0
MD5= 034C197E79D7233BD04BFAC1710CB988
File is signed and the signature was verified.
File size= 237680
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\INPROCSERVER32\: “C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARTLBR.DLL
HKLM\SOFTWARE\CLASSES\TYPELIB\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0\0\WIN32\: “C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARTLBR.DLL

Modified during installation:

~+ [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://SEARCH.BABYLON.COM/?AFFID=112542&BABSRC=HP_SS&MNTRID=0F1467FE000000000000000C2982064B
~- [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://WWW.GOOGLE.COM/

FILES ADDED:51

C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\BABYLON\LOG_FILE.TXT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\BAB033.TBINST.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\BAB091.NORECOVERICON.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\BABYLON.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\BEXTERNAL.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\BLUESTAR.PNG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\EULA.HTML
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\GLOBE.PNG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\OPTIONS.JS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE0.HTML
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE2.CSS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE2.HTML
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE2LRG.CSS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE3.CSS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE3.HTML
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PAGE3LRG.CSS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PBAR.GIF
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\PROGRESS.PNG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\SETUP.JS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\TITLE.PNG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS\TOOLBAR.JPG
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\IECOOKIELOW.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SETUP-LATEST-30B.ZPB
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SETUP-TBMNTR903.ZPB
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SETUP.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SETUPSTRINGS.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SIGN
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\SQLITE3.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBAR4FFX.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBAR4IE.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\USER.JS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\MYBABYLONTB.EXE
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP DEFENDER\STARTUP DEFENDER ON THE WEB.URL
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP DEFENDER\STARTUP DEFENDER.LNK
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP DEFENDER\UNINSTALL STARTUP DEFENDER.LNK
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARAPP.DLL
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARENG.DLL
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARSRV.EXE
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BABYLONTOOLBARTLBR.DLL
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BH\BABYLONTOOLBAR.DLL
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\UNINSTALL.EXE
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\BABYLONTB.XPI
C:\PROGRAM FILES\STARTUP DEFENDER\UNINS000.DAT
C:\PROGRAM FILES\STARTUP DEFENDER\UNINS000.EXE
C:\WINDOWS\BANPRC.DAT
C:\WINDOWS\INTEROP.IWSHRUNTIMELIBRARY.DLL
C:\WINDOWS\INTEROP.SHELL32.DLL
C:\WINDOWS\START.ICO
C:\WINDOWS\STARTUPDEFENDER.EXE
C:\WINDOWS\STOP.ICO
C:\USER.JS

FILES[ATTR]MODIFIED:2

C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GDIPFONTCACHEV1.DAT
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\CE4CF87733651BF1F44DD1E02FC1A8E8

FOLDERS ADDED:14

C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\BABYLON
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\BABYLON\SETUP\HTMLSCREENS
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR\BABYLONTOOLBAR
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BABYLON
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP DEFENDER
C:\PROGRAM FILES\BABYLONTOOLBAR
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17
C:\PROGRAM FILES\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.3.17\BH
C:\PROGRAM FILES\STARTUP DEFENDER

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit is required. Reviews. EULA. Privacy Policy.

Leave a Reply