Jump to content


Photo

appinit_dlls FP or not?


  • Please log in to reply
6 replies to this topic

#1 Quinny

Quinny

    Advanced Member

  • Honorary Members
  • PipPipPip
  • 196 posts
  • Gender:Male
  • Location:South Wales UK
  • Interests:Photography and nature,music and movies.

Posted 28 December 2012 - 10:24 AM

Hi,just tried mbam anti rootkit prog for the first time and upon opening the prog
it instantly gave an alert saying "appinit_dlls" might be a rootkit.
After a bit of googling i can't figure out if it's a dangerous trojan virus or should be
left alone as it's part of the windows 7 os.
Thanks in advance for any help.

#2 Arif

Arif

    Regular Member

  • Moderators
  • PipPip
  • 86 posts
  • Gender:Male

Posted 28 December 2012 - 03:29 PM

Hi,just tried mbam anti rootkit prog for the first time and upon opening the prog
it instantly gave an alert saying "appinit_dlls" might be a rootkit.
After a bit of googling i can't figure out if it's a dangerous trojan virus or should be
left alone as it's part of the windows 7 os.
Thanks in advance for any help.


Just follow the instruction on a message box: If MBAR was able to start and haven't crashed afterward, just leave it alone.

#3 Quinny

Quinny

    Advanced Member

  • Honorary Members
  • PipPipPip
  • 196 posts
  • Gender:Male
  • Location:South Wales UK
  • Interests:Photography and nature,music and movies.

Posted 28 December 2012 - 04:33 PM

Thanks for your reply.Just ran the first mbar scan and it give me a clean bill of health.
But every time i click the exe the same alert comes up telling me "appinit_dlls" is proberly
a virus and i'm still none the wiser if it's a FP or not.

#4 Quinny

Quinny

    Advanced Member

  • Honorary Members
  • PipPipPip
  • 196 posts
  • Gender:Male
  • Location:South Wales UK
  • Interests:Photography and nature,music and movies.

Posted 28 December 2012 - 05:38 PM

Just tried to check out appinit_dll and i can't see anything dodgy there,but what do i know.
Here's a screenshot.
http://farm9.staticf...71fd912ea_c.jpg

#5 tetonbob

tetonbob

    Staff

  • Moderators
  • PipPipPipPipPip
  • 543 posts
  • Gender:Male

Posted 28 December 2012 - 07:44 PM

That image is a bit small, but looks like C:\Windows\system32\nvinitx.dll which is an NVidia file. Check the file's properties. Is it from NVidia? If so, it's not malware. I have this same file and same entry on one of my machines which uses NVidia graphics.
Bob Guryan
Product Support/Quality Assurance

staff.png

Follow us: Twitter, Become a fan: Facebook

#6 Quinny

Quinny

    Advanced Member

  • Honorary Members
  • PipPipPip
  • 196 posts
  • Gender:Male
  • Location:South Wales UK
  • Interests:Photography and nature,music and movies.

Posted 28 December 2012 - 08:06 PM

That image is a bit small, but looks like C:\Windows\system32\nvinitx.dll which is an NVidia file. Check the file's properties. Is it from NVidia? If so, it's not malware. I have this same file and same entry on one of my machines which uses NVidia graphics.


Not quite sure how to check properties on C:\Windows\system32\nvinitx.dll but i did find it in system32 and did a right click then chose properties,clicked details and it does say it's from NVIDIA CORPORATION.
So i hope thats the right procedure,so does this mean it's a FP? and will i always get this alert coming up every time i run mbar.

#7 tetonbob

tetonbob

    Staff

  • Moderators
  • PipPipPipPipPip
  • 543 posts
  • Gender:Male

Posted 28 December 2012 - 09:17 PM

Yes, that's the correct way to find properties.
It's not an FP, it's just that your entry is not malicious. MBAR detects and offers to remove any valuedata in AppInit_DLLs. If unsure, always click No. If it's malware that might have prevented MBAR from continuing or caused it to crash, that may happen after clicking No.
Bob Guryan
Product Support/Quality Assurance

staff.png

Follow us: Twitter, Become a fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users