I recently decided to try the free version of Malwarebytes Anti Malware program as I had heard great things about it. I scanned and it found an infected file in registry with the vendor as Broken.OpenCommand. I deleted it but does anyone anything about it? Also this is first time I have scanned and seen where the antivirus says a registry file is infected.
Now I to be honest with you guys I’ve scanned and seen where they say a file in the memory is infected or a regular file is infected and in a sense I kind of know what is going on there but I honestly have no clue as to what the registry does or what may happen if a file in it is infected. Like, if it is infected how does it go about wreaking havoc on the pc? I understand with when a regular file gets infected with a malware it usually downloads another program that then runs as a process and then start madness so is that the same with the registry?
Thanks in advance for any advice that you guys can send my way.
Here is some info about the windows registry. Some malware that embed themselves leave remnants of themselves in registry like any other application does. Sometimes the malware checks to see if its entry is in the registry to tell it if it should reinfect the PC or not. Like other Windows programs, the registry usually points to a file on the PC (in this case the malware file). The malicious reg keys may embed themselves in registry locations like your web browser so they can run when your browser runs or maybe they’ll add themselves to the windows start up key so they start on every reboot. The possibilities are endless.
In short, they should be removed like every other malware file.
Thank you, looking on the malwarebytes site I noticed the date it was first seen and it was about a few weeks from that date I happened to have gotten infected with a malware. So, maybe you are correct in it being a leftover of a past infection.