Autostart (technique)

This is a Windows function that allows applications, such as messaging clients, to immediately launch upon startup. Users can control this through a check box upon installation, or on system settings which uses the MSConfig command. However, malicious routines with rootkit capabilities can also use the AutoStart technique to launch malware by making it appear legitimate. The malware family TDSS, also known as Tidserv, TDSServ, and Alureon, uses the AutoStart technique to automatically execute malicious files at system startup.