I’ve checked and it’s a legitimate file running out of System32 folder, but so many people I know on Windows 7 are saying it’s not there for them.

Virus Total Upload: https://www.virustotal.com/en/file/f6b4d18fa0d3c4958711ac0d476c21a6fdf2897f989a0ad290b43f463dd8b5b0/analysis/1406677491/

In VT … click the file detail button … see info
Then click…additional info and scroll down to first submission

What am I looking for, I’m confused.

a 5 year old file should be detected now if it was malware … or?

First submission 2009-07-18 08:55:57 UTC ( 5 years ago )

Copyright© Microsoft Corporation. All rights reserved. Publisher Microsoft Windows Product Microsoft® Windows® Operating System Original name WinInit.exe.mui Internal name WinInit File version 6.1.7600.16385 (win7_rtm.090713-1255) Description Windows Start-Up Application Signature verification Signed file, verified signature Signing date 4:17 AM 7/14/2009 Signers [+] Microsoft Windows [+] Microsoft Windows Verification PCA [+] Microsoft Root Certificate Authority Counter signers [+] Microsoft Time-Stamp Service [+] Microsoft Time-Stamp PCA [+] Microsoft Root Certificate Authority

Good point, I don’t know why I thought it wasn’t, just my friend told me they didn’t see it running, but I had them click “Show processes from all users” and it was there for them.