| Line: |
Status: |
Comments: |
Actions: |
C:\WINDOWS\System32\smss.exe
More info about file smss.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\winlogon.exe
More info about file winlogon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\services.exe
More info about file services.exe |
Legitimate |
In most of cases it is legitimate system process, only sometimes can be used by malicious software |
Change status |
C:\WINDOWS\system32\lsass.exe
More info about file lsass.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
More info about file ccsetmgr.exe |
Legitimate |
Item found in 2-spyware.com library
An essential component of security-related Symantec software such as Norton AntiVirus and Norton... |
Change status |
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
More info about file sndsrvc.exe |
Legitimate |
Item found in 2-spyware.com library
This is a part of Norton Internet Security and Norton Personal Firewall applications. It runs... |
Change status |
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
More info about file spbbcsvc.exe |
Legitimate |
Item found in 2-spyware.com library
Essential component of Symantec's Norton Internet Security suite. |
Change status |
C:\WINDOWS\Explorer.EXE
More info about file explorer.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
More info about file ccevtmgr.exe |
Legitimate |
Item found in 2-spyware.com library
ccEvtMgr.exe is an event logging application and runs at startup. It monitors virus alerts, virus... |
Change status |
C:\WINDOWS\system32\spoolsv.exe
More info about file spoolsv.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
More info about file aluschedulersvc.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Symantec anti-virus software. |
Change status |
| C:\Program Files\Digidesign\Drivers\MMERefresh.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
More info about file eebsvc.exe |
Legitimate |
Item found in 2-spyware.com library
Executable eEBSvc.exe is related to Epson printer drivers and additional management tools. It is... |
Change status |
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
More info about file sagent2.exe |
Legitimate |
Item found in 2-spyware.com library
Epson Printer Status Agent. Located in "C:\Program Files\Common Files\EPSON\EBAPI\". |
Change status |
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
More info about file mdm.exe |
Legitimate |
Item found in 2-spyware.com library
mdm.exe is a system process - Machine Debug Manager. Used by developers. Located in "C:\PROGRAM... |
Change status |
C:\Program Files\Norton AntiVirus\navapsvc.exe
More info about file navapsvc.exe |
Legitimate |
Item found in 2-spyware.com library
Norton AntiVirus application that provides auto-protection of the system. NAVAPSVC.EXE runs on... |
Change status |
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
More info about file npfmntor.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Norton Antivirus program. |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
More info about file symlcsvc.exe |
Legitimate |
Item found in 2-spyware.com library
An essential component of security-related Symantec software such as Norton AntiVirus and Norton... |
Change status |
C:\WINDOWS\wanmpsvc.exe
More info about file wanmpsvc.exe |
Legitimate |
Item found in 2-spyware.com library
File wanmpsvc.exe is a standard component of AOL 7.0 software and its later versions. It runs... |
Change status |
C:\WINDOWS\system32\mssearchnet.exe
More info about file mssearchnet.exe |
Dangerous |
Item found in 2-spyware.com library
mssearchnet.exe is an executable file that is responsible for launching parasites, loading main... |
Change status |
C:\WINDOWS\system32\nvctrl.exe
More info about file nvctrl.exe |
Dangerous |
Item found in 2-spyware.com library
nvctrl.exe is an executable file that is responsible for launching parasites, loading main... |
Change status |
C:\WINDOWS\htpatch.exe
More info about file htpatch.exe |
Legitimate |
Item found in 2-spyware.com library
This file is related to Htpatch - it is a specific software, published by Silicion Integrated... |
Change status |
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
More info about file atiptaxx.exe |
Legitimate |
Item found in 2-spyware.com library
ATI Desktop Control Panel from ATI Technologies, Inc. Located in "C:\Program Files\ATI... |
Change status |
C:\WINDOWS\Dit.exe
More info about file dit.exe |
Legitimate |
Item found in 2-spyware.com library
Drive Icon and Label utility, represented by running dit.exe file, is a specific component of the... |
Change status |
C:\WINDOWS\SOUNDMAN.EXE
More info about file soundman.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Realtek Avance Logic soundcards. SOUNDMAN.EXE provides system tray access to a varity of... |
Change status |
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
More info about file drgtodsc.exe |
Legitimate |
Item found in 2-spyware.com library
Roxio Drag To Disc. It is a special tool that allows to drag files on its system tray icon in order... |
Change status |
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
More info about file rxmon.exe |
Legitimate |
Item found in 2-spyware.com library
File rxmon.exe is a part of Roxio Easy CD & DVD Creator suite. It is required by this software to... |
Change status |
| C:\FlashEnc\FlashEnc.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\DitExp.exe
More info about file ditexp.exe |
Legitimate |
Item found in 2-spyware.com library
Executable file ditexp.exe is included in device drivers, which support some flash memory cards... |
Change status |
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
More info about file dragdiag.exe |
Legitimate |
Item found in 2-spyware.com library
System tray icon for Alcatel’s ADSL modems. |
Change status |
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
More info about file ccapp.exe |
Legitimate |
Item found in 2-spyware.com library
From Symantec: "ccApp.exe is the common hosting application that is used for both NAV and NIS.... |
Change status |
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
More info about file playlist.exe |
Legitimate |
Item found in 2-spyware.com library
This is a part of Roxio Easy CD & DVD Creator. It is used to run Playlist application, which helps... |
Change status |
C:\Program Files\QuickTime\qttask.exe
More info about file qttask.exe |
Legitimate |
Item found in 2-spyware.com library
Provides system tray access to Apple's Quicktime Player. Located in "C:\Program Files\QuickTime\".... |
Change status |
C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\MSN Messenger\msnmsgr.exe
More info about file msnmsgr.exe |
Legitimate |
Item found in 2-spyware.com library
Microsoft Windows Messenger chat client. |
Change status |
C:\Program Files\Outlook Express\msimn.exe
More info about file msimn.exe |
Legitimate |
Item found in 2-spyware.com library
This is the most significant component of Microsoft Outlook Express mail client. It is responsible... |
Change status |
C:\Program Files\Internet Explorer\iexplore.exe
More info about file iexplore.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\regedit.exe
More info about file regedit.exe |
Legitimate |
Item found in 2-spyware.com library
From Microsoft: "Regedit.exe is the registration editor for 16-bit Windows. It is used tomodify... |
Change status |
| C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10MT2.EXE |
Unknown |
No exact entries found |
Insert file into database
|
| C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10RN2.EXE |
Unknown |
No exact entries found |
Insert file into database
|
C:\DOCUME~1\GARYA~1\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe
More info about file hijackthis.exe |
Legitimate |
Item found in 2-spyware.com library
This is the main component of HijackThis security application, designed to perform system scans and... |
Change status |
C:\Program Files\Messenger\msmsgs.exe
More info about file msmsgs.exe |
Legitimate |
Item found in 2-spyware.com library
Windows Messenger from Microsoft. Located in "C:\Program Files\Messenger\". If you don't use... |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://findloss.com/home.html |
Not necessary |
http://findloss.com/home.html is your Default Search URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch |
Not necessary |
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch is your Search Page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.freeserve.com/ |
Not necessary |
http://www.freeserve.com/ is your Default Page URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://findloss.com/home.html |
Not necessary |
http://findloss.com/home.html is your Default Search URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://findloss.com/srchasst.html |
Not necessary |
http://findloss.com/srchasst.html is your Search Bar.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://findloss.com/home.html |
Not necessary |
http://findloss.com/home.html is your Search Page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.best-counter.com |
Not necessary |
http://www.best-counter.com is your start page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://findloss.com/srchasst.html |
Not necessary |
ttp://findloss.com/srchasst.html is your Customize Search.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Search,(Default) = http://findloss.com/srchasst.html |
Not necessary |
.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.zpecialoffer.com/indexie.html |
Not necessary |
http://www.zpecialoffer.com/indexie.html is your search assistant.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://findloss.com/srchasst.html |
Not necessary |
http://findloss.com/srchasst.html is your customize search.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Search,(Default) = http://findloss.com/srchasst.html |
Not necessary |
.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.zpecialoffer.com/results.asp?keyword=%s |
Not necessary |
http://www.zpecialoffer.com/results.asp?keyword=%s is your default SearchURL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = http://www.gaysbase.com/ |
Not necessary |
http://www.gaysbase.com/ is your Home Old SP.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Freeserve |
Not necessary |
Microsoft Internet Explorer provided by Freeserve is the title in your Internet Explorer window.
If you do not like this fact, fix this item. |
Change status |
| R3 - Default URLSearchHook is missing |
Not necessary |
Fix this item because it points to nowhere |
Change status |
| O1 - Hosts: 66.197.100.83 auto.search.msn.com |
Questionable |
Do you want an URL address "auto.search.msn.com" to be redirected to "66.197.100.83" when you type it? If not, then fix this |
|
| O2 - BHO: Nothing - {8d83b16e-0de1-452b-ac52-96ec0b34aa4b} - C:\WINDOWS\system32\hp2025.tmp |
Unknown |
No exact entries found |
Insert file into database
|
| O3 - Toolbar: Freeserve - {8B68564D-53FD-4293-B80C-993A9F3988EE} - C:\PROGRA~1\FREESE~1\FSBar\FSBar.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-gb\msntb.dll (file missing) |
Not necessary |
Fix this item, because it points to file that cannot be found |
Change status
|
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
More info about file navshext.dll |
Legitimate |
Application program item according to inner database
Component of Norton Anti-virus. Located in "C:\Program Files\Norton AntiVirus\". Uses... |
Change status
|
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
More info about file htpatch.exe |
Legitimate |
System item according to inner database
This file is related to Htpatch - it is a specific software, published by Silicion Integrated... |
Change status
|
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
More info about file atiptaxx.exe |
Legitimate |
System item according to inner database
ATI Desktop Control Panel from ATI Technologies, Inc. Located in "C:\Program Files\ATI... |
Change status
|
O4 - HKLM\..\Run: [Dit] Dit.exe
More info about file dit.exe |
Legitimate |
System item according to inner database
Drive Icon and Label utility, represented by running dit.exe file, is a specific component of the... |
Change status
|
| O4 - HKLM\..\Run: [VOBRegCheck] C:\WINDOWS\System32\VOBREGCheck.exe -CheckReg |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
More info about file soundman.exe |
Legitimate |
System item according to inner database
Related to Realtek Avance Logic soundcards. SOUNDMAN.EXE provides system tray access to a varity of... |
Change status
|
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
More info about file regshave.exe |
Legitimate |
Application program item according to inner database
REGSHAVE.EXE cleans up some registry entries after or before installation of software from Fuji.... |
Change status
|
| O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe" |
Questionable |
questionable item according to our database |
Change status
|
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
More info about file drgtodsc.exe |
Legitimate |
Application program item according to inner database
Roxio Drag To Disc. It is a special tool that allows to drag files on its system tray icon in order... |
Change status
|
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
More info about file rxmon.exe |
Legitimate |
Application program item according to inner database
File rxmon.exe is a part of Roxio Easy CD & DVD Creator suite. It is required by this software to... |
Change status
|
| O4 - HKLM\..\Run: [FlashEnc] c:\FlashEnc\FlashEnc.exe |
Questionable |
questionable item according to our database |
Change status
|
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
More info about file dragdiag.exe |
Legitimate |
System item according to inner database
System tray icon for Alcatel’s ADSL modems. |
Change status
|
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
More info about file sndmon.exe |
Legitimate |
Application program item according to inner database
This is the main part of LiveUpdate tool, published by Symantec. It is required to update all... |
Change status
|
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
More info about file ccapp.exe |
Legitimate |
System item according to inner database
From Symantec: <i>"ccApp.exe is the common hosting application that is used for both NAV and NIS.... |
Change status
|
| O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files\Digidesign\Drivers\MMERefresh.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
More info about file qttask.exe |
Legitimate |
Application program item according to inner database
Provides system tray access to Apple's Quicktime Player. Located in "C:\Program Files\QuickTime\".... |
Change status
|
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Application program item according to inner database
When you run a Microsoft Office XP or Microsoft Office 2003 program, the file Ctfmon.exe (Ctfmon)... |
Change status
|
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
More info about file msnmsgr.exe |
Legitimate |
System item according to inner database
Microsoft Windows Messenger chat client. |
Change status
|
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
More info about file adobe gamma loader.exe |
Legitimate |
Application program item according to inner database
From adobe: "The Adobe Gamma Control Panel is used to eliminate color casts in a monitor's display.... |
Change status
|
| O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html |
Not necessary |
Do you want item 'Backward Links' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item. |
Change status
|
| O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html |
Not necessary |
Do you want item 'Cached Snapshot of Page' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item. |
Change status
|
| O8 - Extra context menu item: Search with Freeserve - res://C:\PROGRA~1\FREESE~1\FSBar\FSBar.dll/VSearch.htm |
Not necessary |
Do you want item 'Search with Freeserve' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item. |
Change status
|
| O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html |
Not necessary |
Do you want item 'Similar Pages' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item. |
Change status
|
| O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html |
Not necessary |
Do you want item 'Translate Page into English' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item. |
Change status
|
| O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Real.com' and points to file 'C:\WINDOWS\System32\Shdocvw.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Money Viewer - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Money Viewer' and points to file 'C:\Program Files\Microsoft Money\System\mnyside.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Messenger' and points to file 'C:\Program Files\Messenger\msmsgs.exe'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name 'Windows Messenger' and points to file 'C:\Program Files\Messenger\msmsgs.exe'. If you do not want it to be there, fix this item. |
Change status
|
| O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll |
Legitimate |
This item represents a plugin added to Internet Explorer to work with '.spop' files. Seems to be safe, unless you know that it is malicious. |
Change status
|
| O14 - IERESET.INF: START_PAGE_URL=http://www.freeserve.com/ |
Questionable |
This item changes your "default" Start page in IE. It will appear if you Restore default web settings. If you are an administrator and you do not recognize address "", fix this item. |
Change status
|
| O15 - Trusted Zone: *.blazefind.com |
Questionable |
Do you want URL pattern "*.blazefind.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.clickspring.net |
Questionable |
Do you want URL pattern "*.clickspring.net" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.flingstone.com |
Questionable |
Do you want URL pattern "*.flingstone.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.mt-download.com |
Questionable |
Do you want URL pattern "*.mt-download.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.my-internet.info |
Questionable |
Do you want URL pattern "*.my-internet.info" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.searchbarcash.com |
Questionable |
Do you want URL pattern "*.searchbarcash.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.searchmiracle.com |
Questionable |
Do you want URL pattern "*.searchmiracle.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.skoobidoo.com |
Questionable |
Do you want URL pattern "*.skoobidoo.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.slotch.com |
Questionable |
Do you want URL pattern "*.slotch.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.xxxtoolbar.com |
Questionable |
Do you want URL pattern "*.xxxtoolbar.com" to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.blazefind.com (HKLM) |
Questionable |
Do you want URL pattern "*.blazefind.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.clickspring.net (HKLM) |
Questionable |
Do you want URL pattern "*.clickspring.net " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.flingstone.com (HKLM) |
Questionable |
Do you want URL pattern "*.flingstone.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.mt-download.com (HKLM) |
Questionable |
Do you want URL pattern "*.mt-download.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.my-internet.info (HKLM) |
Questionable |
Do you want URL pattern "*.my-internet.info " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.searchbarcash.com (HKLM) |
Questionable |
Do you want URL pattern "*.searchbarcash.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.searchmiracle.com (HKLM) |
Questionable |
Do you want URL pattern "*.searchmiracle.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.skoobidoo.com (HKLM) |
Questionable |
Do you want URL pattern "*.skoobidoo.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.slotch.com (HKLM) |
Questionable |
Do you want URL pattern "*.slotch.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted Zone: *.xxxtoolbar.com (HKLM) |
Questionable |
Do you want URL pattern "*.xxxtoolbar.com " to be in your trusted zone of IE? If not, fix this item. |
Change status
|
| O15 - Trusted IP range: 64.127.104.144 (HKLM) |
Questionable |
Do you want URL pattern "64.127.104.144 " to be in your trusted IP addresses range of IE? If not, fix this item. |
Change status
|
| O15 - ProtocolDefaults: ''http'' protocol is in Trusted Zone, should be Internet Zone (HKLM) |
Questionable |
Are you an administrator and you haven't changed settings for this protocol? Then fix this item and it will be restored to defaults. |
Change status
|
| O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab |
Questionable |
Are you using an ActiveX object with a name 'Checkers Class' located in 'http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {0B682CC1-FB40-4006-A5DD-99EDD3C9095D} (vbiewer control) - http://www.thepaymentcentre.com/build/vbiewer.cab |
Questionable |
Are you using an ActiveX object with a name 'vbiewer control' located in 'http://www.thepaymentcentre.com/build/vbiewer.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/WebsiteAccess/ie/Bridge-c139.cab |
Questionable |
Are you using an ActiveX object with no name located in 'http://static.windupdates.com/cab/WebsiteAccess/ie/Bridge-c139.cab'? If not, fix this item. |
Change status
|
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts
/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab |
Questionable |
Are you using an ActiveX object with no name located in 'http://ak.exe.imgfarm.com/images/nocache/funwebproducts
/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab |
Questionable |
Are you using an ActiveX object with a name 'MessengerStatsClient Class' located in 'http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab'? If not, fix this item. |
Change status
|
| O17 - HKLM\System\CCS\Services\Tcpip\..\{D96F1292-7D49-4C90-A019-1EF17C9EB389}: NameServer = 62.241.163.200 62.241.162.201 |
Questionable |
Do you recognize these IP addresses '62.241.163.200 62.241.162.201' as your internet provider DNS servers? If not, fix this item. |
Change status
|
| O19 - User stylesheet: c:\windows\system.css |
Questionable |
Have you defined your IE stylesheet in file "c:\windows\system.css"? If not, fix this item, otherwise you may get a lot of annoying popups. |
Change status
|
| O21 - SSODL: System - {93797D19-C47F-4BA6-891B-BC48DDA849F6} - C:\WINDOWS\system32\system32.dll |
Dangerous |
Related to Troj/LdPinch |
Change status
|
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
More info about file aluschedulersvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to Symantec anti-virus... |
Change status
|
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
More info about file ccevtmgr.exe |
Legitimate |
Item found in 2-spyware.com database.
ccEvtMgr.exe is an event logging application and runs at startup. It monitors virus alerts, virus... |
Change status
|
| O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe |
Legitimate |
Related to Norton/Symantec AntiVirus. |
Change status
|
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
More info about file ccsetmgr.exe |
Legitimate |
Item found in 2-spyware.com database.
An essential component of security-related Symantec software such as Norton AntiVirus and Norton... |
Change status
|
| O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Digidesign, A Division of Avid Technology, Inc. - C:\Program Files\Digidesign\Drivers\MMERefresh.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
More info about file eebsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Executable eEBSvc.exe is related to Epson printer drivers and additional management tools. It is... |
Change status
|
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
More info about file sagent2.exe |
Legitimate |
Item found in 2-spyware.com database.
Epson Printer Status Agent. Located in "C:\Program Files\Common... |
Change status
|
| O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe |
Legitimate |
Related to Macrovision Corporation. |
Change status
|
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
More info about file ipodservice.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a legitimate component of iTunes music program. It offers wide range of music playing and... |
Change status
|
| O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe |
Legitimate |
Related to Macromedia products: Flash, Dreamweaver, etc. |
Change status
|
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
More info about file navapsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Norton AntiVirus application that provides auto-protection of the system. NAVAPSVC.EXE runs on... |
Change status
|
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
More info about file npfmntor.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to Norton Antivirus... |
Change status
|
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
More info about file savscan.exe |
Legitimate |
Item found in 2-spyware.com database.
This executable file is a standard part of antivirus and security-related software, published by... |
Change status
|
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
More info about file sbserv.exe |
Legitimate |
Item found in 2-spyware.com database.
Part of Norton Anti-virus. SBServ.exe is located in "C:\Program Files\Common Files\Symantec... |
Change status
|
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
More info about file sndsrvc.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a part of Norton Internet Security and Norton Personal Firewall applications. It runs... |
Change status
|
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
More info about file spbbcsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Essential component of Symantec's Norton Internet Security... |
Change status
|
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
More info about file symlcsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
An essential component of security-related Symantec software such as Norton AntiVirus and Norton... |
Change status
|
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
More info about file symwsc.exe |
Legitimate |
Item found in 2-spyware.com database.
File symwsc.exe is included in Norton Antivirus program. It runs background process, which... |
Change status
|
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
More info about file wanmpsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
File wanmpsvc.exe is a standard component of AOL 7.0 software and its later versions. It runs... |
Change status
|
| O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe |
Legitimate |
X10 video streaming devices. This program is non-essential process to the running of the system, but should not be terminated unless suspected to be causing problems |
Change status
|
|
Follow us 
|
Like us 
(91/100)
(89/100)
(84/100)
