| Line: |
Status: |
Comments: |
Actions: |
C:\WINDOWS\System32\smss.exe
More info about file smss.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\csrss.exe
More info about file csrss.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\winlogon.exe
More info about file winlogon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\services.exe
More info about file services.exe |
Legitimate |
In most of cases it is legitimate system process, only sometimes can be used by malicious software |
Change status |
C:\WINDOWS\system32\lsass.exe
More info about file lsass.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\Ati2evxx.exe
More info about file ati2evxx.exe |
Legitimate |
Item found in 2-spyware.com library
File ati2evxx.exe, which starts a process with the same name, is the standard component of video... |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Windows Defender\MsMpEng.exe
More info about file msmpeng.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Windows Defender program. |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\LEXBCES.EXE
More info about file lexbces.exe |
Legitimate |
Item found in 2-spyware.com library
This file is a component of MarkVision software, published by Lexmark International. This software... |
Change status |
C:\WINDOWS\system32\spoolsv.exe
More info about file spoolsv.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\LEXPPS.EXE
More info about file lexpps.exe |
Legitimate |
Item found in 2-spyware.com library
This file is related to Lexmark Printer Port Scanner utility, it is a standard component of the... |
Change status |
C:\WINDOWS\Explorer.EXE
More info about file explorer.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\SM1BG.EXE
More info about file sm1bg.exe |
Legitimate |
Item found in 2-spyware.com library
SM1bg.exe is the "Cypress USB Mass Storage Adapter" from "Cypress Semiconductor". It comes with... |
Change status |
C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
More info about file drgtodsc.exe |
Legitimate |
Item found in 2-spyware.com library
Roxio Drag To Disc. It is a special tool that allows to drag files on its system tray icon in order... |
Change status |
| C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
More info about file ctsysvol.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Ceative Technology software. |
Change status |
| C:\Program Files\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\LVCOMSX.EXE
More info about file lvcomsx.exe |
Legitimate |
Item found in 2-spyware.com library
File lvcomsx.exe is a part of Logitech drivers that enable support for QuickCam digital camera.... |
Change status |
| C:\Program Files\Dell AIO Printer A960\dlbfbmon.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Logitech\Video\LogiTray.exe
More info about file logitray.exe |
Legitimate |
Item found in 2-spyware.com library
A part of Logitech Image Studio. It is a tool that displays an icon in the system tray providing... |
Change status |
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
More info about file jusched.exe |
Legitimate |
Item found in 2-spyware.com library
Checks if there are new versions of Java available. |
Change status |
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
More info about file winpatrol.exe |
Legitimate |
Item found in 2-spyware.com library
Part of a Winpatrol program. |
Change status |
| C:\Program Files\CyberScrub AntiVirus\AvpM.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\CyberScrub AntiVirus\CAVSch.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\CTHELPER.EXE
More info about file cthelper.exe |
Legitimate |
Item found in 2-spyware.com library
Installed with Creative sound cards. Has been reported to use 100% CPU time.
CTHelper is a... |
Change status |
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
More info about file pdvdserv.exe |
Legitimate |
Item found in 2-spyware.com library
Related to some DVD playing programs like CyberLink PowerDVD. Provides support for the DVD drive's... |
Change status |
C:\Program Files\SiteAdvisor\4979\SiteAdv.exe
More info about file siteadv.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Site Advisor application. |
Change status |
C:\Program Files\Windows Defender\MSASCui.exe
More info about file msascui.exe |
Legitimate |
Item found in 2-spyware.com library
The file is component of Microsoft Windows Defender application. |
Change status |
C:\Program Files\iTunes\iTunesHelper.exe
More info about file ituneshelper.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Apple's iTunes for Windows. Located in "C:\Program Files\iTunes\". |
Change status |
| C:\WINDOWS\NCLAUNCH.EXe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Process found in system process library |
Change status |
| C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Logitech\Video\FxSvr2.exe
More info about file fxsvr2.exe |
Legitimate |
Item found in 2-spyware.com library
File fxsvr2.exe is related to Logitech drivers and additional tools. It runs background process,... |
Change status |
C:\WINDOWS\System32\CTsvcCDA.exe
More info about file ctsvccda.exe |
Legitimate |
Item found in 2-spyware.com library
Creative CD-ROM Services tool, started by ctsvccda.exe executable, is a common component of some... |
Change status |
| C:\Program Files\CyberScrub AntiVirus\AvpM.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
More info about file mdm.exe |
Legitimate |
Item found in 2-spyware.com library
mdm.exe is a system process - Machine Debug Manager. Used by developers. Located in "C:\PROGRAM... |
Change status |
| C:\Program Files\SiteAdvisor\4979\SAService.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\MsPMSPSv.exe
More info about file mspmspsv.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Windows Media Player. |
Change status |
C:\Program Files\iPod\bin\iPodService.exe
More info about file ipodservice.exe |
Legitimate |
Item found in 2-spyware.com library
This is a legitimate component of iTunes music program. It offers wide range of music playing and... |
Change status |
C:\WINDOWS\system32\wscntfy.exe
More info about file wscntfy.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\alg.exe
More info about file alg.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Internet Explorer\iexplore.exe
More info about file iexplore.exe |
Legitimate |
Process found in system process library |
Change status |
| C:\Program Files\CallingID\CallingIDGlobal.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
More info about file acrord32.exe |
Legitimate |
Item found in 2-spyware.com library
File acrord32.exe is an executable of Acrobat Reader program, which is used to view PDF documents.... |
Change status |
D:\New Folder\HijackThis.exe
More info about file hijackthis.exe |
Legitimate |
Item found in 2-spyware.com library
This is the main component of HijackThis security application, designed to perform system scans and... |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie |
Not necessary |
http://www.google.com/ie is your Search Bar.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com |
Not necessary |
http://www.google.com is your Search Page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ctsfw.edu/ |
Not necessary |
http://www.ctsfw.edu/ is your start page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=69157 is your Default Page URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=54896 is your Default Search URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=54896 is your Search Page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://members.aol.com/xrysostom/index.html |
Not necessary |
http://members.aol.com/xrysostom/index.html is your start page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie |
Not necessary |
http://www.google.com/ie is your Search Assistant.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie |
Not necessary |
.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie |
Not necessary |
http://www.google.com/ie is your search assistant.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s |
Not necessary |
http://www.google.com/search?q=%s is your default SearchURL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost |
Not necessary |
localhost overrides your Proxy Server.
If you do not like this fact, fix this item. |
Change status |
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
More info about file acroiehelper.dll |
Legitimate |
Application program item according to inner database
File related to Adobe Acrobat Reader program. |
Change status
|
| O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\4979\SiteAdv.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
Legitimate |
legitimate bho toolbar, related to SpyBot Search&Destroy |
Change status
|
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
More info about file ssv.dll |
Legitimate |
System item according to inner database
Related to Java Virtual Machine software, which is legitimate. |
Change status
|
| O2 - BHO: CallingID for IE - {FBF2401B-7447-4727-BE5D-C19B2075CA84} - C:\Program Files\CallingID\CallingIDIE.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\4979\SiteAdv.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O3 - Toolbar: CallingID - {10134636-E7AF-4AC5-A1DC-C7C44BB97D81} - C:\Program Files\CallingID\CallingIDIE.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe |
Legitimate |
A part of additional software installed alongside Logitech QuickCam drivers. |
Change status
|
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
More info about file updreg.exe |
Legitimate |
System item according to inner database
Reminder to register with Creative. Comes with some of Creatives sound cards. Located in... |
Change status
|
O4 - HKLM\..\Run: [SM1BG] C:\WINDOWS\SM1BG.EXE
More info about file sm1bg.exe |
Legitimate |
System item according to inner database
SM1bg.exe is the "Cypress USB Mass Storage Adapter" from "Cypress Semiconductor". It comes with... |
Change status
|
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"
More info about file drgtodsc.exe |
Legitimate |
Application program item according to inner database
Roxio Drag To Disc. It is a special tool that allows to drag files on its system tray icon in order... |
Change status
|
| O4 - HKLM\..\Run: [Dell AIO Printer A960] "C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe" |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
More info about file ctsysvol.exe |
Legitimate |
Application program item according to inner database
The file is related to Ceative Technology software. |
Change status
|
| O4 - HKLM\..\Run: [CTDVDDet] C:\Program Files\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE |
Questionable |
questionable item according to our database |
Change status
|
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
More info about file atiptaxx.exe |
Legitimate |
System item according to inner database
ATI Desktop Control Panel from ATI Technologies, Inc. Located in "C:\Program Files\ATI... |
Change status
|
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
More info about file lvcomsx.exe |
Legitimate |
Application program item according to inner database
File lvcomsx.exe is a part of Logitech drivers that enable support for QuickCam digital camera.... |
Change status
|
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
More info about file logitray.exe |
Legitimate |
Runs a part of Logitech Image Studio on Windows startup. This part is a tool that displays an icon in the system tray providing access to Logitech Image Studio diagnostics.
|
Change status
|
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
More info about file jusched.exe |
Legitimate |
Application program item according to inner database
Checks if there are new versions of Java available. |
Change status
|
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
More info about file winpatrol.exe |
Legitimate |
System item according to inner database
Part of a Winpatrol program. |
Change status
|
| O4 - HKLM\..\Run: [Kaspersky Anti-Virus Lite] C:\Program Files\CyberScrub AntiVirus\AvpM.exe |
Questionable |
questionable item according to our database |
Change status
|
| O4 - HKLM\..\Run: [CyberScrub AutoUpdate] C:\Program Files\CyberScrub AntiVirus\CAVSch.exe s |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
More info about file cthelper.exe |
Legitimate |
System item according to inner database
Installed with Creative sound cards. Has been reported to use 100% CPU time.
CTHelper is a... |
Change status
|
| O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
More info about file pdvdserv.exe |
Legitimate |
Application program item according to inner database
Related to some DVD playing programs like CyberLink PowerDVD. Provides support for the DVD drive's... |
Change status
|
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\4979\SiteAdv.exe
More info about file siteadv.exe |
Legitimate |
Application program item according to inner database
The file belongs to Site Advisor application. |
Change status
|
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
More info about file msascui.exe |
Legitimate |
Application program item according to inner database
The file is component of Microsoft Windows Defender application. |
Change status
|
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
More info about file ituneshelper.exe |
Legitimate |
Application program item according to inner database
Related to Apple's iTunes for Windows. Located in "C:\Program Files\iTunes\". |
Change status
|
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
More info about file manifestengine.exe |
Legitimate |
Application program item according to inner database
A tool installed alongside Logitech software for digital cameras. It updates this software... |
Change status
|
| O4 - HKCU\..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Application program item according to inner database
When you run a Microsoft Office XP or Microsoft Office 2003 program, the file Ctfmon.exe (Ctfmon)... |
Change status
|
| O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R |
Questionable |
questionable item according to our database |
Change status
|
| O4 - HKCU\..\Run: [Power2GoExpress] NA |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - Startup: spywareblaster.lnk = C:\Program Files\SpywareBlaster\spywareblaster.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
More info about file reader_sl.exe |
Legitimate |
A part of Adobe Acrobat Reader. Used to speed up the program's launch time. |
Change status
|
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
More info about file osa.exe |
Legitimate |
Application program item according to inner database
The Office Startup Assistant (Osa.exe or OSA) is a program that improves the performance of Office... |
Change status
|
| O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll |
Not necessary |
This item represents extra button in your IE toolbar without name and points to file 'C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name 'Sun Java Console' and points to file 'C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~3\tools\iesdpb.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Spyware Doctor' and points to file 'C:\PROGRA~1\SPYWAR~3\tools\iesdpb.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) |
Not necessary |
Fix this item because it points to a file that cannot be found |
Change status
|
| O9 - Extra ''Tools'' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) |
Not necessary |
Fix this item because it points to a file that cannot be found |
Change status
|
| O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Legitimate |
Legitimate extra button in your browser - related to windows messenger. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Legitimate |
Legitimate extra tools menu item - related to Windows Messenger. |
Change status
|
| O11 - Options group: [INTERNATIONAL] International* |
Questionable |
This item represents a group added to Advanced Options tab in IE Tools > Internet Options menu. Should the item called "INTERNATIONAL" be there? If not, fix it. |
Change status
|
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall
.info.apple.com/qtactivex/qtplugin.cab |
Questionable |
Are you using an ActiveX object with a name 'QuickTime Object' located in 'http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall
.info.apple.com/qtactivex/qtplugin.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab |
Questionable |
Are you using an ActiveX object with a name 'Creative Software AutoUpdate' located in 'http://www.creative.com/su/ocx/15026/CTSUEng.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/download/ipixx.cab |
Questionable |
Are you using an ActiveX object with a name 'iPIX ActiveX Control' located in 'http://www.ipix.com/download/ipixx.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab |
Questionable |
Are you using an ActiveX object with a name 'LSSupCtl Class' located in 'https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.microsoft.com/OAS/ActiveX/odc.cab |
Questionable |
Are you using an ActiveX object with a name 'Microsoft PID Sniffer' located in 'https://support.microsoft.com/OAS/ActiveX/odc.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {498A0AC2-A3AC-11D4-80A9-0050DA680987} (HearMe (Firewall) Voice Control) - http://cu-hearme.com/hmvcfe.cab |
Questionable |
Are you using an ActiveX object with a name 'HearMe (Firewall' located in 'http://cu-hearme.com/hmvcfe.cab'? If not, fix this item. |
Change status
|
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls
/en/x86/client/wuweb_site.cab?1120029765000 |
Legitimate |
Legitimate ActiveX item from site http://update.microsoft.com/ |
Change status
|
| O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab |
Legitimate |
Legitimate ActiveX item from site http://security.symantec.com/ |
Change status
|
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls
/en/x86/client/muweb_site.cab?1123139871265 |
Legitimate |
Legitimate ActiveX item from site http://update.microsoft.com/ |
Change status
|
| O16 - DPF: {9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} (Microsoft Terminal Services Client Control (redist)) - http://194.151.76.236/WebWTS/msrdp.cab |
Questionable |
Are you using an ActiveX object with a name 'Microsoft Terminal Services Client Control (redist' located in 'http://194.151.76.236/WebWTS/msrdp.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader3.cab |
Questionable |
Are you using an ActiveX object with a name 'Aurigma Image Uploader 3.5 Control' located in 'http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader3.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab |
Legitimate |
Legitimate ActiveX item from site http://messenger.msn.com/ |
Change status
|
| O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/suite/yautocomplete.cab |
Questionable |
Are you using an ActiveX object with no name located in 'http://us.dl1.yimg.com/download.yahoo.com/dl/installs/suite/yautocomplete.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab |
Questionable |
Are you using an ActiveX object with a name 'ActiveDataInfo Class' located in 'https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/techsupp/activedata/ActiveData.cab |
Questionable |
Are you using an ActiveX object with a name 'ActiveDataObj Class' located in 'https://www-secure.symantec.com/techsupp/activedata/ActiveData.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.hema.nl/SITE/xupload/XUpload.ocx |
Questionable |
Are you using an ActiveX object with a name 'Persits Software XUpload' located in 'http://www.hema.nl/SITE/xupload/XUpload.ocx'? If not, fix this item. |
Change status
|
| O16 - DPF: {ED28050F-D713-43BA-A376-DCC5C35407D5} (MsnMusicAx Class) - http://entimg.msn.com/client/msnmusax2822.cab |
Questionable |
Are you using an ActiveX object with a name 'MsnMusicAx Class' located in 'http://entimg.msn.com/client/msnmusax2822.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15026/CTPID.cab |
Questionable |
Are you using an ActiveX object with a name 'Creative Software AutoUpdate Support Package' located in 'http://www.creative.com/su/ocx/15026/CTPID.cab'? If not, fix this item. |
Change status
|
| O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "livecall" and file "C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL". |
Change status
|
| O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "msnim" and file "C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL". |
Change status
|
| O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\4979\SiteAdv.dll |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "siteadvisor" and file "C:\Program Files\SiteAdvisor\4979\SiteAdv.dll". |
Change status
|
| O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll |
Legitimate |
windows check |
Change status
|
| O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll |
Legitimate |
The file belongs to WMP11 Beta application. |
Change status
|
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
More info about file ati2evxx.exe |
Legitimate |
Item found in 2-spyware.com database.
File ati2evxx.exe, which starts a process with the same name, is the standard component of video... |
Change status
|
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
More info about file ctsvccda.exe |
Legitimate |
Item found in 2-spyware.com database.
Creative CD-ROM Services tool, started by ctsvccda.exe executable, is a common component of some... |
Change status
|
| O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe |
Legitimate |
Related to Macrovision Corporation. |
Change status
|
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
More info about file ipodservice.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a legitimate component of iTunes music program. It offers wide range of music playing and... |
Change status
|
| O23 - Service: KAV Monitor Service (KAVMonitorService) - Unknown owner - C:\Program Files\CyberScrub AntiVirus\AvpM.exe" /service (file missing) |
Not necessary |
Fix this item because it points to a file that does not exist |
Change status
|
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
More info about file lexbces.exe |
Legitimate |
Item found in 2-spyware.com database.
This file is a component of MarkVision software, published by Lexmark International. This software... |
Change status
|
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
More info about file sdhelp.exe |
Legitimate |
Item found in 2-spyware.com database.
A part of Spyware Doctor, a popular legitimate anti-spyware... |
Change status
|
| O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\4979\SAService.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: spkrmon - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe |
Legitimate |
SoundMAX SpeakerMonitor service |
Change status
|
|
Follow us 
|
Like us 
(91/100)
(89/100)
(84/100)
