| Line: |
Status: |
Comments: |
Actions: |
C:\WINDOWS\System32\smss.exe
More info about file smss.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\winlogon.exe
More info about file winlogon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\services.exe
More info about file services.exe |
Legitimate |
In most of cases it is legitimate system process, only sometimes can be used by malicious software |
Change status |
C:\WINDOWS\system32\lsass.exe
More info about file lsass.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
More info about file evteng.exe |
Legitimate |
Item found in 2-spyware.com library
Intel EvtEng Module. Provides additional support for installed Intel wireless hardware. |
Change status |
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
More info about file s24evmon.exe |
Legitimate |
Item found in 2-spyware.com library
Related to special software required by Intel wireless hardware. It allows to configure and... |
Change status |
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
More info about file zcfgsvc.exe |
Legitimate |
Item found in 2-spyware.com library
A part of Intel wireless hardware drivers. Allows to monitor and configure the wireless connection. |
Change status |
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
More info about file wlkeeper.exe |
Legitimate |
Item found in 2-spyware.com library
Related to special software bundled alongside Intel wireless hardware. |
Change status |
C:\WINDOWS\Explorer.EXE
More info about file explorer.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\LEXBCES.EXE
More info about file lexbces.exe |
Legitimate |
Item found in 2-spyware.com library
This file is a component of MarkVision software, published by Lexmark International. This software... |
Change status |
C:\WINDOWS\system32\spoolsv.exe
More info about file spoolsv.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\LEXPPS.EXE
More info about file lexpps.exe |
Legitimate |
Item found in 2-spyware.com library
This file is related to Lexmark Printer Port Scanner utility, it is a standard component of the... |
Change status |
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
More info about file 1xconfig.exe |
Legitimate |
Item found in 2-spyware.com library
This is a part of the drivers for USB devices. It also is related to special monitoring and... |
Change status |
C:\WINDOWS\eHome\ehRecvr.exe
More info about file ehrecvr.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Windows XP Media Center application. |
Change status |
C:\WINDOWS\eHome\ehSched.exe
More info about file ehsched.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Windows XP Media Center application. |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
| C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\McAfee\MSC\mclogsrv.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| c:\program files\common files\mcafee\mna\mcnasvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\McAfee\MSC\mcpromgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe |
Unknown |
No exact entries found |
Insert file into database
|
| c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
More info about file mcshield.exe |
Legitimate |
Item found in 2-spyware.com library
Process mcshield.exe usually starts automatically on system's startup and stays in background. It... |
Change status |
| C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\PROGRA~1\McAfee\MSC\mctskshd.exe
More info about file mctskshd.exe |
Legitimate |
Item found in 2-spyware.com library
This is a part of McAfee Antivirus software. |
Change status |
| C:\PROGRA~1\McAfee\MSC\mcusrmgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\McAfee\MPF\MPFSrv.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\McAfee\MSK\MskSrver.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
More info about file nicconfigsvc.exe |
Legitimate |
Item found in 2-spyware.com library
Related to special power management software for network adapters on Dell computers. |
Change status |
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
More info about file regsrvc.exe |
Legitimate |
Item found in 2-spyware.com library
Essential part of Intel wireless hardware drivers |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\PROGRA~1\McAfee\MPS\mps.exe
More info about file mps.exe |
Dangerous |
Item found in 2-spyware.com library
mps.exe is an executable file that is responsible for launching parasites, loading main components... |
Change status |
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
More info about file mcagent.exe |
Legitimate |
Item found in 2-spyware.com library
Part of McAfee Anti-Virus. Located in "c:\Program Files\mcafee.com\agent\". |
Change status |
C:\WINDOWS\system32\dllhost.exe
More info about file dllhost.exe |
Legitimate |
Process found in system process library |
Change status |
| C:\Program Files\McAfee\MPS\mpsevh.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Common Files\AOL\1142372141\ee\AOLSoftware.exe
More info about file aolsoftware.exe |
Legitimate |
Item found in 2-spyware.com library
Related to legitimate America Online software |
Change status |
C:\Program Files\McAfee\MSK\MskAgent.exe
More info about file mskagent.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to McAfee SpamKiller application. |
Change status |
| C:\Program Files\Windows Media Player\WMPNSCFG.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Mozilla Firefox\firefox.exe
More info about file firefox.exe |
Legitimate |
Item found in 2-spyware.com library
File firefox.exe launches Mozilla Firefox web browser, implements user interface and controls all... |
Change status |
C:\Documents and Settings\~Lisa~\Desktop\HijackThis.exe
More info about file hijackthis.exe |
Legitimate |
Item found in 2-spyware.com library
This is the main component of HijackThis security application, designed to perform system scans and... |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb |
Not necessary |
http://search.bearshare.com/sidebar.html?src=ssb is your Search Assistant.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb |
Not necessary |
http://search.bearshare.com/sidebar.html?src=ssb is your Search Bar.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.bearshare.com/ |
Not necessary |
http://google.bearshare.com/ is your start page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=69157 is your Default Page URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=54896 is your Default Search URL.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=69157 is your start page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = |
Not necessary |
Fix this item because it points to nowhere |
Change status |
| R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0 |
Not necessary |
:0 is your Proxy Server.
If you do not like this fact, fix this item. |
Change status |
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
More info about file acroiehelper.dll |
Legitimate |
Application program item according to inner database
File related to Adobe Acrobat Reader program. |
Change status
|
| O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL |
Unknown |
No exact entries found |
Insert file into database
|
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
More info about file ssv.dll |
Legitimate |
System item according to inner database
Related to Java Virtual Machine software, which is legitimate. |
Change status
|
| O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O2 - BHO: McAfee Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - c:\program files\mcafee\mps\mcpopup.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O2 - BHO: GoogleAFE - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\Program Files\GoogleAFE\GoogleAE.dll |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1142372141\ee\AOLSoftware.exe
More info about file aolsoftware.exe |
Legitimate |
Application program item according to inner database
Related to legitimate America Online software |
Change status
|
O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
More info about file mskagent.exe |
Legitimate |
Application program item according to inner database
The file is related to McAfee SpamKiller application. |
Change status
|
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
More info about file ccleaner.exe |
Legitimate |
Application program item according to inner database
The file belongs to CCleaner application. |
Change status
|
| O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
More info about file reader_sl.exe |
Legitimate |
A part of Adobe Acrobat Reader. Used to speed up the program's launch time. |
Change status
|
| O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll |
Not necessary |
This item represents extra button in your IE toolbar without name and points to file 'C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name 'Sun Java Console' and points to file 'C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Real.com' and points to file 'C:\WINDOWS\system32\Shdocvw.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Legitimate |
Legitimate extra button in your browser - related to windows messenger. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe |
Legitimate |
Legitimate extra tools menu item - related to Windows Messenger. |
Change status
|
| O11 - Options group: [INTERNATIONAL] International* |
Questionable |
This item represents a group added to Advanced Options tab in IE Tools > Internet Options menu. Should the item called "INTERNATIONAL" be there? If not, fix it. |
Change status
|
| O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab |
Legitimate |
Legitimate ActiveX item from site http://download.mcafee.com/ |
Change status
|
| O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab |
Questionable |
Are you using an ActiveX object with a name 'a-squared Scanner' located in 'http://ax.emsisoft.com/asquared.cab'? If not, fix this item. |
Change status
|
| O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll |
Questionable |
Related to Intel(R) integrated graphics controller |
Change status
|
| O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll |
Legitimate |
Related to Associated with the Intel PRO/Set Wireless software |
Change status
|
| O20 - Winlogon Notify: PCANotify - C:\WINDOWS\SYSTEM32\PCANotify.dll |
Legitimate |
Related to pcAnywhere |
Change status
|
| O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll |
Legitimate |
windows check |
Change status
|
| O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Program Files\Symantec\pcAnywhere\awhost32.exe |
Legitimate |
Part of
Symantec's pcAnywhere remote PC management software. |
Change status
|
| O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
More info about file evteng.exe |
Legitimate |
Item found in 2-spyware.com database.
Intel EvtEng Module. Provides additional support for installed Intel wireless... |
Change status
|
| O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe |
Legitimate |
Related to Macrovision Corporation. |
Change status
|
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
More info about file lexbces.exe |
Legitimate |
Item found in 2-spyware.com database.
This file is a component of MarkVision software, published by Lexmark International. This software... |
Change status
|
| O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Log Manager (McLogManagerService) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mclogsrv.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
More info about file mcshield.exe |
Legitimate |
Item found in 2-spyware.com database.
Process mcshield.exe usually starts automatically on system's startup and stays in background. It... |
Change status
|
| O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mctskshd.exe
More info about file mctskshd.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a part of McAfee Antivirus... |
Change status
|
| O23 - Service: McAfee User Manager (mcusrmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcusrmgr.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
More info about file mps.exe |
Dangerous |
Item found in 2-spyware.com database.
mps.exe is an executable file that is responsible for launching parasites, loading main components... |
Change status
|
| O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
More info about file nicconfigsvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to special power management software for network adapters on Dell... |
Change status
|
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
More info about file regsrvc.exe |
Legitimate |
Item found in 2-spyware.com database.
Essential part of Intel wireless hardware... |
Change status
|
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
More info about file s24evmon.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to special software required by Intel wireless hardware. It allows to configure and... |
Change status
|
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
More info about file wlkeeper.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to special software bundled alongside Intel wireless... |
Change status
|
| O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing) |
Not necessary |
Fix this item because it points to a file that does not exist |
Change status
|
|
Follow us 
|
Like us 
(91/100)
(89/100)
(84/100)
