| Line: |
Status: |
Comments: |
Actions: |
C:\WINDOWS\System32\smss.exe
More info about file smss.exe |
Legitimate |
|
Change status |
C:\WINDOWS\system32\winlogon.exe
More info about file winlogon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\services.exe
More info about file services.exe |
Legitimate |
In most of cases it is legitimate system process, only sometimes can be used by malicious software |
Change status |
C:\WINDOWS\system32\lsass.exe
More info about file lsass.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Windows Defender\MsMpEng.exe
More info about file msmpeng.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Windows Defender program. |
Change status |
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
More info about file evteng.exe |
Legitimate |
Item found in 2-spyware.com library
EvtEng.exe is an application process related to Intel EvtEng Module. It provides additional support... |
Change status |
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
More info about file s24evmon.exe |
Legitimate |
Item found in 2-spyware.com library
Related to special software required by Intel wireless hardware. It allows to configure and... |
Change status |
C:\WINDOWS\system32\spoolsv.exe
More info about file spoolsv.exe |
Legitimate |
Process found in system process library |
Change status |
| C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Bonjour\mDNSResponder.exe
More info about file mdnsresponder.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Bonjour for Windows application. |
Change status |
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
More info about file cfsvcs.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Toshiba Notebooks software. This is not a crucial system component, so... |
Change status |
C:\WINDOWS\system32\DVDRAMSV.exe
More info about file dvdramsv.exe |
Legitimate |
Item found in 2-spyware.com library
dvdramsv.exe is related to DVD-RAM Utility software. |
Change status |
C:\WINDOWS\eHome\ehRecvr.exe
More info about file ehrecvr.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Windows XP Media Center application, giving the OS additional mulitmedia... |
Change status |
C:\WINDOWS\eHome\ehSched.exe
More info about file ehsched.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Windows XP Media Center application. |
Change status |
| C:\Program Files\Java\jre6\bin\jqs.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\AVG\AVG8\avgam.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\AVG\AVG8\avgrsx.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\AVG\AVG8\avgnsx.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\AVG\AVG8\avgcsrvx.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
More info about file regsrvc.exe |
Legitimate |
Item found in 2-spyware.com library
regsrvc.exe is an essential part of Intel wireless hardware drivers. Do not terminate or delete it... |
Change status |
| C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
More info about file swupdtmr.exe |
Legitimate |
Item found in 2-spyware.com library
It is a software update manager for Toshiba computers. |
Change status |
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
More info about file tappsrv.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Toshiba computer software. |
Change status |
C:\WINDOWS\system32\dllhost.exe
More info about file dllhost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\WINDOWS\Explorer.EXE
More info about file explorer.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
More info about file thotkey.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Toshiba laptop software. |
Change status |
| C:\WINDOWS\system32\TDispVol.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
More info about file syntpenh.exe |
Legitimate |
Item found in 2-spyware.com library
System tray access for Synaptics touch pads. Located in "C:\Program Files\Synaptics\SynTP\".
Change status |
|
C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
More info about file smoothview.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Toshiba application. |
Change status |
C:\WINDOWS\system32\TPSBattM.exe
More info about file tpsbattm.exe |
Legitimate |
Item found in 2-spyware.com library
The file is related to Toshiba Power Saver Utility. |
Change status |
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
More info about file zcfgsvc.exe |
Legitimate |
Item found in 2-spyware.com library
ZcfgSvc.exe is a part of Intel wireless hardware drivers. Allows to monitor and configure the... |
Change status |
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
More info about file ifrmewrk.exe |
Legitimate |
Item found in 2-spyware.com library
ifrmewrk.exe is an essential part of Intel wireless hardware drivers. |
Change status |
C:\WINDOWS\system32\igfxpers.exe
More info about file igfxpers.exe |
Legitimate |
Item found in 2-spyware.com library
Related to the integrated intel graphics adapter driver. |
Change status |
C:\WINDOWS\system32\hkcmd.exe
More info about file hkcmd.exe |
Legitimate |
Item found in 2-spyware.com library
hkcmd.exe is a system process related to the Hotkey Command Module for Intel Graphics Contollers.... |
Change status |
| C:\WINDOWS\ehome\ehtray.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\dla\DLACTRLW.exe
More info about file dlactrlw.exe |
Legitimate |
Item found in 2-spyware.com library
The file is a part of Sonic Drive Letter Access (DLA) application. |
Change status |
C:\WINDOWS\AGRSMMSG.exe
More info about file agrsmmsg.exe |
Legitimate |
Item found in 2-spyware.com library
Modem software from Agere.com. AGRSMMSG.exe is located in "C:\WINDOWS\" on Windows 95/98/ME/XP and... |
Change status |
C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe
More info about file apdproxy.exe |
Legitimate |
Item found in 2-spyware.com library
apdproxy.exe is related to Adobe Photoshop Album software. |
Change status |
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
More info about file hpwuschd2.exe |
Legitimate |
Item found in 2-spyware.com library
hpwuschd2.exe is a legitimate process related to Hewlett Packard software. |
Change status |
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
More info about file groovemonitor.exe |
Legitimate |
Item found in 2-spyware.com library
groovemonitor.exe is the Microsoft GrooveMonitor Utility, and is a legitimate process that may be... |
Change status |
C:\WINDOWS\eHome\ehmsas.exe
More info about file ehmsas.exe |
Legitimate |
Item found in 2-spyware.com library
The file belongs to Microsoft Windows Media Center application. |
Change status |
C:\Program Files\QuickTime\QTTask.exe
More info about file qttask.exe |
Legitimate |
Item found in 2-spyware.com library
Provides system tray access to Apple's Quicktime Player. Located in "C:\Program Files\QuickTime\".... |
Change status |
C:\Program Files\iTunes\iTunesHelper.exe
More info about file ituneshelper.exe |
Legitimate |
Item found in 2-spyware.com library
Related to Apple's iTunes for Windows. Located in "C:\Program Files\iTunes\". |
Change status |
C:\Program Files\Java\jre6\bin\jusched.exe
More info about file jusched.exe |
Legitimate |
Item found in 2-spyware.com library
Checks if there are new versions of Java available. |
Change status |
| C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\PROGRA~1\AVG\AVG8\avgtray.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Windows Defender\MSASCui.exe
More info about file msascui.exe |
Legitimate |
Item found in 2-spyware.com library
The file is component of Microsoft Windows Defender application. |
Change status |
| C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe |
Unknown |
No exact entries found |
Insert file into database
|
| C:\Program Files\DAEMON Tools Pro\DTProAgent.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\system32\RAMASST.exe
More info about file ramasst.exe |
Legitimate |
Item found in 2-spyware.com library
This is a part of the drivers for DVD drives, manufactured by several companies. File ramasst.exe... |
Change status |
C:\Program Files\iPod\bin\iPodService.exe
More info about file ipodservice.exe |
Legitimate |
Item found in 2-spyware.com library
This is a legitimate component of iTunes music program. It offers wide range of music playing and... |
Change status |
| C:\Program Files\QuickTime\QuickTimePlayer.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\WINDOWS\System32\svchost.exe
More info about file svchost.exe |
Legitimate |
Process found in system process library |
Change status |
C:\Program Files\Mozilla Firefox\firefox.exe
More info about file firefox.exe |
Legitimate |
Item found in 2-spyware.com library
File firefox.exe launches Mozilla Firefox web browser, implements user interface and controls all... |
Change status |
| C:\Program Files\Wyzo\wyzo.exe |
Unknown |
No exact entries found |
Insert file into database
|
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
More info about file hijackthis.exe |
Legitimate |
Item found in 2-spyware.com library
This is the main component of HijackThis security application, designed to perform system scans and... |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.toshiba.com/search |
Not necessary |
http://www.toshiba.com/search is your Search Bar.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://onestop.umn.edu/onestop/index.html |
Not necessary |
http://onestop.umn.edu/onestop/index.html is your start page.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=69157 is your Default Page URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=54896 is your Default Search URL.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 |
Not necessary |
http://go.microsoft.com/fwlink/?LinkId=54896 is your Search Page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/ |
Not necessary |
http://www.comcast.net/ is your start page.
If you do not like this fact, fix this item. |
Change status |
| R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = |
Not necessary |
Fix this item because it points to nowhere |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.toshibadirect.com/dpdstart |
Not necessary |
http://www.toshibadirect.com/dpdstart is related to your Internet Connection Wizard.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Comcast |
Not necessary |
Windows Internet Explorer provided by Comcast is the title in your Internet Explorer window.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5656 |
Not necessary |
http=127.0.0.1:5656 is your Proxy Server.
If you do not like this fact, fix this item. |
Change status |
| R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local |
Not necessary |
local overrides your Proxy Server.
If you do not like this fact, fix this item. |
Change status |
| O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing) |
Not necessary |
Fix this item, because it points to file that cannot be found |
Change status
|
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
More info about file avgssie.dll |
Legitimate |
Application program item according to inner database
Related to AVG Antivirus 8.0 |
Change status
|
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
More info about file dlashx_w.dll |
Legitimate |
System item according to inner database
|
Change status
|
| O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll |
Unknown |
No exact entries found |
Insert file into database
|
| O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll (file missing) |
Not necessary |
Fix this item, because it points to file that cannot be found |
Change status
|
| O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll |
Legitimate |
legitimate bho toolbar, related to Google Toolbar |
Change status
|
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
More info about file swg.dll |
Legitimate |
System item according to inner database
google toolbar notifier |
Change status
|
| O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll |
Unknown |
No exact entries found |
Insert file into database
|
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
More info about file jp2ssv.dll |
Legitimate |
System item according to inner database
|
Change status
|
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
More info about file jqs_plugin.dll |
Legitimate |
System item according to inner database
|
Change status
|
| O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll |
Legitimate |
legitimate bho toolbar, related to Google Toolbar |
Change status
|
| O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll (file missing) |
Not necessary |
Fix this item, because it points to file that cannot be found |
Change status
|
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
More info about file tpsmain.exe |
Legitimate |
Application program item according to inner database
The file is related to Toshiba laptop application which is responsible for power saving. |
Change status
|
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
More info about file thotkey.exe |
Legitimate |
Application program item according to inner database
The file is related to Toshiba laptop software. |
Change status
|
| O4 - HKLM\..\Run: [TDispVol] TDispVol.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
More info about file syntplpr.exe |
Legitimate |
System item according to inner database
syntplpr.exe is a legitimate process related to Synaptics touch pads. Located in "C:\Program... |
Change status
|
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
More info about file syntpenh.exe |
Legitimate |
System item according to inner database
System tray access for Synaptics touch pads. Located in "C:\Program Files\Synaptics\SynTP\".<br... |
Change status
|
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
More info about file smoothview.exe |
Legitimate |
Application program item according to inner database
The file is related to Toshiba application. |
Change status
|
O4 - HKLM\..\Run: [Pinger] c:\toshiba\ivp\ism\pinger.exe /run
More info about file pinger.exe |
Legitimate |
System item according to inner database
This file is related to Pinger - a system tool, which comes pre-installed on Toshiba computers. It... |
Change status
|
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
More info about file zcfgsvc.exe |
Legitimate |
Driver related item according to inner database.
ZcfgSvc.exe is a part of Intel wireless hardware drivers. Allows to monitor and configure the... |
Change status
|
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
More info about file ifrmewrk.exe |
Legitimate |
Driver related item according to inner database.
ifrmewrk.exe is an essential part of Intel wireless hardware drivers. |
Change status
|
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
More info about file igfxpers.exe |
Legitimate |
Application program item according to inner database
Related to the integrated intel graphics adapter driver. |
Change status
|
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
More info about file hkcmd.exe |
Legitimate |
System item according to inner database
hkcmd.exe is a system process related to the Hotkey Command Module for Intel Graphics Contollers.... |
Change status
|
| O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\DLACTRLW.exe
More info about file dlactrlw.exe |
Legitimate |
Application program item according to inner database
The file is a part of Sonic Drive Letter Access (DLA) application. |
Change status
|
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
More info about file agrsmmsg.exe |
Legitimate |
System item according to inner database
Modem software from Agere.com. AGRSMMSG.exe is located in "C:\WINDOWS\" on Windows 95/98/ME/XP and... |
Change status
|
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
More info about file apdproxy.exe |
Legitimate |
Application program item according to inner database
apdproxy.exe is related to Adobe Photoshop Album software. |
Change status
|
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
More info about file hpwuschd2.exe |
Legitimate |
Application program item according to inner database
hpwuschd2.exe is a legitimate process related to Hewlett Packard software. |
Change status
|
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
More info about file groovemonitor.exe |
Legitimate |
Application program item according to inner database
groovemonitor.exe is the Microsoft GrooveMonitor Utility, and is a legitimate process that may be... |
Change status
|
| O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
More info about file qttask.exe |
Legitimate |
Application program item according to inner database
Provides system tray access to Apple's Quicktime Player. Located in "C:\Program Files\QuickTime\".... |
Change status
|
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
More info about file ituneshelper.exe |
Legitimate |
Application program item according to inner database
Related to Apple's iTunes for Windows. Located in "C:\Program Files\iTunes\". |
Change status
|
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
More info about file jusched.exe |
Legitimate |
Application program item according to inner database
Checks if there are new versions of Java available. |
Change status
|
| O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
More info about file msascui.exe |
Legitimate |
Application program item according to inner database
The file is component of Microsoft Windows Defender application. |
Change status
|
| O4 - HKLM\..\Run: [Win32 Firewall] C:\DOCUME~1\owner\LOCALS~1\Temp\334.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe |
Unknown |
No exact entries found |
Insert file into database
|
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
More info about file ctfmon.exe |
Legitimate |
Application program item according to inner database
When you run a Microsoft Office XP or Microsoft Office 2003 program, the file Ctfmon.exe (Ctfmon)... |
Change status
|
| O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - HKCU\..\Run: [Win32 Firewall] C:\DOCUME~1\owner\LOCALS~1\Temp\334.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O4 - Global Startup: Adobe Reader Speed Launch.lnk = ? |
Not necessary |
Fix this item because it points to nowhere |
Change status
|
| O4 - Global Startup: HP Digital Imaging Monitor.lnk = ? |
Not necessary |
Fix this item because it points to nowhere |
Change status
|
| O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = ? |
Not necessary |
Fix this item because it points to nowhere |
Change status
|
| O4 - Global Startup: RAMASST.lnk = ? |
Not necessary |
Fix this item because it points to nowhere |
Change status
|
| O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present |
Questionable |
This item can be set only by administrator or by Spybot software. If you are administrator and you do not know anything about it, then fix this item. |
Change status
|
| O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Send to OneNote' and points to file 'C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name 'S&end to OneNote' and points to file 'C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Research' and points to file 'C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Real.com' and points to file 'C:\WINDOWS\system32\Shdocvw.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe |
Not necessary |
This item represents extra button in your IE toolbar without name and points to file 'C:\WINDOWS\Network Diagnostic\xpnetdiag.exe'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name '@xpsp3res.dll,-20001' and points to file 'C:\WINDOWS\Network Diagnostic\xpnetdiag.exe'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll |
Not necessary |
This item represents extra button in your IE toolbar with a name 'Messenger' and points to file 'C:\WINDOWS\system32\shdocvw.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O9 - Extra ''Tools'' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll |
Not necessary |
This item represents extra menu item in your Tools menu in IE with a name 'Windows Messenger' and points to file 'C:\WINDOWS\system32\shdocvw.dll'. If you do not want it to be there, fix this item. |
Change status
|
| O14 - IERESET.INF: START_PAGE_URL=http://www.toshibadirect.com/dpdstart |
Questionable |
This item changes your "default" Start page in IE. It will appear if you Restore default web settings. If you are an administrator and you do not recognize address "", fix this item. |
Change status
|
| O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab |
Questionable |
Are you using an ActiveX object with a name 'Facebook Photo Uploader Control' located in 'http://upload.facebook.com/controls/FacebookPhotoUploader.cab'? If not, fix this item. |
Change status
|
| O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab |
Questionable |
Are you using an ActiveX object with a name 'get_atlcom Class' located in 'http://www.adobe.com/products/acrobat/nos/gp.cab'? If not, fix this item. |
Change status
|
| O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "grooveLocalGWS" and file "C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll". |
Change status
|
| O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "linkscanner" and file "C:\Program Files\AVG\AVG8\avgpp.dll". |
Change status
|
| O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll |
Questionable |
It may be a trace of dangerous protocol hijacker or a legitimate item. Make some research about the name "x-sdch" and file "C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll". |
Change status
|
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
More info about file |
Unknown |
No exact entries found |
Change status
|
| O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
More info about file mdnsresponder.exe |
Legitimate |
Item found in 2-spyware.com database.
The file belongs to Bonjour for Windows... |
Change status
|
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
More info about file cfsvcs.exe |
Legitimate |
Item found in 2-spyware.com database.
The file is related to Toshiba Notebooks software. This is not a crucial system component, so... |
Change status
|
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
More info about file dvdramsv.exe |
Legitimate |
Item found in 2-spyware.com database.
dvdramsv.exe is related to DVD-RAM Utility... |
Change status
|
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
More info about file evteng.exe |
Legitimate |
Item found in 2-spyware.com database.
EvtEng.exe is an application process related to Intel EvtEng Module. It provides additional support... |
Change status
|
| O23 - Service: Google Update Service (gupdate1c9f42c8fe295f5) (gupdate1c9f42c8fe295f5) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
More info about file googleupdaterservice.exe |
Legitimate |
Item found in 2-spyware.com database.
Service for Google... |
Change status
|
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
More info about file ipodservice.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a legitimate component of iTunes music program. It offers wide range of music playing and... |
Change status
|
| O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe |
Unknown |
No exact entries found |
Insert file into database
|
| O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
More info about file hpzipm12.exe |
Legitimate |
Item found in 2-spyware.com database.
This is a standard component of Hewlett-Packard device drivers. The presence of this file means,... |
Change status
|
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
More info about file regsrvc.exe |
Legitimate |
Item found in 2-spyware.com database.
regsrvc.exe is an essential part of Intel wireless hardware drivers. Do not terminate or delete it... |
Change status
|
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
More info about file s24evmon.exe |
Legitimate |
Item found in 2-spyware.com database.
Related to special software required by Intel wireless hardware. It allows to configure and... |
Change status
|
| O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe |
Unknown |
No exact entries found |
Insert file into database
|
O23 - Service: Swupdtmr - Unknown owner - c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
More info about file swupdtmr.exe |
Legitimate |
Item found in 2-spyware.com database.
It is a software update manager for Toshiba... |
Change status
|
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
More info about file tappsrv.exe |
Legitimate |
Item found in 2-spyware.com database.
The file is related to Toshiba computer... |
Change status
|
|
Follow us 
|
Like us 
(91/100)
(89/100)
(84/100)
