Warning! This utility will find legitimate files in addition to malware.
Do not remove anything unless you are sure you know what you’re doing.
------- System Files in System Directory -------
Wolumin w stacji dysk˘w C: SYSTEM
Numer seryjny woluminu: 2C24-1EFD
Katalog C:\WINDOWS\SYSTEM
MJCN30 DLL 226 592 06.01.19 19:53 MJCN30.DLL
MNCRLREV DLL 226 592 06.01.19 19:53 mncrlrev.dll
GSI32 DLL 226 592 06.01.19 19:53 GSI32.DLL
GKU32 DLL 226 592 06.01.19 19:53 GKU32.DLL
MTACM DLL 226 592 06.01.19 19:53 MTACM.DLL
DREML DLL 226 592 06.01.19 19:53 DREML.DLL
MDCUIA32 DLL 226 592 06.01.19 19:53 MDCUIA32.DLL
7 plik(˘w) 1 586 144 bajt˘w
0 katalog(˘w) 3 161,96 MB wolnych
------- Hidden Files in System Directory -------
Wolumin w stacji dysk˘w C: SYSTEM
Numer seryjny woluminu: 2C24-1EFD
Katalog C:\WINDOWS\SYSTEM
LXBZMA GID 40 603 06.01.16 19:40 lxbzma.GID
FOLDER HTT 12 879 06.01.14 0:06 folder.htt
DESKTOP INI 266 06.01.14 0:06 desktop.ini
3 plik(˘w) 53 748 bajt˘w
0 katalog(˘w) 3 161,96 MB wolnych
---------------- User Agent ------------
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
“{6B25D1A3-95EC-F3C8-183D-596ACF474826}”=""
------------------ Locate.com Results ------------------
------------ Strings.exe Qoologic Results ------------
-------------- Strings.exe Aspack Results -------------
----------------- HKLM Run Key ------------------
-------------- Strings.exe Umonitor Results -------------
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“internat.exe”=“internat.exe”
“ScanRegistry”=“C:\WINDOWS\scanregw.exe /autorun”
“TaskMonitor”=“C:\WINDOWS\taskmon.exe”
“SystemTray”=“SysTray.ExE”
“LoadPowerProfile”=“Rundll32.exe powrprof.dll,LoadCurrentPwrScheme”
“Zasobnik systemowy”=“SysTray.Exe”
“NewsUpd”=“C:\Program Files\Creative\News\NewsUpd.EXE /q”
“Disc Detector”=“C:\Program Files\Creative\ShareDLL\CtNotify.exe”
“autoclk”=“autoclk.exe”
“WOOWATCH”=“C:\PROGRA~1\WANADOO\Watch.exe”
“WOOTASKBARICON”=“C:\PROGRA~1\WANADOO\TaskbarIcon.exe”
“LexStart”=“lexstart.exe”
“WinampAgent”="“E:\WINAMP\WINAMPa.exe”"
“avast! Web Scanner”=“E:\AVAST\ASHWEBSV.EXE”
“ashMaiSv”=“E:\AVAST\ashmaisv.exe”
“BearShare”="“E:\PROGRAM FILES\BEARSHARE\BEARSHARE.EXE” /pause"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
“Installed”=“1”
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
“NoChange”=“1”
“Installed”=“1”
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
“Installed”=“1”