Pay extra attention to the ones I bolded in red, my research suggested they were malware related and needs to be deleted.!!! = Very suspicious, possibly a baddie
??? = Unknown or unclear but could be legit, research further
??? c:\windows\system32\bmaker.dat
!!! c:\windows\system32\bpenhan.dll
??? c:\windows\system32\cmdlineext03.pop
??? c:\windows\system32\imake.dll
??? c:\windows\system32\imaker.dat
!!! c:\windows\system32\picformat32.dll
???c:\windows\system32\zport4as.dll
Haven't done anything with these yet, will look in to them later
You might have to use HijackThis (Spybot's Tools > ActiveX & BHOs sections are really good with informing you the bad/good ones and also allowing you to remove the ones you don't want) to get rid of them, if they show up on it if not then leave them be.~ Following files left behind by the Online Scanners could be deleted:
c:\windows\downloaded program files\asinst.dll
c:\windows\downloaded program files\bdcore.dll
c:\windows\downloaded program files\bdupd.dll
c:\windows\downloaded program files\ipsupd.dll
My computer couldn't find them anyway
Yes, my search came up with the similar info, if you know what they are and OK with it then of course leave them alone!zbuddy.ocx <--- These 2 are something to do with MSN, so i haven't deleted them, i don't think they're harmful
zintro.ocx
I forgot to tell you to close each and every open program, etc prior to running AnalyzerXP, similar to running HijackThis or any other scanner, you need to close all open programs so all unnecessary items won't get listed and it also helps us notice the things that are running in the background.
Also, I suggest using the system cleaner I created called CleanupXP+. It also initiates Windows Cleanup Manager at the end. The tool is very aggressive yet safe, it also offer file/folder removal option that is generally more efficient than doing it manually...if you do not have any specific files to delete then skip this step.
Remember: CLOSE ALL PROGRAMS prior to running this tool!! Using the tool in Safe mode would be ideal too.
Reply With Quote