Re: Unknown Programs - i.e. "BufferChm" from Add or Remove Programs

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

CP calandar templates
Sun Java
Microsoft apps
HP apps
Nero app
Sony App

Not a full list, or in any order
Not that removing them will have any impact on your PC speed & in the Case
of MS & Java will result in reduced functionality

"pmpinguel" <pmpinguel.2xdije@xxxxxxxxxxxxx> wrote in message
news:pmpinguel.2xdije@xxxxxxxxxxxxxxxx

Please help me out on whether or not I need to delete anything on here I
would greatly appreciate the help. I went and looked at my Add/Remove
Programs list and there are tons of programs of that can not be removed
that look suspicious to me...I cannot remove anything and there are a
bunch of programs I do not recognize. They are as follows...

BufferChm
CP_AtenaShokunin1Config
CP_CalendarTemplates1
cp_LightScribeConfig
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CP_Panorama1Config
cp_PosterPrintConfig
cp_UpdateProjectsConfig
CueTour
Destinations
DeviceManagementQFolder
FullDPAppQFolder
HPSdpAppCoreApp
HPSU306Stud
InstantShareServices
JS2E Runtime Enviroment 5.0 Update 6
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 hotfix
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft Office Professional Edition 2003
MSXML 4.0 SP2
neroxml
OptionalContentQFolder
PhotoGallery
RandMap
SkinsHP1
Sonic_PrimoSDK
Unload

Im frustrated with this and would like to get this cleaned up so I can
be able to run at optimum speed... Any ideas? Thanks in advance.


Deckard's System Scanner v20070905.67
Run by Pete M. Pinguel on 2007-09-23 16:48:55
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Pete M. Pinguel.exe)
-------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:48:57, on 23/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\oracle\product\10.2.0\db_1\bin\isqlplussvc.exe
C:\oracle\product\10.2.0\db_1\BIN\TNSLSNR.exe
c:\oracle\product\10.2.0\db_1\bin\ORACLE.EXE
C:\oracle\product\10.2.0\db_1\jdk\bin\java.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\oracle\product\10.2.0\db_1\jdk\bin\java.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\PROGRA~1\MEDIAK~1\MagicKey.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\D-Tools\daemon.exe
C:\PROGRA~1\MEDIAK~1\OSD.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\AvaFind\AvaFind.exe
C:\Program Files\CNN Desktop Alerts\cnn.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\PC Connectivity Solution\NclBTHandler.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Nokia\Nokia PC Suite 6\OneTouchAccess.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\IDM Computer Solutions\UltraEdit-32\uedit32.exe
C:\Documents and Settings\Pete M. Pinguel\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\PETEMP~1.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.hp.com/me
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL
= http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.hp.com/me
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://www.hp.com/
O1 - Hosts: localhost:5560/isqlplus/workspace.uix
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} -
C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no
file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) -
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -
C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: AcroIEToolbarHelper Class -
{AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat
6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -
C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP
Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut]
CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program
Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program
Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick
Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default
Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [ISUSPM Startup]
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common
Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common
Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software
Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia
PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [MagicKey] C:\PROGRA~1\MEDIAK~1\MagicKey.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program
Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program
Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program
Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program
Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE
C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows
Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [LanzarL2007]
"C:\DOCUME~1\PETEM~1.PIN\LOCALS~1\Temp\{B1F1D855-7E0F-47E1-B820-412778E6D7E8}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe"
/SETUP:"/l0x0009"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
/STARTUP
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe"
/nosplash /minimized
O4 - HKCU\..\Run: [AvaFind] "C:\Program Files\AvaFind\AvaFind.exe"
/minimized
O4 - HKCU\..\Run: [CNN Desktop Alerts] "C:\Program Files\CNN Desktop
Alerts\cnn.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download
Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe
/RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe
/RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
(User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
(User 'Default user')
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program
Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Download All Links with IDM - C:\Program
Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM -
C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program
Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} -
(no file)
O10 - Broken Internet access because of LSP provider 'c:\program
files\panda security\panda antivirus 2008\pavlsp.dll' missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) -
http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation
Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection
Class) -
http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class)
-
http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1159983543578
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer
Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} -
https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements
Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O17 -
HKLM\System\CCS\Services\Tcpip\..\{D88E1318-2228-45C4-B9AC-E4549F6666AA}:
NameServer = 10.6.9.12 212.71.32.19
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner -
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file
missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. -
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. -
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. -
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) -
Unknown owner - C:\Program Files\Common Files\Symantec
Shared\ccSvcHst.exe (file missing)
O23 - Service: Cron Service (CRONw) (CRON) - ActiveState -
C:\Perl\bin\perl.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. -
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision
Corporation - c:\Program Files\Common
Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:\Program
Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero
BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common
Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA
Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OracleDBConsoleorcl - Oracle Corporation -
C:\oracle\product\10.2.0\db_1\bin\nmesrvc.exe
O23 - Service: OracleOraDb10g_home1iSQL*Plus - Oracle -
C:\oracle\product\10.2.0\db_1\bin\isqlplussvc.exe
O23 - Service: OracleOraDb10g_home1TNSListener - Unknown owner -
C:\oracle\product\10.2.0\db_1\BIN\TNSLSNR.exe
O23 - Service: OracleServiceORCL - Oracle Corporation -
c:\oracle\product\10.2.0\db_1\bin\ORACLE.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe

--
End of file - 11638 bytes

-- Files created between 2007-08-23 and 2007-09-23
-----------------------------

2007-09-23 16:44:54 0 d-------- C:\Program Files\Trend Micro
2007-09-23 15:07:41 0 dr-h----- C:\Documents and Settings\Pete
M. Pinguel\Recent
2007-09-23 14:07:35 0 d-------- C:\WINDOWS\system32\ActiveScan
2007-09-21 09:45:11 0 d-------- C:\Program Files\Microsoft
Visual Studio .NET
2007-09-21 09:37:15 0 dr------- C:\oracle
2007-09-21 09:37:10 0 d-------- C:\Program Files\Oracle
2007-09-20 23:53:02 0 --a------ C:\Documents and Settings\Pete
M. Pinguel\isqlplusctl
2007-09-20 03:32:09 0 d-------- C:\Documents and Settings\All
Users\Application Data\Microsoft Help
2007-09-20 02:57:27 0 dr------- C:\ORACLE10R2
2007-09-19 22:48:31 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\IDM
2007-09-19 22:48:27 0 d-------- C:\Program Files\Internet
Download Manager
2007-09-17 19:41:45 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\Ahead
2007-09-17 19:41:18 0 d-------- C:\Documents and Settings\All
Users\Application Data\Ahead
2007-09-17 19:38:40 0 d-------- C:\Program Files\Nero
2007-09-17 19:38:40 0 d-------- C:\Documents and Settings\All
Users\Application Data\Nero
2007-09-08 23:36:00 0 dr-h----- C:\$VAULT$.AVG
2007-09-08 23:34:02 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\DMCache
2007-09-08 23:09:06 0 d-------- C:\Program Files\IDA
2007-09-08 16:19:30 0 d-------- C:\Documents and Settings\All
Users\Application Data\Grisoft
2007-09-07 06:41:11 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\AVG7
2007-09-07 06:41:03 0 d-------- C:\Documents and
Settings\LocalService\Application Data\AVG7
2007-09-07 04:58:36 0 d-------- C:\Documents and Settings\All
Users\Application Data\Avg7
2007-09-07 03:18:09 0 d-------- C:\Documents and Settings\All
Users\Application Data\sentinel
2007-09-07 02:28:23 0 d-------- C:\Program Files\Windows
Defender
2007-09-06 22:03:11 0 d-------- C:\Program Files\ZonedOut
2007-09-06 21:50:32 0 d-------- C:\Program
Files\SpywareBlaster
2007-09-02 07:59:28 0 d-------- C:\Program Files\DivX
2007-08-25 14:40:07 0 dr------- C:\SDP Report


-- Find3M Report
---------------------------------------------------------------

2007-09-23 16:36:55 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\Skype
2007-09-23 14:35:44 0 d--h----- C:\Program Files\InstallShield
Installation Information
2007-09-21 20:02:07 0 d-------- C:\Program Files\XoftSpySE
2007-09-21 15:23:17 0 dr-h----- C:\Documents and Settings\Pete
M. Pinguel\Application Data\yahoo!
2007-09-21 14:57:39 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\AvaFind Data
2007-09-19 22:39:41 0 d-------- C:\Program Files\MINSAT
2007-09-17 19:40:46 0 d-------- C:\Program Files\Common
Files\Ahead
2007-09-17 19:23:45 0 d-------- C:\Program Files\Ahead
2007-09-07 05:57:28 0 d-------- C:\Program Files\Windows Media
Bonus Pack for Windows XP
2007-09-07 01:45:59 0 d-------- C:\Program Files\Google
2007-09-06 23:21:45 0 d-------- C:\Program
Files\Investintech.com Inc
2007-09-06 20:25:15 0 d-------- C:\Program Files\Winamp
2007-09-06 20:22:21 0 d-------- C:\Program Files\QuickTime
2007-09-06 20:21:37 0 d-------- C:\Program Files\PC
Connectivity Solution
2007-09-06 20:13:48 0 d-------- C:\Program Files\Media Key
2007-09-06 20:05:41 0 d-------- C:\Program Files\D-Tools
2007-09-06 20:04:20 0 d-------- C:\Program Files\Common
Files\LightScribe
2007-09-06 20:01:46 0 d-------- C:\Program Files\AvaFind
2007-09-06 16:18:09 0 d-------- C:\Program Files\Yahoo!
2007-09-06 04:09:52 0 d-------- C:\Program Files\Common
Files\Symantec Shared
2007-09-02 07:59:35 3602 --a------ C:\WINDOWS\mozver.dat
2007-08-27 08:24:59 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\SSH
2007-08-18 20:26:24 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\My Battle for Middle-earth Files
2007-08-14 20:42:47 0 d-------- C:\Program Files\Conceptworld
2007-08-14 19:09:10 0 d-------- C:\Program Files\Test_ MINSAT
2007-08-13 18:35:23 1324 --a------
C:\WINDOWS\system32\d3d9caps.dat
2007-08-13 14:56:06 0 d-------- C:\Program Files\SlySoft
2007-08-12 16:44:49 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\Hummingbird
2007-08-12 16:43:55 0 d-------- C:\Program Files\Hummingbird
2007-08-11 15:27:00 0 d-------- C:\Program Files\EA GAMES
2007-08-11 15:06:52 0 d-------- C:\Program Files\Alcohol Soft
2007-08-07 17:00:05 0 d-------- C:\Program Files\Java
2007-08-03 13:01:41 0 d-------- C:\Documents and Settings\Pete
M. Pinguel\Application Data\ActiveState
2007-08-03 13:00:32 0 d-------- C:\Program Files\ActiveState
Perl Dev Kit 7.0
2007-07-26 23:19:06 0 d-------- C:\Program Files\Common Files
2007-07-24 12:58:41 0 d-------- C:\Program Files\Common
Files\Adobe
2007-07-19 14:45:55 737280 --a------ C:\WINDOWS\iun6002.exe <Not
Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>
2007-07-10 18:55:44 7680 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-06-28 18:54:10 180224 --a------
C:\WINDOWS\system32\xvidvfw.dll
2007-06-28 18:52:18 765952 --a------
C:\WINDOWS\system32\xvidcore.dll


-- Registry Dump
---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"="C:\Program Files\hpq\HP Wireless Assistant\HP
Wireless Assistant.exe" [12/08/2006 07:25]
"High Definition Audio Property Page Shortcut"="CHDAudPropShortcut.exe"
[17/04/2006 23:29 C:\WINDOWS\system32\CHDAudPropShortcut.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [01/04/2006
08:01]
"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" [11/04/2006
21:54]
"QlbCtrl"="C:\Program Files\Hewlett-Packard\HP Quick Launch
Buttons\QlbCtrl.exe" [23/03/2006 11:38]
"Cpqset"="C:\Program Files\HPQ\Default Settings\cpqset.exe" [26/01/2006
16:18]
"RecGuard"="C:\Windows\SMINST\RecGuard.exe" [11/10/2005 10:23]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe"
[28/07/2004 11:50]
"ISUSScheduler"="C:\Program Files\Common
Files\InstallShield\UpdateService\issch.exe" [28/07/2004 11:50]
"NeroFilterCheck"="C:\Program Files\Common
Files\Ahead\Lib\NeroCheck.exe" [01/03/2007 15:57]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [25/10/2006 08:37]
"HP Software Update"="C:\Program Files\Hp\HP Software
Update\HPWuSchd2.exe" [16/02/2005 23:11]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite
6\LaunchApplication.exe" [23/01/2007 11:19]
"MagicKey"="C:\PROGRA~1\MEDIAK~1\MagicKey.exe" [15/03/2004 13:27]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [30/06/2007
12:03]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [22/08/2004
17:05]
"SunJavaUpdateSched"="C:\Program
Files\Java\jre1.6.0_01\bin\jusched.exe" [14/03/2007 03:43]
"CloneCDTray"="C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe"
[27/12/2004 22:14]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [26/04/2006 19:48]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe"
[03/11/2006 19:20]
"LanzarL2007"="C:\DOCUME~1\PETEM~1.PIN\LOCALS~1\Temp\{B1F1D855-7E0F-47E1-B820-412778E6D7E8}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe"
[]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [14/09/2007 15:16]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [05/08/2004 00:00]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [25/08/2007 21:54]
"AvaFind"="C:\Program Files\AvaFind\AvaFind.exe" [06/01/2004 05:57]
"CNN Desktop Alerts"="C:\Program Files\CNN Desktop Alerts\cnn.exe"
[21/09/2006 17:07]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program
Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [27/06/2007 19:03]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe"
[28/07/2007 20:08]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"PcSync"=C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Acrobat Assistant.lnk - C:\Program Files\Adobe\Acrobat
6.0\Distillr\acrotray.exe [24/10/2003 07:37:56]
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[12/05/2006 13:33:22]


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0f8da161-43e7-11dc-9ff0-00164198f5a6}]
Auto\command- fun.xls.exe
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL fun.xls.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31269efa-65f4-11dc-a456-00164198f5a6}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL exiplorer.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31269efb-65f4-11dc-a456-00164198f5a6}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL exiplorer.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31269efc-65f4-11dc-a456-00164198f5a6}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL exiplorer.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31269efd-65f4-11dc-a456-00164198f5a6}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL exiplorer.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4bae5294-286f-11dc-9f58-00164198f5a6}]
Auto\command- Ghost.pif
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL Ghost.pif

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9938b4d0-e9be-11db-9e4e-00164198f5a6}]
Auto\command- Ghost.pif
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE
Shell32.DLL,ShellExec_RunDLL Ghost.pif




-- End of Deckard's System Scanner: finished at 2007-09-23 16:49:14
------------


--
pmpinguel
------------------------------------------------------------------------
pmpinguel's Profile: http://forums.techarena.in/member.php?userid=31590
View this thread: http://forums.techarena.in/showthread.php?t=822696

http://forums.techarena.in



.

Quantcast