Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: Bug Report - Request Help

  1. #1
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Bug Report - Request Help

    Report from Windows XP S2. HP Pavilion ze4900 notebook, laptop computer. Internet Explorer 6x with Outlook Express. 500Mhz - 1Ghz Processor Speed. Realtek Gigabit adapter for DSL/Ethernet. 256 - 512 MB of RAM. Have Spybot SD 1.4, Zone Labs, Windows Firewall, ewido suite, SpywareBlaster. My recycle bin has the word, "none" listed on it and it's situated at the bottom of Safer-Networking, Ltd. on my Network Connections listing. Cannot install my HP psc 2110 all-in-one printer, scanner, copier...get weird stuff attempting to connect to the wrong port, etc. Attempted to use Reg Alyzer and the system went bonkers! Scan by Spybot S&D gets stalled and appears to struggle to complete. ewido finds no bugs. But there's something, somewhere inside system causing problems. If more information needed, let me know. Thank you. Tarheel.

    --- Search result list ---
    Congratulations!: No immediate threats were found. ()


    Congratulations!: No usage tracks were found. ()



    --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

    2005-05-31 blindman.exe (1.0.0.1)
    2005-05-31 SpybotSD.exe (1.4.0.3)
    2005-05-31 TeaTimer.exe (1.4.0.2)
    2006-02-21 unins000.exe (51.41.0.0)
    2005-05-31 Update.exe (1.4.0.0)
    2005-05-31 advcheck.dll (1.0.2.0)
    2005-05-31 aports.dll (2.1.0.0)
    2005-05-31 borlndmm.dll (7.0.4.453)
    2005-05-31 delphimm.dll (7.0.4.453)
    2005-05-31 SDHelper.dll (1.4.0.0)
    2005-05-31 Tools.dll (2.0.0.2)
    2005-05-31 UnzDll.dll (1.73.1.1)
    2005-05-31 ZipDll.dll (1.73.2.0)
    2006-02-24 Includes\Cookies.sbi (*)
    2006-02-24 Includes\Dialer.sbi (*)
    2006-02-24 Includes\Hijackers.sbi (*)
    2006-02-24 Includes\Keyloggers.sbi (*)
    2004-11-29 Includes\LSP.sbi (*)
    2006-02-24 Includes\Malware.sbi (*)
    2006-02-24 Includes\PUPS.sbi (*)
    2006-02-24 Includes\Revision.sbi (*)
    2006-02-24 Includes\Security.sbi (*)
    2006-02-24 Includes\Spybots.sbi (*)
    2005-02-17 Includes\Tracks.uti (*)
    2006-02-24 Includes\Trojans.sbi (*)



    --- System information ---
    Windows XP (Build: 2600) Service Pack 2
    / Windows XP / SP3: Windows XP Hotfix - KB873339
    / Windows XP / SP3: Windows XP Hotfix - KB885250
    / Windows XP / SP3: Windows XP Hotfix - KB885835
    / Windows XP / SP3: Windows XP Hotfix - KB885836
    / Windows XP / SP3: Windows XP Hotfix - KB886185
    / Windows XP / SP3: Windows XP Hotfix - KB887472
    / Windows XP / SP3: Windows XP Hotfix - KB887742
    / Windows XP / SP3: Windows XP Hotfix - KB888113
    / Windows XP / SP3: Windows XP Hotfix - KB888302
    / Windows XP / SP3: Security Update for Windows XP (KB890046)
    / Windows XP / SP3: Windows XP Hotfix - KB890859
    / Windows XP / SP3: Windows XP Hotfix - KB891781
    / Windows XP / SP3: Security Update for Windows XP (KB893756)
    / Windows XP / SP3: Windows Installer 3.1 (KB893803)
    / Windows XP / SP3: Update for Windows XP (KB894391)
    / Windows XP / SP3: Security Update for Windows XP (KB896358)
    / Windows XP / SP3: Security Update for Windows XP (KB896422)
    / Windows XP / SP3: Security Update for Windows XP (KB896423)
    / Windows XP / SP3: Security Update for Windows XP (KB896424)
    / Windows XP / SP3: Security Update for Windows XP (KB896428)
    / Windows XP / SP3: Update for Windows XP (KB898461)
    / Windows XP / SP3: Security Update for Windows XP (KB899587)
    / Windows XP / SP3: Security Update for Windows XP (KB899591)
    / Windows XP / SP3: Security Update for Windows XP (KB900725)
    / Windows XP / SP3: Security Update for Windows XP (KB901017)
    / Windows XP / SP3: Security Update for Windows XP (KB901190)
    / Windows XP / SP3: Security Update for Windows XP (KB901214)
    / Windows XP / SP3: Security Update for Windows XP (KB902400)
    / Windows XP / SP3: Security Update for Windows XP (KB904706)
    / Windows XP / SP3: Security Update for Windows XP (KB905414)
    / Windows XP / SP3: Security Update for Windows XP (KB905749)
    / Windows XP / SP3: Security Update for Windows XP (KB905915)
    / Windows XP / SP3: Security Update for Windows XP (KB908519)
    / Windows XP / SP3: Update for Windows XP (KB910437)
    / Windows XP / SP3: Security Update for Windows XP (KB911927)
    / Windows XP / SP3: Security Update for Windows XP (KB912919)
    / Windows XP / SP3: Security Update for Windows XP (KB913446)


    --- Startup entries list ---
    Located: HK_LM:Run, SpybotSnD
    command: "C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe" /autocheck /autofix /autoclose
    file: C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09ca174a605b480318731e691dc98539

    Located: HK_LM:Run, SynTPEnh
    command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    size: 688218
    MD5: a0ac3841dc595b5d86ab9e5016a0e36a

    Located: HK_LM:Run, SynTPEnh (DISABLED)
    command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    size: 688218
    MD5: a0ac3841dc595b5d86ab9e5016a0e36a

    Located: HK_CU:Run, SpybotSD TeaTimer
    command: C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\TeaTimer.exe
    file: C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496eee0ddbe485f658693826f44d38

    Located: HK_CU:RunServices, SpybotSnD
    command: C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe
    file: C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09ca174a605b480318731e691dc98539

    Located: System.ini, crypt32chain (DISABLED)
    command: crypt32.dll
    file: crypt32.dll

    Located: System.ini, cryptnet (DISABLED)
    command: cryptnet.dll
    file: cryptnet.dll

    Located: System.ini, cscdll (DISABLED)
    command: cscdll.dll
    file: cscdll.dll

    Located: System.ini, ScCertProp (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, Schedule (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, sclgntfy (DISABLED)
    command: sclgntfy.dll
    file: sclgntfy.dll

    Located: System.ini, SensLogn (DISABLED)
    command: WlNotify.dll
    file: WlNotify.dll

    Located: System.ini, termsrv (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, wlballoon (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll



    --- Browser helper object list ---
    {53707962-6F74-2D53-2644-206D7942484F} ()
    BHO name:
    CLSID name:
    description: Spybot-S&D IE Browser plugin
    classification: Legitimate
    known filename: SDhelper.dll
    info link: http://spybot.eon.net.au/
    info source: Patrick M. Kolla
    Path: C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\ADMINI~1\SPYBOT~1\
    Long name: SDHelper.dll
    Short name:
    Date (created): 2/21/2006 8:06:42 PM
    Date (last access): 2/27/2006 12:15:26 AM
    Date (last write): 5/31/2005 1:04:00 AM
    Filesize: 853672
    Attributes: archive
    MD5: 250D787A5712D7768DDC133B3E477759
    CRC32: D4589A41
    Version: 1.4.0.0



    --- ActiveX list ---


    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 692 ( 4) \SystemRoot\System32\smss.exe
    PID: 760 ( 692) \??\C:\WINDOWS\system32\csrss.exe
    PID: 784 ( 692) \??\C:\WINDOWS\system32\winlogon.exe
    PID: 828 ( 784) C:\WINDOWS\system32\services.exe
    size: 108032
    MD5: C6CE6EEC82F187615D1002BB3BB50ED4
    PID: 840 ( 784) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 84885F9B82F4D55C6146EBF6065D75D2
    PID: 996 ( 828) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1044 ( 828) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1136 ( 828) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1176 ( 828) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1296 ( 828) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1348 ( 828) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
    PID: 1480 ( 828) C:\Program Files\ewido\security suite\ewidoctrl.exe
    size: 16448
    MD5: 867D9D1FA818F8629BB7A4A26E94B06A
    PID: 1492 ( 828) C:\Program Files\ewido\security suite\ewidoguard.exe
    size: 151616
    MD5: 34A50717AD686900F078F5208F8E908E
    PID: 1564 ( 828) C:\WINDOWS\system32\tcpsvcs.exe
    size: 19456
    MD5: 32933B07FC16D9F778BEE12545FA1B1A
    PID: 1612 ( 828) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 288 ( 176) C:\WINDOWS\Explorer.EXE
    size: 1032192
    MD5: A0732187050030AE399B241436565E64
    PID: 304 ( 828) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: F1958FBF86D5C004CF19A5951A9514B7
    PID: 560 ( 288) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    size: 688218
    MD5: A0AC3841DC595B5D86AB9E5016A0E36A
    PID: 600 ( 288) C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496EEE0DDBE485F658693826F44D38
    PID: 404 ( 288) C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09CA174A605B480318731E691DC98539
    PID: 456 ( 288) C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    size: 755472
    MD5: E85C5DC2659F562C496E839649AA7200
    PID: 1912 ( 828) C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    size: 1693448
    MD5: 7E9C8F0BF97910E04A078799837BB6F2
    PID: 4 ( 0) System


    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 2/27/2006 12:43:51 AM

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\@
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    http://security.kolla.de/


    --- Winsock Layered Service Provider list ---
    Protocol 0: MSAFD Tcpip [TCP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 1: MSAFD Tcpip [UDP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 2: MSAFD Tcpip [RAW/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 3: RSVP UDP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 4: RSVP TCP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 5: MSAFD Tcpip [TCP/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 6: MSAFD Tcpip [UDP/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 7: MSAFD Tcpip [RAW/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] SEQPACKET 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] DATAGRAM 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] SEQPACKET 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] DATAGRAM 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{018F8194-4866-4BA2-86F0-76DC05CE6BB4}] SEQPACKET 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{018F8194-4866-4BA2-86F0-76DC05CE6BB4}] DATAGRAM 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] SEQPACKET 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] DATAGRAM 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] SEQPACKET 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] DATAGRAM 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{40923AA9-E991-4DBF-BA36-68E548FC0122}] SEQPACKET 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 19: MSAFD NetBIOS [\Device\NetBT_Tcpip_{40923AA9-E991-4DBF-BA36-68E548FC0122}] DATAGRAM 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 20: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D9989E1F-AF5C-499E-94F3-0603C3105DEE}] SEQPACKET 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 21: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D9989E1F-AF5C-499E-94F3-0603C3105DEE}] DATAGRAM 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Namespace Provider 0: Tcpip
    GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: TCP/IP

    Namespace Provider 1: NTDS
    GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
    Filename: %SystemRoot%\System32\winrnr.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\winrnr.dll
    DB protocol: NTDS

    Namespace Provider 2: Network Location Awareness (NLA) Namespace
    GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: NLA-Namespace

  2. #2
    Security Expert-Emeritus
    Join Date
    Oct 2005
    Posts
    5,025

    Default

    Hello

    Re-anable these normal windows items
    Located: System.ini, crypt32chain (DISABLED)
    command: crypt32.dll
    file: crypt32.dll
    Located: System.ini, cryptnet (DISABLED)
    command: cryptnet.dll
    file: cryptnet.dll
    Located: System.ini, cscdll (DISABLED)
    command: cscdll.dll
    file: cscdll.dll
    Located: System.ini, ScCertProp (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll
    Located: System.ini, Schedule (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll
    Located: System.ini, sclgntfy (DISABLED)
    command: sclgntfy.dll
    file: sclgntfy.dll
    Located: System.ini, SensLogn (DISABLED)
    command: WlNotify.dll
    file: WlNotify.dll
    Located: System.ini, termsrv (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll
    Located: System.ini, wlballoon (DISABLED)
    command: wlnotify.dll
    file: wlnotify.dll




    C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Spybot - Search & Destroy\SpybotSD.exe

    Please do not install any programs in the start menu, i suggest uninstalling SSD (and anything else you have installed there) reboot and install again but this time let it install to (default) program files.

  3. #3
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Thanks Lonny!

    I'll do as you've instructed and report the outcome. Thank you for responding so fast. I appreciate it. Tarheel.

  4. #4
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Lonnie, Submitting Report-Part 1

    Hello Lonnie,

    Here's a report as of today (Fri. 03-03-06). I think I've done all you suggested to clean up my computer. I had to reformat my hard drive and attend to other details. I noticed that I can no longer update my "host" file on Spybot S&D 1.4. Is this a problem, or a new feature? Also, I'd like to connect my printer without getting a lot of stuff from HPZ...(something). If you can help, I'd appreciate it. Thanks for the advice and I hope I've done okay. Let me know. Tarheel

    PART 1:

    --- Search result list ---
    Congratulations!: No immediate threats were found. ()
    Congratulations!: No usage tracks were found. ()

    --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---
    2005-05-31 blindman.exe (1.0.0.1)
    2005-05-31 SpybotSD.exe (1.4.0.3)
    2005-05-31 TeaTimer.exe (1.4.0.2)
    2006-03-02 unins000.exe (51.41.0.0)
    2005-05-31 Update.exe (1.4.0.0)
    2005-05-31 advcheck.dll (1.0.2.0)
    2005-05-31 aports.dll (2.1.0.0)
    2005-05-31 borlndmm.dll (7.0.4.453)
    2005-05-31 delphimm.dll (7.0.4.453)
    2005-05-31 SDHelper.dll (1.4.0.0)
    2005-05-31 Tools.dll (2.0.0.2)
    2005-05-31 UnzDll.dll (1.73.1.1)
    2005-05-31 ZipDll.dll (1.73.2.0)
    2006-02-24 Includes\Cookies.sbi (*)
    2006-02-24 Includes\Dialer.sbi (*)
    2006-02-24 Includes\Hijackers.sbi (*)
    2006-02-24 Includes\Keyloggers.sbi (*)
    2004-11-29 Includes\LSP.sbi (*)
    2006-02-24 Includes\Malware.sbi (*)
    2006-02-24 Includes\PUPS.sbi (*)
    2006-02-24 Includes\Revision.sbi (*)
    2006-02-24 Includes\Security.sbi (*)
    2006-02-24 Includes\Spybots.sbi (*)
    2005-02-17 Includes\Tracks.uti (*)
    2006-02-24 Includes\Trojans.sbi (*)

    --- System information ---
    Windows XP (Build: 2600) Service Pack 2

    --- Startup entries list ---
    Located: HK_LM:Run, SpybotSnD
    command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck /autofix /autoclose
    file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09ca174a605b480318731e691dc98539

    Located: HK_LM:Run, SynTPEnh
    command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    size: 688218
    MD5: a0ac3841dc595b5d86ab9e5016a0e36a

    Located: HK_LM:Run, SynTPLpr
    command: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    file: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    size: 98394
    MD5: ab349998e551de1c0dcc5ad63ce41d31

    Located: HK_LM:Run, Zone Labs Client
    command: C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    file: C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    size: 755472
    MD5: d5da49a3359a1f8a4623b7ef021568cc

    Located: HK_LM:Run, IMEKRMIG6.1 (DISABLED)
    command: C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    file: C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    size: 44032
    MD5: e6bb63bbe1bed01769ca87f4dac286c8

    Located: HK_LM:Run, IMJPMIG8.1 (DISABLED)
    command: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    file: C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
    size: 208952
    MD5: 7bbe4cf421aecc7f0226edd75f12079f

    Located: HK_LM:Run, MSPY2002 (DISABLED)
    command: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    file: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
    size: 59392
    MD5: 1b17e09c1223f6d17336d2dd7a1af4f4

    Located: HK_LM:Run, PHIME2002A (DISABLED)
    command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
    size: 455168
    MD5: 024dc0f68df5fd6ae9dd82dfbaf479d6

    Located: HK_LM:Run, PHIME2002ASync (DISABLED)
    command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
    size: 455168
    MD5: 024dc0f68df5fd6ae9dd82dfbaf479d6

    Located: HK_CU:Run, SpybotSD TeaTimer
    command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496eee0ddbe485f658693826f44d38

    Located: HK_CU:RunServices, SpybotSnD
    command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"/ autofix/autoupdate/autohidetaskbar/autoimmunize/autoclose\ all hives
    file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09ca174a605b480318731e691dc98539

    Located: WinLogon, crypt32chain
    command: crypt32.dll
    file: crypt32.dll

    Located: WinLogon, cryptnet
    command: cryptnet.dll
    file: cryptnet.dll

    Located: WinLogon, cscdll
    command: cscdll.dll
    file: cscdll.dll

    Located: WinLogon, ScCertProp
    command: wlnotify.dll
    file: wlnotify.dll

    Located: WinLogon, Schedule
    command: wlnotify.dll
    file: wlnotify.dll

    Located: WinLogon, sclgntfy
    command: sclgntfy.dll
    file: sclgntfy.dll

    Located: WinLogon, SensLogn
    command: WlNotify.dll
    file: WlNotify.dll

    Located: WinLogon, termsrv
    command: wlnotify.dll
    file: wlnotify.dll

    Located: WinLogon, wlballoon
    command: wlnotify.dll
    file: wlnotify.dll

    Located: WinLogon, ComPlusSetup (DISABLED)
    command: C:\WINDOWS\system32\catsrvut.dll
    file: C:\WINDOWS\system32\catsrvut.dll
    size: 628224
    MD5: 29a6ca838d3e05021b865c103d3ca429



    --- Browser helper object list ---
    {53707962-6F74-2D53-2644-206D7942484F} ()
    BHO name:
    CLSID name:
    description: Spybot-S&D IE Browser plugin
    classification: Legitimate
    known filename: SDhelper.dll
    info link: http://spybot.eon.net.au/
    info source: Patrick M. Kolla
    Path: C:\PROGRA~1\SPYBOT~1\
    Long name: SDHelper.dll
    Short name:
    Date (created): 3/2/2006 3:35:42 PM
    Date (last access): 3/3/2006 4:15:02 PM
    Date (last write): 5/31/2005 1:04:00 AM
    Filesize: 853672
    Attributes: archive
    MD5: 250D787A5712D7768DDC133B3E477759
    CRC32: D4589A41
    Version: 1.4.0.0

    --- ActiveX list ---

    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 704 ( 4) \SystemRoot\System32\smss.exe
    PID: 772 ( 704) \??\C:\WINDOWS\system32\csrss.exe
    PID: 844 ( 704) \??\C:\WINDOWS\system32\winlogon.exe
    PID: 888 ( 844) C:\WINDOWS\system32\services.exe
    size: 108032
    MD5: C6CE6EEC82F187615D1002BB3BB50ED4
    PID: 900 ( 844) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 84885F9B82F4D55C6146EBF6065D75D2
    PID: 1076 ( 888) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1176 ( 888) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1212 ( 888) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1412 ( 888) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1428 ( 888) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1520 ( 888) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: 7435B108B935E42EA92CA94F59C8E717
    PID: 1628 ( 888) C:\Program Files\ewido\security suite\ewidoctrl.exe
    size: 16448
    MD5: 867D9D1FA818F8629BB7A4A26E94B06A
    PID: 1644 ( 888) C:\Program Files\ewido\security suite\ewidoguard.exe
    size: 151616
    MD5: 34A50717AD686900F078F5208F8E908E
    PID: 1712 ( 888) C:\WINDOWS\system32\tcpsvcs.exe
    size: 19456
    MD5: 32933B07FC16D9F778BEE12545FA1B1A
    PID: 1728 ( 888) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 8F078AE4ED187AAABC0A305146DE6716
    PID: 1780 ( 888) C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    size: 1693448
    MD5: 3DF034E188376A3FE5BD5A1CF7F76D0B
    PID: 620 ( 888) C:\WINDOWS\system32\ZoneLabs\isafe.exe
    size: 188416
    MD5: F2AA32E37D59A5480A9C98B3C1D6A9B2
    PID: 1392 ( 888) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: F1958FBF86D5C004CF19A5951A9514B7
    PID: 1640 (1776) C:\WINDOWS\Explorer.EXE
    size: 1032192
    MD5: A0732187050030AE399B241436565E64
    PID: 1960 (1640) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    size: 688218
    MD5: A0AC3841DC595B5D86AB9E5016A0E36A
    PID: 2032 (1640) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    size: 98394
    MD5: AB349998E551DE1C0DCC5AD63CE41D31
    PID: 1472 (1640) C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    size: 755472
    MD5: D5DA49A3359A1F8A4623B7EF021568CC
    PID: 248 (1640) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09CA174A605B480318731E691DC98539
    PID: 952 (1640) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496EEE0DDBE485F658693826F44D38
    PID: 4 ( 0) System


    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 3/3/2006 4:22:14 PM

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\@
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://security.kolla.de/
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    http://security.kolla.de/
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    http://security.kolla.de/

    --- Winsock Layered Service Provider list ---
    Protocol 0: CA ISafe LSP over [MSAFD Tcpip [TCP/IP]]
    GUID: {29A4C104-91CA-45A4-83CB-8C9D3B76C1C7}
    Filename: C:\WINDOWS\system32\ZoneLabs\vetredir.dll

    Protocol 1: CA ISafe LSP over [MSAFD Tcpip [UDP/IP]]
    GUID: {29A4C104-91CA-45A4-83CB-8C9D3B76C1C7}
    Filename: C:\WINDOWS\system32\ZoneLabs\vetredir.dll

    Protocol 2: CA ISafe LSP over [MSAFD Tcpip [RAW/IP]]
    GUID: {29A4C104-91CA-45A4-83CB-8C9D3B76C1C7}
    Filename: C:\WINDOWS\system32\ZoneLabs\vetredir.dll

    Protocol 3: MSAFD Tcpip [TCP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 4: MSAFD Tcpip [UDP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 5: MSAFD Tcpip [RAW/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 6: RSVP UDP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 7: RSVP TCP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 8: MSAFD Tcpip [TCP/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 9: MSAFD Tcpip [UDP/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 10: MSAFD Tcpip [RAW/IPv6]
    GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IPv6 protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip[*]

    Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] SEQPACKET 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] DATAGRAM 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] SEQPACKET 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] DATAGRAM 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{018F8194-4866-4BA2-86F0-76DC05CE6BB4}] SEQPACKET 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{018F8194-4866-4BA2-86F0-76DC05CE6BB4}] DATAGRAM 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] SEQPACKET 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C5F55ED5-A93C-484E-92AB-808F060B1C2F}] DATAGRAM 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 19: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] SEQPACKET 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 20: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B4AF08FC-1845-4158-A901-BB7BDD32014E}] DATAGRAM 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 21: MSAFD NetBIOS [\Device\NetBT_Tcpip_{40923AA9-E991-4DBF-BA36-68E548FC0122}] SEQPACKET 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 22: MSAFD NetBIOS [\Device\NetBT_Tcpip_{40923AA9-E991-4DBF-BA36-68E548FC0122}] DATAGRAM 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 23: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D9989E1F-AF5C-499E-94F3-0603C3105DEE}] SEQPACKET 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 24: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D9989E1F-AF5C-499E-94F3-0603C3105DEE}] DATAGRAM 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 25: CA ISafe LSP
    GUID: {AE2578B4-F478-4313-9A3E-1B83F7A643DF}
    Filename: C:\WINDOWS\system32\ZoneLabs\vetredir.dll

    Namespace Provider 0: Tcpip
    GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: TCP/IP

    Namespace Provider 1: NTDS
    GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
    Filename: %SystemRoot%\System32\winrnr.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\winrnr.dll
    DB protocol: NTDS

    Namespace Provider 2: Network Location Awareness (NLA) Namespace
    GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: NLA-Namespace

  5. #5
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Lonnie Submitting Report-Part 2

    PART 2:
    --- Uninstall list ---
    (AddressBook)
    (Branding)
    (DirectAnimation)
    (DirectDrawEx)
    (DXM_Runtime)

    ewido security suite (ewidosecuritysuite)
    install location: C:\Program Files\ewido\security suite
    uninstall cmd: C:\Program Files\ewido\security suite\Uninstall.exe
    publisher: ewido networks
    help link: http://www.ewido.net

    FileAlyzer 1.4 1.4 (FileAlyzer_is1)
    install location: C:\Program Files\Safer Networking\FileAlyzer\
    uninstall cmd: "C:\Program Files\Safer Networking\FileAlyzer\unins000.exe"
    publisher: Safer Networking Ltd.

    (Fontcore)
    (ICW)
    (IE40)
    (IE4Data)
    (IE5BAKEX)
    (IEData)
    (MobileOptionPack)

    Mozilla Firefox (1.5) 1.5 (en-US) (Mozilla Firefox (1.5))
    install location: C:\Program Files\Mozilla Firefox
    uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (en-US)"
    publisher: Mozilla

    Mozilla Thunderbird (1.5) 1.5 (en-US) (Mozilla Thunderbird (1.5))
    install location: C:\Program Files\Mozilla Thunderbird
    uninstall cmd: C:\WINDOWS\UninstallThunderbird.exe /ua "1.5 (en-US)"
    publisher: Mozilla

    (MPlayer2)
    (NetMeeting)
    (OutlookExpress)
    (SchedulingAgent)

    Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
    install location: C:\Program Files\Spybot - Search & Destroy\
    uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    publisher: Safer Networking Limited

    SpywareBlaster v3.5.1 3.5.1 (SpywareBlaster_is1)
    install location: C:\Program Files\SpywareBlaster\
    uninstall cmd: "C:\Program Files\SpywareBlaster\unins000.exe"
    publisher: Javacool Software LLC

    Synaptics Pointing Device Driver 7.12.7.0 (SynTPDeinstKey)
    uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall

    ZoneAlarm Anti-virus 6.1.744.000 (ZoneAlarm Anti-virus)
    uninstall cmd: C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
    publisher: Zone Labs, Inc
    help link: C:\Program Files\Zone Labs\ZoneAlarm\Help\zaclients.chm

    --- System Services ---
    Service (registry key): 6to4
    Display name: IPv6 Helper Service
    Description: Provides DDNS name registration and automatic IPv6 connectivity over an IPv4 network. If this service is stopped, other computers may not be able to reach it by name and the machine will only have IPv6 connectivity if it is connected to a native IPv6 network. If this service is disabled, any other services that explicitly depend on this service will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RpcSS,tcpip6,winmgmt

    Service (registry key): Abiosdsk
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): abp480n5
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): ACPI
    Display name: Microsoft ACPI Driver
    Image path: system32\DRIVERS\ACPI.sys
    Image size: 187776
    Image MD5: A10C7534F7223F4A73A948967D00E69B
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): ACPIEC
    Display name: Microsoft Embedded Controller Driver
    Image path: system32\DRIVERS\ACPIEC.sys
    Image size: 11648
    Image MD5: 9859C0F6936E723E4892D7141B1327D5
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): adpu160m
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): AFD
    Display name: AFD
    Description: AFD Networking Support Environment
    Image path: \SystemRoot\System32\drivers\afd.sys
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Aha154x
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): aic78u2
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): aic78xx
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): ALG
    Display name: Application Layer Gateway Service
    Description: Provides support for 3rd party protocol plug-ins for Internet Connection Sharing and the Windows Firewall.
    Object name: NT AUTHORITY\LocalService
    Image path: %SystemRoot%\System32\alg.exe
    Image size: 44544
    Image MD5: F1958FBF86D5C004CF19A5951A9514B7
    Start: 3
    Type: 16
    Error Control: 1

    Service (registry key): AliIde
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): amsint
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): AppMgmt
    Display name: Application Management
    Description: Provides software installation services such as Assign, Publish, and Remove.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1

    Service (registry key): asc
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): asc3350p
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): asc3550
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): AsyncMac
    Display name: RAS Asynchronous Media Driver
    Description: RAS Asynchronous Media Driver
    Image path: system32\DRIVERS\asyncmac.sys
    Image size: 14336
    Image MD5: 02000ABF34AF4C218C35D257024807D6
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): atapi
    Display name: Standard IDE/ESDI Hard Disk Controller
    Image path: system32\DRIVERS\atapi.sys
    Image size: 95360
    Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): Atdisk
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): Atmarpc
    Display name: ATM ARP Client Protocol
    Description: ATM ARP Client Protocol
    Image path: system32\DRIVERS\atmarpc.sys
    Image size: 59904
    Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): AudioSrv
    Display name: Windows Audio
    Description: Manages audio devices for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: PlugPlay,RpcSs

    Service (registry key): audstub
    Display name: Audio Stub Driver
    Image path: system32\DRIVERS\audstub.sys
    Image size: 3072
    Image MD5: D9F724AA26C010A217C97606B160ED68
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): BattC
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): BCM43XX
    Display name: Broadcom 802.11 Network Adapter Driver
    Image path: system32\DRIVERS\bcmwl5.sys
    Image size: 424320
    Image MD5: 69F940672BE0ECEE5BD1E905706BA8CE
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): Beep
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): BITS
    Display name: Background Intelligent Transfer Service
    Description: Transfers data between clients and servers in the background. If BITS is disabled, features such as Windows Update will not work correctly.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): CAISafe
    Display name: CA ISafe
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\ZoneLabs\isafe.exe
    Image size: 188416
    Image MD5: F2AA32E37D59A5480A9C98B3C1D6A9B2
    Start: 3
    Type: 16
    Error Control: 1

    Service (registry key): cbidf2k
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): cd20xrnt
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Cdaudio
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): Cdfs
    Start: 4
    Type: 2
    Error Control: 1
    Depends On group: "SCSI CDROM Class"

    Service (registry key): Cdrom
    Display name: CD-ROM Driver
    Image path: system32\DRIVERS\cdrom.sys
    Image size: 49536
    Image MD5: AF9C19B3100FE010496B1A27181FBF72
    Start: 1
    Type: 1
    Error Control: 1
    Depends On group: "SCSI miniport"

    Service (registry key): Changer
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): CiSvc
    Display name: Indexing Service
    Description: Indexes contents and properties of files on local and remote computers; provides rapid access to files through flexible querying language.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\cisvc.exe
    Image size: 5632
    Image MD5: 3192BD04D032A9C4A85A3278C268A13A
    Start: 3
    Type: 288
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): ClipSrv
    Display name: ClipBook
    Description: Enables ClipBook Viewer to store information and share it with remote computers. If the service is stopped, ClipBook Viewer will not be able to share information with remote computers. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\clipsrv.exe
    Start: 4
    Type: 16
    Error Control: 1
    Depends On services: NetDDE

    Service (registry key): CmBatt
    Display name: Microsoft ACPI Control Method Battery Driver
    Image path: system32\DRIVERS\CmBatt.sys
    Image size: 14080
    Image MD5: 4266BE808F85826AEDF3C64C1E240203
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): CmdIde
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Compbatt
    Display name: Microsoft Composite Battery Driver
    Image path: system32\DRIVERS\compbatt.sys
    Image size: 9344
    Image MD5: DF1B1A24BF52D0EBC01ED4ECE8979F50
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): COMSysApp
    Display name: COM+ System Application
    Description: Manages the configuration and tracking of Component Object Model (COM)+-based components. If the service is stopped, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
    Image size: 5120
    Image MD5: DD87DB7387B9EB441C5674888A0D840C
    Start: 3
    Type: 16
    Error Control: 1
    Depends On services: rpcss

    Service (registry key): ContentFilter
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): ContentIndex
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): Cpqarray
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): CryptSvc
    Display name: Cryptographic Services
    Description: Provides three management services: Catalog Database Service, which confirms the signatures of Windows files; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): dac2w2k
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): dac960nt
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): DcomLaunch
    Display name: DCOM Server Process Launcher
    Description: Provides launch functionality for DCOM services.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost -k DcomLaunch
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): Dhcp
    Display name: DHCP Client
    Description: Manages network configuration by registering and updating IP addresses and DNS names.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: Tcpip,Afd,NetBT

    Service (registry key): Disk
    Display name: Disk Driver
    Image path: system32\DRIVERS\disk.sys
    Image size: 36352
    Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0
    Start: 0
    Type: 1
    Error Control: 1
    Depends On group: "SCSI miniport"

    Service (registry key): dmadmin
    Display name: Logical Disk Manager Administrative Service
    Description: Configures hard disk drives and volumes. The service only runs for configuration processes and then stops.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\dmadmin.exe /com
    Image size: 224768
    Image MD5: 554C7CB178FE3BD12450B81AD63ADBC3
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RpcSs,PlugPlay,DmServer

    Service (registry key): dmboot
    Image path: System32\drivers\dmboot.sys
    Image size: 799744
    Image MD5: C0FBB516E06E243F0CF31F597E7EBF7D
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): dmio
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): dmload
    Start: 4
    Type: 1
    Error Control: 1

  6. #6
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Lonnie Submitting Report Part 3

    PART 3: * * * * * *
    Service (registry key): dmserver
    Display name: Logical Disk Manager
    Description: Detects and monitors new hard disk drives and sends disk volume information to Logical Disk Manager Administrative Service for configuration. If this service is stopped, dynamic disk status and configuration information may become out of date. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RpcSs,PlugPlay

    Service (registry key): Dnscache
    Display name: DNS Client
    Description: Resolves and caches Domain Name System (DNS) names for this computer. If this service is stopped, this computer will not be able to resolve DNS names and locate Active Directory domain controllers. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: NT AUTHORITY\NetworkService
    Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): dpti2o
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): ERSvc
    Display name: Error Reporting Service
    Description: Allows error reporting for services and applictions running in non-standard environments.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 0
    Depends On services: RpcSs

    Service (registry key): Eventlog
    Display name: Event Log
    Description: Enables event log messages issued by Windows-based programs and components to be viewed in Event Viewer. This service cannot be stopped.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\services.exe
    Image size: 108032
    Image MD5: C6CE6EEC82F187615D1002BB3BB50ED4
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): EventSystem
    Display name: COM+ Event System
    Description: Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): ewido security suite control
    Display name: ewido security suite control
    Object name: LocalSystem
    Image path: C:\Program Files\ewido\security suite\ewidoctrl.exe
    Image size: 16448
    Image MD5: 867D9D1FA818F8629BB7A4A26E94B06A
    Start: 2
    Type: 272
    Error Control: 0

    Service (registry key): ewido security suite driver
    Display name: ewido security suite driver
    Image path: \??\C:\Program Files\ewido\security suite\guard.sys
    Image size: 3072
    Image MD5: 2FF233E31AEFFF332F187E8E2ABFA6C5
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): ewido security suite guard
    Display name: ewido security suite guard
    Object name: LocalSystem
    Image path: C:\Program Files\ewido\security suite\ewidoguard.exe
    Image size: 151616
    Image MD5: 34A50717AD686900F078F5208F8E908E
    Start: 2
    Type: 272
    Error Control: 0

    Service (registry key): Fastfat
    Start: 4
    Type: 2
    Error Control: 1

    Service (registry key): FastUserSwitchingCompatibility
    Display name: Fast User Switching Compatibility
    Description: Provides management for applications that require assistance in a multiple user environment.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: TermService

    Service (registry key): Fdc
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): Fips
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Flpydisk
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): FltMgr
    Display name: FltMgr
    Description: File System Filter Manager Driver
    Image path: system32\DRIVERS\fltMgr.sys
    Image size: 124800
    Image MD5: 157754F0DF355A9E0A6F54721914F9C6
    Start: 0
    Type: 2
    Error Control: 1

    Service (registry key): Fs_Rec
    Start: 1
    Type: 8
    Error Control: 0

    Service (registry key): Ftdisk
    Display name: Volume Manager Driver
    Image path: system32\DRIVERS\ftdisk.sys
    Image size: 125056
    Image MD5: 6AC26732762483366C3969C9E4D2259D
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): Gpc
    Display name: Generic Packet Classifier
    Description: Generic Packet Classifier
    Image path: system32\DRIVERS\msgpc.sys
    Image size: 35072
    Image MD5: C0F1D4A21DE5A415DF8170616703DEBF
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): helpsvc
    Display name: Help and Support
    Description: Enables Help and Support Center to run on this computer. If this service is stopped, Help and Support Center will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): HidServ
    Display name: Human Interface Device Access
    Description: Enables generic input access to Human Interface Devices (HID), which activates and maintains the use of predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is stopped, hot buttons controlled by this service will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 4
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): hidusb
    Display name: Microsoft HID Class Driver
    Image path: system32\DRIVERS\hidusb.sys
    Image size: 9600
    Image MD5: 1DE6783B918F540149AA69943BDFEBA8
    Start: 3
    Type: 1
    Error Control: 0

    Service (registry key): hpn
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): HPZid412
    Display name: IEEE-1284.4 Driver HPZid412
    Image path: system32\DRIVERS\HPZid412.sys
    Image size: 50960
    Image MD5: D3EAA6F63FFF759D36F8B7ADC0B52B7D
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): HPZipr12
    Display name: Print Class Driver for IEEE-1284.4 HPZipr12
    Image path: system32\DRIVERS\HPZipr12.sys
    Image size: 16112
    Image MD5: 8B34661CD899E9274395D5F9CEEF725E
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): HPZius12
    Display name: USB to IEEE-1284.4 Translation Driver HPZius12
    Image path: system32\DRIVERS\HPZius12.sys
    Image size: 22512
    Image MD5: 8C5B5566BBC78D6AEDAD44E92DBD878E
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): HTTP
    Display name: HTTP
    Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start.
    Image path: System32\Drivers\HTTP.sys
    Image size: 263040
    Image MD5: C19B522A9AE0BBC3293397F3055E80A1
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): HTTPFilter
    Display name: HTTP SSL
    Description: This service implements the secure hypertext transfer protocol (HTTPS) for the HTTP service, using the Secure Socket Layer (SSL). If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter
    Image size: 14336
    Image MD5: 8F078AE4ED187AAABC0A305146DE6716
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: HTTP

    Service (registry key): i2omgmt
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): i2omp
    Start: 4
    Type: 1
    Error Control: 1

  7. #7
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    All four topics merged, please click Post Reply instead of starting new topics.

    Thanks.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  8. #8
    Security Expert-Emeritus
    Join Date
    Oct 2005
    Posts
    5,025

    Default

    Check HPs website for faq's on your model printer.

    You formated the pc or reinstalled windows > big differance.
    You dont apear to have an antivirus program installed and running

    why is this disabled ?
    Located: WinLogon, ComPlusSetup (DISABLED)
    command: C:\WINDOWS\system32\catsrvut.dll

    Hosts file: My preferance is to use the one here
    http://www.mvps.org/winhelp2002/hosts.htm

  9. #9
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Thank You Lonny!

    Please accept my apology for spelling your name incorrectly...(Lonnie). My brother-in-law's name is Lonnie, and it's become a habit I suppose. Thank you for the advice. I'll reinstate the C:\WinLogon\System32\catsrvut.dll and check out the web site [http://www.mvps.org/winhelp 2002/hosts.htm] you recommended. Did you see anything else in the report that you feel needs correcting and/or eliminating? Please let me know.

    Will [http://security.kolla.de] no longer be my host provider? I noticed the host section on Spybot S&D was missing. Again, many thanks for your kindness. Tarheel

  10. #10
    Member
    Join Date
    Oct 2005
    Location
    USA
    Posts
    50

    Default Thank You Tashi!

    Tashi, thanks for the advice. I'll try to remember to submit a Post instead of a thread. Appreciate your kindness. Tarheel

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •