grahamperrin Posted September 1, 2010 Report Share Posted September 1, 2010 Screen shots etc. to appear at http://www.wuala.com/%23%23ClamAV/006 This is the physical machine, controlled via RDP, that very recently failed to install updates. The security layer in this case: * includes Microsoft Security Essentials * excludes Sophos products. PS sincere apologies for the flood. Nearly done, I hope! Link to comment Share on other sites More sharing options...
grahamperrin Posted September 1, 2010 Author Report Share Posted September 1, 2010 <?xml version="1.0" encoding="UTF-16"?> <DATABASE> <EXE NAME="iptray.exe" FILTER="GRABMI_FILTER_PRIVACY"> <MATCHING_FILE NAME="agent.exe" SIZE="751536" CHECKSUM="0xBABA90C6" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Agent" COMPANY_NAME="Immunet Corporation" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="agent.exe" INTERNAL_NAME="agent" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0xBC3FF" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:12:49" UPTO_LINK_DATE="08/19/2010 04:12:49" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="creport.exe" SIZE="27464" CHECKSUM="0xE110E1DC" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Crash Reporter" COMPANY_NAME="Immunet Corporation" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="creport.exe" INTERNAL_NAME="creport" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x1651A" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:59" UPTO_LINK_DATE="08/19/2010 04:11:59" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dcf.dll" SIZE="183624" CHECKSUM="0x862817D3" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="cf.dll" INTERNAL_NAME="cf" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x3B3E8" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:32" UPTO_LINK_DATE="08/19/2010 04:11:32" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dcm.dll" SIZE="158720" CHECKSUM="0xDF1EFC6C" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Context Menu Handle" COMPANY_NAME="Immunet Corporation" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="dcm.dll" INTERNAL_NAME="dcm" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x0" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:54" UPTO_LINK_DATE="08/19/2010 04:11:54" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="det.dll" SIZE="55112" CHECKSUM="0x5079C970" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Ethos Engine" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="et.dll" INTERNAL_NAME="et" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0xE9AF" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:46" UPTO_LINK_DATE="08/19/2010 04:11:46" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dhr.dll" SIZE="331592" CHECKSUM="0x697FFB3C" MODULE_TYPE="WIN32" PE_CHECKSUM="0x5BF08" LINKER_VERSION="0x0" LINK_DATE="08/19/2010 04:11:48" UPTO_LINK_DATE="08/19/2010 04:11:48" /> <MATCHING_FILE NAME="dmz.dll" SIZE="41800" CHECKSUM="0x6E07185B" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" COMPANY_NAME="Immunet Corporation" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="dmz.dll" INTERNAL_NAME="dmz " LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0xD6B9" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:48" UPTO_LINK_DATE="08/19/2010 04:11:48" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dqr.dll" SIZE="256840" CHECKSUM="0xC005DD5A" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="qr.dll" INTERNAL_NAME="qr" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x48145" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:47" UPTO_LINK_DATE="08/19/2010 04:11:47" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dre.dll" SIZE="11776" CHECKSUM="0xC242947E" MODULE_TYPE="WIN32" PE_CHECKSUM="0x0" LINKER_VERSION="0x0" LINK_DATE="08/19/2010 04:11:27" UPTO_LINK_DATE="08/19/2010 04:11:27" /> <MATCHING_FILE NAME="drh.dll" SIZE="5447496" CHECKSUM="0x827FF674" MODULE_TYPE="WIN32" PE_CHECKSUM="0x53CC96" LINKER_VERSION="0x0" LINK_DATE="08/19/2010 04:12:31" UPTO_LINK_DATE="08/19/2010 04:12:31" /> <MATCHING_FILE NAME="drs.dll" SIZE="100168" CHECKSUM="0x1870D2D9" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Tray Res Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="et.dll" INTERNAL_NAME="et" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x23658" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:53" UPTO_LINK_DATE="08/19/2010 04:11:53" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dsl.dll" SIZE="280392" CHECKSUM="0x9FE228C5" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="sl.dll" INTERNAL_NAME="sl" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x4DEBA" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:40" UPTO_LINK_DATE="08/19/2010 04:11:40" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dsp.dll" SIZE="300872" CHECKSUM="0x4D457C3E" MODULE_TYPE="WIN32" PE_CHECKSUM="0x4C933" LINKER_VERSION="0x0" LINK_DATE="08/19/2010 04:11:45" UPTO_LINK_DATE="08/19/2010 04:11:45" /> <MATCHING_FILE NAME="dti.dll" SIZE="31560" CHECKSUM="0x375740CD" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Tetra Engine Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="dti.dll" INTERNAL_NAME="ti" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x16506" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:41" UPTO_LINK_DATE="08/19/2010 04:11:41" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dut.dll" SIZE="29000" CHECKSUM="0xA7167BDC" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="ut.dll" INTERNAL_NAME="ut" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x15480" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:28" UPTO_LINK_DATE="08/19/2010 04:11:28" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="dxm.dll" SIZE="21832" CHECKSUM="0x37698DCD" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Library" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="xm.dll" INTERNAL_NAME="xm" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x139D7" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:11:30" UPTO_LINK_DATE="08/19/2010 04:11:30" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="ipsupporttool.exe" SIZE="40776" CHECKSUM="0xAD516043" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Diagnostic Tool" COMPANY_NAME="Immunet Corporation" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="ipsupporttool.exe" INTERNAL_NAME="ipsupporttool" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x154A0" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:12:07" UPTO_LINK_DATE="08/19/2010 04:12:07" VER_LANGUAGE="English (Canada) [0x1009]" /> <MATCHING_FILE NAME="iptray.exe" SIZE="2586440" CHECKSUM="0xC93B37FB" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Tray Client" COMPANY_NAME="Immunet" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="iptray.exe" INTERNAL_NAME="iptray.exe" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x278954" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:15:01" UPTO_LINK_DATE="08/19/2010 04:15:01" VER_LANGUAGE="English (United States) [0x409]" /> <MATCHING_FILE NAME="uninstall.exe" SIZE="843072" CHECKSUM="0x4AA18F21" MODULE_TYPE="WIN32" PE_CHECKSUM="0xD64F2" LINKER_VERSION="0x60000" LINK_DATE="12/05/2009 22:50:52" UPTO_LINK_DATE="12/05/2009 22:50:52" /> <MATCHING_FILE NAME="updater.exe" SIZE="25416" CHECKSUM="0x4E39B238" BIN_FILE_VERSION="2.0.15.12" BIN_PRODUCT_VERSION="2.0.15.12" PRODUCT_VERSION="2, 0, 15, 12" FILE_DESCRIPTION="Immunet Protect Updater" PRODUCT_NAME="Immunet Protect" FILE_VERSION="2, 0, 15, 12" ORIGINAL_FILENAME="updater.exe" INTERNAL_NAME="updater" LEGAL_COPYRIGHT="(c) Immunet. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x4" VERFILETYPE="0x1" MODULE_TYPE="WIN32" PE_CHECKSUM="0x152A3" LINKER_VERSION="0x0" UPTO_BIN_FILE_VERSION="2.0.15.12" UPTO_BIN_PRODUCT_VERSION="2.0.15.12" LINK_DATE="08/19/2010 04:12:09" UPTO_LINK_DATE="08/19/2010 04:12:09" VER_LANGUAGE="English (Canada) [0x1009]" /> </EXE> <EXE NAME="kernel32.dll" FILTER="GRABMI_FILTER_THISFILEONLY"> <MATCHING_FILE NAME="kernel32.dll" SIZE="989696" CHECKSUM="0x2D998938" BIN_FILE_VERSION="5.1.2600.5781" BIN_PRODUCT_VERSION="5.1.2600.5781" PRODUCT_VERSION="5.1.2600.5781" FILE_DESCRIPTION="Windows NT BASE API Client DLL" COMPANY_NAME="Microsoft Corporation" PRODUCT_NAME="Microsoft® Windows® Operating System" FILE_VERSION="5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)" ORIGINAL_FILENAME="kernel32" INTERNAL_NAME="kernel32" LEGAL_COPYRIGHT="© Microsoft Corporation. All rights reserved." VERFILEDATEHI="0x0" VERFILEDATELO="0x0" VERFILEOS="0x40004" VERFILETYPE="0x2" MODULE_TYPE="WIN32" PE_CHECKSUM="0xFE572" LINKER_VERSION="0x50001" UPTO_BIN_FILE_VERSION="5.1.2600.5781" UPTO_BIN_PRODUCT_VERSION="5.1.2600.5781" LINK_DATE="03/21/2009 14:06:58" UPTO_LINK_DATE="03/21/2009 14:06:58" VER_LANGUAGE="English (United States) [0x409]" /> </EXE> </DATABASE> I'll leave myself logged in to this machine, but not connected via RDP, pending a response. No rush; this machine is very rarely used. Link to comment Share on other sites More sharing options...
alfred Posted September 1, 2010 Report Share Posted September 1, 2010 Screen shots etc. to appear at http://www.wuala.com/%23%23ClamAV/006 This is the physical machine, controlled via RDP, that very recently failed to install updates. The security layer in this case: * includes Microsoft Security Essentials * excludes Sophos products. PS sincere apologies for the flood. Nearly done, I hope! Graham, The support snapshot you send should allow us to track this down. Thanks, al Link to comment Share on other sites More sharing options...
grahamperrin Posted September 3, 2010 Author Report Share Posted September 3, 2010 Immunet case #800 (relating to nearby http://forum.immunet.com/index.php?/topic/304-201512-code-19010-unable-to-install-updates-following-application-of-an-extended-plus-key-on-a-second-computer/ ) includes a snapshot for this machine. Link to comment Share on other sites More sharing options...
spaider-man Posted September 13, 2010 Report Share Posted September 13, 2010 I have also experienced the same problem with the free version. Closing the immunet window lags the system for a few seconds and closes the tray icon. Installation of Immunet was successful with no interruptions (SpyShelter disabled, Immunet whitelisted after). I uninstalled Immunet after noticing computer slow downs and constant lags on third day. Tray icon closing problem persisted. The specs are as follows: XP SP 3 AMD Sempron III 224 MB RAM installed, 1024 MB paging file Other security software includes: SpyShelter (added Immunet to whitelist) Windows Firewall USB Guardian To reproduce the problem: 1. Launch three applications and keep on desktop. 2. Connect to the internet 3. Launch Immunet Protect via tray icon 4. System lags, wait for a few moments. 5. When system fairly responsive, minimize/close Immunet Protect window (or the applications first, the order doesn't matter). 6. CPU Usage will spike. Windows closes. Tray icon shuts down. Workaround: 1. During system lag, launch Anti-Freeze. 2. Resume Immunet Protect and close properly. 3. Resume all processes afterwards. Perhaps the GUI uses too much RAM and/or CPU? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.