Jump to content
Posted 16 May 2008 - 09:39 AM
Posted 16 May 2008 - 11:33 AM
Posted 16 May 2008 - 03:44 PM
Posted 16 May 2008 - 05:16 PM
Posted 18 May 2008 - 06:15 AM
Posted 18 May 2008 - 04:31 PM
Posted 19 May 2008 - 04:35 PM
Posted 19 May 2008 - 06:04 PM
Posted 20 May 2008 - 02:06 AM
Posted 20 May 2008 - 08:21 AM
Code Integrity (CI) protects Windows Vista by verifying that system binaries havenít been tampered with by malicious code and by ensuring that there are no unsigned drivers running in kernel mode on the system. CI starts as Windows starts up. The boot loader checks the integrity of the kernel, the Hardware Abstraction Layer (HAL), and the boot-start drivers. After these binaries have been verified, the system starts and the memory manager calls CI to verify any binaries that are loaded into the kernelís memory space. The binaries are verified by looking up their signatures in the system catalogs. Aside from the kernel memory space, CI verifies binaries loaded into a protected process and system installed dynamic libraries that implement core cryptographic functions.
The CI.DLL is made by the Microsoftís DRM team to ensure the whole machine is in a trusted state to play DRM-protected content. For that reason, CI.DLL also checks the integrity of user-mode processes that are handling DRM-protected content.
Posted 20 May 2008 - 10:09 AM
Posted 20 May 2008 - 02:39 PM
Hey! K, so here it is! Now it said that everything was all done and dusted but when i go to exit out of malwarebytes it says there is a scan still running and do i really, really want to exit? So I havent done as yet! Dont know if it is an error or what!
I have downloaded that avenger thingumy and extracted it to my desktop - do you want me to start it off or anything? Havent clicked as I darent without your instructions!
Files to delete: C:\Program Files\Internet Explorer\msimg32.dll C:\Program Files\MSN Messenger\msimg32.dll C:\Program Files\MSN Messenger\riched20.dll C:\Windows\dbrmdwb.exe C:\Windows\System32\f3PSSavr.scr
PS Does your previous message mean i have been given the all clear then? Apart from that ci.dll thing that is supposed to be there anyway (do i need to do anything else about that BTW? It says on that site something about allowing it or something )?
Edited by steamwiz, 20 May 2008 - 02:41 PM.
Posted 20 May 2008 - 03:42 PM
Posted 20 May 2008 - 03:47 PM
Edited by steamwiz, 20 May 2008 - 03:47 PM.
0 members, 0 guests, 0 anonymous users