Author Topic: IE9 and the spinning cirlce (Read 581 times)

BeeZee · « **on:** November 13, 2012, 12:39:54 PM »

Hi Everybody and to you “The Patience of Jobe”.

My cousin, Alice, was having problems with her Dell laptop (Windows7) and using IE9. She could get on the internet (ATT is the ISP) with no problems. When she selected a bookmark, the bookmark would come up as usual but she could not do anything with her mouse for 5 to 10 minutes. In the tab you could see the spinning circle. Then she called me.

I asked what she had done recently to the computer. She worked on the computer Saturday and everything was good. Sunday she worked on it again and downloaded the updates for Adobe Flash, Adobe Reader, and Adobe Active X. Monday she is starting to have the spinning circle when accessing bookmarks.

I thought it was with her setup with ATT (modem/router problems) so I suggested that she come over and we'll use my setup (Comcast). Sure enough she had the same problem with bookmarks. So that eliminated the modem/router. I switched to a different mouse thinking maybe the mouse wasn't working properly but that was not the case.

I switched to my computer and accessed her Hotmail account (using IE9) which she was having problems with the spinning circle. It came up perfectly and was able to click on anything right away. So there is a problem with IE9 on her laptop.

Back to her laptop. I downloaded FF16 and installed it on her laptop. She can access all of her bookmarks without any problems using FF. So I am now convinced IE is the problem. I went to CP/Program and Feature to uninstall IE but it was not there. Got onto Google to find out how to uninstall IE. Came up with this, CP/Program and Feature/left pane click Turn Windows feature on or off/un-check IE/click OK. The IE icon disappears and I am thinking that is uninstalled. Got back on FF and downloaded IE9 and installed it. The same problem persists, the spinning circle and waiting for 5-10 minutes before you can do anything.

Did she get a virus when she downloaded the Adobe updates?

Ran Malwarebyte, a full scan and everything is OK.

Ran MSE, a full scan and everything is OK.

Below is the DDS and Attach logs.

Bernie and his pest Alice.

BeeZee · « **Reply #1 on:** November 13, 2012, 12:53:04 PM »

DDS (Ver_2012-11-07.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16450
Run by Alice at 9:42:51 on 2012-11-13
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3895.2501 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
C:\windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\svchost.exe -k HPService
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\rundll32.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\igfxpers.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\windows\system32\wuauclt.exe
C:\windows\system32\svchost.exe -k SDRSVC
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
mWinlogon: Userinit = userinit.exe
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: att.net Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe /boot
mRun: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Alice\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {E0FEE963-BB53-4215-81AD-B28C77384644} - hxxps://pattcw.att.motive.com/wizlet/DSLActivation/static/installer/ATTInternetInstaller64.cab
TCP: NameServer = 75.75.76.76 75.75.75.75 192.168.1.1
TCP: Interfaces\{31192460-14AC-412F-AFCF-73D684C78E6F} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{DB1A4DF4-FD44-43A7-811C-FC2EB980E720} : DHCPNameServer = 75.75.76.76 75.75.75.75 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} -
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe -expressboot
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Alice\AppData\Roaming\Mozilla\Firefox\Profiles\0yp6z68i.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotive.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll
FF - plugin: C:\windows\SysWOW64\npdeployJava1.dll
FF - plugin: C:\windows\SysWOW64\npmproxy.dll
FF - ExtSQL: !HIDDEN! 2012-08-19 20:25; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2012-8-30 228768]
R0 PxHlpa64;PxHlpa64;C:\windows\System32\drivers\PxHlpa64.sys [2011-9-4 55856]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2011-9-4 89600]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-9-4 13336]
R2 McciCMService64;McciCMService64;C:\Program Files\Common Files\Motive\McciCMService.exe [2011-11-10 517632]
R2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2011-4-27 128456]
R2 NOBU;Dell DataSafe Online;C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-8-25 2823000]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2011-10-14 994360]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-9-4 1692480]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-9-4 2533400]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\windows\System32\drivers\CtClsFlt.sys [2011-9-4 176096]
R3 HECIx64;Intel(R) Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2011-9-4 56344]
R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2011-9-4 158976]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2011-9-4 317440]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]
R3 PSI;PSI;C:\windows\System32\drivers\psi_mf.sys [2010-9-1 17976]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-6-5 160944]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2011-9-4 250984]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-11-10 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-11-13 02:24:54   --------   d-----w-   C:\Users\Alice\AppData\Local\Macromedia
2012-11-13 00:08:38   --------   d-----w-   C:\Users\Alice\AppData\Local\Mozilla
2012-11-12 22:44:01   9291768   ----a-w-   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{120F0E4E-6FAD-4F27-B058-C08725283B14}\mpengine.dll
2012-11-12 20:46:49   9291768   ----a-w-   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-10-22 01:04:10   972192   ------w-   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7FB720DF-9932-44B4-A1BF-2C4A9A2C7FE7}\gapaengine.dll
.
==================== Find3M ====================
.
2012-11-13 02:22:13   73656   ----a-w-   C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-13 02:22:13   697272   ----a-w-   C:\windows\SysWow64\FlashPlayerApp.exe
2012-09-30 00:54:26   25928   ----a-w-   C:\windows\System32\drivers\mbam.sys
2012-09-14 19:19:29   2048   ----a-w-   C:\windows\System32\tzres.dll
2012-09-14 18:28:53   2048   ----a-w-   C:\windows\SysWow64\tzres.dll
2012-09-02 02:10:36   821736   ----a-w-   C:\windows\SysWow64\npdeployJava1.dll
2012-09-02 02:10:36   746984   ----a-w-   C:\windows\SysWow64\deployJava1.dll
2012-08-31 18:19:35   1659760   ----a-w-   C:\windows\System32\drivers\ntfs.sys
2012-08-31 02:03:48   228768   ----a-w-   C:\windows\System32\drivers\MpFilter.sys
2012-08-31 02:03:48   128456   ----a-w-   C:\windows\System32\drivers\NisDrvWFP.sys
2012-08-31 00:17:23   60304   ----a-w-   C:\Users\Alice\g2mdlhlpx.exe
2012-08-30 18:03:45   5559664   ----a-w-   C:\windows\System32\ntoskrnl.exe
2012-08-30 17:12:02   3968880   ----a-w-   C:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12:02   3914096   ----a-w-   C:\windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05:07   220160   ----a-w-   C:\windows\System32\wintrust.dll
2012-08-24 16:57:48   172544   ----a-w-   C:\windows\SysWow64\wintrust.dll
2012-08-22 18:12:50   1913200   ----a-w-   C:\windows\System32\drivers\tcpip.sys
2012-08-22 18:12:40   950128   ----a-w-   C:\windows\System32\drivers\ndis.sys
2012-08-22 18:12:40   376688   ----a-w-   C:\windows\System32\drivers\netio.sys
2012-08-22 18:12:33   288624   ----a-w-   C:\windows\System32\drivers\FWPKCLNT.SYS
2012-08-21 21:01:00   245760   ----a-w-   C:\windows\System32\OxpsConverter.exe
2012-08-20 18:48:44   362496   ----a-w-   C:\windows\System32\wow64win.dll
2012-08-20 18:48:44   243200   ----a-w-   C:\windows\System32\wow64.dll
2012-08-20 18:48:44   13312   ----a-w-   C:\windows\System32\wow64cpu.dll
2012-08-20 18:48:43   215040   ----a-w-   C:\windows\System32\winsrv.dll
2012-08-20 18:48:37   16384   ----a-w-   C:\windows\System32\ntvdm64.dll
2012-08-20 18:48:35   424448   ----a-w-   C:\windows\System32\KernelBase.dll
2012-08-20 18:46:22   338432   ----a-w-   C:\windows\System32\conhost.exe
2012-08-20 17:40:21   14336   ----a-w-   C:\windows\SysWow64\ntvdm64.dll
2012-08-20 17:38:44   44032   ----a-w-   C:\windows\apppatch\acwow64.dll
2012-08-20 17:38:26   25600   ----a-w-   C:\windows\SysWow64\setup16.exe
2012-08-20 17:37:19   5120   ----a-w-   C:\windows\SysWow64\wow32.dll
2012-08-20 17:37:18   274944   ----a-w-   C:\windows\SysWow64\KernelBase.dll
2012-08-20 15:38:21   7680   ----a-w-   C:\windows\SysWow64\instnm.exe
2012-08-20 15:38:20   2048   ----a-w-   C:\windows\SysWow64\user.exe
2012-08-20 15:33:28   6144   ---ha-w-   C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-08-20 15:33:28   4608   ---ha-w-   C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 15:33:28   3584   ---ha-w-   C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 15:33:28   3072   ---ha-w-   C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
.
============= FINISH: 9:43:10.15 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-07.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 11/9/2011 7:52:38 PM
System Uptime: 11/13/2012 9:15:46 AM (0 hours ago)
.
Motherboard: Dell Inc. | | 024DTD
Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz | CPU 1 | 2249/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 413.656 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP114: 9/27/2012 9:45:41 PM - Windows Update
RP115: 10/9/2012 8:10:20 PM - Windows Update
RP117: 10/11/2012 8:52:04 PM - Windows Update
RP118: 10/11/2012 8:59:56 PM - Windows Update
RP119: 10/16/2012 10:03:07 AM - Windows Update
RP120: 10/19/2012 11:19:42 AM - Windows Backup
RP121: 10/21/2012 9:03:29 PM - Windows Update
RP122: 10/25/2012 9:08:58 AM - Windows Update
RP123: 10/28/2012 12:58:39 PM - Windows Update
RP124: 10/31/2012 8:55:53 PM - Windows Update
RP125: 11/1/2012 9:00:07 PM - Windows Backup
RP126: 11/4/2012 4:03:38 PM - Windows Update
RP127: 11/7/2012 7:55:34 PM - Windows Update
RP128: 11/11/2012 2:14:54 PM - Windows Update
RP129: 11/12/2012 7:18:06 PM - Windows Modules Installer
RP130: 11/12/2012 8:01:54 PM - Windows Modules Installer
RP131: 11/12/2012 8:11:51 PM - Windows Modules Installer
.
==== Installed Programs ======================
.
64 Bit HP CIO Components Installer
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.4) MUI
Advanced Audio FX Engine
AIO_CDA_ProductContext
AIO_CDA_Software
AIO_Scan
att.net Internet Mail
att.net Toolbar
BufferChm
C3100
c3100_Help
Copy
D3DX10
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Edoc Viewer
Dell Getting Started Guide
Dell MusicStage
Dell PhotoStage
Dell Product Registration
Dell Stage
Dell Support Center
Dell Touchpad
Dell VideoStage
Dell Webcam Central
Dell Wireless Driver Installation
Destinations
DeviceDiscovery
DocProc
Fax
GoToMeeting 5.2.0.952
GPBaseService2
HP Customer Participation Program 13.0
HP Imaging Device Functions 13.0
HP Photosmart All-In-One Driver Software 13.0 Rel. A
HP Photosmart Essential 3.5
HP Smart Web Printing 4.51
HP Solution Center 13.0
HP Update
HPPhotoGadget
HPPhotoSmartDiscLabelContent1
HPPhotosmartEssential
HPProductAssistant
IDT Audio
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
Java 7 Update 9
Java Auto Updater
Junk Mail filter update
Malwarebytes Anti-Malware version 1.65.1.1000
MarketResearch
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable - KB2467175
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Mozilla Firefox 16.0.2 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
Network64
OCR Software by I.R.I.S. 13.0
OpenOffice.org 3.4.1
Quickset64
Realtek Ethernet Controller Driver
Realtek USB 2.0 Card Reader
Scan
Secunia PSI (2.0.0.4003)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Skype™ 5.9
SmartWebPrinting
SolutionCenter
Status
Toolbox
TrayApp
TrustedID
UnloadSupport
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
WebReg
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinPatrol
Yahoo! Software Update
.
==== Event Viewer Messages From Past Week ========
.
11/13/2012 9:17:18 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
.
==== End Of File ===========================

Results of screen317's Security Check version 0.99.54
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````[/u]
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````[/u]
Secunia PSI (2.0.0.4003)
Malwarebytes Anti-Malware version 1.65.1.1000
Java 7 Update 9
Adobe Flash Player 11.5.502.110
Adobe Reader X (10.1.4)
Mozilla Firefox (16.0.2)
````````Process Check: objlist.exe by Laurent````````[/u]
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
WinPatrol winpatrol.exe
BillP Studios WinPatrol WinPatrol.exe
`````````````````System Health check`````````````````[/u]
Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````[/u]

Bernie and the pest Alice

Corrine · « **Reply #2 on:** November 13, 2012, 03:46:06 PM »

Hi, Bernie and not a pest Alice.

The good news is that I am not seeing any signs of malware on Alice's computer. Turning off IE9 did not uninstall it, it merely disabled IE9. So, let's see what we can do to solve the problem. Please test Internet Explorer after each step to see if the problem was resolved and let me know the outcome.

1. Restore the computer to a date prior to the problem.

2. Run the Troubleshooter at How to reinstall or repair Internet Explorer in Windows 7, Windows Vista, and Windows XP.

3. Please perform a SFC (System File Checker) scan which will check and fix any corrupted files on your system.

Click Start, and then type cmd in the Start Search box.
Right-click cmd in the Programs list, and then right-click Run as administrator.
If you are prompted for an administrator password or confirmation, type your password or click Continue
At the command prompt, type the following line, and then press ENTER: sfc /scannow (note the space before the backslash)
When the scan is complete, if no errors are found, restart your computer and post back
If the message does not say "Windows resource protection did not find any integrity violations", restart your computer and run System File Checker again.

Note: You may need to run System File Checker up to three times to resolve all corrupted files. Please advise if you still have corrupted files after a fourth run.

4. Run Microsoft Fixit Solution 50778 How to uninstall or remove Internet Explorer 9 when the standard uninstallation process does not work.

BeeZee · « **Reply #3 on:** November 13, 2012, 05:19:36 PM »

Quote

1. Restore the computer to a date prior to the problem.

We went back to 11-1-12 to an automatic system restore point. The system restore was successfully restored to 11-1-12. Clock is behind 1 hour due to the time change but that is a minor detail. IE started up normally and she was able to get on Hotmail normally with no spinning circle.

Do you want us to proceed to do the other steps?

Corrine · « **Reply #4 on:** November 13, 2012, 05:36:00 PM »

Hi, Bernie.

No, you don't need to proceed to the other steps. The computer time should automatically adjust itself, if not at the next restart overnight.

Now it will be necessary to reinstall the needed updates. Although it could have been coincidence that the problem coincided with the Adobe updates, I suggest creating another System Restore point prior to updating. It may be best to do one at a time.

Where available, direct installation links are provided for Adobe Reader and Adobe Flash Player, which shouldn't have any unnecessary extras. However, for Adobe Air and Shockwave Player, please watch that unwanted extras such as McAfee virus scan or toolars are not checked. Personally, I have not had a need for Adobe Shockwave player in many years and it is not installed on this Windows 7 computer.

Adobe Reader: Version XI has been released. Please install the current version from here: Download Adobe Reader.
Adobe Air: Please update to the latest version, Adobe AIR 3.5
Adobe Shockwave Player: If you do not have version 11.6.8.638, please update from here: http://get.adobe.com/shockwave/
Adobe Flash Player: It is necessary to update Flash Player for both IE and Firefox. Please get the updates from the direct links below.
- Flash Player For Internet Explorer 7, 8 & 9: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe
- Non-IE (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe

BTW, it is "Patch Tuesday" and the updates have been released: Microsoft Security Bulletin Release for November 2012

BeeZee · « **Reply #5 on:** November 13, 2012, 06:08:31 PM »

Thanks Corrine.

I was planning on doing updates after we had your OK to proceed.

The Pest is really grateful for your time and your thoroughness in this process. She says "I owe you big time".

Thank You, and have a nice week.

Bernie and his pest Alice.

Corrine · « **Reply #6 on:** November 13, 2012, 06:21:50 PM »

You are very welcome, Bernie. However, as to Alice, she has apparently been taking good care of her computer, keeping the system clean and up-to-date. So, you can just stop picking on her, you big bully.

BeeZee · « **Reply #7 on:** November 13, 2012, 07:38:10 PM »

Quote

However, as to Alice, she has apparently been taking good care of her computer, keeping the system clean and up-to-date. So, you can just stop picking on her, you big bully.

Yeah, but I'm the one who helps here on her updates. I get a phone call and she say "Bernie, what do I do". So who helps her, the big bully does.

Have a nice night and thanks for your help.

Bernie and the non pest Alice.

P.S. You still have the "Patience of Jobe"

Corrine · « **Reply #8 on:** November 13, 2012, 07:43:35 PM »

Thank you, Bernie. No patience was needed working with you. It has been a pleasure. Alice is lucky to have you as a cousin.

LandzDown Forum

News:

Author Topic: IE9 and the spinning cirlce (Read 581 times)

BeeZee

IE9 and the spinning cirlce

BeeZee

Re: IE9 and the spinning cirlce

Corrine

Re: IE9 and the spinning cirlce

BeeZee

Re: IE9 and the spinning cirlce

Corrine

Re: IE9 and the spinning cirlce

BeeZee

Re: IE9 and the spinning cirlce

Corrine

Re: IE9 and the spinning cirlce

BeeZee

Re: IE9 and the spinning cirlce

Corrine

Re: IE9 and the spinning cirlce