Help with DISM Log

AtlBo · Jan 8, 2015

Hello. 1st post

Noticed dism.exe and dismhost.exe running yesterday. Had not ever noticed them before, so I did some research. I now understand what the utility is, but my question has to do with why dism.exe would run on a PC.

I took a look at the DISM log, and I'm not quite sure what I am looking at. Mostly, I just want to make sure noone has gained access to this PC from the outside. I don't think this is the case, but I would just like some verification. If someone could move an image of my system to another computer, well, I guess that would qualify as a security breach :sarc:.

Quite out of curiosity I ran sfc /scannow last night, and it seems to have found a number of issues and repaired them. This kind of caused me to wonder if we should be running sfc on schedule for maintenance. I would be very interested in the thoughts of an expert on this subject.

Pauly · Jan 8, 2015

Its hard to say what has happened without seeing the logs

Its not that uncommon for sfc to repair errors, although not normal it would only take one file to be edited for maybe some windows customisations etc and sfc will want to replace it with an original stock copy

Layback Bear · Jan 8, 2015

Do you by chance have Advanced System Care by IObit installed or have you ever used it?

Do you have any IObit products installed?

AtlBo · Jan 8, 2015

Pauly. Thanks for the information. The DISM log is large, and the CBS log is very large. I ran sfc /scannow again this morning, and there weren't any changes made. System is running very well. Could I post a couple of the DISM sections or upload them in a text?

Layback Bear. I have stayed away from Iobit. When the Malwarebytes issue surfaced, I decided I wouldn't be using their products. Didn't have any at the time, but I had used the driver program. Haven't installed anything on this PC from Iobit on this current installation of Windows.

I do use Comodo Programs Manager. Could this have anything to do with dism running? I think it was coincidence, but I opened CPM last night and noticed dism.exe and dismhost.exe were suddenly there. It's not a 1 for 1 thing, though. I opened CPM shortly after dism stopped and dism did not reappear.

I actually got a prompt from Private Firewall about both the dism processes last night. That's really what got me started. That was the first time that has ever happened. Then I watched a 25+ minute YouTube video on how to use the tool, and it caused me to think of how the tool could be used maliciously.

Since it's a tool and will work over a network via command line, I am curious what Windows service manages the use of the tool. It has no directly associated service, or at least there isn't one that I could identify as Deployment Image Servicing and Management. It would be nice if the use of this process as a precaution could be confined to local use I think. Who would ever need this that aren't a network manager?

Layback Bear · Jan 8, 2015

If it was my computer I would be taking a look at Comodo Programs Manager.
Windows 7 doesn't really need such a program doesn't need help Managing Windows features.

https://www.comodo.com/home/support-maintenance/programs-manager.php

Completely delete partial uninstalls
Detect and remove unwanted junk files
Monitor all changes in your system
Manage Windows features easily
Restore uninstallations safely

For testing you could remove the Comodo and then do this tutorial to check Windows system files.

By Brink:

http://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html

AtlBo · Jan 8, 2015

CPM works great. I know it removes more than the standard Windows uninstallation process, because CPM at the beginning of each program removal uses the uninstaller bundled with the program. Then it provides an opportunity to remove remaining registry keys and dlls. The only risk here is removing a shared .dll, but CPM took care of that problem with a pop up. Hardly ever happens, but, when it does, I am given the choice, which I always refuse. The biggest problem with removing CPM is that I can't uninstall it without losing the database of recorded installations. Without the database the program is useless for me.

ran sfc /scannow last night and this morning. Errors last night and none this AM...

Edit: I see...the text is a link. Thanks. The verify command is one I will have to put in my list of tools. Appreciate this...

Layback Bear · Jan 8, 2015

I try to put things like tutorials in bold like this. It all depends what style you have chosen to view the forum with as how it look to you.
I use SF Dark Wide.

At the top of every page is Tutorials. Their is a large amount of information there when you have time to look take a gander.

SFC /SCANNOW Command - System File Checker

Help with DISM Log

AtlBo

New member

My Computer

Pauly

An error has occured

My Computer

Layback Bear

3 Brain Cells

My Computer

AtlBo

New member

My Computer

Layback Bear

3 Brain Cells

My Computer

AtlBo

New member

My Computer

Layback Bear

3 Brain Cells

My Computer

Similar threads