Tarq57
-
Posts
288 -
Joined
-
Last visited
Posts posted by Tarq57
-
-
So. Registry cleaners, eh? Mixed with malware.
You hosed the registry. (Well, you and the malware.) Not Ccleaner, it was you. YOU!
To relieve the ensuing guilt and embarrassment,
Take 2 parts of Bombay Sapphire or Tanquery Gin.
1 part of Noilly Prat dry Vermouth
1/2 part of Elderflower Cordial.
Shake together with a big handful of ice (preferably chipped from a melting glacier or iceberg, or at least made from filtered tap water) and pour into a martini glass.
The colour will be pale gold; there will be a hint of effervescence.
(BTW, my gay friends aren't into this, much. Don't know why.)
Drink. Delicious. Your brain will feel like the recently-hosed registry has just been restored. But better, and brighter.
Resist the urge to have more than 2.
[edit] might be best not to order this at a redneck bar.
-
If you decide to have a drink, I'd recommend an elderflower martini. Does the job pleasantly, smoothly, and rapidly. When made with good quality ingredients, will leave little or no hangover.
-
Super antispyware and avast. Don't bother me with facts. my mind is made up!
Those are the facts, aren't they?
Well, missing a few (optional) items, but the basic is solid.
-
Have you installed (or re-installed) the flash player on all the browsers you use?
-
It wants my email address to send me spam to advertise their other applications.
This appears to be totally optional; you can opt out during the program install.
-
This is a rogue antispyware application. Once it's installed, it's installed, I'm afraid. CCleaner is exellent for cleaning temporary files etc, but this one is outside its' scope. Run it as part of a malware cleanup, though.
See here and here for instructions on how to remove/clean your computer.
The second link is the Piriform malware removal procedure. Running through that should zap it.
-
SiteAdvisor flags all sorts of sites with yellow and red links.
Use it as a guide, not a gospel.
It's only as good as the user input.
-
There are such programs, but I haven't had a lot of good results with them. While it would be nice to totally automate this process the reality is that you are best off knowing all the applications that might need driver updates, and get them directly from the vendor websites. This can be a hassle, too, especially if the bit of kit you want to update is getting old.
What I have done in the past is use a program like Driver Max which does automatically search for the drivers, but to then not download any. It's a good program, but some of the downloads offered are not from vendor sites, and some don't install correctly or work. (Learned this the "interesting" way.) Some of them did install and work OK, though.
What the trick is, is to view the list of (allegedly) out of date drivers on the results, then visit the vendor site for each of those applications and browse for driver updates manually.
Do make sure you set a restore point, or take some other kind of backup before installing these. Often they install without hassle. Sometimes they don't.
-
I think you are asking a question unrelated to CCleaner.
If there are items in the SAS quarantine, they cannot run, they are safe.
That the AV can not scan the quarantine is no cause for concern, it is quite normal.
If it found another file on your computer that could not be explained (you didn't put it there/it is not a protected part of the OS) that it says is password protected, that would indicate further investigation.
IMO, you don't need to run a 35 pass run if the purpose is to delete possible malware. Single pass is quite adequate. (Actually, simple delete is quite adequate.)
Can you look in the SAS quarantine and see if anything is in there? Even if not, the quarantine is still likely to be password protected/unable to be scanned.
-
October 21 the new version of TF installed. Changed from Comodo Firewall to PCTools firewall about the same time, maybe a little later.
-
It does work in Firefox. Don't know about Opera.
-
I'm no expert on ZoneAlarm, but it's pretty popular. The free version has some features missing/unavailable compared to the pro.
Windows XP (SP2+) firewall is an excellent inbound firewall.
Since it will generally not monitor outbound connection attempts, it is limited. Some will argue that it doesn't matter, as it will block unsolicited inbound. I don't know if that is absolutely correct, and in any case, would rather have a firewall that asks permission for an unknown application to connect to the net.
Have used Comodo in the past. The current version with D+ (a HIPS) is popular.
Currently using PCTools firewall.
No problems.
Have in the past used a Norton firewall (2000), Filseclab, Kerio, and Online Armour which, although popular and reportedly very good, froze my system. (When this was reported, the support folk at TallEmu were keen to help and get to the bottom of it. But it's tricky to troubleshoot an almost-frozen system, so I elected not to.)
-
Never had a problem uninstalling it. Current version (4.0.0.10) working faultlessly on my XP Home SP3, alongside Avast and PCTools firewall.
The earlier version had some compatibility issues, appears these have been resolved.
Although it can be set to be recognized by the Windows Security Centre as an AV, this can also be turned off, and it will not conflict with another AV. From the FAQ's (part quote)
Since no single application is currently foolproof, a layered defense provides the most complete protection. ThreatFire is the perfect complement to your existing antivirus protection, and is fully compatible with your antivirus or other security programs.As an additional layer, this one comprising a type of behaviour blocker, I find it useful. Or at least reassuring.
Would be nice if, when a threat is detected, there would be an option to merely block it, rather than delete or quarantine it. Because it sometimes detects legitimate processes as potentially malicious (and this is the way of behaviour blocker/HIPS-type software), it is wise to examine what is being reported rather than blindly deleting stuff.
Mind you, the same could be said of any security software.
-
I've found that the NTREGOPT program linked above is fine. (Along with its colleague, R+ERUNT, a reg backup tool.)
Never used the ASO reg defrag, have used their optimizer in the past, I suspect over aggressive reg cleaning was the reason I had to re-install windows. Treat with caution.
-
Try uploading the file to Virus Total for a multi-scanner online analysis. Chances are it has already been examined, if not, wait for the scan to complete, and you'll get a list of results from a large number of popular virus scanners.
Other things to check: does the md5 (electronic fingerprint) of the file match that advertised on the download site? If so, high probability of a FP.
(There are various downloadable tools that can give you the md5 of a file. Some AS scanners have it built in to their toolkits.)
-
3.I carried out a full norton removal at the time of installing Avast.
Did you run the removal tool?
-
Nothing's odd where uninstalls of Norton are involved.
There possibly are remnants.
What does the security centre report when the Windows firewall is deactivated?
Did you run the Noton Removal Tool as part of the Norton uninstall?
If not, download and run it.
You may later need to reset the security centre to report accurately. Let us know if that's the case.
-
Worthwhile being sure, though.
What if your mates' guesses are wrong?
-
You could try just cleaning one section of registry entries at a time, manually label what each backup pertains to (Missing shared dll's,ActiveX issues, uninstaller issues etc) and narrow it down a bit to find the offending entry, by attempting to update the McAfee after each clean. It's probably just one, or a small handful.
-
walsh2509, when you downloaded the installer file for CCleaner, did you save it to the "My Documents" folder, ie: the location flagged by AVG? And did you download it from FileHippo?
If so, the first of those entries is almost certainly a FP.
The second...not so certain. Locate that particular file if you can, the "ccsetup214.exe/2009.exe" one. The name is suspicious.Right click it, select properties, then the "version" tab, and report what it is.
It should appear to be similar to the picture. The "File Version" of mine is 2.0.0. The "language" reads "neutral". The "product name" is "CCleaner".
The detection is heuristic, so it is more likely to be a fp than if it was detected using signatures. The detections in "system volume information" are probably the same ones, kept in system restore. Not a problem, for now.
Incidentally, AVG is starting to get itself quite a reputation for its false positives, so far.
-
Just don't become one of those that inadvertently ends up sending malware all around the web, because you didn't contain it correctly.
From what I've seen (which isn't that much) analyzing malware behaviour can be a fairly complex task.
I hope that as a minimum, you know how to write some code, and are familiar with a hex editor.
-
C:\Program Files\CCleaner\CCleaner.ini has the cookie files, plus the clean settings etc.
Try copy and paste that file to the same folder after installation. A prompt will appear saying "C\Program files..... already exists. Do you want to replace it?" Answer yes.
C: \ Program Files \ CCleaner \ CCleaner.ini a les fichiers de cookies, plus les param?tres propres etc
Essayez de copier et coller ce fichier dans le m?me dossier apr?s l'installation. Une invite appara?t disant: "C \ Program files ..... existe d?j?. Voulez-vous le remplacer?" R?ponse oui.
Excuses pour mon terrible fran?ais. (Ce n'est pas le mien.)
-
And if you let the VRDB finish building its database, how much RAM does it use afterwards?
When it first builds, it gets fairly busy. Subsequently, not so much.
Following some MS updates, it rebuilds if the files involved have changed, I think. These activity "spikes" are normal, though I haven't seen that much RAM usage before, myself.
-
Simone, has your original question been answered?
Avast is a very good antivirus; it should not be irritating or giving you problems, and if it is, perhaps a better first step would be to find out why (which then proposes the question: what are these problems), rather than trying to use CCleaner to "delete" it.
If you truly want Avast gone the correct procedure is to uninstall it. To do that it would be best to disable the self protection in the settings, exit the application, then run its own uninstaller, and maybe finish up by running the Avast uninstall utility.
Of course, if you do that you will still need an antivirus of some description to replace it with.
What are you trying to achieve, and exactly why?
Avast Web Shield using a lot of memory?
in Software
Posted
Icedrake did you run the appropriate Nod removal tool after uninstalling it?