G
Guest
I've taken on the project of getting a friend's PC back in shape. (I should
have just rebuilt it - would have been much faster.)
He let his grand kids use it, which explains most everything! Lots of
malware of various flavors and still on SP1 (which when all was said and done
wasn't even validly licensed!-(
I now have SP2 installed. I've used an assortment of reputable av programs
and scumware removal programs. Currently everything looks clean and I managed
a fairly lengthy session on the web without getting any of those nasty Drive
Cleaner popups.
However, I remain suspicious. I was still getting the Drive Cleaner popup
even with the reputable programs saying things were clean. (The Drive Cleaner
popup is the message box looking one with IE as the banner.) This continued
until I got IE to banning popups.
Some questions if you please:
1) Is the main reason the Drive Cleaner popups are gone is that the PC now
has an IE version that blocks them?
2) What is the most reputable site for directions on manually detecting and
removing Drive Cleaner? (At this point I don't trust any site that offers a
free scan followed by a paid remove, and gives directions that it warns are
too tough to follow. Unfortuanately such sites manage to get themselves to
the head of the google list, and my patience doesn't go much farther than the
first page of any google listing.
))
3) I know of four ways that this crap can be launched:
A) The startup menu
B) Registry current user/.../Current Version/Run, etc
C) Registry local machine/.../Current Version/Run, etc
D) Registy local machine/System/.../Services
Barring an attack from outside the PC (which is less likely now that I have
a firewall in place) are there other places I should be checking for stuff
that automatically launches?
This question is the key hole in my understanding of how this can happen.
The popup seems to occur whether or not I've fired up IE. Hence my emphasis
on the autostart stuff.
4) Is there anything I should be checking in IE to keep this from happening.
I think I've killed off all but two desirable BHO's.
5) How much would you charge a friend and fellow church member for this
service?-)))
--
Regards,
Al Christoph
Senior Consultant
Three Bears Software, LLC
just right software @ just right prices @ 3bears.biz
Microsoft Certified Partner (ISV)
Coming soon: Windows Mail for Vista.
have just rebuilt it - would have been much faster.)
He let his grand kids use it, which explains most everything! Lots of
malware of various flavors and still on SP1 (which when all was said and done
wasn't even validly licensed!-(
I now have SP2 installed. I've used an assortment of reputable av programs
and scumware removal programs. Currently everything looks clean and I managed
a fairly lengthy session on the web without getting any of those nasty Drive
Cleaner popups.
However, I remain suspicious. I was still getting the Drive Cleaner popup
even with the reputable programs saying things were clean. (The Drive Cleaner
popup is the message box looking one with IE as the banner.) This continued
until I got IE to banning popups.
Some questions if you please:
1) Is the main reason the Drive Cleaner popups are gone is that the PC now
has an IE version that blocks them?
2) What is the most reputable site for directions on manually detecting and
removing Drive Cleaner? (At this point I don't trust any site that offers a
free scan followed by a paid remove, and gives directions that it warns are
too tough to follow. Unfortuanately such sites manage to get themselves to
the head of the google list, and my patience doesn't go much farther than the
first page of any google listing.
))3) I know of four ways that this crap can be launched:
A) The startup menu
B) Registry current user/.../Current Version/Run, etc
C) Registry local machine/.../Current Version/Run, etc
D) Registy local machine/System/.../Services
Barring an attack from outside the PC (which is less likely now that I have
a firewall in place) are there other places I should be checking for stuff
that automatically launches?
This question is the key hole in my understanding of how this can happen.
The popup seems to occur whether or not I've fired up IE. Hence my emphasis
on the autostart stuff.
4) Is there anything I should be checking in IE to keep this from happening.
I think I've killed off all but two desirable BHO's.
5) How much would you charge a friend and fellow church member for this
service?-)))
--
Regards,
Al Christoph
Senior Consultant
Three Bears Software, LLC
just right software @ just right prices @ 3bears.biz
Microsoft Certified Partner (ISV)
Coming soon: Windows Mail for Vista.