Personal experiences with Vista and IE7 security

[Midway]

Before I installed NIS '07 I had F-Secure's Vista Beta installed plus PCTools firewall. When I was testing NIS's ability to uninstall clean I was checking to see if Windows firewall was turned back on. To my surprise SecCenter reported that PC Tools firewall was on and working. How could this be if I had uninstalled it? I deleted every instance of it in the registry plus the files that were left on the hard drive, plus the hidden ones, with no effect.

I have seen this reported before in XP, programs that were uninstalled still showing up in SecCenter like this:



I searched around but couldn't find a solution for this so I asked about it in another forum. Someone replied that it could be done by deleting a folder in the system32 directory, wbem I think it was called. It would be rebuilt on reboot and PCTools would not show up anymore.

So I tried to delete the folder but it mentioned that another process was using it. I then logged out and back into my Admin account and still no success. I then booted into safe mode and STILL could not delete this folder.

I then had a brainstorm and pulled out some Linux Live CD's I had. I first tried PCLinuxOS which let me browse the Windows directory but could not delete this folder as well. Next I tried Ubuntu but it could not mount the Windows partition for some reason. Then I tried Mepis and got the same results as I did with PCLOS. I could not believe I couldn't delete this folder using Linux! MS must really have beefed up security but in this case I wished it didn't lol. So I guess I will have to live with PCTools entry.

My next experience was when I was testing NIS by going to some "dark" sites such as cracks and warez where you are sure to pick something up. In the old days I wouldn't dream of trying this with IE6, I would have much preferred using Firefox with NoScript. But since it was my intention to catch something I browsed these sites using IE7. I was searching for a crack for Nero because it being so popular it would be targeted for nasties more (btw I use Ashampoo Burning Studio 6). But to my dismay, I couldn't pick anything up! One site wanted to install something called "Data Services Data Control" (now why would a crack site want to do this? lol) but IE7 blocked it. I even went to sites Google identified as being "dangerous" but still nothing. After an hour or so I gave up, shaking my head. The feeling is akin to going into a lion's den wanting to be eaten but none will have anything to do with you, lol.

So there are my real world experiences with Vista's security.

[CrowdAds]

[lcx]

You can just run
winmgmt /resetrepository
to reset wmeb settings to factory condition.

However I recommend you run "winmgmt /backup somefile" before you run the reset command so in case anything goes wrong you can restore it.

Also you can create a Vista Live CD (its called Vista WinPE) which helps in recovery and maintenance task. I rather trust Vista bits than other OSes to muck with NTFS.

[Midway]

Thanks Icx but that didn't work either.



If I can figure out what this other process is and shut it down then maybe it can be done.

[Znod]

I had a similar experience with PC-Cillan beta. Trend Micro got interested and tried to help me "disappear" the partly uninstalled program--which was harmless. I tried lots of their suggestions to no avail. I used the next real excuse to clean-reintall Vista and, of course, no more PC-Cillan. By the way, even a repair install did not do the trick.

[Midway]

Since it is not really affecting anything, it isn't worth losing Ultimate over it.

[Znod]

Definitely not.

[ProCookie]

Wow what a story, Surly there must be some way to get rid of that folder? But like you said its probably not worth it as its doing no harm

[Snuffy]

If any of you want to test Vista Manager, on your PC Cillian stuff, I found it has a great uninstaller...even when you can not use the normal program uninstaller. and add/remove does not work.
Adware 2007 B1 and B2 both failed to install correctly for me.. therefore I could not uninstall them. Nothing worked, at all SAFE MODE, login as ADMIN, nothing... VistaManager :heart: did uninstall and even found the leftover items :flowercool: and removed them ... now testing Adware 2007 B3..

[Midway]

I tried VistaManager but it did not have PC Tools on the list. Someone had sent me a link to a uninstaller that MS came out with and it didn't list it either.

Curious thing is that I am running as a Standard User with a separate Admin account and when I installed these uninstaller programs they did not show up in my menu. I found them on the Admin menu instead. These are the only programs that I have noticed that installed that way.

[lcx]

Quote:

Originally Posted by Midway

Thanks Icx but that didn't work either.



If I can figure out what this other process is and shut it down then maybe it can be done.

Stop winmgmt service before you run reset.

[Midway]

It worked! Turning off WMI service beforehand was the ticket.



There were two side effects though. One is that for some reason my USB cardreader drivers had to be reinstalled. Second is that SecCenter no longer saw Norton installed so I had to uninstall/reinstall it. No big deal though.

Many thanks, Icx!