Caldor

What gran paradiso needs is a default install that runs on the kernel in a low security process like IE7 on Vista. All these things about better managing add ons and so forth is a symptom not a root cause fix. In fact the fix is not to be "root". In IE7 default in Vista nothing can happen like this without credentials challenges.

MS "assimilated" onecare, much as it did with Windows Defender which was also "assimilating" other peoples IP in a buyout. There's so much malware around that I highly doubt any antimalware vendor needs to drum up its own business - not to even begin to consider a MS conspiracy. MS can hardly take one step these days without being critically observed by the whole planet.

I agree with you for a home user with worthless data (family photos, songs etcetc) it is paranoid. For home use, theres no reason for a serious penetration attempt as the data isnt worth anything. If someone wanted to hack me for my bandwidth to use as a zombie there is far more easier targets than my home systems on fast broadband. For my work though the data contained is highly valuable, and I guess Im applying that need unfairly for a home system. But I guess I'm also saying, and saying rationally in my view, that if your data is high value I do not consider the Windows platform to have the necessary architecture and privacy controls offered to suit. I submit that BSD and specialy hardened Linux builds offer a stronger platform for protecting high value data. Theres lots of other things needed as well - to give you a real life example you will find embassies dont use CRTs they use LCDs because the technology exists to read the radiation from CRTs and see remotely what the screen has on it with good fidelity. That said I like Vista and I know its the most secure desktop OS MS has ever released. Its an easy to use GUI based OS that works on most hardware.

Whats really going to twist your noodle is what the contents of encrypted packets going back to MS are doing I know of three, might be more.

Its wise to be wary of codec packs cos they interefere with the diretcshow filter priority order and make a mess of things when its time to uninstall them. If I was into ASIO playback I would use Foobar. Since Im not (my speakers dont have the fidelity to notice the difference) I use WMP and ffdshow, which is libavcodec for directshow. I prefer the advanced post processing and filtering options over my second choice which is VLC that I use on non windows machines.

Windows is a closed system with lots of privacy problems. Youve barely touched the surface with this one app. Its in everything - right to the core of NTFS itself and especially the new atomic NTFS in Vista and Longhorn server. Even if you lock down the whole system with full disc encryption like pointsec youve still got the risk of information leakage onto the wan/lan. CCleaner is somewhat extensible to help as a privacy tool (vista's cleanup utility does not provide secure deletion) but frankly the community here isnt organised enough to do what is required in my view to collaborate on a good winapp2.ini. And ccleaners inbuilt defintions arent up to date wither. And, the defintions needs to be seperated between xp and Vista. I wonder what platforms groups like the NSA run? There is a reason the NSA released mandatory access control patches for the Linux kernel in SELINUX. Frankly again, Linux on the desktop is a PITA for useability.

Common sense is the best security. Dont run your system in admin. Dont install software from untrusted sources. Use a secure operating system. Interesting that onecare picked up it - told you all that MS will end up dominating this space just like it did with its OS.

Most of the open source and more dodgy closed source players break the law by ripping off other peoples IP. Just because vlc / mplayer / ffmpeg / libavcodec and all the rest of them dont have these sorts of licence agreements doesnt make them legal. Using them isnt necessarily legal either. AFAIK no company has ever gone after open source reverse engineered stuff in my country but there is no doubt if they did they'd win. Other Western countries are similar. Patent pools own the great majority of tech in this space except for a minority like MKV, Ogg, Theora etcetc I use WMP11, ffdshow, directvobsub and haali's MKV media splitter. And no, that isnt legal in my country. Nor is it likely to be in yours. Short of needing an ASIO quality playback, WMP11 is the most robust player available for win32 imho. And its fully extensible with direct show filters.

No it didnt work fine. When run in user priviledge mode during the beta it missed cleaning up stuff due to a lack of access. The tool inherently requires administrative rights to do its job.

While trying to fixup the vista problems Ive become aware that CCleaner isnt marking all of the famous index.dat files for deletion on a vista install. First it was RSS feeds, then more IE index.dats hidden away amongst the profile folders that are changed since XP. Looking into it more I infact have 7 index.dats on my windows boot partition and CCleaner only marks 3 of them for deletion on reboot. Vista x32, CCleaner 2.0

I've done some more cleaup stuff and Ive contacted Twisted Metal in the hopes of getting a more organised Vista winapp2.ini happening. Notes: WMP11 was keeping tabs on what music I played, what photos I'd viewed etcetc. As well as keeping all the art cache. Raised a bug on CCleaner not deleting some more IE7 data. The rss feeds index.dat isnt marked for deletion/deleted like IE7 and also the roaming profile in low user data IE index.dat. Looking into it further my sys has 7 index.dat files on the windows partition and CCleaner only marks 3 of them for deletion. WARNING: Feeds will be deleted [*More Windows Media Player] LangSecRef=3023 Detect=HKCU\Software\Microsoft\MediaPlayer\Player Default=True FileKey1=%localappdata%\Microsoft\Media Player\Sync Playlists|*.*|RECURSE FileKey2=%localappdata%\Microsoft\Media Player\Transcoded Files Cache|*.*|RECURSE FileKey3=%localappdata%\Microsoft\Media Player\Art Cache|*.*|RECURSE [*More Internet Explorer (Bad Hack)] LangSecRef=3025 Detect=HKCU\SOFTWARE\Microsoft\Internet Explorer Default=True FileKey1=%localappdata%\Microsoft\Windows\Temporary Internet Files|*.* FileKey2=%localappdata%\Microsoft\Internet Explorer|*.* [*RSS Feeds (Bad Hack)] LangSecRef=3025 Detect=HKCU\SOFTWARE\Microsoft\Internet Explorer Default=True FileKey1=%localappdata%\Microsoft\Feeds Cache|*.*|RECURSE FileKey2=%localappdata%\Microsoft\Feeds|*.*|RECURSE [*OpenOffice 2.3] LangSecRef=3021 Detect=HKLM\SOFTWARE\OpenOffice.org\OpenOffice.org\2.3 Default=True FileKey1=%appdata%\OpenOffice.org2\user\registry\data\org\openoffice\Office|Common.xcu

So hopefully with the community helping out these things missing with Vista will get fixed. Im trying to work on a fix where CCleaner doesnt cleanup %localappdata%\Microsoft\Windows\Temporary Internet Files With the following into my custom winapp2.ini it doesnt cleanup: [*More Internet Explorer] LangSecRef=3025 Detect=HKCU\SOFTWARE\Microsoft\Internet Explorer Default=True FileKey1=%localappdata%\Microsoft\Windows\Temporary Internet Files|*.* CCleaner correctly detects the regkey and appears when running but my files dont get deleted. When I do a delete browsing history within IE7, selecting delete all and also files and settings from helper objects it gets deleted - but not using a secure deletion method...... Vista x32, CCleaner 2.0 running as admin

4GB ECC

The artifacting could be caused by many things. Your going to have to run diagnostic tests to stress the machine and isolate the fault. memtestx86 3dmark stress prime etcetc

Doesnt bother me. Most people run WU in auto mode so its necessary. And in fact if you disable WU it doesnt automatically download the updates to the service. MS clarified that issue which seems to be yet another attempt at creating a panic and spreading FUD. Bink nu have the MS response on their website.

Its IP theft to use alternatives to quick time and realplayer. I just dont use those technologies in my media. Being a wintel user I have ffdshow tryouts with libavcodec to deal with the things that Vista wont do by default along with direct vobsub and haali's matroska splitter- e.g. Vorbis, mpeg4-asp, H.264, MKV, external subs etcetc

This is mine with a defense in depth strategy: 1. Hardware network address translation running private network IPs (192.168.1 etcetc) 2. Hardware stateful packet inspection firewall with block all incoming as default 3. Vista x32 on all machines in the private network which is far more secure than XP SP2 and stats show actually has less unpatched and patched security issues than macosx and common linux distros for the same time period 4. Onecare 2.0 beta software firewall/antimalware (cos its free, Im on MS's beta connect program and its lightweight). Yes the detections arent as good as competitors but MS has a proven track record of eventually winning the market. For awhile I used kaspersky but its not lightweight and I dont want to bog down my systems. 5. Kaspersky online scanner for when Im suspicious and weekly routine scans (never found anything) 6. Ad-aware 2007 free but Ive never found anything 7. Various defense in depth configuration items with my vista builds such as email all set to plain text 8. The users of these machines are all wintel experts and operate under least priveldge user accounts (probably the best security there is being educated operators 9. Amongst other MS mail I subscribe to their security bulletins. Im also on securina and other security lists and I also use the securina security scanner that has reminded me to update things like adobe flash player where I had old revisions with a possible threat vector (but again due to using IE7 in protected mode with memory protection that threat vector is effectively closed anyway) http://secunia.com/software_inspector/ The most Ive ever gotten is random port scans on the wan boundary. I consider it very very unlikely I could ever have an external threat effect my network except for a DOS attack which again is very very unlikely and I have upstream service provider filtering going on to some extent on that so it would take alot to flood their carrier grade switches before it even got to my wan. For internal security I run hardware raid 5 on bitlocker and TPM and a USB certificate dongle (requires vista sp1 beta). All volumes have strong encryption. We also have no CRTs as it is well known that the technology exists to remotely read CRTS even through walls (why someone would do that to me I have no idea but we have lcds as a rule). We dont use group policy to block out usb or external media but the user base is trusted.

Microsoft was late coming out with IE7 as a response to FF but its a better browser than FF on Vista: 1. IE7 protected mode is key and even with gran paradiso its still not possible 2. Embedded memory protection unlike FF 3. More accurate and faster phishing filter than FF FF has better CSS standards support especially in gran paradiso where the new gecko layout engine is used but lets face it with around 80% market share most webpages are designed around the way IE handles CSS.

If the executable isnt loaded into memory, can you uninstall it via add/remove programs? If not thats behaviour that sounds alot like a malware infestation.

http://forum.piriform.com/index.php?showto...=thoughts+vista

I too previously wrote some winapp2.ini's to better deal with Vista. Vista wont be properly cleaned using the existing inis in the install and with Twisted Metals current winapp2.ini version. Also the one above is still missing other location cleaups - feel free to copy mine but I had to do some bad hacks to overcome some limitations as well as CCleaner not currently having the capability cleanup all the crap in Vista (one example is the thumbnail cache) In vista you have All users Default user Local low user Local user Roaming user As well as new temp locations While there is some backward compatability to the old XP paths its all changed for Vista and the new locations need to be specifically hit. I have sent TwistedMetal a PM in the hopes of getting this situation better under control and leveraging the community more to keep those ini's correct and up to date.

Nice thanks Mr G I'm very much looking forward to a future revision that more fully addresses the Vista privacy issues that are not currently resolved in 2.0. Thumbnail cache, volume shadow copy / system restore the the issues surrouding the new Vista pathing in the inis either not cleaning things or not cleaning things fully. Vista has a range of new possible locations for crap to accumulate.

Users should not as a general rule fiddle with the registry. Unfortunately bad programming leaves stuff behind on install which IMHO CCleaner does a satisfactory job of addressing. In many ways the "importance" of registry cleaning is completely misleading to the otherwise non technical user. It wont magically fix many problems and it wont make your PC 200% faster. Its mostly misleading marketing selling to people who dont know better. 99% of user problems can be fixed without using the registry.

Report it is a bug in the bug section. I dont have x64 so I cant assist you with replication of the bug.

CCleaner works on Vista but is not fully supportive all of the features in Vista that could be privacy issues. One of the biggest contributors to the additional megs you find are deleted on live cleanup is CCleaner doesnt remove the Vista thumbnail cache.