Hackers hid malware in CCleaner software

On 09/21/2017 01:31 PM, J. P. Gilliver (John) wrote:

[snip]

The directory has an 8-character field the name must fit in. If the
tilde isn't one of those there would have to be something to
distinguish WINDOWS~1 from WINDOWS1

Or Window~1 from Windows1 (-:

That would be assuming the tilde is a wildcard (like '?'). That isn't
what I was talking about.

--
94 days until the winter celebration (Monday December 25, 2017 12:00:00
AM for 1 day).

Mark Lloyd
http://notstupid.us/

"...to argue with a man who has renounced his reason is like giving
medicine to the dead." -- Ingersoll's Works, Vol. 1, p.127

On Fri, 22 Sep 2017 11:13:51 -0500, Mark Lloyd wrote:

On 09/21/2017 01:31 PM, J. P. Gilliver (John) wrote:

[snip]

The directory has an 8-character field the name must fit in. If the
tilde isn't one of those there would have to be something to
distinguish WINDOWS~1 from WINDOWS1

I didn't understand that.

Or Window~1 from Windows1 (-:

I did understand that.

That would be assuming the tilde is a wildcard (like '?'). That isn't
what I was talking about.

And now I'm back to not understanding.

On Fri, 22 Sep 2017 11:23:03 -0500, Char Jackson
wrote:

On Fri, 22 Sep 2017 11:13:51 -0500, Mark Lloyd wrote:

On 09/21/2017 01:31 PM, J. P. Gilliver (John) wrote:

[snip]

The directory has an 8-character field the name must fit in. If the
tilde isn't one of those there would have to be something to
distinguish WINDOWS~1 from WINDOWS1

I didn't understand that.

Or Window~1 from Windows1 (-:

I did understand that.

That would be assuming the tilde is a wildcard (like '?'). That isn't
what I was talking about.

And now I'm back to not understanding.
--
================================================== ======
Please always reply to ng as the email in this post's
header does not exist. Or use a contact address at:
http://www.macfh.co.uk/JavaJive/JavaJive.html
http://www.macfh.co.uk/Macfarlane/Macfarlane.html

On Fri, 22 Sep 2017 17:53:32 +0100, Java Jive
wrote:

On Fri, 22 Sep 2017 11:23:03 -0500, Char Jackson
wrote:

On Fri, 22 Sep 2017 11:13:51 -0500, Mark Lloyd wrote:

On 09/21/2017 01:31 PM, J. P. Gilliver (John) wrote:

[snip]

The directory has an 8-character field the name must fit in. If the
tilde isn't one of those there would have to be something to
distinguish WINDOWS~1 from WINDOWS1

I didn't understand that.

Or Window~1 from Windows1 (-:

I did understand that.

That would be assuming the tilde is a wildcard (like '?'). That isn't
what I was talking about.

And now I'm back to not understanding.

Apologies for the null post, meanwhile, the post I intended to make
further upthread has for some reason been rejected by the server -
very strange.
--
================================================== ======
Please always reply to ng as the email in this post's
header does not exist. Or use a contact address at:
http://www.macfh.co.uk/JavaJive/JavaJive.html
http://www.macfh.co.uk/Macfarlane/Macfarlane.html

Java Jive wrote:

Apologies for the null post, meanwhile, the post I intended to make
further upthread has for some reason been rejected by the server -
very strange.

A post can be rejected on AIOE, if you attempt to send
the exact same body text, twice. This is an anti-spam
protection method. It mainly annoys regular users.
If a post was rejected for some other reason, you
will get whacked with that check, when you (attempt)
to post the correction! Even failed posts, the body
text is hashed and recorded for later.

AIOE has anti-hammer protection. Don't try to rattle off
a dozen posts, machine-gun style. Allow some time between
posts. Even regular servers may have that feature (to help
with DDOS attacks maybe).

It has quoted text percentage detection.
(The admin probably wants to prevent you from doing cascades,
to make colorful bars appear in everyones news reader.)

There are a metric ton of checks.

The line length check has been modified several times.
The last time AIOE was set up, it was set to reject longer
than 79 or so. That's been modified at some point and it doesn't
barf on line length, unless the line is longer than that. Maybe
135 characters or so at a guess.

If you aren't triggering a reject on AIOE, you
aren't trying hard enough...

Paul

On Thu, 21 Sep 2017 18:17:59 -0500, Char Jackson
wrote:

On Thu, 21 Sep 2017 19:38:56 -0000 (UTC), Blake Snyder
wrote:

On Wed, 20 Sep 2017 13:42:39 -0500, in
, Char Jackson wrote:

Of those 6 items, I only (occasionally) do #6. I use a tool called
Duplicate Cleaner Free (https://www.digitalvolcano.co.uk/).
No idea if it's the best, but I apparently like it well enough that I've
been using it for quite a few years without wanting to find a
replacement.

I have no use for the other 6 tasks. Yes, I know what each task is
about, so no need to assume something else.

I remember that name.
I have used it in the past too.
Thanks for reminding me.

One problem with my archival method is that I didn't transfer the WinXP
archives to Win7 and then to Win10 so some of the older stuff is on a disc
somewhere in a huge pile of them.

Thanks for suggesting "DuplicateCleaner" from https://www.digitalvolcano.co.uk
oooops. Is it free?

https://www.digitalvolcano.co.uk/dcdownloads.html
This implies it's not free ... oh ... I see...

Here is the free version
http://download.cnet.com/Duplicate-C...-10584403.html

You got it. That's why I referred to it as "... Free" above, to call out
its freeness. In the free version, if you click the menu item to upgrade
to Pro, it gives you a bulleted list of Pro's advantages. So far, the
free version has been good enough for me.

Version 1.47 (freeware) has always been good enough for me,
and it has a more pleasant interface, IMHO. Also, it's much faster
than the later bloated versions.
No idea if it behaves well on Win 10 ....
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

On Wed, 20 Sep 2017 21:27:02 -0000 (UTC), Blake Snyder
blakeblakesnyder(at)outlook.com wrote:

Typo.
h t t p : //i(dot)cubeupload(dot)com/GFf3Bx(dot)jpg

That is a screenshot of my junk folder which contains the Windows & VIM
temps...

Never do I use capital letters or tildes in file or folder names.

What I think everybody may be missing here is that, in Linux, the
tilde is used as the backup file symbol, thus editing file.txt will
produce not just the altered file.txt but also its original contents
as file.txt~

My suspicion is that you are running/have run a piece of software that
was originally written for Linux and then ported to Windows, and which
therefore has carried over this standard piece of Linux nomenclature
and applied it inappropriately to Windows, whereas in the latter OS it
would have been more appropriate to adopt the accepted standard of
naming backup files and directories as *.bak.
--
================================================== ======
Please always reply to ng as the email in this post's
header does not exist. Or use a contact address at:
http://www.macfh.co.uk/JavaJive/JavaJive.html
http://www.macfh.co.uk/Macfarlane/Macfarlane.html

On Fri, 22 Sep 2017 17:30:23 -0300, Shadow wrote:

On Thu, 21 Sep 2017 18:17:59 -0500, Char Jackson
wrote:

On Thu, 21 Sep 2017 19:38:56 -0000 (UTC), Blake Snyder
wrote:

On Wed, 20 Sep 2017 13:42:39 -0500, in
m, Char Jackson wrote:

Of those 6 items, I only (occasionally) do #6. I use a tool called
Duplicate Cleaner Free (https://www.digitalvolcano.co.uk/).
No idea if it's the best, but I apparently like it well enough that I've
been using it for quite a few years without wanting to find a
replacement.

I have no use for the other 6 tasks. Yes, I know what each task is
about, so no need to assume something else.

I remember that name.
I have used it in the past too.
Thanks for reminding me.

One problem with my archival method is that I didn't transfer the WinXP
archives to Win7 and then to Win10 so some of the older stuff is on a disc
somewhere in a huge pile of them.

Thanks for suggesting "DuplicateCleaner" from https://www.digitalvolcano.co.uk
oooops. Is it free?

https://www.digitalvolcano.co.uk/dcdownloads.html
This implies it's not free ... oh ... I see...

Here is the free version
http://download.cnet.com/Duplicate-C...-10584403.html

You got it. That's why I referred to it as "... Free" above, to call out
its freeness. In the free version, if you click the menu item to upgrade
to Pro, it gives you a bulleted list of Pro's advantages. So far, the
free version has been good enough for me.

Version 1.47 (freeware) has always been good enough for me,
and it has a more pleasant interface, IMHO. Also, it's much faster
than the later bloated versions.
No idea if it behaves well on Win 10 ....
[]'s

I'm currently trialing a 4.x version and I'm not liking its interface
much. The results seem to be the same, so at least they didn't mess that
up.

On Fri, 22 Sep 2017 15:26:23 -0400, in news Paul wrote:

If you aren't triggering a reject on AIOE, you
aren't trying hard enough...

I think AIOE has a 25-post/day limit also.

On Fri, 22 Sep 2017 16:09:57 -0500, in
, Char Jackson wrote:

I'm currently trialing a 4.x version and I'm not liking its interface
much. The results seem to be the same, so at least they didn't mess that
up.

Actually, the results shouldn't be the same.
They should be a duplicate.

--
(jk)

Diesel wrote:
Going a step further, the centralized registry idea will likely go down
in computer history as one of the biggest ****ups ever on the part of
microsoft.

Probably another reason I like linux more and more everyday.

It is what makes moving a setup in Linux to new hardware a snap compared
to Windows. Especially if you have a large number of applications and
services installed.

--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com

On Mon, 9 Oct 2017 03:49:58 -0000 (UTC), Diesel
wrote:

Going a step further, the centralized registry idea will likely go down
in computer history as one of the biggest ****ups ever on the part of
microsoft.

Ini, cfg and log files in the program's folder are much more
efficient. Delete the folder, it's clean. Move the folder to another
PC, your settings go with it.

I think the main motive the registry exists is so they can
track everything you do. Run

http://privazer.com/download-shellba...ag-cleaner.php

And see if it found anything other cleaners "missed".

My registry, after cleaning and compacting, is over 40MB. And
most of the programs I install are portable. A typical portable
configuration file is more than ten thousand times smaller.
Makes you wonder ... why ?
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

On 09-Oct-17 4:50 AM, Diesel wrote:
"David B."
news alt.comp.freeware, wrote:

On 21-Sep-17 1:24 AM, J. P. Gilliver (John) wrote:
In message , Blake Snyder
writes:
[]
I think that the Ccleaner "leatherman" approach of doing lots of
things is
OK but the approach of having a single tool do a single job
(like uninstalling apps) is a better approach.

I used to use another "Leatherman" tool - EasyCleaner, by Toni
Helenius, a young Finn. (Well, he was young when I used it!) I
can't remember if it did all the things Cc does, but it had a
nice (IMO) user interface to select them from. I've no idea
whether it still exists; I do know he was URL-squatted at one
point, by a company that charged for his freeware.

It's still he-

http://personal.inet.fi/business/toniarts/ecleane.htm

I first came across it on Pierre's web site:-

http://pierre.szwarc.free.fr/en/ln.php

Pierre, of course, is one of the stalwart 'advisers' from the
User2User group which used to be hosted on the Annexcafe
newsserver. Now, of course, it's hosted on the 'news.dogagent.com'
server.

Of course, nobody cares about your ongoing issue with user2user, so I
fail to see why you even bring it up. Nobody who can is going to
waste their time going on a wild goose chase for your benefit, David.

It's quite OK for you to be wrong about things, Dustin. ;-)

MY role is to get folk to THINK about things!

--
David B.

On Tue, 19 Sep 2017 17:05:26 -0000 (UTC), Blake Snyder
wrote:


I have been using the CCleaner registry cleaner for so long that I can't
even say how many years it has been. Probably since I first heard about
Ccleaner, and never once have I see it be a problem that I could attribute
to me cleaning the registry.


Four points:

1. As registry cleaners go, CCleaner's is perhaps the safest.

2. "Safest" doesn't mean it's completely safe. There is still a risk
in using it.

3. Let me point out that neither I nor anyone else who warns against
the use of registry cleaners has ever said that they always cause
problems. If they always caused problems, they would disappear from
the market almost immediately. Many people have used a registry
cleaner and never had a problem with it.

4. The problem with a registry cleaner is that it carries with it the
substantial *risk* of having a problem. And since there is no benefit
to using a registry cleaner, running that risk is a very bad bargain.


Read the section "Beware the Registry Cleaner" in
http://www.howtogeek.com/113382/how-...9-tips-tricks/
Note that it says "The Windows registry contains hundreds of thousands
of entries; removing a few hundred (at most) won't give you an
increase in performance. Registry cleaners can accidentally remove
important registry values, however, so there’s risk with little
reward."

On 19-Oct-17 8:11 PM, Ken Blake wrote:
On Tue, 19 Sep 2017 17:05:26 -0000 (UTC), Blake Snyder
wrote:


I have been using the CCleaner registry cleaner for so long that I can't
even say how many years it has been. Probably since I first heard about
Ccleaner, and never once have I see it be a problem that I could attribute
to me cleaning the registry.


Four points:

1. As registry cleaners go, CCleaner's is perhaps the safest.

2. "Safest" doesn't mean it's completely safe. There is still a risk
in using it.

3. Let me point out that neither I nor anyone else who warns against
the use of registry cleaners has ever said that they always cause
problems. If they always caused problems, they would disappear from
the market almost immediately. Many people have used a registry
cleaner and never had a problem with it.

4. The problem with a registry cleaner is that it carries with it the
substantial *risk* of having a problem. And since there is no benefit
to using a registry cleaner, running that risk is a very bad bargain.


Read the section "Beware the Registry Cleaner" in
http://www.howtogeek.com/113382/how-...9-tips-tricks/
Note that it says "The Windows registry contains hundreds of thousands
of entries; removing a few hundred (at most) won't give you an
increase in performance. Registry cleaners can accidentally remove
important registry values, however, so there’s risk with little
reward."


IAWTP +1 :-)

--
David B.