After using Linux for some time, I realized that this might be another good use for wine.
I've been seeing the commercials for PC SpeedScan by Ascentive and have even been asked about it by non-techie friends. Since my Ubuntu system isn't real mission critical, I decided to throw caution to the winds and installed the 'product'.
One behavior of malware is that it purposely does not uninstall cleanly or at all. Sure enough, the wine uninstaller could not remove any of the Ascentive crap. Just for grins, I installed CCleaner and Revo Uninstaller - they could remove evidence from the wine Uninstall dialog but the app menus still remain. Looks like apt-get autoremove wine, install wine, here we come.
Has anyone else tried this?
Any hints for removing orphan menus?
Testing for Windows malware under Wine
-
Daniel Kasak
Testing for Windows malware under Wine
On Thu, 2008-10-16 at 22:51 -0500, MikeF wrote:
Everything that you install *should* be confined to this, unless you
specifically set up links between wine and the rest of your filesystem.
Note that when I delete my .wine folder and run wineconf, it sets up a
'Z:' drive which points to my root ( / ) folder, so in theory something
could write to Z:/home/dkasak/ and put stuff elsewhere, but it's pretty
unlikely.
'gnome-light' at the moment ). Or alternatively use a gconf2 editor.
Dan
Locate and delete ( or rename ) your wine profile folder ( ie ~/.wine ).After using Linux for some time, I realized that this might be another good use for wine.
I've been seeing the commercials for PC SpeedScan by Ascentive and have
even been asked about it by non-techie friends. Since my Ubuntu system
isn't real mission critical, I decided to throw caution to the winds
and installed the 'product'.
One behavior of malware is that it purposely does not uninstall cleanly
or at all. Sure enough, the wine uninstaller could not remove any of
the Ascentive crap. Just for grins, I installed CCleaner and Revo
Uninstaller - they could remove evidence from the wine Uninstall
dialog but the app menus still remain. Looks like apt-get autoremove
wine, install wine, here we come.
Everything that you install *should* be confined to this, unless you
specifically set up links between wine and the rest of your filesystem.
Note that when I delete my .wine folder and run wineconf, it sets up a
'Z:' drive which points to my root ( / ) folder, so in theory something
could write to Z:/home/dkasak/ and put stuff elsewhere, but it's pretty
unlikely.
Use gnome's menu editor ( sorry, the name escapes me, and I'm runningHas anyone else tried this?
Any hints for removing orphan menus?
'gnome-light' at the moment ). Or alternatively use a gconf2 editor.
Dan
Thanks for responding so quickly, Daniel!
Removing the .wine folder didn't make any difference.
Removing the files (can't remember exact names) under .config/menus did!
I think that the default Gnome menu editor is bizarrely named 'Main Menu' (in Ubuntu) with package name 'alacarte', but I could be wrong. An annoying deficiency of Gnome or Ubuntu IMO. C'mon GUI designers, tell us wtf is going on.
Removing the .wine folder didn't make any difference.
Removing the files (can't remember exact names) under .config/menus did!
I think that the default Gnome menu editor is bizarrely named 'Main Menu' (in Ubuntu) with package name 'alacarte', but I could be wrong. An annoying deficiency of Gnome or Ubuntu IMO. C'mon GUI designers, tell us wtf is going on.
Testing for Windows malware under Wine
On Fri, Oct 17, 2008 at 12:46 AM, MikeF <[email protected]> wrote:
--
-Austin
How is this a Wine bug?Thanks for responding so quickly, Daniel!
Removing the .wine folder didn't make any difference.
Removing the files (can't remember exact names) under .config/menus did!
I think that the default Gnome menu editor is bizarrely named 'Main Menu' (in Ubuntu) with package name 'alacarte', but I could be wrong. An annoying deficiency of Gnome IMO. C'mon GUI designers, tell us wtf is going on.
--
-Austin
Re: Testing for Windows malware under Wine
http://wiki.winehq.org/FAQ#head-9893ae5 ... af2e69b391MikeF wrote:Sure enough, the wine uninstaller could not remove any of the Ascentive crap.
