ZA shuts down when log onto internet?

Status
Not open for further replies.
Mike - also when I get on the net and then turn ZA on, Firefox crashes.

If I turn zA on and then try to get on the net, I get a ZA window that says
"Generic Host Process for Win 32 Services is trying to access the internet"
and askes me to allow or deny it. It lists the application as svchost.exe.

I also occasionally get a couple other similar
ones naming some app and asking if I want to allow or deny.
Doesn't seem to make much diff if I either allow or deny, still doesn't hook.
Used to be that if I allowed them, then it would eventually hook to the net after 2 to 4 tries.

Recently after I upgraded to FF 3 Yahoo version that it started totally blocking the internet.

I never use IE or Outlook if that helps, just FF.

Thanks!!
 
Yeah we did and I missed that one post.

Ok your computer is clean of malware now.

OK it is late now Headed to bed.

Will post a script in morn to completely remove ZA.

Good night,
Mike
 
Thanks Mike!

I'll look at it when I get to work tomorrow late pm or early evening as soon as I have time.
 
Mike

Good morning!

Might have stumbled upon something.

Did a temp download install of Comodo, had the same symptoms as with ZA. Wouldn't connect to the net. At least it didn't crash FF though.

Info came up about a "new network" (I'm sure it's the internet-only network at work, not connected to their intranet - so I (thought I) OK'd it. Something similar had kept coming up with ZA when all that started, too. Might have been something done with the network, they do upgrades or whatever on occasion. How would I set ZA to accept or get into that network? Might just be that that's all there is to the problem?
 
Afternoon

You probably should print this!

Uhhgg

Now you have 2 Firewalls.

When we remove ZA! You have the disk so you can go back any time.

Try Comodo Firewall and Anti Virus for at least a few days.
----------------------------------------------------------------------------------------------------------------------------------
The order here is important so stay with the order presented

1. We must uninstall the entire suite to do this
2. so turn off disable every thing you can within ZA Firewall and Antivirus
3. Run Msconfig and uncheck all ZA items.

4. Download extract Autoruns http://live.sysinternals.com/autoruns.exe
run it click the Everything Tab.

Go slowly down the list watch for anything not microsoft.
Find any line pertaining to ZA Zone labs etc,rt click that line and delete it!

5. Reboot

6. Use the advanced features of Revo Uninstaller http://www.revouninstaller.com/revo_uninstaller_free_download.html

Run it rt click chose the entries for or related to ZA and click uninstall, after the ZA uninstall process click OK on the "Select and uninstall mode" chose Advanced then next.

The uninstall runs. When that completes click next. On the "Found leftover registry items" wait until Select all becomes Bold then click Select all, then delete.

When screen clears click next. If there are leftover files and folders on the HD do the same as for Registry items select all and delete all.

This should be an eye opener as to what would have been left and believe me that is not all.

7. Reboot once more.

8. Drag mouse and copy all in the box below, watch the sliders and go all the way to the bottom, then open a cmd prompt and paste to the black screen.

It should close when finished. You may see errors due to this process is cleaning for several versions of ZA.

----------------------------------------------------------------------------------------------------------------------------------

Code: 
@echo off
:: Cleanup ZA after install

cd\

rd /s /q "C:\Program Files\Zone Labs"
rd /s /q "C:\WINDOWS\Start Menu\Programs\Zone Labs"

attrib -h -s -r ZAMailSa*.* /s
attrib -h -s -r "zonealarm pro"*.* /s
attrib -h -s -r Zonelabs*.* /s
attrib -h -s -r "zone labs*.*" /s
attrib -h -s -r "Internet logs"*.* /s
attrib -h -s -r vsconfig.xml /s
attrib -h -s -r vsdata.dll /s
attrib -h -s -r vsdata95.vxd /s
attrib -h -s -r vsdatant.sys /s
attrib -h -s -r vsmon.* /s
attrib -h -s -r vsmonapi.dll /s
attrib -h -s -r vsnetutils.dll /s
attrib -h -s -r vspubapi.dll /s
attrib -h -s -r zaplus.* /s
attrib -h -s -r zapro.* /s
attrib -h -s -r zllictbl.dat /s
attrib -h -s -r zlparser.dll /s
attrib -h -s -r zonealarm.exe /s
attrib -h -s -r zoneband.dll /s
attrib -h -s -r vsutil.dll /s
attrib -h -s -r zlclient.* /s
attrib -h -s -r Zonelabs*.* /s


del ZAMailSa*.* /f /q
del "zonealarm pro"*.* /f /q
del Zonelabs*.* /f /q
del "zone labs*.*" /f /q
del "Internet logs*.*" /f /q
del vsconfig.xml /f /q
del vsdata.dll /f /q
del vsdata95.vxd /f /q
del vsdatant.sys /f /q
del vsmon.* /f /q
del vsmonapi.dll /f /q
del vsnetutils.dll /f /q
del vspubapi.dll /f /q
del zaplus.* /f /q
del zapro.* /f /q
del zllictbl.dat /f /q
del zlparser.dll /f /q
del zonealarm.exe /f /q
del zoneband.dll /f /q
del vsutil.dll /f /q
del zlclient.* /f /q
del Zonelabs*.* /f /q
del Zonelabs*.* /f /q


del "C:\WINDOWS\All Users\Start Menu\Programs\StartUp\ZoneAlarm Pro.lnk" /f /q
del C:\WINDOWS\SYSTEM\vsdata.dll /f /q
del C:\WINDOWS\SYSTEM\Vsdata95.vxd /f /q
del C:\WINDOWS\SYSTEM\vsdatant.sys /f /q 
del C:\WINDOWS\SYSTEM\vsmonapi.dll /f /q 
del C:\WINDOWS\SYSTEM\vspubapi.dll /f /q 
del C:\WINDOWS\SYSTEM\vsutil.dll /f /q 
del C:\WINDOWS\SYSTEM\zllictbl.dat /f /q 
del C:\WINDOWS\SYSTEM\zlparser.dll /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\Migrate.dll /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\vsdb.dll /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\vsmon.exe /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\vsruledb.dll /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\minilog.exe /f /q 
del C:\WINDOWS\Internet Logs\IAMDB.RDB /f /q 
del "C:\WINDOWS\Internet Logs\W98-DHIGHT.ldb" /f /q 
del C:\WINDOWS\SYSTEM\ZoneLabs\html.tdr /f /q

reg delete HKEY_CLASSES_ROOT\ZAMailSafe
reg delete HKEY_CURRENT_USER\Software\Zone Labs
reg delete HKEY_LOCAL_MACHINE\Software\Zone Labs
reg delete HKEY_USERS\.DEFAULT\Software\Zone Labs
reg delete HKLM\System\ControlSet001\enum\Root\LEGACY_VSMON
reg delete HKLM\System\ControlSet001\enum\Root\LEGACY_VSDATANT
reg delete HKLM\System\ControlSet002\enum\Root\LEGACY_VSMON
reg delete HKLM\System\ControlSet002\enum\Root\LEGACY_VSDATANT
reg delete HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\VSDATA9

exit
exit
----------------------------------------------------------------------------------------------------------------------------------
9. Run CCleaner Temp and Registry cleaner repeatedly until clean.

10. Optional but highly recommended D/L Regseeker http://www.hoverdesk.net/freeware.htm

Then use its Find in registry for, zonelabs, zone labs, zonealarm, ZAMail and zlclient and delete all it finds.

You can the do a general Registry clean select all boxes and chose to back up. But only after a reboot.

Since you just ran CCleaners registry cleaner. Always boot between Registry cleans.

This should be a learning and eye opening experience as you see what a poor uninstall process leaves behind. And why sometimes it will not reinstall or install properly.

Mike
 
MR Mike - after that much appreciated walk thru the myriad complexities of internet security, you are "MR" to me.

Eureka! It WORKS! ; -))

Thank you 1,000 times.

It took me awhile but it sure works nice now - things open faster etc.
The Reg Cleaner took out nearly 500 things in the Reg that weren't being used.

In my prev attempts to remove ZA, I had also gone into the Program files and pulled out the ZA folder - wouldn't let me delete it from there, had to drag it onto the desktop then drag it into Trash hen empty trash, but I did get rid of it out the Program Files. Also went the normal Control Panel route, plus doing a search for anything with Zone in it.

As a result, didn't find a whole lot of stuff in those advanced uninstallers, but apparently enuf to make the difference. Wouldn't hook to the internet before, sure does now! (would hook when ZA turned off only)

Thanks again!!

I keep recommending this forum to all my friends - most of whom don't have much of a clue about real internet security. Norton if they're lucky. Yeah.

All they need is a dose of some of these problems, then they'd be sure to see the light!
 
Great!

So are you going to give Comodo a try for a week or so?

Likely the computer is over all faster from desktop to Internet.

I will review the entire thread tomorrow to see if we have any cleanup/finish ups to do to close this one.

Good night,

Mike
 
Mr Mike

Yes, seems to be, especially on the internet and on boot up.

I've installed the Comodo av & firewall, and have SUPERAntispyware, Malwarebytes, AdAware, SSD, and a few others, loaded for bear!

Thanks again!
 
Status
Not open for further replies.

Similar threads

E
I have been taken over by a software called Astanda using XML to Log everything and roaming to an SQL server.
Replies
0
Views
467
eriksnyman1
E
orangeshadow
Games lag and freeze in 15-20 minute intervals.
Replies
0
Views
458
orangeshadow
orangeshadow
AnilD
Instagram is not loading on any desktop browser - here's a fix
Replies
0
Views
1K
AnilD
AnilD

Latest posts

Back