Anti-Hacks

Guest replied

12 December 2002, 14:19
Why you want outbound protection

From doom9 forums:

DivX5 Adware summary & DivX5 Pro Cracked
We all don't like adware so here's the definitive summary how to get rid of it.
This also means we will not tolerate any more discussion about adware on this board as
it is intended for video encoding related discussion and not corporate policy and
spyware.

Furthermore, everybody should use the official gain installer and not a cracked version
First of all the crack is reported to cause severe problems resulting in completely
screwed up video and 2nd it is warez and warez talk is not permitted on this board anyways.

Now here we go:

1) Installation:

Make sure you're running a personal firewall or are not connected to the
Internet when you install.

Good free personal firewalls are available at http://www.zonealarm.com (ZoneAlarm) and
http://www.tinysoftware.com (Tiny Personal Firewall).

If you're using a firewall you'll see a new program trying to connect to the Internet after
the installation. Block it and create a rule that will forever block it.

2) Post installation:

After the installation run msconfig, go to the startup options and deactivate
gain_trickler_xxxx or CMEsys, then reboot. If you have no msconfig on your machine then
run regedit and remove the following keys:

HKEY_LOCAL_MACHINE\software\gator.com\
HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\stashedgef
HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\stashedgmg
HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run\trickler

Then reboot. Now you can also delete c:\program files\DivX\DivX Pro Codec\gain_trickler_3102.exe

That concludes the removal.

The following registry key must exist or you can no longer use the codec:

HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c}\

Alternatively you can use AdAware (http://www.lavasoft.de) which will locate
the new registry keys and programs and offer to remove them. Make sure you don't remove
the Gator key:HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c}\
or the codec will no longer work.

That's it folks. One lousy registry keys is all there is to it. If you use tools
to protect your privacy in the first place you have nothing to fear and will never
get to see a single banner or have a single byte of information about you transmitted
anywhere.
Leave a comment:
The PIT replied

12 December 2002, 14:12
Got to admit I don't find that Nortons 2003 is annoying. The host machine pops a lot of dialogs at times with inbound stuff but once the machine is set up I don't find it pain with out going stuff. Perhaps I don't install enougth new software. The client machine is hardly pops up anything. I'm using ics by the way.

Last edited by The PIT; 12 December 2002, 14:15.
Leave a comment:
Guru replied

12 December 2002, 14:11
Re: Anti-Hacks

Originally posted by 3dfx
What is the best protection against hacks ???

Dissconect the network/modem cable! If that does not work remove cpu!
Leave a comment:
Technoid replied

12 December 2002, 12:31
Originally posted by Gurm
Err...

No. It is not "proved" that the Earth is flat. Bad assumptions + bad methods = bad proof. I've seen that proof and they make some rather absurd assumptions. Like that the size of the earth is rather smaller than it really is. You know how it goes.

- Gurm

Sigh

Why did you think I dragged up those silly examples???

BTW: spinrite is still incredibly usefull as 90% of Windows repair is done from DOS
Leave a comment:
ZokesPro replied

12 December 2002, 11:35
Originally posted by Gurm
As for being hacked with Black Ice - I'll believe that when I see it. My biggest beef with Black Ice is that it's unstable and support is pretty sketchy (been passed around one time too many).

- Gurm

That's what I was told by my buddy anyways. Wether I chose to beleive him or not is another story.

Aren't hardware firewalls generally the best protection?
Leave a comment:
Gurm replied

12 December 2002, 11:31
Err...

No. It is not "proved" that the Earth is flat. Bad assumptions + bad methods = bad proof. I've seen that proof and they make some rather absurd assumptions. Like that the size of the earth is rather smaller than it really is. You know how it goes.

As for proof that Gibson is a fraud... you might start at:

Web Page Under Construction

http://www.grcsucks.com/

Network Solutions - Original domain name registration and reservation services with variety of internet-related business offerings. Quick, dependable and reliable.

But then again we've been over this before, repeatedly.

The man is a marketer, not a programmer. And certainly not a security expert.

His "nano-probes" turn out to be standard CGI socket requests, his "massive security hole in XP" campaign is an admitted (by him) scam, and his name is conspicuously missing from the last several years' worth of security conferences.

In fact, the ONLY thing that GRC has going for it is Spinrite... and that hasn't been useful since DOS went out of style.

- Gurm
Leave a comment:
Technoid replied

12 December 2002, 11:24
Okay, prove it (That Gibson is a fraud)

You know ofcours that its "Proved" that evolution is a wrong, that the eart is flat and that the moon does not reflect sunlight
Leave a comment:
Gurm replied

12 December 2002, 11:17
Kurt,

First, she's the WIFE, not the GF (honest mistake). Second, no. It won't work that way. She'll go to install Settlers 84,529 (German version, unreleased in the USA) and it'll ask about a UDP thingy for her to play online and she'll get angry. At me.

Rubank,

I understand that some people LIKE outbound checking. Fine. But why has it taken Zone Alarm a dozen versions and 4 years to allow you to turn it off? That's all I ask.

As for being hacked with Black Ice - I'll believe that when I see it. My biggest beef with Black Ice is that it's unstable and support is pretty sketchy (been passed around one time too many).

Another thing that's irksome about Zone Alarm is their hack reporting is pretty lame. When one of your programs wants to get to the Internet, there's a big ol box, lots of information etc. but when someone tries to sneak in on your IDENT port you get a single line. Bleh. There's a tool - for $50 - that will interpret that line. Yuk.

So what do you people disagree with me on? The usefulness of outbound checking? Or the (proven, can't disagree) fact that Gibson is a fraud?

- Gurm
Leave a comment:
Kurt replied

12 December 2002, 10:13
If you don't want users bugging you all the time about firewall settings, why in heck do you install a firewall on their PC in the first tiem anyway? Besides, what does a normal user have to do with setting his or her own firewall? that's administrator job. Don't give tools to ppl who can't use them -that's gotta be common sense...

@Gurm: can't your GF wait 5 mins to give you time to tick a few settings? Sure is a pain to tick boxes every 2 secs when you just reinstalled, but if you're REALLY using ALL these numerous programs that access the internet it shouldn't take more than a few minutes to setup everything the way it was (given you can't export the settings files....). Or tell your GF not to mess up your computer...
Leave a comment:
ZokesPro replied

12 December 2002, 10:11
So most of you say that ZoneAlarm sucks? It's free and it works rather nicely I think, and might I add it's a lot better than Black Ice.

A buddy at work got hacked into while using BlackIce so he switched to ZoneAlarm and he hasn't been hacked since.

But that's only one experience. If you don't like ZoneAlarm then don't use it, but it's FREE, meaning you don't need to pay money for it! Wow!

Why not just get a hardware firewall and avoid the many problems associated with software firewalls?
Leave a comment:
rubank replied

12 December 2002, 09:56
You don´t really think the XP f/w protect against outgoing connections, do you?

It doesn´t
Leave a comment:
roadie replied

12 December 2002, 09:52
what about the firewall thing in windows xp??? i am on dial up at the moment and i did not bother to install norton firewall 2002 because of this, do you think i should use it over the windows in built thing???
Leave a comment:
rubank replied

12 December 2002, 09:36
Yes Gurm,
the world is full of idiots - and I guess what characterizes us best is that we disagree with you

I don´t care if you think me an idiot, I don´t want Media Player to update some database every single time I play a CD on my computer, or Sound Forge doing the same every time I visit a certain website (even without the program itself running).

Foolish of course, but that´s who I am.

rubank
Leave a comment:
Gurm replied

12 December 2002, 06:27
Look, I understand that you can turn it off.

But it's annoying. When you reinstall as often as I do, you either have to remember to export your rule list (although I might note that recently Tiny/Kerio haven't been allowing rule lists to export from version to version!) or you have to make the rules all over again.

And it's not that it won't just go away when you click "don't ask again", it's that you have to click that for EVERY SINGLE PROGRAM that wants to access the Internet.

You have to remember - Julie uses this machine, too. She would kick my ass if she couldn't run some new proggy she just installed because it wanted to know if it had permission to use UDP port blah blah blah. She has no idea, she would just turn it off and yell at me.

Are you following this?

Plus, I purposely have OTHER programs to check for adware, viruses, trojans, and spyware. I want a firewall that's JUST a firewall. That's it. Then if I _want_ outbound checking, I want to run ANOTHER program.

I have been slowly ditching intrusive software. Norton 2003 got the royal boot because they started being TOO intrusive, TOO irritating, TOO "look we can do everything!".

Every time I try Zone Alarm I inevitably just get rid of it - although I am given to understand that it now has a checkbox to allow you to completely disable outbound checking.

But the fact remains that outbound checking is a panic tool. It smacks of Steve Gibson's "Did you know your PC could be SPYING ON YOU!?!?!?!?" tactics.

As for why I hate Gibson... he's a fraud. Plain and simple. F...R...A...U...D. There are DOZENS of pages out there debunking him, proving that he's a fraud. Real security types laugh at him (at best) or DDoS him (at worst).

He's an idiot. And HE recommends Zone Alarm. 'Nuff said.

- Gurm
Leave a comment:
RichL replied

12 December 2002, 06:05
Originally posted by CHHAS
Yeah, checking that little box marked "remember this setting" when you allow something outbound communication is a real hassle

Give the man a break Chhas, that is in the advanced section of the readme file....

Besides, I like the outbound checking, not just because it will catch anything illegitimate trying to get to the net, but because with Bill Brother watching over our installs of Windows 2k/XP its nice to be able to stop your PC phoning home to Seattle without your permission.
Leave a comment:

Announcement

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment: