Little tool to disable DCOM(135) Locator(445) and NetBIOS (137/138/139)

Discussion in 'other software & services' started by gkweb, Mar 23, 2004.

Thread Status:
Not open for further replies.
  1. eyespy

    eyespy Registered Member

    Joined:
    Feb 20, 2002
    Posts:
    490
    Location:
    Oh Canada !!
    Paul,
    maybe a good addition to the "Free Tools" section!

    Regards,
    bill :)
     
  2. Wayne - DiamondCS

    Wayne - DiamondCS Security Expert

    Joined:
    Jul 19, 2002
    Posts:
    1,533
    Location:
    Perth, Oz
    gkweb, great little utility! Nice and tidy at 54kb too - the joys of having complete control over the source code at assembly level. :)

    Cheers,
    Wayne
     
  3. gkweb

    gkweb Expert Firewall Tester

    Joined:
    Aug 29, 2003
    Posts:
    1,932
    Location:
    FRANCE, Rouen (76)
    Thanks you Wayne ;)

    OMG, you have looked at it in assembly, you should have seen the hidden text "i don't like Wayne because i know he will look my prog in ASM" :D

    j/k of course ;)
     
  4. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Great job GK :) Works fine in Server 2003 as well
     
  5. gkweb

    gkweb Expert Firewall Tester

    Joined:
    Aug 29, 2003
    Posts:
    1,932
    Location:
    FRANCE, Rouen (76)
    thanks you :)

    A question to users of the tool : i have had users experience saying me that wwdc was saying for instance that RPC locator was enabled on their system whereas the port 445 was closed, this is due because NetBIOS was disabled on their system, and since Locator depends on it, it wasn't started.
    However, as soon as these people will enable NetBIOS again, RPC Locator will be enabled (port 445 opened) because it wasn't disabled in the registry.

    So there is two possibility :
    - like now, the tool says it's enable unless explicitly disabled in the registry
    - check at start opened ports, and don't check the registry if the port is closed (so says "service X disabled" instead of "enabled").

    What do you think about it ?
     
  6. JBNymble

    JBNymble Registered Member

    Joined:
    Apr 27, 2004
    Posts:
    2
    Hi "~GUyz~",
    Very Nice Proggie! Thankx for the link. Here is one that I have used, it doesn't block the ports but it shuts the DCOM service off. Its called "Safe-XP" but it will work for other Windoze O/S'es. It also gives You access to some other features. You don't have to install it, it doesn't make any registry changes, and it doesn't create any dll's.
    You can read about and download it here. "Click Here"
    Best Wishes,
    "~JaK~" =:)
     
    Last edited: Apr 27, 2004
  7. gkweb

    gkweb Expert Firewall Tester

    Joined:
    Aug 29, 2003
    Posts:
    1,932
    Location:
    FRANCE, Rouen (76)
    oups i think i didn't understand well the first time :-/

    if you mean that you think i have done it in assembler, you are not right, i still use my lovely purebasic ;)

    (the executable is packed with UPX, his original size is more like 140Ko, which is still very small for the amount of code behind).
     
  8. dog

    dog Guest

    Hi gkweb,

    Just noticed this thread yesterday (apr.26)

    Thanks for the great proggy! :D It has a wonderful home on my box ... right in between Steve's 3 muskteers and Safe XP.

    Where would I be without all of you?

    Thanks much! ;)

    Dog - *puppy*
     
  9. anonymous

    anonymous Guest

    from your latest 1.3 upgrade do you now do the same as Steve Gibson's tool?
     
  10. gkweb

    gkweb Expert Firewall Tester

    Joined:
    Aug 29, 2003
    Posts:
    1,932
    Location:
    FRANCE, Rouen (76)
    Steve Gibson has done many tools, about which you are talking ?

    Nevertheless, yes, it disables critical windows services that Gibson's tools offer to disable, such as UPNP, DCOM RPC, and Messenger.

    I don't want to be a Steve Gibson competitor, i just wanted to have "all in one" tool easy to use :)

    regards,

    gkweb.
     
Loading...
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.