new leaktest : WallBreaker

Discussion in 'other firewalls' started by gkweb, Jun 17, 2003.

Thread Status:
Not open for further replies.
  1. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,721
    Location:
    Canada
    Hey fellas

    Like already been mentioned by me and also gkweb Look ‘n’ Stop v2.04p2 with most recent Application Filtering driver doesn’t actually detect this type of method, meaning it doesn’t state “Wallbreaker.exe is Launching ….”, however Look ‘n’ Stop is capable of providing somewhat minimum Level Protection against these types of Leaks if configured up properly (For the meantime while we wait for a fix)…

    In addition; Wallbreaker v2.0 second method could be blocked by Loading the following .reg info or by deleting the below informatics in the Registry…

    ---- Copy & Paste to *.reg file ----
    Windows Registry Editor Version 5.00

    [HKEY_CLASSES_ROOT\Applications\iexplore.exe\shell\open\command]
    @="\"C:\\PROGRA~1\\INTERN~1\\iexplore.exe\" %1"
    ----- End of Copy ---
     
  2. FluxGFX

    FluxGFX Registered Member

    Joined:
    Jan 23, 2003
    Posts:
    667
    Location:
    Ottawa/Canada
    BOUYA ! ;) Way to go ;)
     
  3. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,721
    Location:
    Canada
  4. gkweb

    gkweb Guest

    lol it's doesn't change the fact that firewall doesn't say anything on second trivial method !
    But Phant0m, your solution is not a real one, because if i wanted i could have a better path checking instead of totally relying on registry, and in this way your solution wouldn't change anything ;)

    However it's a nice trick ^^
     
  5. FluxGFX

    FluxGFX Registered Member

    Joined:
    Jan 23, 2003
    Posts:
    667
    Location:
    Ottawa/Canada
    gkweb,

    Well still it's a good simple solution on a short term ;)

    And I'm hoping to see something very interesting coming from you.
    Your very resourceful ;)
     
  6. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,721
    Location:
    Canada
    Hey gkweb

    You only are repeating what I already said…

    Anyways same thing can be done to the 1st method as it was done to the 2nd method… ;)
     
  7. gkweb

    gkweb Guest

    :)

    i will not improve it to defeat such solution, because it doesn't change what the leaktest want to show.

    it goes trought, that's all ^^

    About SSM it's a System security Monitor which control all app that are launching, that they will connect or not.
    This could be usefull even again viruses.

    Hmm phant0m, have you the link for lastest version + lastest DLL update ?

    regards,

    gkweb.
     
  8. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,721
    Location:
    Canada
    Hey gkweb

    Yea if I was you I wouldn’t even try either, considering there is many tricks I could and possibly already had done to overcome any improvements you could draw up… ;)

    No I don’t use SSM…

    Bests Regards…
     
  9. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Nite,

    As you are French speaking full with localization :
    Direct d/l : http://tinylink.com/?3z1Qchq4qg

    Rgds,
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.