Discussion in 'other anti-malware software' started by bryanjoe, May 26, 2007.
my firewall prompt this
is-PDN1.tmp might be using Winpooch.exe to connect to internet?
There are VERY few Winpooch users here at Wilders, and I am not one of them. Hopefully someone will come around to help your problem.
In the meantime, maybe you can state your problem again in different words...
>Has Winpooch been running okay on your computer? If so, how long have you been using it? Also, are you using the Clam-AV add-on to Winpooch?
>Which firewall are you using?
>Did you recently install a new program or open an email attachment?
>Is your computer running okay right now?
I hope someone comes by to help. Best of luck to you.
Are you sure it's not DPN1.tmp?
Because a Google search has hits for this particular file.
I have enclosed a WinPooch filter set. It protects windows vulnarable directories and modification of executables. Also the Registry startup keys are protected (thanks to Toni Klein).
I have set the netconnect trigger also, so you can build up your own set of outbound rules (by allowing and setting up a new filter for that program).
Download the text file, open with XP notepad and save as ansi file with .WPF file, next import these rules in WinPooch. When you have any questions just PM me. Bellgamin told me a could never go on holiday to Hawai when I should not help you.
kees1958, thanks alot....
If not for SSM/EQSecure and a few others i would likely have Winpooch running full-time. I found it really good at intercepting a lot of potential interprocess signals and identifies files/path really nice, but.....................
When driving the freeware lane:
SSM-Free and WinPooch (Reg + File + Outbound), together provide the "easiest" and broadest classical Anti-Executable protection.
Samoerai (driver loading warning), CyberHawk (version 184.108.40.206 slim & restructured source code version covering mainly process modificaton) and WinPooch (Reg + File + Outbound) are in my opinion the easiest to use Behavior Blocking freeware set.
abit off track,how gd is winpooch outbound protection.i used it before but it never promt me on any outbound connection.now i just need an outbound to fix the hole for my setup.
The default filter set contains "netconnect" action. Otherwise clear the rule set and add for all programs (the *) a new filter for for reason id Net::Connect, Param1 = Address (Any Value, *), Param2 = Port (Any Value, *), Param3 = Protocol (Any Value, *).
Set Reaction to ASK and REJECT, Verbosility to LOG (choose for new made rules after a prompt Reaction = Accept, Verbosility = Silent)
I agree completely. Winpooch "IS" that efficient from my experience with it. The thought didn't really occurred to me with that particular combo though, something worth teaming up, thats for certain.
Separate names with a comma.