eversince I upgraded my Zone Alarm from 3.0 to 3.1 it's been acting unusual and some events I've seen are making me suspecious .

First , In Program control there is now a dummy executable icon but no name or detalis are given yet this dummy icon has full server rights, and it won't allow me to change the server access to "ask" or " block"
I've tried deleting it but it keeps coming back the next day. I don't know if this is normal for Zap3.1 but I am sure 3.0 didn't have this.

Second, every time I start IE6 (even before dialing) ZAP 3.1 pops-up asking me if I want to allow IE to connect to IP 127.0.0.1 Port 1025 (or 1029).
Now I know it is connecting to my own PC, but this sounds to me like a proxy server running on my own computer. I certainly did not install one. And I don't even have Networking installed except for TCP/IP for dialup.
Again, ZAP 3.0 did not do that; it just detects a network connection after the connection starts dialup --not before.
Or is this a side effect of modifying the hosts file?.

Third, ZAP3.1 no longer remembers (or it does not want to remember) that I put a check box for it to REMEMBER to allow IE to connect ... yet it forgets it with every boot.

Fourth, some thing has recently replaced DUN Password Auth. Protocol (from dialup connection Status), with a " Shiva Password Auth. Protocol" ... what ever that is , I removed it and re-installed DUN. For all I know it could have been a Password Stealing Protocol ya know!

By the way, ZAP shows "counts" between 200 & 300 attempts (single entry) using IP Protocol 89 several times on a dialy basis for months now. I thought it was some ad-tracker but I am worried now.

Any idea what is going own

Gangsta,

I don't understand why you're starting another thread, when you have the other issues to resolve.

You should follow those instructions first. I gave you links and info. to check, which seems like the best place to start, then go from there.

You can't work on ZA problems, as long as you have these other issues to resolve first. There's info. on hijacking, dialers and all kinds of things at that site.

It's just that, many times it seems, that we post all kind of instructions, etc. telling a poster what they should do. Then a lot of the time it's like they almost expect us to do it for them!

Carol
that " dialer" topic was posted 2 days ago it just didn't show up until today, but the ZA topic I posted it a few hours ago.
So things are not really what they seem.

I am sorry if you think the two are related some how but to me they are not.
From the title of this topic today I was talking about Zone Alarm bugs in general and what seems abnormal to me not talking about dialers (you know they dial using direct phone line not thru the internet).
Zone Alarm however is a different story.
I know I some times go off topic just talking about stuff the way I see it .. sorry about that.

when i installed ZA 3.1, i immediately went about Down Grading to 3.0 as it messed up my Server, and It allowed ppl to "Get In" on ports that were closed (Lol In when i want out and out when i want in)

But to Down grade i had to delete the Zone Alarm / Zone Labs outta program files and zone labs outta system32 / system

AFTER i uninstalled (Argh@ their "fancy" things... ) They forget ppl need what they download it for A FIRE WALL!

Just to elaborate on the fourth point in the original post above, I found the following info about this Shiva, not the Hindu Goddes, but the Password authentication protocol, which is NOT part of w98 that I use --rather w2k:

This form of authentication is more secure than plaintext but less secure than CHAP or MS-CHAP.

When you enable SPAP as an authentication protocol, the same user password is always sent in the same reversibly-encrypted form. This makes SPAP authentication susceptible to replay attacks, where a malicious user captures the packets of the authentication process and replays the responses to gain authenticated access to your intranet. The use of SPAP is discouraged, especially for virtual private network connections.

So I was right on the money ...

That may be so, but if ZA's acting strangely, it could be due to problems you're having right now with those other things.

Another thing is, that people can't really help posters with their Firewall program problems. There are too many issues with those, especially ZA it seems like. I have trouble understanding why people use it myself!

That's when you need to contact the vendor of the program or uninstall/reinstall or get rid of it. If you were to do that, you need manual uninstall instr. for ZA though.

Carol

wpearsall

can you check your ZA3.0 Program Control tap and see if you have any thing like I described about that dummy exe icon with NO NAME AT ALL?

nothing about a dummy EXE program,

Everything on my list has a File Name / Description / Date . / etc




Wayne.

<a target="_blank" href=http://www.1heluva.com/cgi-bin/join.cgi?refer=2028&trk=wg>1Heluva Traffic X Change</a>

thanks for the advice Carol but I trust this is a forum to discuss such issues with other actual users of the product in question.
So I am not really expecting any one to reply if they don't feel this is a topic they want to talk about.
And I find that users can learn a lot more from each other than from the vendor .

I just noticed that you upgraded ZA. I believe it needs to be completely uninstalled, then install the newer version.

Another thing to note, is that there seem to be a lot of problems with the freeware version, so the Pro version is recommended. Plus, if I recall correctly, one of those versions has spyware in it.

thanks wpearsall !

&gt; you upgraded ZA. I believe it needs to be completely uninstalled, then install the newer version.

I did that already .. not the problem

&gt;so the Pro version is recommended.

I have the Pro (ZAP3.1 not ZA3.1)

&gt; one of those versions has spyware in it.

Yeah , my previous version, but at least it was working. I tested it at GRC and others.

Gangsta,

OK, you didn't specify that you had the Pro version.

Btw, it was your previous post that prompted me to respond to this one. Otherwise, I wouldn't have posted in this thread.

No Problem :) ... Try to help where i can :) * Normally always ok with php / cgi / web site stuff lol windows sometimes leave me stumped *

"Every time you boot windows your a 'beta tester'." ;)
: Loves that quote :

Wayne.

<a target="_blank" href=http://www.1heluva.com/cgi-bin/join.cgi?refer=2028&trk=wg>1Heluva Traffic X Change</a>

Oops also, I didnt Notice this reply when i replied.

The best firewall i have come accross in my travels is Zone Alarm Pro.

I used black ice for a while (but it was more trouble then it was worth)

Norton Personal Firewall too. Infact my friend bought NPF on the morning (nearly 40 bux) and then by the night he was onto using Zone Alarm Pro. It messed up so much with his apache server (Pfft @ firewalls ;))

I dont like the "Features" on the new Zone Alarm Pro, cuz it messed up, but before the "New stuff" it was (and if they lost a ton of it, then it still can be) The best firewall out there.

I Doubt that it would be the best if EVERYONE in the world switched to it, cuz ppl would only have one target to hack then.

But it (Zap 3.0) is still a good Program to use :)

Wayne

Wayne.

<a target="_blank" href=http://www.1heluva.com/cgi-bin/join.cgi?refer=2028&trk=wg>1Heluva Traffic X Change</a>

I know people seem to like ZA Pro, and it's just like anything else, a matter of choice. I s'pose you hear of more problems with ZA, because more people use it.

As far as Black Ice, it's about the worst there is. Norton and McAfee neither one have good firewalls. In fact, I don't think McAfee has anything good!

People really like Norton's System works and Norton Internet security, though.

Lol yeh prolly true.

Norton I Like their AV "Solutions" .. (Kinda an annoyance when i need to re-install it cuz live update crashes out and corrupts The Norton Program)

Their firewall when i tried it myself was too ... :@ Anti Cookie Anti this, anti that.. I mean a FIREWALL = Stop hackers / un-authorised access! Whats with the cookie stuff :P

But their are some who "successfully" use it (Except their internet provider "has tech difficalties every day")

Lol but aint it always the ISP :D



Wayne.

<a target="_blank" href=http://www.1heluva.com/cgi-bin/join.cgi?refer=2028&trk=wg>1Heluva Traffic X Change</a>

&gt; Norton and McAfee neither one have good firewalls. In fact, I don't think McAfee has anything good! &lt;

Hey Carol, ask me about it; I've tried them both and McAfee has one of the worst uninstallers out there. It totally messed up my windows three times.
Norton on the other hand is not practical at all.

I mean if you want to have a good laugh today just drop by McAfee's Home page. ...

Wayne
I went to do a scan on ZAP 3.1 from the sygate site and was shocked to find out it failed the ICMP test (a totally open port).
Now this scan result was using the default firewall settings on High. I fooled around with the ICMP settings but it did not affect it showing as OPEN.
Then I wen and Blocked Trusted Zone Incoming Netbios (i.e. my ISP). That did it .. the port got closed & showed as stealthed using sygate scan.
And to be sure I went to symantec and scanned again ... PASSED all ports
well... ZAP3.1 seems to be doing a good job just can't figure out why the dummy exe shows up in mine?