verify credibility of xpy

anyuseranyuser
edited June 2005 in Science & Tech
i recently came across this freeware, xpy, that says it plugs security holes http://www.majorgeeks.com/xpy_d4218.html

can anyone tell me if this is a creditable freeware or if it contains any trojians and stuff...

pardon me i am a computer noob

Comments

  • LeonardoLeonardo Wake up and smell the glaciers Eagle River, Alaska Icrontian
    edited June 2005
    I don't know anything about that software, but do know that MajorGeeks has a reputation for clean downloads. I've downloaded tons of stuff from them.
  • DexterDexter Vancouver, BC Canada
    edited June 2005
    If it is from MajorGeeks you can trust it. However...

    This Xpy sounds just like the XP Anti-Spy app that has been around for a while. Most of the things this app does can be done in different ways, or is unnecessary. For instance, disabling RPC: RPC buffer overrun problems have been fixed my Microsoft. Uninvited RPC traffic will be blocked at a firewall. There is no need to diable RPC.

    More importantly, this app will disable DCOM. Some tech sites recommend disabling DCOM because it *could* be exploited. Some viruses have used DCOM to run on computers. Well, a lot of things could be exploited, like your e-mail, your Windows, etc...but you still use those, right? With a good anti-virus app and regular updates, as well as some common sense, you should never have a problem with DCOM active. I have not disabled mine, and I have never gotten a virus.

    Before you disable DCOM you shuold realize that some programs and sites use it:


    http://support.microsoft.com/default.aspx?scid=kb;en-us;825750

    The Distributed Component Object Model (DCOM) is a protocol that enables software components to communicate directly over a network. Previously named "Network OLE," DCOM is designed for use across multiple network transports, including Internet protocols such as HTTP. More information about DCOM, visit the following Microsoft Web site: http://www.microsoft.com/com/tech/dcom.asp
    DCOM is supported natively in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003.

    Warning If you disable DCOM, may you may lose operating system functionality. After you disable support for DCOM, the following may result:

    • Any COM objects that can be started remotely may not function correctly.
    • The local COM+ snap-in will not be able to connect to remote servers to enumerate their COM+ catalog.
    • Certificate auto-enrollment may not function correctly.
    • Windows Management Instrumentation (WMI) queries against remote servers may not function correctly.

    There are potentially many built-in components and 3rd party applications that will be affected if you disable DCOM. Microsoft does not recommend that you disable DCOM in your environment until you have tested to discover what applications are affected. Disabling DCOM may not be workable in all environments.

    Dexter...
Sign In or Register to comment.