sneaky spyware hidden in Windows Update

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • nata25
    Confirmed User
    • Feb 2002
    • 240

    #1

    sneaky spyware hidden in Windows Update

    Windows Update spies on your XP box and sends information about your installed software back to the MSFT Death Star. Best of all, this was discovered by sniffing the "secure" SSL protocol that MSFT uses to communicate. How? By exploiting an undocumented API in MSFT's own system.

    Evidence obtained by German hardware site tecChannel suggests a list of software installed on an XP machine is sent to Microsoft when users run Windows Update. When patches are downloaded, a few kilobytes of data are sent in the opposite direction over a secure SSL channel. Because the data is encrypted a simple packet sniffer can't be used to see what this data contains. However tecChannel's tecDUMP utility takes advantage of an undocumented WinInet API, enabling an examination of the data before it becomes encrypted. According to tecChannel, the information sent to Microsoft includes details of all the software installed in a machine, not only Microsoft applications.
    http://www.securityfocus.com/news/2746
    Web Design ~ Paysite Software ~ Cash
    STABILITY & RESPONSIBILITY: OVER 15 YEARS IN THE INDUSTRY
  • funkmaster
    So Fucking Banned
    • Sep 2001
    • 7938

    #2
    thanks for the info, I downgraded to win3.1

    Comment

    • dchottie
      Confirmed User
      • Feb 2003
      • 894

      #3
      I wondered why I was getting all the fucking popups but yet was unable to detect any spyware or trojans or such with my software. So has anyone heard how to get rid of it? Now I kow why I hate XP! ! !

      Comment

      • Jizzman
        Confirmed User
        • Aug 2001
        • 379

        #4
        Originally posted by funkmaster
        thanks for the info, I downgraded to win3.1
        don't you mean upgrading

        Comment

        • blazi
          Confirmed User
          • Feb 2003
          • 4321

          #5
          I knew about this before it even hit the media...

          little do most people even know, the Internet has been around since 1969... started with 4 networks called the Arpanet, used only for military purposes... if you only knew the half of what Microsoft was up to!!

          makingcoin.com - 100% payouts
          coinscuties.com

          Comment

          • Spunky
            I need a beer
            • Jun 2002
            • 133978

            #6
            I tried to get rid of them fucking things and more and more pop ups come to each site I surf.I tried that adaware and it finds 100 of the bastards and removes them only to have them come back....arrrgghh. I also have pop up stopper which helps alot.
            I use win xp pro also

            Comment

            • blazi
              Confirmed User
              • Feb 2003
              • 4321

              #7
              good thing is, even though Microsoft gets a lot of critisizm, what they're up to is not really bad at all... a very smart company!

              makingcoin.com - 100% payouts
              coinscuties.com

              Comment

              • plexer
                Confirmed User
                • Oct 2002
                • 1339

                #8
                I always thought that to be true!
                I'M FREEEEE!!!!

                Comment

                • amber438
                  Confirmed User
                  • Sep 2002
                  • 230

                  #9
                  Interesting stuff, aint it..
                  I was a network engineer for the army from 1997 - 2000..we had some stuff then..
                  anyway, I have zone alarm and trojan, pest and spyware remover programs I use daily..not to mention windows washer..
                  interesting that windows explorer and generic host processes for win 32 both need internet access..wonder why..??
                  try to block them with a firewall..
                  Red Hot Galleries

                  Red Hot Links

                  Comment

                  • iroc409
                    Confirmed User
                    • Jan 2003
                    • 4728

                    #10
                    i should finish up the unix box, and then put all the windows machines behind a hardware firewall and block ssl

                    then i can just ssl anywhere i need to from the *nix box
                    <a href="http://www.iroc409.com/"><img src="http://www.iroc409.com/adv/120x60.gif" border=0></a>


                    icq: 1 7 6 4 2 0 9 6 0
                    Gallery templates for ONLY $25! w00t!

                    Comment

                    • Damian_Maxcash
                      So Fucking Banned
                      • Oct 2002
                      • 12745

                      #11
                      ok, so u make the most popular porn site of its kind.

                      This site is so popular that when u post a new pic, everyone pays extra to get it.....

                      What do you do?

                      Comment

                      • iroc409
                        Confirmed User
                        • Jan 2003
                        • 4728

                        #12
                        03/07/2003 11:40:18 Allowed UDP Outgoing xxx.xxx.xxx.xxx 137 xxx.xxx.xxx.xxx 137 C:\WINDOWS\System32\ntoskrnl.exe 3 03/07/2003 11:39:13 03/07/2003 11:39:15 GUI%GUICONFIG#SRULE@NBENABLEYOU#ALLOW-UDP
                        this part of what you're talking about?

                        <a href="http://www.iroc409.com/"><img src="http://www.iroc409.com/adv/120x60.gif" border=0></a>


                        icq: 1 7 6 4 2 0 9 6 0
                        Gallery templates for ONLY $25! w00t!

                        Comment

                        Working...