PC Audit

  • Thread starter Thread starter Frank Bohan
  • Start date Start date
F

Frank Bohan

<quote> pcAuditT is a program developed to simulate an attack by a hacker.
To determine whether your computer is secure, pcAuditT will try to send data
from your computer to Internet Security Alliance's server. If pcAuditT
succeeds it means that your current security measures are ineffective.
</quote>

PC Audit http://www.pcinternetpatrol.com/page/view/49

===

Frank Bohan
¶ Bad spellers of the world UNTIE!
 
Frank said:
<quote> pcAuditT is a program developed to simulate an attack by a
hacker. To determine whether your computer is secure, pcAuditT will
try to send data from your computer to Internet Security Alliance's
server. If pcAuditT succeeds it means that your current security
measures are ineffective. </quote>

PC Audit http://www.pcinternetpatrol.com/page/view/49

===

Frank Bohan
¶ Bad spellers of the world UNTIE!
Click to expand...

Good one, but I'm not sure I should thank you or not. ;)
Pretty amazing how fast this program identified a folder I thought was
protected.

After receiving a report via email, I noticed the link on the audit leads
to a paid security program but does offer a 7-day free trial.
 
Thanks for the information, Tony. I already had some doubts about PC
Audit.

PC AUDIT IS SPYWARE --- DO NOT USE
Click to expand...

What, because $ymantec tells you ?
Please come up with something better than this to convince me.
And why did you post it in the first place when you were having doubts
about it ?
 
Frank said:
PC AUDIT IS SPYWARE --- DO NOT USE
Click to expand...

Nonsense. It is a leak test. On running it you are presented with a
'disclaimer of liability' which you have to agree to before continuing.
It says this:

======================================
Disclaimer of Liability

I understand that in the course of this audit, Internet Security
Alliance's program, pcAudit™, will attempt to collect and transfer to
its server the following information: this computer's name or any
identification assigned, IP address, along with directories and file
names, a snapshot of this computer's screen and anything typed
(keystrokes) during this audit. Upon completion of audit, you will be
provided with a security evaluation showing the security status of this
computer.

All information or data collected during this audit program, will only
be available to you, and will be deleted automatically after about 5
minutes, unless deleted sooner.

Internet Security Alliance™ will use the collected information or data
only for the purpose of this audit program, so Internet Security
Alliance™ can generate an audit evaluation report about the security of
this computer.

I understand that information collected during this audit will not be
encrypted while in transit and can possibly be observed by a third party
during and after the audit.
======================================

On completion of the test you have the option to view the results. These
are presented on a web page (i just failed the test) and indeed show IP
address and some folder contents etc, just as was indicated at the
beginning of the test. At the bottom of the page is the option to delete
it; upon deletion you get a confirmation msg.

I think this app is perfectly clear and honest about its purpose.

Paranoid individuals who think all the disclaimers are lies should not
be running an app of this kind anyway. :-)
The joke is usually on then though, since they are probably running a FW
that is vulnerable to the sort of thing that PC Audit exists to show.

PC Audit is not spyware.
 
Thanks, jo. Symantec got this one wrong IMO. There are several on-target
messages about Symantec's at
http://www.pcinternetpatrol.com/forums/index.php?s=6637475834bc9de6fe004abae4e1d362&showforum=6

More info at http://www.firewallleaktester.com/leaktest6.htm

I tested it myself and it's a useful security tool.
Click to expand...

I teeted it myself and it's a...disaster for me! :-(((
Despite Sygate 5.5 firewall, it has done all activities (had access to
my Documents' dir, stole my typing & screen dump....the problem, I
think, is the configuration...or not ?

From:
http://www.firewallleaktester.com/leaktest6.htm
PCAudit uses DLL injection to inject it's code (as a DLL) into
authorized application instead of launching it's aim directly.
If the aimed application have full access, pcaudit will go trough
without trouble.
To test PCaudit correctly, say "Always" if your firewall will warn you
that Explorer.exe try to access the Internet. Then try again, and if
your firewall don't show you an alert about pcaudit.exe, it means that
it is vulnerable...
Signification :
------------------
If the test is a success, this means that your firewall is vulnerable to
DLL injection.

Is wrong my firewall or simply its settings ?

Simon
_______________________________________________________
"Try not! Do, or do not. There is no try."
by Yoda, Jedi Master (from anonymous poster)
( remove/togli 'FalselinK' to reply/per rispondere )
 
Simone said:
Is wrong my firewall or simply its settings ?
Click to expand...

Your firewall will not be monitoring applications; few do. Having
allowed an app, your firewall can then be fooled by PCAudit (or a more
malicious package) pretending to be a trusted app. When I tried it just
now, it tried to connect out on the back of several apps before finding
one that worked.
For app monitoring, have a look at System Safety Monitor

http://maxcomputing.narod.ru/ssme.html?lang=en
 
jo said:
Nonsense. It is a leak test. On running it you are presented with a
'disclaimer of liability' which you have to agree to before continuing.
It says this:

Disclaimer of Liability

I understand that in the course of this audit, Internet Security
Alliance's program, pcAudit™, will attempt to collect and transfer to
its server the following information ...
...
All information or data collected during this audit program, will only
be available to you, and will be deleted automatically after about 5
minutes, unless deleted sooner.
Click to expand...

Yep, that's spyware.
 
Don't be ridiculous; it is doing what it says it will do. After you ask
it to do it.
Click to expand...

I just created a new Hotmail-adress, ran PC audit, and logged in to
Hotmail, typing my full address and password while failing the PC Audit-
test. I didn't clear the information of the results, and choose to let the
results mailed to that same Hotmail-adres. I'll report back if I notice
anything spywarish/spammish, which I don't expect.
 
jo said:
Don't be ridiculous; it is doing what it says it will do. After you ask
it to do it.
Click to expand...

Hey Jo, when you gave me those instructions about deleting my system folder
to get rid of a suspected virus, well, my computer didn't boot afterwards.
SO I learned my lesson, and have removed that bad deltree.exe program.

Symantec's AV says the pcaudit.exe is bad. Some silly ACF'ers have proposed
that I can delete that program when I no longer want to use it. But Symantec
says that I should go online with them to have them update my virus definitions,
and then they will protect me from the pcaudit.

Quoi faire...
 
omega said:
Symantec's AV says the pcaudit.exe is bad. Some silly ACF'ers have proposed
that I can delete that program when I no longer want to use it. But Symantec
says that I should go online with them to have them update my virus definitions,
and then they will protect me from the pcaudit.
Click to expand...

I wonder what Symantec think about sheep.exe who is a sweet little
'desktop mate'?
And my AV app - an old Kaspersky thing - has to be turned off when I use
Ghostmail or some of the other standalone mail apps.
This sort of blind faith in software - 'Symantec says it so it must be
true' - is what gets so many posts here along the lines of 'Adaware
deleted my cat'.
 
If Symantec are trusted by companies, why shouldn't I believe them for
myself? If they say it's spyware, then as far as I'm concerned it
is.
 
If Symantec are trusted by companies, why shouldn't I believe them for
myself? If they say it's spyware, then as far as I'm concerned it
is.
Click to expand...

There's nothing like independent thought. And that's nothing like
independent thought :-)
 
Aitch said:
...but at least I don't pretend to know more than Symantec.
Click to expand...

That's not what the current discussion is about, however.

It's about having some sort of faith in one's own judgement, and one's
ability to make informed decisions.
 
Back
Top