Jump to content


  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About pds324

  • Rank
  1. I was using Sandboxie and RunSafer; I never use Firefox without Sandboxie. I was in the process of upgrading Sandboxie, which is an overstore operation. The upgrade went fine, but upon re-starting Firefox I received the questions about key and screen logging from Online Armor, which I answered incorrectly. Since I posted the question I was able to get back somewhat to where I was by removing the entries for Firefox from Online Armor; that solved the keyboard shortcut issues. Currently all entries for Firefox are listed as Allowed and Trusted and RunSafer, and are shown in the bright blue u
  2. I am running the latest version of Online Armor (free) under Windows XP SP3. I've been running Online Armor for years now without a problem, but I messed up yesterday. I run Firefox portable in safe mode (green border around the application frame), and also under Sandboxie. Yesterday, I upgraded Sandboxie, and when I started Firefox portable again I received 2 prompts: Keylogger detected and Screen Logger detected. For both prompts I chose "block remember." That was a mistake on my part, as when I tried to do various functions in Firefox (for example, close a tab with Control-W), I was
  3. Thanks for the additional help, ctrlaltdelete With regard to "More Reply Options," when I click on it Firefox 15 portable (sandboxed) I get this message: "Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party. Are you sure you want to continue sending this information." Two buttons are displayed: continue and cancel. If I click continue, frustratingly Firefox returns me to the main Forum page, rather than giving me More Reply Options. I have a Firefox addon that enforces https connection
  4. Thank you for the help. I reviewed the link you provided. I will change the defaults as suggested. I would like to attach one more .png for your review, but unfortunately I cannot as I do not see the attachment option. Weirdly, if I click on the "Start New Topic" button I see the file attachment option but not here. For future reference, can you let me know what the "trick" is to attach a file in a reply? If I click on "More Reply Options" that only returns me to the previous page. Meanwhile, I will describe one more popup I received this morning: I was updating Roboform password manag
  5. Greetings, I am using Online Armor and Firefox 15 portable, running under Sandboxie. When I fired up Firefox, Online Armor gave me a green message with Connection Details as follows: Protocol: TCP. Remote: (tracker.thepiratebay.org) Port: 1363 Country: Localhost. "Create rule" was already checked, and I checked "Current Session Only" because I don't understand the message. I have attached it here in .png format. Could someone interpret this message for me? Thanks for your help.
  6. Thanks, Andrey; I just sent you a pm, with an important additional detail.
  7. I had Online Armor 5.1 free installed (Windows XP sp 3) and running fine. I then had a system problem, thought it might have something to do with Online Armor, so I uninstalled it (turns out the system problem was my CMOS battery dying). Now, I am trying to reinstall Online Armor 5.1 free but I'm getting this message after the registration section, where it asks me for my name and email address: "You've entered incorrect registration data. Please check if the email address is correct." The email address *is* correct. What can I do to finish installation? Thanks!
  8. UPDATE: Despite having only SP2 on XP, my update to Online Armor went flawlessly. After the update, I elected to run the safety check wizard and everything was fine. Meanwhile, the Facebook association with svchost.exe *still* appears in the Firewall Status window. And I now know it's not the HOSTS file, because the only entry is still just, and it's read-only for good measure. The really weird thing is, the Facebook entries (the ones shown in my first jpeg attachment at the beginning of this thread) only appear when my computer is first turned on in the morning. Af
  9. I thought was "normal" for localhost, but the localhost you suggested is working fine. I'll keep it unless you think I should switch back to Also, I made the HOSTS file read only and there are no further problems. I'll bite the proverbial bullet and upgrade to the most recent version of Online Armor, in a few days, after I have run Acronis for my C drive, in case things go seriously wrong on the update. Hopefully, you won't hear back from me! Thanks so much for your great support, catprincess.
  10. Hello, Andrey, Yes, my version is out of date. I have version I looked into updating to what I think is now version 4.5, but I see a requirement is Service Pack 3 with XP. I don't know if you recall this, as it's now a long time ago, but when SP3 was released there was a flurry of discussion about broken apps. I use my computer for work, and there's numerous, fairly esoteric video production applications, that if they broke upon installation of Service Pack 3, I'd be in huge trouble. (I do maintain all the latest Windows Updates, though.) If you think I can upgrade to the
  11. Thanks for the clarification on the purpose and operation of the HOSTS file. It *was* my understanding that entries in the file were blocked, but that understanding was undermined by the linkage of the svchost.exe and the Facebook ip address being linked together in the Firewall Status window. I did a lot of research and couldn't figure out why svchost.exe and Facebook were linked there, especially since Facebook was in the HOSTS file. And then, when I removed the Facebook entry from HOSTS, the linkage to svchost.exe disappeared. I would think that *no* entry in HOSTS would make it more li
  12. Hi, stapp. File sharing wasn't the issue. All is o.k. now. I went into Online Armor and deleted out the entries related to Facebook from the hosts file. I thought I was *blocking* those entries via the hosts file, but instead they were being allowed. Now, the Firewall Status window shows no connection between Facebook and svchost and System/UDP and TCP. Big thanks catprincess for pointing me in the direction of the hosts file for the source of the problem.
  13. I made the change and rebooted. Unfortunately, the problem's still there -- in the Firewall Status window there are 3 associations listed between my svchost.exe and Facebook, and 1 association each for System/TCP and System/UDP and Facebook. I've attached a screen capture to show you. I've also attached the hosts file to show you the change I made per your instructions. Did I do it wrong? Should I manually delete the hosts file entries below the localhost entry? Thanks again.
  14. catprincess, I see why you're listed as a malware expert -- the first entry in my hosts file is the one I'm concerned about. Those entries in hosts got there via the hosts option in Online Armor, but I thought I was *blocking* those sites, not allowing them. Anyway, I'm confused about whether those entries in the hosts file are blocked or allowed, and await further direction from you. Thanks for getting to the heart of the problem so quickly.
  • Create New...