FAQ and known problems

  1. What is an ip address?
  2. Why do i need cyberghost vpn?
  3. What kind of information do i leave behind when surfing?
  4. How does cyberghost prevent identification?
  5. What is a vpn?
  6. Does cyberghost vpn replace a firewall and/or virus scanner?
  7. Does cyberghost vpn block all personal data?
  8. How are the keys for the secure vpn connection created?
  9. Which servers are available to me?
  10. What does anonymous surfing mean?
  11. What is an ip address?
  12. Why do i need cyberghost vpn?
  13. What kind of information do i leave behind when surfing?
  14. How does cyberghost prevent identification?
  15. What is a vpn?
  16. Does cyberghost vpn replace a firewall and/or virus scanner?
  17. Does cyberghost vpn block all personal data?
  18. How are the keys for the secure vpn connection created?
  19. Which servers are available to me?
  20. I have understood that i can surf the internet anonymously. But what about the data that i leave with you?
  21. Can i only surf anonymously or can i use other internet programs too?
  22. I visited a site using cyberghost vpn and made another visit a few days later. Although i was anonymous both times, the site was aware of the previous visit.
  23. How secure are my files kept in online storage?
  24. I am not convinced. How would my personal data be detrimental to me?
  25. Can i protect myself differently and/or have additional protection?

1. What is an ip address?

Connection problems can arise, even if the software has been put in the exception list: http://support.microsoft.com/?scid=kb%3Bde%3B913522&x=12&y=13. Unfortunately, the hot fix is only available on request from Microsoft.

2. Why do i need cyberghost vpn?

The DHCP Client Service must run to be able to generate an IP address. Check under "Control Panel->Administrative Tools->Services" to see whether the DHCP Client Service is running and, if this is not the case, set it to "Automatic". In rare cases, connections fail because the DHCP stops running properly after another network card has been activated. The Internet connection often fails in this case. The DHCP Client should be restarted in this instance too.

3. What kind of information do i leave behind when surfing?

Some firewalls can block the data traffic from the virtual network card "TAPI-Win32 Adapter". Given that only the CyberGhost VPN server can communicate with this adapter (server and client are authenticated by certificate), and the CyberGhost VPN server offers firewall functions, deactivating the firewall for the "§TAPI-Win32 adapter" would be an option in the event of connection problems. Some firewalls in routers, as well as software firewalls also block UDP traffic to and from the CyberGhost servers. Ports 8080 and 8081might need to be activated in the relevant firewall or router for this (port forwarding).

4. How does cyberghost prevent identification?

cFOS (network diagnostics tool) and other network tools seem to prevent routing from being processed correctly. At the moment, it seems to be deactivating a solution, all network services and protocols for the CyberGhost VPN network connection:

  • Right-click the CyberGhost VPN network connection in the network administration
  • Select "Properties"
  • Uncheck all the boxes down to "Internet protocol (TCP/IP)" or "Internet protocol version 4(TCP/IPv4)" (under Vista)

Some programs, including cFOS, seem however to automatically restart for the network card after a while. In this instance, we recommend you uninstall the program. cFOS might even hinder rather than help when using CyberGhost VPN.

Note from the cFOS FAQ

cFosSpeed supports VPN. To be able to use traffic shaping via VPN connections, you need to set the value "ping_dest" to "10.128.0.1" in the [param] section of the cFosSpeed.ini file. (Note from administrators: 10.128.0.1 is an IP address from the CyberGhost VPN network).

By also adding the parameter keep_bindings=1 to the [param] section of the cfosspeed.ini file, you can deactivate unbind operations for network adapters that do not seem to be used. Use this when terminating VPN connections.

Source: cFOS FAQ

5. What is a vpn?

Downloading the installer works without a hitch. However, when you run it, an error message appears stating that the download has not been successfully completed. In this case, the installer is probably being blocked by a firewall. Incidentally, Kaspersky blocks the installer without displaying any warning message. It is therefore worth having a look at the firewall frequently, and, if necessary, deactivate it for the short duration of the installation.

6. Does cyberghost vpn replace a firewall and/or virus scanner?

If UMTS cards are installed but are not used, the relevant software for these cards should be deactivated. Otherwise, this may cause problems with CyberGhost.

7. Does cyberghost vpn block all personal data?

Implementing the SOAP protocol used by CyberGhost is not compatible with the data execution prevention feature integrated into Windows, which is activated by default only for Windows services and programs. If this feature is activated for all applications, CyberGhost will not run.

Vista solution: Select the following options: System - Advanced system settings - Performance - Settings - Data execution prevention. Then check "Turn on DEP for essential Windows programs and services only" and restart.

8. How are the keys for the secure vpn connection created?

Many file sharing programs attempt to prevent you from being able to download data from other users at high speed, without activating anything themselves. This is often done using an "ID". For instance, if you have a low ID with Azureus, you can only download data slowly from other users. To obtain a high ID, other people must also be able to download from the user. To do this, however, the relevant user's computer must be accessible from outside. This means that a firewall must be configured to allow data traffic to reach the computer from outside. In most cases, the ports in the firewall required for Azureus, for example, are activated for this. So that another outside computer can access the user's computer, it needs the IP address of the user's computer.

However, when CyberGhost is used, it is precisely this actual, unique IP address that is hidden from outside. This is the principle behind anonymization. In other words, external computers can no longer locate and uniquely identify My Computer. This is also known as NAT (Network Address Translation).

Side-effect: As a result, this NAT process works in the same way as a firewall. It would therefore completely go against the anonymization principle if a user's computer could be accessed from outside.

Solution: If you want to operate anonymous file sharing, you will then need, in many cases, to put up with low download rates due to low IDs. Subsequently, we would like to point out that offering copyright-protected material can result in criminal prosecution, which means that anonymization can protect against unintentionally offering this kind of information.

9. Which servers are available to me?

Some programs seem to deactivate the virtual network card. You can solve this problem by activating it manually.

10. What does anonymous surfing mean?

It primarily means hiding your IP address, i.e. any ID that is assigned to you when you log in to the Internet and can, in the case of doubt, clearly identify you. This, combined with any personal data supplied casually, such as an email address, or even a name and an address, makes it easy to identify you and be linked to your computer activities, even if no one is interested in your log entries held by your Internet provider.

11. What is an ip address?

Anyone surfing the Net has the very moment they dial up to connect to the Internet a unique IP address assigned to them that identifies them for the whole time they are online. This address only returns to the address pool it came from after you have logged out. This pool is used again the next time any surfer logs in.

The fact that you are then assigned a new address every time you log in (at least once a day as many providers deliberately terminate the connection after 24 hours) does not give you any reason to assume that you surf the Net unrecognized and anonymously, with the notion: “What’s the big deal? My address expires once I hang up.”

This is a fallacy. An Internet user’s identity remains assigned to the IP address allocated not just during the relevant Internet session, but also for a certain period of time afterwards. The idea has also been discussed of making your Internet Service Provider keep not only the data required for billing, but also personal data for several months in the event of any requests from the authorities for it. This data includes the name of the customer logged in, along with the valid IP address at the time of registration, as well as the destinations selected on the Internet.

Having said this, there are enough people around who are interested only in the current IP address during a session (and not necessarily in you personally or in where you are surfing) so that they can, for instance, let loose some popups on your computer or even make your PC crash. The protection of your privacy during your forays on the Internet is virtually zero and is based, in practical terms, only on the belief that no one is (supposedly) interested in you.

12. Why do i need cyberghost vpn?

Whether you are aware of this or not, every time you visit the Internet you leave personal data behind you, often plenty of it. Using the “right" software, the State, businesses and individuals can create numerous personal profiles and are able to contact you with these profiles.

This applies to activities carried out on home computers, as much as to the use of WLANs or hotspots. In addition, anyone could use your access without being noticed by you, delete data on your computer, or what is often even worse still, tamper with data.

13. What kind of information do i leave behind when surfing?

First of all, there is all the data that you freely volunteer about yourself, e.g. your email address, name, date of birth etc. Then there is the data that is considered as being unimportant, such as the products that you have viewed on a visit to an online store, your preferences for certain countries, genders and forums, the opinions that you have given etc. All in all, a considerable amount of information is collated in just a single session.

On top of this, you leave your IP address every time you visit a website, which is the Internet address that you actually use to access the Internet with your computer. There are also the server logs that keep an exact record of what content was transferred to your address, which link you clicked, how long you spent and where, and often where you came from as well.

14. How does cyberghost prevent identification?

The use of public proxy servers was very popular for a long time. This type of server acts as an intermediary between you and the destination address and is the only one of both devices that knows your identity. Given that lots of users access proxy servers, the addresses seem to get mixed up, making it extremely difficult, if not impossible to observe what is going on. However, an ever-increasing number of users have been trying to surf anonymously for a considerable time, while the number of public servers has decreased so that this kind of anonymous surfing is, in particular, very slow.

CYBERGHOST VPN therefore provides its own servers that can route the data traffic to the relevant destinations at a high performance level, while the connection from you to our server is established via a Virtual Private Network (VPN). This VPN provides a sort of tunnel between you and us and is protected against eavesdropping by 128-bit SSL encryption. This means that your destinations do not know your IP address (because it is concealed) and your provider that has assigned you the address does not know your destinations because the connection to our server is established in encrypted form via a VPN.

15. What is a vpn?

VPN is the abbreviation for “Virtual Private Network”. This is a tunnel established between you and one of our servers that is protected against eavesdropping, via which all your future Internet activities will be run, making it almost like an extension of your home network. You can use all your usual Internet programs, such as browsers, Messenger etc. without any restriction, with all the data traffic being protected by an encryption method that protects against eavesdropping. At the “end” of the tunnel you access our server which routes your requests to the Internet and acts as a front for you every time you connect. Your IP address remains hidden and the only IP address visible is ours. The big exception is email traffic, which is not tunneled in order to avoid any misuse by spam distributors.

Should people assume that I have something to hide if I use CYBERGHOST VPN to surf anonymously?

Every individual in a constitutional democracy has the right to privacy. The well-known knock-out argument about “Whoever has nothing to hide…” is completely inappropriate here and should only be used to provide a justification for something that is obvious: the right of the free development of the individual. No one would put up with a representative of the State or from a business in their living room or with their neighbors in the bedroom, so why should they do this on their PC?

16. Does cyberghost vpn replace a firewall and/or virus scanner?

No. CYBERGHOST VPN’s task is to ensure that your identity is not made public and that your surfing habits also continue to remain part of your private life, by concealing your IP address. If you surf on virus-infected websites, your computer will be just as certainly infected as before. Even Trojan horses can still carry on their business from your computer.

17. Does cyberghost vpn block all personal data?

Basically yes, but there is a significant restriction. With your IP address being concealed, it is not possible to link in a logical manner a particular person to the data collected during a surfing session. In this sense, CYBERGHOST VPN obviously blocks any information about you. However, this only works if you have not disclosed personal data yourself, such as your email address, while surfing with protection. CYBERGHOST VPN is not a filter that blocks certain strings.

You are also recommended to continue with your usual security precautions, such as blocking cookies.

18. How are the keys for the secure vpn connection created?

CYBERGHOST VPN operates using a protected “surfing encryption” based on the SSL standard (RSA procedure) which, unlike the procedures used by rival products, creates both the public and private keys directly and individually on the user’s system. This prevents “man in the middle” attacks that are possible if key pairs are created on the server and possibly also still depend on the serial number acquired.

19. Which servers are available to me?

The free Basic version of CYBERGHOST VPN operates with a limited number of CyberGhost servers, which means that waiting times must be expected. This service is financed by popup windows that are temporarily displayed.

To be able to access CyberGhost servers offering guaranteed bandwidth that can be automatically expanded when a certain peak load is reached, you need to have a Premium account, which is sold as a subscription. These servers operate without popup windows. You are also guaranteed that the number of servers available is always sufficient and a server is never overloaded. There are no waiting times at all in this case, especially as the servers are hosted in different data centers. Users who just want to connect to the network always receive the server with the least load. If the number of subscriptions increases, new servers are also connected within a few hours.

A subscription allows you to use a server for x months with x GB per month (depending on the price model). The price includes online storage which you can use to store any data using 256-bit AES encryption. In this case, neither the upload nor download procedure is ever unencrypted, you must therefore never forget your password. We are not even able to reconstruct data that has been stored if you don’t have your access ID. Consequently, nothing can be done without a password and access ID, and your data is lost.

20. I have understood that i can surf the internet anonymously. But what about the data that i leave with you?

This is a matter of trust. We promise you that no logs are created for your data traffic or are passed on to external parties. Only traffic data is measured for billing purposes.

21. Can i only surf anonymously or can i use other internet programs too?

The VPN standard allows you to use all programs anonymously that in any way access the Internet, e.g. file sharing programs, Usenet downloads, chatrooms, all browsers etc. However, one principle always applies: your anonymity stands and falls on the data that you deliberately pass on to an external operator. If you disclose your email address, for instance, CYBERGHOST VPN cannot even protect against all the current data being accessed due to this.

22. I visited a site using cyberghost vpn and made another visit a few days later. Although i was anonymous both times, the site was aware of the previous visit.

CyberGhost does not have any influence over your surfing habits. Sites such as Amazon leave cookies on your computer containing information about what you looked at and any purchases you made. This information is not deleted and is retrieved by the relevant site the next time you visit it.

23. How secure are my files kept in online storage?

All the files are encrypted using the MasterKey procedure. This means that the files are stored somewhere in the storage facility and can only be accessed via an index file that only contains references. In this case, it is the original file names and the name of the folder in which the relevant file in storage was saved. This basically means that not only the files but the actual file and folder names are encrypted too.

The index file also contains the Master password used to encrypt the files you have uploaded, which can be equipped with full 256-bit encryption (32 characters, full ASCII character set). This is even more secure than the index file itself which is encrypted with your user password.

Passwords can be changed all the time on the fly. This means that not all the files in the storage facility need to be re-encrypted.

24. I am not convinced. How would my personal data be detrimental to me?

Information about what you do on your PC, where you surf, what files you download, which music you listen to, who you chat to and why represent cash opportunities, and are therefore a commodity in the modern world. That is why everyone imaginable and unimaginable is insatiably interested in it.

1. State espionage: “Anyone who has nothing to hide” has often been heard as the knock-out argument in the discussion about plans for the state to have access to private PCs. But what has deliberately not been mentioned is that for the first time in the history of democratic Germany, the core areas of the individual’s life will be affected without it even being known what might access German citizens’ computers, apart from the planned federal Trojan horses. So far the legislation is only involved in getting, in the first place, the desired access legalized.

The fact that the supporters of this measure trivialize the significance of the various forms of online communication as simply new ways of making a telephone call is part of the debate, but ignores the reality of the situation. Above all, the younger generation who have grown up with the Internet and are almost always online regard the PC and the possible communication forms it offers solely as an opportunity to maintain social contacts privately, even across great distances. Monitoring this activity would be like having an agent in your living room all the time.

2. Business’s obsession for gathering data: Most of us leave behind enough trails during our visits on the Internet that can lead to significant conclusions about our consumer behavior. It comes as no surprise that the business sector is also interested in this. In fact, spying on individual’s surfing behavior has become a lucrative line of business. The results of this activity are sold as customer profiles to interested companies.

Sources for this collection of data are provided, for instance, by cookies, which are created on the surfer’s computer while surfing on a website and are analyzed by different places, as well as by email addresses, memberships of forums etc. that have been left behind. Once this information is collected, linked and assigned to a person, it provides large volumes of data, even if it is mainly harmless. However, what is less harmless is if other organizations get involved in gathering data, for example, the music industry, which collects information about Internet surfers and establishes contact with the relevant IP address in order to sue the person using the address for copyright violations.

3. Neighbors, the boss and Mafia: The Internet knows all your good and bad sides and rarely forgets any of it. Wherever you go or even express your opinion – websites, blogs, communities, forums, Web 2.0, such as YouTube, Flickr, etc. – you leave trails that are bound to be collected and linked by an interested party. According to the German social research institute FORSA, one in five Germans have their own website, run a blog, are permanent guests on other blogs and/or are members of a community, and often don't mince their words in their delusory defense of anonymity on the Internet. Suddenly details of sexual preferences appear on the bulletin board, along with histories of illness, hate messages against bosses or unflattering photos. Every future employer will be grateful for so much unsanitized information about any new job applicant. This is why it has long become the norm for HR managers to cast an eye on the Internet when devising interview questions.

Specialized search engines also offer great help with this. For instance, the portal Stalkerati.de searches the large communities and social networks, such as Xing and StudiVZ, while Zoominfo even collates the data found to produce convincing profiles. On the other hand, the people search engine Spock is fairly harmless, even though it has set at its objective to register information about all of the Earth’s six billion inhabitants. And once this information gets onto the Internet, it is there forever because the Internet has no time limit.

According to Google, around 20 billion searches made every month are specifically people related, which is nearly 30% of all searches. This will also include a large number of criminals who are not merely curious, but are keen to use this source to go on a robbing spree. The case that made the headlines recently of a 24-year-old Russian who stole a total of USD 1.5 million based on the simplest of research is just the tip of the iceberg. In this case, the man only used data that could be accessed publicly about his victims.

This does not just apply to private individuals. Even those business sectors that have been in the game long enough and know a few tricks for getting hold of customer profiles can quickly suffer damage due to information supplied involuntarily.

25. Can i protect myself differently and/or have additional protection?

You can (and should) because you can put a stop to the collection obsession of government authorities, business and hackers right at the point where you set the boundaries and deliberately stop distributing personal data far too generously. Even technically experienced people are often surprised and shocked at the new connections that can be made with even the smallest fragments of information because hardly anyone is aware of the consequences and cannot even imagine what you can come up with when linking the available data, never mind creating profiles. The mesh of the net becomes even finer with every new piece of information that is disclosed until finally the individual gets caught in it.

1. Rule: Avoid leaving trails. Anyone who wants to leave as little data as possible behind them on the Internet should use CYBERGHOST VPN. This program guides you through the Internet as anonymously as possible, hiding your identity.

2. Rule: Remain suspicious. The Internet is a cutting-edge medium and its global availability alone, which accommodates a host of different cultures, got rid of in the past so many rules governing how people should live together. And no one knows what the Internet will be like in ten years’ time, whether, for instance, it will provide databases available to everyone, allowing them to find out the political statements made by a person or about their illnesses. You should therefore remain suspicious about new platforms, whether Web 2.0, 3.0 or whatever, and don’t make your identity public immediately.

A negative example of how little the Internet respects the individual’s privacy is provided by Usenet. This is almost the forerunner of all the discussion forums, which was used by only a few people in the early 1980s, but this does not mean that its records have disappeared. If you carry out a quick search via Google, it will even display records that are 20 years old. Its former users had no idea that such powerful search engines would be developed, and must now helplessly look on as their private data is dragged into the spotlight.

New laws could help, but new technologies are always years ahead of the legislator. This is why it is paramount that people think about their privacy themselves at the right time and set boundaries where possible. A great deal has always been said on this matter, even in public. However, what is new is that everything is recorded and personal data is stored for a long time, can be retrieved at any time, put on a network and exchanged, while not even knowing who is behind this and for what purpose. This should provide a sufficient warning and reminder.

3. Rule: Keep your nose clean. It may sound paranoid, but you should act with restraint most of the time on the supposedly anonymous Internet of all places, especially because it is so tempting to reveal your innermost secrets. Applying for jobs via the Internet is becoming increasingly important, just as carrying out Internet research is for HR managers. You should therefore only disclose personal information if it is absolutely necessary, and avoid creating publicly accessible profiles.

As no one can check whether you are actually who you say you are, take every opportunity that presents itself, therefore, to use a “pseudonym” that has absolutely no connection with your real name. Don't use real names at all, as far as possible, because if 100,000 people are suddenly called Michael Smith, the “poor” guys behind any Internet scams will receive more than plenty of profiles.