I was doubtful if this one was legit or not based on the title.....

looks like a wonderful gimme-your-credit-card-scam...unless your "too smart" for that and press "no"...which verifys your email addy

I seriously have to get a firewall of some sort installed here, too we get pop ups through our dial up connection when no windows are open

:o

he he he

I got something in the mail lastweek which was supposed to be from paypal. It was a link, which, to an uneducated person, looks to take them to the paypal site, when in reality it took me to someone's computer over in asia. It was some account verification thing. Oh yeah, yee haw. :D

Maybe your boss should close down his child porn site Mac.

but its the front for my endeavors that use dirty money :o

they misspelled laundry. i won't do business with anybody who can't use a spell check.
this from the girl with no capital letters, but still. i hold everyone else to a higher standard than myself ;)

Sounds like there's a Gator (or some other company) trickeler somewhere on the system. That would cause the pop-up windows. Either that or someone is sending you Net Messenger (or whatever that useless service was) messages.

Some shit like that.

GIMME ALL YOUR KIDDIE PR0NZ AND NOBODY GETS HURT!!

Correct me if I'm wrong but I don't think a firewall does much good when it comes to blocking adware/spyware. Simply visiting a site can get the little buggers into your system.

I've scheduled regular system scans on our comps and each one turns up one or two but they seem to depend on the surfing habits of the people using the systems.

I keep running into SpyBlast while Sid comes across Xupiter.

The latest incarnation of Mcafee Virus Scan looks for "questionable files"; executables that aren't viruses or trojans (ie. spyware).

I can't keep his machine clean and I don't even try
I just try to keep it running

his goal in life seems to be to NOT file any of his files on th eserver in their appropriate folders so that WHEN his machine dies the blue cold death from his internet follies
1) move to next work station and finish up
2) reformat and be up and running within the hour

the boss's machine is an off-the-shelf HP running windows 98

its had numerous viruses (including backdoor.jeem which is currently quarantined and I haven't had time to delete it yet)

has bad sectors on the HD and desperately needs to be formatted (it won't shut down without cutting power, so I just restart it)

he refuses to let me teach him how to set his browser fonts to sizes he can see but that still print out normally

he puts everything directly on his desktop and the best I can do is move the file and put a shortcut where it used to be

he refuses to use his quick launch icons

he has FINALLY decided to quit using corel (the guy who sold him his new dell laptop refused to install it)

his wife is the only person who still sends me fwd's

grrrrr :mad:

I mention firewall because, all though we are on dial up, we have no real port protection that I know of. We are running windows 2000 pro (which works beautifully with our file server and programs) but it offers nothing to stop pop ups. We'r enot a real network, we all access the file server (except the book keeper who must retype all the job file info on her machine over and over and over......) so anything I use I have to install on each machine seperately and set to still allow access to the server. I simply do not have the time or motivation to explain to him what he needs, fight with him till he buys it and then install it and set it up.

As for spyware/antivirus: I keep the symantec corp edit updated weekly. Other than a firewall all the work stations are what I would call "internet capable"

I look at it like this "a spare tire in your trunk doesn't prevent a flat but it's there if you need it"
I don't expect to be hack proof, but I'd like enough software and personel training to keep the dummies from dl'ding a virus and crashing the server......yeah

that'd make my day!

his wife is the only person who still sends me fwd's




She has a crush on you? ;)

:eek2:

http://www.asylumnation.com/asylum/showthread.php?threadid=30046&highlight=fucker

You could just restrict external network access to the most mission critical systems. Any other machine should only have limited access to a local network that should be as seperated from any external networks as possible.

leave it to skalie to have already covered all this :)

the whole pop-up's without even having a browser window open is not somethign that will be prevented by a firewall. it is not someone connecting to your computer, it is your computer connecting to someone. you have what's called spyware, or adware.

go download a program called adaware (thats ad-aware) and run it. it'll scan your system and find whatever spyware/adware that's on the system quarantine and remove it. run it periodically and that shtuff should go away.

zim, the pop up without a browser running is the 'messenger' service imbedded in NT, just disable it in services. Its not essential to any other service. No, it wont break any of your MSN, Yahoo or AIM messengers. SP called it 'Net Messenger'. Its old but exploitable.

Ad-aware 6.0+ seems to take care of everything else.

Jury is still out on Google tool bar and actually Ad-aware. Both seem to plant some lurking but unobtrusive tracking files...Too tired to find any links.

DI, that's what I was thinking.
Its some port somewhere, I was unaware I could disable it.
thus, I'll need instructions how.

but my boss gets them on his windowns 98 (fat 32) machine too

I run adaware and its all clean
I have not run spybot.....

I'll look into it.

D_I, i was unaware you could include forms in the messenger service

*grin* (http://www.wired.com/news/privacy/0,1848,60416,00.html)

A virus fouls your computer and you haplessly pass it on. Advertising software loads stealthily on your machine. Your password gets stolen because of your negligence. The music industry sues you because of something your kids or grandkids did on your computer.

Barely a day goes by without someone, somewhere getting stung or stinging others through careless Internet use.

Though many of these situations are preventable, relatively few of us take the necessary precautions.

So why not institute mandatory education before people can go online? After all, motorists must obtain licenses before they can legally hit the road, and computers are much more complicated than cars.

"It could be a four-year college degree, a one-month course. It might be a good idea," said Bruce Schneier, chief technology officer for Counterpane Internet Security.

Or it might be a bad idea.

"The downside is everybody you know won't be able to have a computer any more, and I like being able to send e-mail to friends," Schneier said.

Minimum competency requirements could include schooling in how to update anti-virus programs, install firewalls and obtain security fixes for your computer's operating system.

They could include a primer on copyright law and tips on configuring file-swapping programs to avoid the sharing that prompted nearly 300 federal lawsuits this week against individual computer users.

Users could be taught how to read software agreements carefully, lest they find themselves subjected to unwanted pop-up ads.

They could become smarter about creating passwords and more cautious about using them at public terminals, where criminals have been known to harvest them with keystroke-logging software.

Some colleges and universities are already being didactic about safe computing.

Students requesting computer accounts at the Austin campus of the University of Texas must attend a 45-minute workshop that covers copyright, security, password protection and other issues.

Dan Updegrove, the school's vice president for information technology, is considering even more onerous requirements.

"A car has to pass an inspection, and a driver has to pass a test," he said. "We need to be moving in the direction that machines are certified in some ways and users are certified in some ways."

Meanwhile, Oberlin College in Ohio threatens $25 fines on students who inadvertently spread a virus.

Russ Cooper, a security researcher at TruSecure Corp., proposes extending such penalties to the computing public at large for online transgressions.

Get enough tickets, and Internet surfers will become more responsible, he says. And parents slapped with fines will be more vigilant about their kids' online behavior.

Alas, mandatory education and licensing are easier said than done.

For one thing, who's going to create and enforce the rules? A Federal Computing Commission or a United Nations for Computing?

Jonathan Zittrain, a Harvard law professor and Internet specialist, believes technology advances too quickly. Lessons become outdated. Repeat certifications would be necessary.

While the basic security lesson used to boil down to "don't click on attachments," viruses today spread in manifold ways.

And what do we do about the illiterate and the disabled, about people vexed by standardized tests? Bar them from the online world? Grant them limited rights to use but not own a computer?

To combat threats, software companies have been trying to make technology easier to use — Microsoft, for instance, is considering automating the download and installation of software fixes. No user intervention required.

Others have focused on education.

The Federal Trade Commission has plenty of online resources on preventing Internet fraud and protecting privacy. Parry Aftab, an Internet safety expert, is trying to get funding for Super Safe Kiddo, a mascot she hopes will become an Internet version of Smokey the Bear or McGruff the Crime Dog.

But many Internet users ignore such efforts.

They blithely click past notifications like those from WhenU.com alerting users to impending installations of its ad-delivery software. Then they complain and wonder how the software got there.

Such habits won't necessarily change if we require licenses and expect minimum skills. After all, licensed motorists still speed and ignore stop signs.

Not to mention all the fake IDs.

Disabling the messenger service:

http://www.auburn.edu/oit/security/messengerService.html

Hope it helps.