The Electrical Contractor Network

ECN Electrical Forum
Discussion Forums for Electricians, Inspectors and Related Professionals

Books, Tools and Test Equipment for Electrical and Construction Trades

Register Now!

Register Now!

We want your input!

Featured:
   

2017 NEC and Related
2017 NEC
Now Available!

   
Recent Posts
Calling all Non-US members!! (Non-US only)
by aussie240
Yesterday at 02:39 AM
Photo Upload Tutorial
by DanK
12/06/16 11:35 PM
Sprinklered equipment 26-008
by bigpapa
12/02/16 04:24 PM
On Delay Relay with Auto Reset
by Potseal
12/01/16 09:59 AM
Wow, that was close!
by jraef
11/28/16 07:06 PM
New in the Gallery:
12.5A through 0.75mm˛ flex (just out of curiosity)
Shout Box

Top Posters (30 Days)
gfretwell 13
HotLine1 9
Texas_Ranger 8
sparkyinak 7
Trumpy 6
Who's Online
0 registered (), 238 Guests and 5 Spiders online.
Key: Admin, Global Mod, Mod
Topic Options
Rate This Topic
#131963 - 10/22/04 08:08 PM Adware and Spyware
Dave55 Offline
Member

Registered: 05/08/04
Posts: 666
Loc: Crystal Lake, Illinois, USA
A friend told me about some great software for removing adware and spyware. It's available at www.download.com and they are:

Spy Bot Search and Destroy and
Ad-ware SE.

Dave

Top
Test Equipment:

Large Selection of Test Equipment For Electrical, HVAC, Test & Measurement
Large Selection of Test Equipment For Electrical, HVAC, Test & Measurement

#131964 - 10/23/04 12:54 AM Re: Adware and Spyware
jooles Offline
Member

Registered: 09/18/04
Posts: 98
Loc: brussels, belgium
The other important thing is to be aware at all times of actually what your computer is doing. Ad-aware and things like that only tackle a problem when it has taken hold.

If you run a properly configured firewall then it will monitor all the network traffic, and create alerts for you that program X is passing unusual and/or unexpected traffic back and forth on port Y to host Z. Anything you can't explain or don't like, then you can block off that hole to prevent it.

The problem with Microsoft is that they often configured their systems by default to be running a whole heap of services that you probably don't need, and NO FIREWALL, so all these open ports then provide useful points of ingress for all the malware. We hear that at long last they have started learning not to do it any more. But it will be years yet before the majority will upgrade to take advantage of the security provided by the more modern versions.

Top
#131965 - 10/23/04 05:37 AM Re: Adware and Spyware
Dave55 Offline
Member

Registered: 05/08/04
Posts: 666
Loc: Crystal Lake, Illinois, USA
I have Norton SystemWorks and Norton Internet Security, jooles. However, I may not have had the firewall feature running when the adware took over my e-mail homepage. I have a new PC with XP Home Edition. I've heard about closing unused ports (gateways?) but don't understand it. I have DSL (SBC). Can you tell me how to close off these unused ports, or a site with instructions? Thanks

Dave

Top
#131966 - 10/30/04 09:21 AM Re: Adware and Spyware
jooles Offline
Member

Registered: 09/18/04
Posts: 98
Loc: brussels, belgium
Dave,

Sorry it has been a very long time now since you wrote that.

The first thing to find out is which ports you have got open. This information you need so you can then decide which ones don't need to be :-) The open ports will be revealed in an exercise known as port scanning.

Normally a port will be open because your machine is running a corresponding service as a background task, so to disable the port, you just need to stop that service. However, a few of the ports and services are actually needed, so it is not a case of just nixing everything in sight :-) The ones that you need to keep but not make available to the world at large you can secure by placing them behind a firewall. XP has a built-in firewall but a lot of the experts still say that ZoneAlarm is a better one.

You can do port scanning from any other machine on the internet using a port scanner tool, but possibly easiest of all is to use one of the web-based port scanners. There is one here

http://www.securitywire.com/scan.php?

based on the unix portscan tool called nmap, which many say is the rolls-royce of port scanners (I'd agree, really). So you should run that first. It is quite easy to use you need to give it a a couple of minutes though.

You will get results including stuff like this:

20/tcp closed ftp-data
21/tcp open ftp
22/tcp open ssh
80/tcp open http

(that is an example for one of my computers)

Please note also that a /gateway/ is not the same thing as a port. A /gateway/ is an element in a routed network by which means multiple networks are linked together. All the data that is not intended for one of the detinations available in the local network is instead sent away to another network through the default gateway, and so on, until it reaches its destination.

If you don't know what to do when you get your results then just paste them here in a reply (only the lines like my example NOT your machine's IP Address and all) and I'll take a look.

Top



ECN Electrical Forums - sponsored by Electrical Contractor Network - Electrical and Code Related Discussion for Electrical Contractors, Electricians, Inspectors, Instructors, Engineers and other related Professionals