| I can't explain this. I have no messenger running. I have scanned with ad-aware and norton anti-virus and nothing came up. So how and what program caused this ad to just pop up on my screen? Makes me kinda mad.
--
"Try not to become a man of success, but rather try to become a man of value." -Albert Einstein |
|
 MrFixitCTpay it forwardPremium,VIP,ExMod 2001-06
join:2000-12-01
Charleston, SC | Let me know if you want this thread shifted to the security or anti-spam forums, those guys love a challenge... |
|
|
|
 RdaxPremium
join:2001-05-18
El Dorado, AR | reply to quickstang22$
Delete your ip address from that jpg. |
|
 martiColor outside the linesPremium,MVM
join:2001-12-14
Houston, TX
kudos:5 | reply to quickstang22$
There have been a couple of discussions in the Security forum regarding something similar. Don't recall the details. |
|
| reply to MrFixitCT
Yeah send it to over to the security. I didn't know where to put this.
Rdax I don't care about my IP being there. I don't believe IP's to be a sacred thing.
--
"Try not to become a man of success, but rather try to become a man of value." -Albert Einstein |
|
 KAD ImagingJust Shoot ItPremium
join:2002-09-21
Hialeah, FL
| reply to quickstang22$
Damn!! I have never seen that outside a "closed" net work.
I bet your running XP or 2K Srv/Adv Srv. XP/2K runs the "server" service in some installs by default. This allows for "net send" messages initiated from another XP/2K machine.
We do this at work all the time to harass each other. The scary part is that someone was able to "connect" to your network to send that spam. I don't know of any means to "spam" (which that was) that sort of thing unless the person got server access to your ISP's domain effectively "connecting" all the machines in their subnet.
Install a FIREWALL immediately!!! If they were able to get on your network you could be (or are) in trouble. GET A TROJAN SNIFFER N-O-W!!!
[text was edited by author 2002-10-10 22:22:46] |
|
| reply to quickstang22$
I am running Norton Firewall... I will check for trojans. |
|
 KayracPremium
join:2001-09-29
Madison, WI
| bleh, nevermind
[text was edited by author 2002-10-10 22:31:30] |
|
| reply to quickstang22$
I am running XP Pro.
I don't need the net send server/messenger do I? I just turned it off and it didn't seem to break anything.
--
"Try not to become a man of success, but rather try to become a man of value." -Albert Einstein |
|
 La LunaSurvived AshrafulPremium
join:2001-07-12
Warwick, NY
kudos:3
 ·Vonage
 ·Optimum Online
| reply to quickstang22$
Apparently you aren't the only one with this problem--interesting....
»Messenger Service window popped up on my Server!
--
»www.sarahbrightman.co.uk »www.sarah-brightman.com/ |
|
Just BobPremium
join:2000-08-13
Spring Hill, FL | reply to quickstang22$
said by quickstang22$:
I am running XP Pro.
I don't need the net send server/messenger do I? I just turned it off and it didn't seem to break anything.
The only problem I've seen with the "server" service disabled on w2k pro is MBSA - Microsoft Baseline Security Analyzer won't run...easily worked around by starting the service before running MBSA (don't forget to stop it afterward).
»www.microsoft.com/technet/securi···home.asp |
|
| reply to quickstang22$
quote:
Damn!! I have never seen that outside a "closed" net work.
I bet your running XP or 2K Srv/Adv Srv. XP/2K runs the "server" service in some installs by default. This allows for "net send" messages initiated from another XP/2K machine.
We do this at work all the time to harass each other. The scary part is that someone was able to "connect" to your network to send that spam. I don't know of any means to "spam" (which that was) that sort of thing unless the person got server access to your ISP's domain effectively "connecting" all the machines in their subnet.
Install a FIREWALL immediately!!! If they were able to get on your network you could be (or are) in trouble. GET A TROJAN SNIFFER N-O-W!!!
LOL...funny. Don't be so paranoid...
It is the "messenger" service in XP, 2K, or NT. Check your NETBIOS ports, and shut off the messenger service to disallow this. Just because someone was able to send this DOES NOT NECESSARILY mean that they are compromised.
[text was edited by author 2002-10-10 23:05:12] |
|
| reply to quickstang22$
I think this is the Windows Messenger Service.
Block UDP packets on port 1900 |
|
| reply to quickstang22$
Would this be something that norton's firewall would let through? I need to go back to using kerio firewall. I'm going to email my ISP and see if they have anything to say. Looks like people will do anything to spam these days. I should keep call that number all day and spam them back.
--
"Try not to become a man of success, but rather try to become a man of value." -Albert Einstein |
|
Just BobPremium
join:2000-08-13
Spring Hill, FL | This should do it:
»www.techtv.com/screensavers/answ···,00.html |
|
| reply to quickstang22$
"I don't care about my IP being there"
=sitting duck |
|
| said by lkjlkjlkjlkjlkjlk:
"I don't care about my IP being there"
=sitting duck
Come on IP address are not hard to get at all. That what firewalls are for.
--
"Try not to become a man of success, but rather try to become a man of value." -Albert Einstein |
|
davePremium,MVM
join:2000-05-04
not in ohio
kudos:7 Reviews:
 ·Verizon FiOS
 ·Verizon Online DSL
| reply to quickstang22$
Phone 'em up and ask what the hell they're doing. Make sure you have caller-id blocked, use a public phone so that call-back doesn't work, etc.
The area code is in Tennessee. AT+T doesn't have any name listed for that number in their online reverse directory. |
|
| reply to quickstang22$
I think Windows Messenger Service is on port 18.
»www.iana.org/assignments/port-numbers
msp 18/tcp Message Send Protocol
msp 18/udp Message Send Protocol |
|
| reply to dave
"Phone 'em up and ask what the hell they're doing."
They're accessing a publicly available service that the "victim" is offering up over the internet. It's up to him to make sure that doesn't happen again.
--
"I have taken all knowledge to be my province." -- Francis Bacon |
|
