This has been mentioned before but there are a lot of viruses out there and a lot of new members so it's worth mentioning again.
This subject is now fully covered here:-
http://www.swingingheaven.co.uk/advice/online-security.html
There is a free version of an anti-virus system available at . You'll find it under 'AVG free edition' in the menu bar down the left hand side of the page.
It's regularly updated and it's well worth the effort to download.
Join the most popular community of UK swingers now
Login
Free Virus Guard and Firewall software
Orgasminator
I couldn't agree more Steve,
I have had it for over a year, and was so satisfied I bought the programme. Lots of goodies in the program that aren't available in the free download. 8)
For anyone wanting the full program, it can be purchased from an AVG dealer in the UK either on line or by post. (address on the AVG website) In order that customers do not get an out of date version on a diskette or CD, the full program is supplied as a download from the AVG site, so you get the very latest version complete with all updates. Your computer can be set up to automatically update AVG everytime you go on line.
I have had it for over a year, and was so satisfied I bought the programme. Lots of goodies in the program that aren't available in the free download. 8)
For anyone wanting the full program, it can be purchased from an AVG dealer in the UK either on line or by post. (address on the AVG website) In order that customers do not get an out of date version on a diskette or CD, the full program is supplied as a download from the AVG site, so you get the very latest version complete with all updates. Your computer can be set up to automatically update AVG everytime you go on line.
Just thought I'd add a little bit here...
If you don't mind paying for software, this is what I use for security:
Zone Alarm Pro Firewall but probably the best choice
Norton Antivirus 2004 from Symantec
HistoryKill 2003 Probably the best and highly configurable popup blocker and Explorer history eliminator
If you don't mind paying for software, this is what I use for security:
Zone Alarm Pro Firewall but probably the best choice
Norton Antivirus 2004 from Symantec
HistoryKill 2003 Probably the best and highly configurable popup blocker and Explorer history eliminator
Hi guys,
Good to see that people are virus aware these days - how come i still keep getting sent infected emails fron site users then - GGGrrrrrrr!
Every piece of AV software is only as good as its last update and you also have to remember that viruses go global so fast these days all of the AV companies play catch up. There is no AV software that can keep up with a little bit of common sense at times!
Also, whilst many firewalls are good, many fail to do the job properly or are badly configured. There are also many security upates published to known exploits within operating systems it is worth following these and downloading the updates when they are available. Microsoft are notorious for denying exploits are dangerous and then publishing an update "just in case"!
Can I suggest that anyone with a firewall does a probe test of their firewall. One of the best is Gibson Research ( ). If you go to the site, go to the "Shields Up" section and then run all the tests. You may get a few surprises.
Firstly it may show your reverse DNS is giving out the details of you account with your ISP. At a minimum I would recommend doing a "File Sharing" test and an "All Service Ports" test to reveal what else about your computer is being revealed on the internet.
If you get this:
Then you can be sure that you are invisible to probes on the net. It does not however make you impossible to hack - but that is another story!
If you don't get a true stealth 100% return then you need to look into it. First port of call has to be the site itself. There is so much good information on there. (And NO I do not work for Steve Gibson
). If you do get 100% then hang around the site and have a look anyway.
For those of you who know about all of this sorry to bore you! Just trying to do my bit for the wider community!
Fred
Good to see that people are virus aware these days - how come i still keep getting sent infected emails fron site users then - GGGrrrrrrr!
Every piece of AV software is only as good as its last update and you also have to remember that viruses go global so fast these days all of the AV companies play catch up. There is no AV software that can keep up with a little bit of common sense at times!
Also, whilst many firewalls are good, many fail to do the job properly or are badly configured. There are also many security upates published to known exploits within operating systems it is worth following these and downloading the updates when they are available. Microsoft are notorious for denying exploits are dangerous and then publishing an update "just in case"!
Can I suggest that anyone with a firewall does a probe test of their firewall. One of the best is Gibson Research ( ). If you go to the site, go to the "Shields Up" section and then run all the tests. You may get a few surprises.
Firstly it may show your reverse DNS is giving out the details of you account with your ISP. At a minimum I would recommend doing a "File Sharing" test and an "All Service Ports" test to reveal what else about your computer is being revealed on the internet.
If you get this:
Your system has achieved a perfect "TruStealth" rating. Not a single packet — solicited or otherwise — was received from your system as a result of our security probing tests. Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests). From the standpoint of the passing probes of any hacker, this machine does not exist on the Internet. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system wisely remained silent in every way. Very nice.
Then you can be sure that you are invisible to probes on the net. It does not however make you impossible to hack - but that is another story!
If you don't get a true stealth 100% return then you need to look into it. First port of call has to be the site itself. There is so much good information on there. (And NO I do not work for Steve Gibson
). If you do get 100% then hang around the site and have a look anyway.For those of you who know about all of this sorry to bore you! Just trying to do my bit for the wider community!
Fred
Hiya Flinstones,
Took your advice and went and got my firewall probed, passed with flying colours except for two points.
While I was online and testing I had two warnings from my firewall. Both referred to Trojan horses. After those attacks, I did the common port test, and both times port 1025 was shown as open. When I did the test again, it was shown as closed.
I have no idea what this all means, but suspect that the intrusion targeted that port??
The port probe designated that port as "on line blackjack" and the recommendation was that I configure my firewall (Norton 2003) to close that range of ports.
So, how the f*** do I do that!! And yes, I am trawling through the manual for the answer as well!
OH, and the AV scan, gets done nightly.
lhk
Kat
Took your advice and went and got my firewall probed, passed with flying colours except for two points.
While I was online and testing I had two warnings from my firewall. Both referred to Trojan horses. After those attacks, I did the common port test, and both times port 1025 was shown as open. When I did the test again, it was shown as closed.
I have no idea what this all means, but suspect that the intrusion targeted that port??
The port probe designated that port as "on line blackjack" and the recommendation was that I configure my firewall (Norton 2003) to close that range of ports.
So, how the f*** do I do that!! And yes, I am trawling through the manual for the answer as well!
OH, and the AV scan, gets done nightly.
lhk
Kat
Kat,
First of all - no ports should ever show as open or even closed really (A true firewall "stealths" the ports and just does not respond to the port request). The hacker then just gets a message that no device exists on that IP address. Hackers "ping" a huge number of ip addresses on many ports - and the range from 1025 to 1030 is a common one they try. It is also used by some trojans - namely Fraggle Rock, md5 Backdoor, NetSpy and Remote Storm.
The reason that theses ports are sometimes opened is Microsoft operating systems tend to allocate one or more unsuspected, publicly exposed services (probably DCOM, but who knows) among the first handful of ports immediately above the end of the service port range (1024+).
Your firewall was doing its job when it said there was a Trojan Horse warning because that is the common port that trojans will open. It could mean thought that you do have a Trojan horse on your system - Check your definition files are up to date - (within a week) and do a complete AV scan of your system!
The GRC probe targets every port and just shows those that it got a response from. Probing never opens a port - the port is either open or closed.
RTFM - Read The Fucking Manual! I wish I knew every firewall - but I don't. I do however know quite a bit about hacking and IT Security and you are nearly there!
It would certainly be in your best interests to configure your personal firewall to block incoming connection requests (TCP SYN packets) to those low-numbered ports lying between 1024 and 1030. But be careful you may have to create a new rule if a specific application is using that port.
The reason you were told the name is because the Port Authority Database which holds the name and record of each registered port shows port 1025 as having the Name blackjack and its purpose as network blackjack not because you had a piece of software installed on your system called that.
Hope this helps!
Fred
First of all - no ports should ever show as open or even closed really (A true firewall "stealths" the ports and just does not respond to the port request). The hacker then just gets a message that no device exists on that IP address. Hackers "ping" a huge number of ip addresses on many ports - and the range from 1025 to 1030 is a common one they try. It is also used by some trojans - namely Fraggle Rock, md5 Backdoor, NetSpy and Remote Storm.
The reason that theses ports are sometimes opened is Microsoft operating systems tend to allocate one or more unsuspected, publicly exposed services (probably DCOM, but who knows) among the first handful of ports immediately above the end of the service port range (1024+).
Your firewall was doing its job when it said there was a Trojan Horse warning because that is the common port that trojans will open. It could mean thought that you do have a Trojan horse on your system - Check your definition files are up to date - (within a week) and do a complete AV scan of your system!
The GRC probe targets every port and just shows those that it got a response from. Probing never opens a port - the port is either open or closed.
The port probe designated that port as "on line blackjack" and the recommendation was that I configure my firewall (Norton 2003)to close that port.
So, how the f*** do I do that!!
RTFM - Read The Fucking Manual! I wish I knew every firewall - but I don't. I do however know quite a bit about hacking and IT Security and you are nearly there!
It would certainly be in your best interests to configure your personal firewall to block incoming connection requests (TCP SYN packets) to those low-numbered ports lying between 1024 and 1030. But be careful you may have to create a new rule if a specific application is using that port.
The reason you were told the name is because the Port Authority Database which holds the name and record of each registered port shows port 1025 as having the Name blackjack and its purpose as network blackjack not because you had a piece of software installed on your system called that.
Hope this helps!
Fred
First of all - no ports should ever show as open or even closed really (A true firewall "stealths" the ports and just does not respond to the port request).
Sorry - they were shown stealthed
It could mean thought that you do have a Trojan horse on your system - Check your definition files are up to date - (within a week) and do a complete AV scan of your system!
Done last night and Done nightly.
RTFM - Read The Fucking Manual!
:lol: I was doing! :lol: I think I am about to learn how to customise my firewall rules...
lhk
Kat
*note to self, why oh why do you get involved in technical strings :cry: *
Quote by KitKat
*note to self, why oh why do you get involved in technical strings :cry: *
Because you're bright and intelligent, and want to learn.
No one knows everything, and there's a lot to learn when it comes to computers (heck, I work in IT and still know I don't know it all) - at least you're aware of that - much worse if you buried your head in the sand!
:boo: (The closest thing I could find to a round of applause!)
Mandy
awww shucks.to Mandy for making learning fun!
Mandy Darling!
Whilst you are massaging his ego - he ain't doing his homework! If you are not going to sit and study and be quiet - go away and let him learn!
Walks off muttering - "kids these days! - think the bloody world is gonna learn it for them - When I was a boy.........."
Fred!
Quote by Flintstones
[Mandy Darling!
Whilst you are massaging his ego - he ain't doing his homework! If you are not going to sit and study and be quiet - go away and let him learn!
Fred dear,
I find the carrot can work just as well as the stick and can be just as much fun, although it does depend on where you put it! :shock:
I think you'll find Kat is learning lots here, and nothing I do will stop him!
Mandy
(who wouldn't really want to stop him anyway)
Well... I went to that site and did all the available checks and got a 'perfect TruStealth' rating - my internet port does not exist (!) and the thing was unable to connect with NetBIOS to my computer.. I trust that that is all good news and I am totally safe - can't see the sheer condom covering my PC but it must be ultra-light and ultra-safe.
I only use Sophos and don't know anything about it except that I do a live update once a week.
So.. happy Jags here! Thanks for the advice Fred
*In case Sandie, Allgood and Kat are watching
too!!*
I only use Sophos and don't know anything about it except that I do a live update once a week.
So.. happy Jags here! Thanks for the advice Fred
*In case Sandie, Allgood and Kat are watching
too!!* Well... I went to that site and did all the available checks and got a 'perfect TruStealth' rating - my internet port does not exist (!) and the thing was unable to connect with NetBIOS to my computer.. I trust that that is all good news and I am totally safe - can't see the sheer condom covering my PC but it must be ultra-light and ultra-safe.
I only use Sophos and don't know anything about it except that I do a live update once a week.
So.. happy Jags here! Thanks for the advice Fred
Well done - kinda makes you feel a little bit safe don't it? - Just one thing Jags - did you get an IP address back when it looked up your reverse DNS as well? If so that is a good all round result!
Can I make a suggestion here guys.
For those of you that run tests - it might be a good idea if you identify which firewall you use and what the results were and if you had to fix it how you did it in brief. That way people will see if a particular firewall does well.
To kick it off I run a Netgear ADSL Gateway Hub with hardware firewall - A Norman Personal Firewall on each machine plus Norman Access Control encryption software and Norman Virus Control! None of these had to be modified to get the 100% result!
I scored a 100% True Stealth as well!
Fred
I got this:
The string of text above is known as your Internet connection's "reverse DNS." The end of the string is probably a domain name related to your ISP. This will be common to all customers of this ISP. But the beginning of the string uniquely identifies your Internet connection. The question is: Is the beginning of the string an "account ID" that is uniquely and permanently tied to you, or is it merely related to your current public IP address and thus subject to change?
Still don't know if this is good or not... do I need to do something more????
Is Sophos a firewall or just an anti-virus thingy????
x xx xx
The string of text above is known as your Internet connection's "reverse DNS." The end of the string is probably a domain name related to your ISP. This will be common to all customers of this ISP. But the beginning of the string uniquely identifies your Internet connection. The question is: Is the beginning of the string an "account ID" that is uniquely and permanently tied to you, or is it merely related to your current public IP address and thus subject to change?
Still don't know if this is good or not... do I need to do something more????
Is Sophos a firewall or just an anti-virus thingy????
x xx xx
To kick it off I run a Netgear ADSL Gateway Hub with hardware firewall - A Norman Personal Firewall on each machine plus Norman Access Control encryption software and Norman Virus Control! None of these had to be modified to get the 100% result!
:beer: I've got a can of Stella :beer:
If I could rattle all that off, I probably wouldn't have to ask so many questions.I've got Norton 2003 firewall and virus software, have not modified any, and did get 100% result, except for those two anomolies when a Trojan attack occured during the testing. Which I really wish I had never mentioned now!
RVM - In need of a shuffle and mutter about now if you please.
lhk
Kat
Oi! you let Mandy massage whatever she wants!
Just a bit lower Please Mandy thats the spot!
lhk
Kat
Ooooohh - you gonna be in so much trouble when you fail the firewall test paper tomorrow - gonna get sent to the headmasters office!
Jags
Still don't know if this is good or not... do I need to do something more????
Is Sophos a firewall or just an anti-virus thingy????
Look at the report you got back - does it look like your email address or account name with your ISP i.e. or does it look like . The former is dangerous in that it reveals information about your account and is easily read by every site you visit. If it is the latter it gives your IP address away - but because you achieved "True Stealth" nobody will get a response from that IP address.
If it is the former you can easily send an email to your ISP requesting that they change your reverse DNS to something less identifiable.
Sophos is your AV software I assume. (Good product!)
Regards
Fred
Quote by KitKat
I think mine sounds like a cross between the two.
The first part was a meaning less jumble of alpha numerics, (much like my firewall user manual
Would that mean that my ISP (AOL) was hiding both my IP address and personal details?
Kat
Exactly - if you do not recognise your account name or email addy in the reverse DNS then it means the ISP is not being lazy and matching Reverse DNS Records to the account details and you are safe.
Regards
Fred
Hey!
Whilst we are on a roll - and my orange box speciality why not go the whole hog.
Heard of Virus Myths - Ever got the Budweiser Frogs Screensaver Virus warning or the Win a Holiday virus warning? Well they are all hoaxes!
Whilst not harmful in themselves the amout of resources that are expended forwarding these well intentioned warnings on by people suffering from "False Authority Syndrome" is amazing and really does make them look stupid in the end.
To learn all about these resource and time wasters go to:
Ggggrrrrrrrr :x
This is my absolute all time pet hate!
Regards
Fred
Whilst we are on a roll - and my orange box speciality why not go the whole hog.
Heard of Virus Myths - Ever got the Budweiser Frogs Screensaver Virus warning or the Win a Holiday virus warning? Well they are all hoaxes!
Whilst not harmful in themselves the amout of resources that are expended forwarding these well intentioned warnings on by people suffering from "False Authority Syndrome" is amazing and really does make them look stupid in the end.
To learn all about these resource and time wasters go to:
Ggggrrrrrrrr :x This is my absolute all time pet hate!
Regards
Fred
Hi peeps it's only me the bad speller......hehe
One of the reasons for keep getting mails you dont want is this if you didnt single puter that is from or any other store pre-built has a microsoft spy built into windows,now when you go on the net it will track you all the way,when you go onto some site's it will pick up your mail other thing is if you get a mail from a mate and he/she has used there mail add someware and your mail add is in there address book then you will also get crap you got all that....
The spy is called alexy the only way to get rid of this is to get adaware6 and run it and can guarante it will find it and you can then get rid of have to pay for it of bill gates to build a windows with built in spy ware (virus)
ste
One of the reasons for keep getting mails you dont want is this if you didnt single puter that is from or any other store pre-built has a microsoft spy built into windows,now when you go on the net it will track you all the way,when you go onto some site's it will pick up your mail other thing is if you get a mail from a mate and he/she has used there mail add someware and your mail add is in there address book then you will also get crap you got all that....
The spy is called alexy the only way to get rid of this is to get adaware6 and run it and can guarante it will find it and you can then get rid of have to pay for it of bill gates to build a windows with built in spy ware (virus)
ste
Hi Ste n/west,
I am afraid I am gonna shoot a few holes in what you have said but it is still valid information.
Microsoft is very strongly opposed to using spyware that provides information to vendows or 3rd parties. Licence logging information and previously information about processor ID's have always been an issue with Microsoft as they denied using it but in more recent times they have been more open about their policy of software trackingh and live updates capturing information from PC's and allowing the user to disable this functionality.
The particular piece of spyware you quote is not capable of doing that Ste. There are approximately 250 pieces of spyware currently known. Many do different things but this particular one is less harmful.
The one you refer to is called Alexa and it is a Browser Plugin. It is actually a new kind of search engine which is all contained within an Amozon interface. However it does not need anything to remove it as it contains opt-out instructions and has an uninstaller included. It used to transmit a indentifiying ID but no longer does this. Now it just stays resident in background and makes changes to your browser settings.
Spyware is not a virus at all. Whilst they are both bad and can be potentially harmful they do things differently.
Spyware covertly gathers user information and activity without the user's knowledge and can record keystrokes, passwords, credit card numbers, where you surf etc. You do not have to be connected to the Internet to be spied upon. It can also use routines to mail out user activity via e-mail or posting information to the web where the spy can view it. Also many spyware vendors use "stealth routines" and "polymorphic" techniques to avoid detection and removal by popular anti-spy software.
Sorry Ste, my intention was not to shoot your arguement full of holes but just to correct it for other people. I hope you have got something from it as well.
If you all want to know more about spyware go visit
There you will find all the information as well as a free spyware scaner that installs as an applet. But ask yourself - does the scanner itself leave anything behind to tell the vendors information about yourself? hhhmmmmmm!
Regards
Fred
I am afraid I am gonna shoot a few holes in what you have said but it is still valid information.
Quote by ste n/west
One of the reasons for keep getting mails you dont want is this if you didnt single puter that is from or any other store pre-built has a microsoft spy built into windows
Microsoft is very strongly opposed to using spyware that provides information to vendows or 3rd parties. Licence logging information and previously information about processor ID's have always been an issue with Microsoft as they denied using it but in more recent times they have been more open about their policy of software trackingh and live updates capturing information from PC's and allowing the user to disable this functionality.
Quote by ste n/west
The other thing is if you get a mail from a mate and he/she has used there mail add someware and your mail add is in there address book then you will also get crap you got all that....
The particular piece of spyware you quote is not capable of doing that Ste. There are approximately 250 pieces of spyware currently known. Many do different things but this particular one is less harmful.
Quote by ste n/west
The spy is called alexy the only way to get rid of this is to get adaware6 and run it and can guarante it will find it and you can then get rid of it.
The one you refer to is called Alexa and it is a Browser Plugin. It is actually a new kind of search engine which is all contained within an Amozon interface. However it does not need anything to remove it as it contains opt-out instructions and has an uninstaller included. It used to transmit a indentifiying ID but no longer does this. Now it just stays resident in background and makes changes to your browser settings.
Quote by ste n/west
built in spy ware (virus)
Spyware is not a virus at all. Whilst they are both bad and can be potentially harmful they do things differently.
Spyware covertly gathers user information and activity without the user's knowledge and can record keystrokes, passwords, credit card numbers, where you surf etc. You do not have to be connected to the Internet to be spied upon. It can also use routines to mail out user activity via e-mail or posting information to the web where the spy can view it. Also many spyware vendors use "stealth routines" and "polymorphic" techniques to avoid detection and removal by popular anti-spy software.
Sorry Ste, my intention was not to shoot your arguement full of holes but just to correct it for other people. I hope you have got something from it as well.
If you all want to know more about spyware go visit
There you will find all the information as well as a free spyware scaner that installs as an applet. But ask yourself - does the scanner itself leave anything behind to tell the vendors information about yourself? hhhmmmmmm!
Regards
Fred
