subject:"RE\: \[ActiveDir\] SpyWare"

RE: [ActiveDir] SpyWare

2004-07-30 Thread Deji Akomolafe

Title: RE: [ActiveDir] SpyWare



Yes
 


 
Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday?  -anon


From: [EMAIL PROTECTED]Sent: Fri 7/30/2004 12:04 AMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare

Dear all
 
you are talking about Trend6.5,  is it TrendMrcro OfficeScan Corproation Edition 6.5
 
BRs
Jack


From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Deji AkomolafeSent: Friday, July 30, 2004 12:21 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare


Good. I hope your org doesn't bowl over and just pay up. It will be a bad precedent.
 


 
Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
http://www.readymaids.com/ - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday?  -anon


From: Brian DesmondSent: Thu 7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare

My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines.
 
--Brian

-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare
Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday?  -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian    -Original Message-    From: Caple, Andrew [mailto:[EMAIL PROTECTED]]    Sent: Wed 7/28/2004 7:20 PM    To: [EMAIL PROTECTED]    Cc:    Subject: [ActiveDir] SpyWare  Good morning everyone!!!    We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions.    Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs.    Thanks for your help,    AndrewList info   : http://www.activedir.org/mail_list.htmList FAQ    : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ 



This email and any attachments may be confidential and/or subject to copyright or other intellectual property right protection. If you are not the intended recipient of the email, you are not permitted to use or disclose any information contained in the email or any attachments and we request you notify the sender and delete both the email and any attachments. Thank you.

RE: [ActiveDir] SpyWare

2004-07-30 Thread Jack_Zhang

Title: RE: [ActiveDir] SpyWare



Dear all
 
you are talking about
Trend6.5,  is it TrendMrcro OfficeScan Corproation
Edition 6.5
 
BRs
Jack


From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Deji
AkomolafeSent: Friday, July 30, 2004 12:21 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir]
SpyWare


Good. I hope your org doesn't bowl over and
just pay up. It will be a bad precedent.
 


 
Sincerely,Dèjì Akómöláfé,
MCSE MCSA MCP+I
Microsoft MVP
- Directory Services
www.readymaids.com - we know
ITwww.akomolafe.comDo you now realize that Today is
the Tomorrow you were worried about Yesterday? 
-anon


From: Brian DesmondSent: Thu
7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject:
RE: [ActiveDir] SpyWare

My org must be having this discussion with them as well. I haven't
heard any rumblings about this, we just started testing it on select
machines.
 
--Brian

  -Original Message- From:
  [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu
  7/29/2004 6:40 PM To: [EMAIL PROTECTED];
  [EMAIL PROTECTED] Cc: Subject: RE:
  [ActiveDir] SpyWare
  Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think
  you should beaware that they are now doing a "switch-and-bait" on the
  Damage Cleanupportion of the Suite. The Damage Cleanup is the part that
  helps you clean aninfected computer after the fact. It's always been
  avaiable as part of theSuite, even though you have to manually download
  and update it periodically.Now, Trend is saying they've removed the
  manual update failure and made itautomatic BUT you now have to pay for it
  SEPARATELY regardless of yourexisting contract or license agreement. So,
  as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and
  your computer getsinfected, even though it has ALL the latest updates
  available from Trend atthat time, you are SOL when Trend wakes up and
  releases an antidote for the0-day. You are infected, and won't be able to
  get clean, unless you play theswitch game and pay Trend more again for
  what you've already paid for.I'll keep you posted on how my discussion
  of this issue goes with themtomorrow.Sincerely,Dèjì
  Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory
  Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now
  realize that Today is the Tomorrow you were worried aboutYesterday? 
  -anonFrom:
  [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed
  7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE:
  [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot
  run during your maintenance period witheverybody logged off, the server
  booted in safe mode, etc. Yank user rightsto install ActiveXs as a start
  too.The new Trend (not sure if its RTM or very close) has
  spyware/malware detct &clean capabilities. That would probably be
  better suited for a
  serverenviornment.--Brian   
  -Original Message-    From:
  Caple, Andrew [mailto:[EMAIL PROTECTED]]   
  Sent: Wed 7/28/2004 7:20 PM    To:
  [EMAIL PROTECTED]   
  Cc:    Subject: [ActiveDir]
  SpyWare 
  Good morning
  everyone!!!   
  We have a couple of terminal servers running Windows 2000 SP4 withina
  Citrix Metaframe XP FR3 enviro. over the past few days and number
  ofspyware pop-ups have been appearing within users
  sessions.   
  Does anyone know of any good spyware software that would be safe toinstall
  on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to
  see if anyone knows of anything else or if it's "safe" to installthis
  programs.   
  Thanks for your
  help,   
  AndrewList info   : http://www.activedir.org/mail_list.htmList
  FAQ    : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/List
info : http://www.activedir.org/mail_list.htm List FAQ :
http://www.activedir.org/list_faq.htm List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/ 

This email and any attachments may be confidential and/or subject to copyright or other intellectual property right protection. If you are not the intended recipient of the email, you are not permitted to use or disclose any information contained in the email or any attachments and we request you notify the sender and delete both the email and any attachments. Thank you.

RE: [ActiveDir] SpyWare

2004-07-29 Thread Deji Akomolafe

Title: RE: [ActiveDir] SpyWare



Good. I hope your org doesn't bowl over and just pay up. It will be a bad precedent.
 


 
Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday?  -anon


From: Brian DesmondSent: Thu 7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare

My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines.
 
--Brian

-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare
Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday?  -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian    -Original Message-    From: Caple, Andrew [mailto:[EMAIL PROTECTED]]    Sent: Wed 7/28/2004 7:20 PM    To: [EMAIL PROTECTED]    Cc:    Subject: [ActiveDir] SpyWare  Good morning everyone!!!    We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions.    Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs.    Thanks for your help,    AndrewList info   : http://www.activedir.org/mail_list.htmList FAQ    : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] SpyWare

2004-07-29 Thread Caple, Andrew

Title: Message



Thanks everyone, I'd be interested to see what you go with (and vice 
versa - I'll let you know what we decide)
 
 

-Original Message-From: 
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] 
On Behalf Of Brian DesmondSent: Friday, July 30, 2004 12:00 
PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] 
SpyWare
My org must be having this discussion with them as well. I haven't 
heard any rumblings about this, we just started testing it on select 
machines.
 
--Brian

  -Original Message- From: 
  [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 
  7/29/2004 6:40 PM To: [EMAIL PROTECTED]; 
  [EMAIL PROTECTED] Cc: Subject: RE: 
  [ActiveDir] SpyWare
  Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think 
  you should beaware that they are now doing a "switch-and-bait" on the 
  Damage Cleanupportion of the Suite. The Damage Cleanup is the part that 
  helps you clean aninfected computer after the fact. It's always been 
  avaiable as part of theSuite, even though you have to manually download 
  and update it periodically.Now, Trend is saying they've removed the 
  manual update failure and made itautomatic BUT you now have to pay for it 
  SEPARATELY regardless of yourexisting contract or license agreement. So, 
  as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and 
  your computer getsinfected, even though it has ALL the latest updates 
  available from Trend atthat time, you are SOL when Trend wakes up and 
  releases an antidote for the0-day. You are infected, and won't be able to 
  get clean, unless you play theswitch game and pay Trend more again for 
  what you've already paid for.I'll keep you posted on how my discussion 
  of this issue goes with themtomorrow.Sincerely,Dèjì 
  Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory 
  Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now 
  realize that Today is the Tomorrow you were worried aboutYesterday?  
  -anonFrom: 
  [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 
  7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: 
  [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot 
  run during your maintenance period witheverybody logged off, the server 
  booted in safe mode, etc. Yank user rightsto install ActiveXs as a start 
  too.The new Trend (not sure if its RTM or very close) has 
  spyware/malware detct &clean capabilities. That would probably be 
  better suited for a 
  serverenviornment.--Brian    
  -Original Message-    From: 
  Caple, Andrew [mailto:[EMAIL PROTECTED]]    
  Sent: Wed 7/28/2004 7:20 PM    To: 
  [EMAIL PROTECTED]    
  Cc:    Subject: [ActiveDir] 
  SpyWare  
  Good morning 
  everyone!!!    
  We have a couple of terminal servers running Windows 2000 SP4 withina 
  Citrix Metaframe XP FR3 enviro. over the past few days and number 
  ofspyware pop-ups have been appearing within users 
  sessions.    
  Does anyone know of any good spyware software that would be safe toinstall 
  on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to 
  see if anyone knows of anything else or if it's "safe" to installthis 
  programs.    
  Thanks for your 
  help,    
  AndrewList info   : http://www.activedir.org/mail_list.htmList 
  FAQ    : http://www.activedir.org/list_faq.htmList 
  archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] SpyWare

2004-07-29 Thread James Borris

Title: Message








I have recently been trying a product from
Webroot called “Spy Sweeper”.   It had the best rating
from PC Magazine and is fairly inexpensive $29.   No one spyware tool
seems catch them all, but this tool edges Spybot and Ad-Aware.   It
has more scheduling options and the biggest difference appears to be how it
scans.   Spybot seems to scan for known exploits in and their known
installed paths, whereas Spy Sweeper will scan your entire hard drive. 
Spy Sweeper will allow you to scan only know file locations to shorten scan
time if you wish.

 

James D. Borris

[EMAIL PROTECTED]

National Park Service

AD Core Team

 









From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Caple, Andrew
Sent: Wednesday, July 28, 2004
7:21 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] SpyWare



 



Good morning everyone!!!





 





We have a couple of terminal servers
running Windows 2000 SP4 within a Citrix Metaframe XP FR3 enviro. over the past
few days and number of spyware pop-ups have been appearing within users
sessions.





 





Does anyone know of any good spyware
software that would be safe to install on a server? I've download SpyBot and
XoftSpy 3.44 but I wanted to check to see if anyone knows of anything else or
if it's "safe" to install this programs.





 





Thanks for your help,





 





Andrew

RE: [ActiveDir] SpyWare

2004-07-29 Thread Rutherford, Robert

Title: Message

I have
looked at a few products and found AD Aware to be the more successful at
identification out of the few I tested... when trying to identify where the
p0rn popups were coming from on my work machine :O). I have found it
safe and simple to use.
A/V
products will pick up Spyware to a degree but it's still pretty poor in
general.
If you
have a sizeable environment then it may be worth putting an enterprise solution
in front of the box. It does of course depend on your environments config, but
something like Websense may suit... http://www.websense.com/products/resources/wp/EmergingThreats_Spyware.pdf
BR
Rob

-Original Message-From: Caple, Andrew
[mailto:[EMAIL PROTECTED] Sent: 29 July 2004
01:21To: [EMAIL PROTECTED]Subject:
[ActiveDir] SpyWare
Good morning everyone!!!
We have a couple of terminal servers running Windows 2000 SP4 within a
Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware
pop-ups have been appearing within users sessions.
Does anyone know of any good spyware software that would be safe to
install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to
check to see if anyone knows of anything else or if it's "safe" to install
this programs.
Thanks for your help,
AndrewThis e-mail and the information it contains are confidential and may be privileged. If you have received this e-mail in error please notify the sender immediately and delete the material from any computer. Unless you are the intended recipient, you should not copy this e-mail for any purpose, or disclose its contents to any other person. The MCPS-PRS Alliance is not responsible for the completeness or accuracy of this communication as it has been transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all communications for potential viruses, we accept no responsibility for any loss or damage caused by this e-mail and the information it contains.It is the recipient's responsibility to scan this e-mail and any attachments for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for quality control and other purposes.The MCPS-PRS Alliance Limited is a limited company registered in England under company number 03444246 whose registered office is at c/o 29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] SpyWare

2004-07-28 Thread Christopher Hummert

Title: Message



In addition to setting up Spybot to run nightly, I 
recommend installing Spywareblaster (freeware):
http://www.javacoolsoftware.com/spywareblaster.html
 
It's not a scanner, it's more of a vaccine tool. It will 
help to harden IE against spyware exploits, but like everything else it's not 
100% effective. In addition to that I also prevent users from installing any 
software at all. I used to have a loose policy on that, but after installations 
of AIM, Webshots and WeatherBug (all programs that do "drive-by" installs of 
spyware) locking the systems down like that was the only way to be 
sure.
 
And if you haven't upgraded to version 1.3 of Spybot, then 
do so right away. You'll be able to download the latest spyware definitions and 
you have the ability to run spybot in resident mode. In addition to that they 
included TeaTimer in the install, which notifies you of programs trying to 
change information in the registry.
 
-Chris
 
 


From: Caple, Andrew 
[mailto:[EMAIL PROTECTED] Sent: Wednesday, July 28, 2004 
5:21 PMTo: [EMAIL PROTECTED]Subject: 
[ActiveDir] SpyWare

Good morning everyone!!!
 
We have a couple of terminal servers running Windows 2000 SP4 within a 
Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware 
pop-ups have been appearing within users sessions.
 
Does anyone know of any good spyware software that would be safe to 
install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check 
to see if anyone knows of anything else or if it's "safe" to install this 
programs.
 
Thanks for your help,
 
Andrew

RE: [ActiveDir] SpyWare

2004-07-28 Thread Brian Desmond

Andrew-
 
I'd do a full Adaware and Spybot run during your maintenance period with everybody 
logged off, the server booted in safe mode, etc. Yank user rights to install ActiveXs 
as a start too.
 
The new Trend (not sure if its RTM or very close) has spyware/malware detct & clean 
capabilities. That would probably be better suited for a server enviornment.
 
--Brian

-Original Message- 
From: Caple, Andrew [mailto:[EMAIL PROTECTED] 
Sent: Wed 7/28/2004 7:20 PM 
To: [EMAIL PROTECTED] 
Cc: 
Subject: [ActiveDir] SpyWare


Good morning everyone!!!
 
We have a couple of terminal servers running Windows 2000 SP4 within a Citrix 
Metaframe XP FR3 enviro. over the past few days and number of spyware pop-ups have 
been appearing within users sessions.
 
Does anyone know of any good spyware software that would be safe to install on 
a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check to see if anyone 
knows of anything else or if it's "safe" to install this programs.
 
Thanks for your help,
 
Andrew

<>

29 matches

Mail list logo