RE: [ActiveDir] SpyWare
Title: RE: [ActiveDir] SpyWare Yes Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I Microsoft MVP - Directory Services www.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday? -anon From: [EMAIL PROTECTED]Sent: Fri 7/30/2004 12:04 AMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare Dear all you are talking about Trend6.5, is it TrendMrcro OfficeScan Corproation Edition 6.5 BRs Jack From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Deji AkomolafeSent: Friday, July 30, 2004 12:21 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare Good. I hope your org doesn't bowl over and just pay up. It will be a bad precedent. Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I Microsoft MVP - Directory Services http://www.readymaids.com/ - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday? -anon From: Brian DesmondSent: Thu 7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines. --Brian -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday? -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian -Original Message- From: Caple, Andrew [mailto:[EMAIL PROTECTED]] Sent: Wed 7/28/2004 7:20 PM To: [EMAIL PROTECTED] Cc: Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs. Thanks for your help, AndrewList info : http://www.activedir.org/mail_list.htmList FAQ : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ This email and any attachments may be confidential and/or subject to copyright or other intellectual property right protection. If you are not the intended recipient of the email, you are not permitted to use or disclose any information contained in the email or any attachments and we request you notify the sender and delete both the email and any attachments. Thank you.
RE: [ActiveDir] SpyWare
Title: RE: [ActiveDir] SpyWare Dear all you are talking about Trend6.5, is it TrendMrcro OfficeScan Corproation Edition 6.5 BRs Jack From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Deji AkomolafeSent: Friday, July 30, 2004 12:21 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare Good. I hope your org doesn't bowl over and just pay up. It will be a bad precedent. Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I Microsoft MVP - Directory Services www.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday? -anon From: Brian DesmondSent: Thu 7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines. --Brian -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday? -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian -Original Message- From: Caple, Andrew [mailto:[EMAIL PROTECTED]] Sent: Wed 7/28/2004 7:20 PM To: [EMAIL PROTECTED] Cc: Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs. Thanks for your help, AndrewList info : http://www.activedir.org/mail_list.htmList FAQ : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ This email and any attachments may be confidential and/or subject to copyright or other intellectual property right protection. If you are not the intended recipient of the email, you are not permitted to use or disclose any information contained in the email or any attachments and we request you notify the sender and delete both the email and any attachments. Thank you.
RE: [ActiveDir] SpyWare
Title: RE: [ActiveDir] SpyWare Good. I hope your org doesn't bowl over and just pay up. It will be a bad precedent. Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+I Microsoft MVP - Directory Services www.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried about Yesterday? -anon From: Brian DesmondSent: Thu 7/29/2004 7:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines. --Brian -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday? -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian -Original Message- From: Caple, Andrew [mailto:[EMAIL PROTECTED]] Sent: Wed 7/28/2004 7:20 PM To: [EMAIL PROTECTED] Cc: Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs. Thanks for your help, AndrewList info : http://www.activedir.org/mail_list.htmList FAQ : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/[EMAIL PROTECTED]/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] SpyWare
Title: Message Thanks everyone, I'd be interested to see what you go with (and vice versa - I'll let you know what we decide) -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian DesmondSent: Friday, July 30, 2004 12:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWare My org must be having this discussion with them as well. I haven't heard any rumblings about this, we just started testing it on select machines. --Brian -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thu 7/29/2004 6:40 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Subject: RE: [ActiveDir] SpyWare Trend 6.5 is RTM. But, BEFORE you run out and upgrade, I think you should beaware that they are now doing a "switch-and-bait" on the Damage Cleanupportion of the Suite. The Damage Cleanup is the part that helps you clean aninfected computer after the fact. It's always been avaiable as part of theSuite, even though you have to manually download and update it periodically.Now, Trend is saying they've removed the manual update failure and made itautomatic BUT you now have to pay for it SEPARATELY regardless of yourexisting contract or license agreement. So, as the latest myDoomdemonstrated, if Trend snoozes and missed a 0-day, and your computer getsinfected, even though it has ALL the latest updates available from Trend atthat time, you are SOL when Trend wakes up and releases an antidote for the0-day. You are infected, and won't be able to get clean, unless you play theswitch game and pay Trend more again for what you've already paid for.I'll keep you posted on how my discussion of this issue goes with themtomorrow.Sincerely,Dèjì Akómöláfé, MCSE MCSA MCP+IMicrosoft MVP - Directory Serviceswww.readymaids.com - we know ITwww.akomolafe.comDo you now realize that Today is the Tomorrow you were worried aboutYesterday? -anonFrom: [EMAIL PROTECTED] on behalf of Brian DesmondSent: Wed 7/28/2004 6:46 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] SpyWareAndrew-I'd do a full Adaware and Spybot run during your maintenance period witheverybody logged off, the server booted in safe mode, etc. Yank user rightsto install ActiveXs as a start too.The new Trend (not sure if its RTM or very close) has spyware/malware detct &clean capabilities. That would probably be better suited for a serverenviornment.--Brian -Original Message- From: Caple, Andrew [mailto:[EMAIL PROTECTED]] Sent: Wed 7/28/2004 7:20 PM To: [EMAIL PROTECTED] Cc: Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 withina Citrix Metaframe XP FR3 enviro. over the past few days and number ofspyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe toinstall on a server? I've download SpyBot and XoftSpy 3.44 but I wanted tocheck to see if anyone knows of anything else or if it's "safe" to installthis programs. Thanks for your help, AndrewList info : http://www.activedir.org/mail_list.htmList FAQ : http://www.activedir.org/list_faq.htmList archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] SpyWare
Title: Message I have recently been trying a product from Webroot called “Spy Sweeper”. It had the best rating from PC Magazine and is fairly inexpensive $29. No one spyware tool seems catch them all, but this tool edges Spybot and Ad-Aware. It has more scheduling options and the biggest difference appears to be how it scans. Spybot seems to scan for known exploits in and their known installed paths, whereas Spy Sweeper will scan your entire hard drive. Spy Sweeper will allow you to scan only know file locations to shorten scan time if you wish. James D. Borris [EMAIL PROTECTED] National Park Service AD Core Team From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Caple, Andrew Sent: Wednesday, July 28, 2004 7:21 PM To: [EMAIL PROTECTED] Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 within a Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe to install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check to see if anyone knows of anything else or if it's "safe" to install this programs. Thanks for your help, Andrew
RE: [ActiveDir] SpyWare
Title: Message I have looked at a few products and found AD Aware to be the more successful at identification out of the few I tested... when trying to identify where the p0rn popups were coming from on my work machine :O). I have found it safe and simple to use. A/V products will pick up Spyware to a degree but it's still pretty poor in general. If you have a sizeable environment then it may be worth putting an enterprise solution in front of the box. It does of course depend on your environments config, but something like Websense may suit... http://www.websense.com/products/resources/wp/EmergingThreats_Spyware.pdf BR Rob -Original Message-From: Caple, Andrew [mailto:[EMAIL PROTECTED] Sent: 29 July 2004 01:21To: [EMAIL PROTECTED]Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 within a Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe to install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check to see if anyone knows of anything else or if it's "safe" to install this programs. Thanks for your help, AndrewThis e-mail and the information it contains are confidential and may be privileged. If you have received this e-mail in error please notify the sender immediately and delete the material from any computer. Unless you are the intended recipient, you should not copy this e-mail for any purpose, or disclose its contents to any other person. The MCPS-PRS Alliance is not responsible for the completeness or accuracy of this communication as it has been transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all communications for potential viruses, we accept no responsibility for any loss or damage caused by this e-mail and the information it contains.It is the recipient's responsibility to scan this e-mail and any attachments for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for quality control and other purposes.The MCPS-PRS Alliance Limited is a limited company registered in England under company number 03444246 whose registered office is at c/o 29-33 Berners Street, London, W1T 3AB.
RE: [ActiveDir] SpyWare
Title: Message In addition to setting up Spybot to run nightly, I recommend installing Spywareblaster (freeware): http://www.javacoolsoftware.com/spywareblaster.html It's not a scanner, it's more of a vaccine tool. It will help to harden IE against spyware exploits, but like everything else it's not 100% effective. In addition to that I also prevent users from installing any software at all. I used to have a loose policy on that, but after installations of AIM, Webshots and WeatherBug (all programs that do "drive-by" installs of spyware) locking the systems down like that was the only way to be sure. And if you haven't upgraded to version 1.3 of Spybot, then do so right away. You'll be able to download the latest spyware definitions and you have the ability to run spybot in resident mode. In addition to that they included TeaTimer in the install, which notifies you of programs trying to change information in the registry. -Chris From: Caple, Andrew [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 28, 2004 5:21 PMTo: [EMAIL PROTECTED]Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 within a Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe to install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check to see if anyone knows of anything else or if it's "safe" to install this programs. Thanks for your help, Andrew
RE: [ActiveDir] SpyWare
Andrew- I'd do a full Adaware and Spybot run during your maintenance period with everybody logged off, the server booted in safe mode, etc. Yank user rights to install ActiveXs as a start too. The new Trend (not sure if its RTM or very close) has spyware/malware detct & clean capabilities. That would probably be better suited for a server enviornment. --Brian -Original Message- From: Caple, Andrew [mailto:[EMAIL PROTECTED] Sent: Wed 7/28/2004 7:20 PM To: [EMAIL PROTECTED] Cc: Subject: [ActiveDir] SpyWare Good morning everyone!!! We have a couple of terminal servers running Windows 2000 SP4 within a Citrix Metaframe XP FR3 enviro. over the past few days and number of spyware pop-ups have been appearing within users sessions. Does anyone know of any good spyware software that would be safe to install on a server? I've download SpyBot and XoftSpy 3.44 but I wanted to check to see if anyone knows of anything else or if it's "safe" to install this programs. Thanks for your help, Andrew <>
RE: [ActiveDir] spyware(OT)
Spybot's last update was 5/29, but you have to have Version1.3 for it to download. Jack -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert Mezzone Sent: 11 Jun 2004 17:58 To: '[EMAIL PROTECTED]' Subject: Re: [ActiveDir] spyware(OT) There was a thread about this on another forum. Some guy figured out how to do this and run scheduled scans without user intervention. It was one of the security forums, securityfocus, perhaps. One thing I have noticed, at least for me, is SpyBot hasn't released any updates for a while now, a couple of months at least, while adware has an update almost every other day. It was reversed in the past. -- I searched all their forums and i can't find anything on scripting a network wide remote (silent?) install of spybotSD. Is this possible? thanks Robert List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
Re: [ActiveDir] spyware(OT)
There was a thread about this on another forum. Some guy figured out how to do this and run scheduled scans without user intervention. It was one of the security forums, securityfocus, perhaps. One thing I have noticed, at least for me, is SpyBot hasn't released any updates for a while now, a couple of months at least, while adware has an update almost every other day. It was reversed in the past. -- I searched all their forums and i can't find anything on scripting a network wide remote (silent?) install of spybotSD. Is this possible? thanks Robert List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
I searched all their forums and i can't find anything on scripting a network wide remote (silent?) install of spybotSD. Is this possible? thanks -Original Message- From: Creamer, Mark [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 4:16 PM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) It always has for me :-) I'm kidding. No Really. -Original Message- From: Doug Hampshire [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 4:09 PM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) So you are saying that liquor leads to porn and gambling? - Original Message - From: "Kern, Tom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, June 11, 2004 7:16 AM Subject: [ActiveDir] spyware(OT) > My users are inundated with spyware and adware, what are the ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
Don't know about the rest of the list server folks. But I'm all for a field trip to test out that theory. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom Sent: Friday, June 11, 2004 4:26 PM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) always. isn't that the point? -Original Message- From: Doug Hampshire [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 4:09 PM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) So you are saying that liquor leads to porn and gambling? - Original Message - From: "Kern, Tom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, June 11, 2004 7:16 AM Subject: [ActiveDir] spyware(OT) > My users are inundated with spyware and adware, what are the ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ This message is confidential, intended only for the named recipient(s) and may contain information that is privileged or exempt from disclosure under applicable law. Any patient health information must be delivered immediately to intended recipient(s). If you are not the intended recipient(s), you are notified that the dissemination, distribution or copying of this message is strictly prohibited. If you receive this message in error, or are not the named recipient(s), please notify the sender at either the e-mail address or telephone number above and discard this e-mail. Thank you. List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
always. isn't that the point? -Original Message- From: Doug Hampshire [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 4:09 PM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) So you are saying that liquor leads to porn and gambling? - Original Message - From: "Kern, Tom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, June 11, 2004 7:16 AM Subject: [ActiveDir] spyware(OT) > My users are inundated with spyware and adware, what are the ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
It always has for me :-) I'm kidding. No Really. -Original Message- From: Doug Hampshire [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 4:09 PM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) So you are saying that liquor leads to porn and gambling? - Original Message - From: "Kern, Tom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, June 11, 2004 7:16 AM Subject: [ActiveDir] spyware(OT) > My users are inundated with spyware and adware, what are the ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
Re: [ActiveDir] spyware(OT)
So you are saying that liquor leads to porn and gambling? - Original Message - From: "Kern, Tom" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, June 11, 2004 7:16 AM Subject: [ActiveDir] spyware(OT) > My users are inundated with spyware and adware, what are the ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
Personally I like using VB for any registry manipulation, and I usually do "sneaky things" (Read: things that keep the users from doing what they shouldn't be doing anyways) at log off or shutdown through GPO. Just my $.02 Thanks, Raymond -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Friday, June 11, 2004 10:24 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) You could probably put it into a gpo, might be a lot of work maintaining... Probably a login script, using vbs or something...You can set them to run silently in the GPO. I was looking at the reg.exe command, doesn't seem to be a silent switch on import. I'm sure one of the scripters would have an easy way to do this. John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 10:28 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >--- ---| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: RE: [ActiveDir] spyware(OT) | >--- ---| how would you go pushing out the "kill bit" .reg file for active x? gpo? batch? i would like to push this out silently with no user intervention or even knowldge if possible. thanks -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 11:00 AM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) There was an interesting article the other day : http://searchwin2000.techtarget.com/tip/0,289483,sid1_gci969259,00.html?trac k=NL-120&ad=484520 Because of licensing issues we try to not let our users download adaware etc John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 09:16 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >--- -| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: [ActiveDir] spyware(OT) | >--- -| My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
You could probably put it into a gpo, might be a lot of work maintaining... Probably a login script, using vbs or something...You can set them to run silently in the GPO. I was looking at the reg.exe command, doesn't seem to be a silent switch on import. I'm sure one of the scripters would have an easy way to do this. John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 10:28 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >--| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: RE: [ActiveDir] spyware(OT) | >--| how would you go pushing out the "kill bit" .reg file for active x? gpo? batch? i would like to push this out silently with no user intervention or even knowldge if possible. thanks -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 11:00 AM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) There was an interesting article the other day : http://searchwin2000.techtarget.com/tip/0,289483,sid1_gci969259,00.html?track=NL-120&ad=484520 Because of licensing issues we try to not let our users download adaware etc John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 09:16 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: [ActiveDir] spyware(OT) | >| My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
ArghI knew I should look at all the options. Oh well, I like trying to screw in deck boards using a hammer :) Thanks for pointing that out. -Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dale, Rick Sent: Friday, June 11, 2004 9:04 AM To: '[EMAIL PROTECTED]' Subject: RE: [ActiveDir] spyware(OT) SpybotSD.exe /AUTOCHECK /AUTOFIX /AUTOCLOSE is the command I run in the scheduler file. It runs off of a local account. I am not sure if it would work running as system or not though. If you use the advanced features of SpybotSD there is a scheduler option under Settings/Scheduler that helps out a bit. Hope that helps ya, good luck. Rick -Original Message- From: Christopher Hummert [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 10:48 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) We use spybot along with the resident program that came out in the 1.3 release. So far it's been pretty good. I was wondering, what did you do to get it to run with the scheduler and bat files? I haven't been able to get it to cooperate yet. -Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dale, Rick Sent: Friday, June 11, 2004 7:59 AM To: '[EMAIL PROTECTED]' Subject: RE: [ActiveDir] spyware(OT) I have SpyBot (http://www.safer-networking.org/) installed on all PC's and it runs as part of the local machine's Friday night routine (A/V, SpyBot etc.) using the AT / scheduler & some .bat files. If you don't have SpyBot installed already then I would just push out what ever program you choose. Just my 10 BITs. Rick -Original Message- From: Kern, Tom [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 9:16 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
SpybotSD.exe /AUTOCHECK /AUTOFIX /AUTOCLOSE is the command I run in the scheduler file. It runs off of a local account. I am not sure if it would work running as system or not though. If you use the advanced features of SpybotSD there is a scheduler option under Settings/Scheduler that helps out a bit. Hope that helps ya, good luck. Rick -Original Message- From: Christopher Hummert [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 10:48 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) We use spybot along with the resident program that came out in the 1.3 release. So far it's been pretty good. I was wondering, what did you do to get it to run with the scheduler and bat files? I haven't been able to get it to cooperate yet. -Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dale, Rick Sent: Friday, June 11, 2004 7:59 AM To: '[EMAIL PROTECTED]' Subject: RE: [ActiveDir] spyware(OT) I have SpyBot (http://www.safer-networking.org/) installed on all PC's and it runs as part of the local machine's Friday night routine (A/V, SpyBot etc.) using the AT / scheduler & some .bat files. If you don't have SpyBot installed already then I would just push out what ever program you choose. Just my 10 BITs. Rick -Original Message- From: Kern, Tom [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 9:16 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
We use spybot along with the resident program that came out in the 1.3 release. So far it's been pretty good. I was wondering, what did you do to get it to run with the scheduler and bat files? I haven't been able to get it to cooperate yet. -Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dale, Rick Sent: Friday, June 11, 2004 7:59 AM To: '[EMAIL PROTECTED]' Subject: RE: [ActiveDir] spyware(OT) I have SpyBot (http://www.safer-networking.org/) installed on all PC's and it runs as part of the local machine's Friday night routine (A/V, SpyBot etc.) using the AT / scheduler & some .bat files. If you don't have SpyBot installed already then I would just push out what ever program you choose. Just my 10 BITs. Rick -Original Message- From: Kern, Tom [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 9:16 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
Been using it for quite some time myself. This, in conjunction with the SpyBot Resident have kept me free for months -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rod Trent Sent: Friday, June 11, 2004 11:33 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) In case no one has mentioned it, this solution works great: http://www.mvps.org/winhelp2002/hosts.htm -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Manuel Santos Sent: Friday, June 11, 2004 10:49 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) I distributed AdAware (http://www.lavasoftusa.com/software/adaware/) and made my users use it in a regular basis (once a week, at least) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom Sent: sexta-feira, 11 de Junho de 2004 15:16 To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
In case no one has mentioned it, this solution works great: http://www.mvps.org/winhelp2002/hosts.htm -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Manuel Santos Sent: Friday, June 11, 2004 10:49 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) I distributed AdAware (http://www.lavasoftusa.com/software/adaware/) and made my users use it in a regular basis (once a week, at least) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom Sent: sexta-feira, 11 de Junho de 2004 15:16 To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
how would you go pushing out the "kill bit" .reg file for active x? gpo? batch? i would like to push this out silently with no user intervention or even knowldge if possible. thanks -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 11:00 AM To: [EMAIL PROTECTED] Subject: Re: [ActiveDir] spyware(OT) There was an interesting article the other day : http://searchwin2000.techtarget.com/tip/0,289483,sid1_gci969259,00.html?track=NL-120&ad=484520 Because of licensing issues we try to not let our users download adaware etc John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 09:16 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: [ActiveDir] spyware(OT) | >| My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
Re: [ActiveDir] spyware(OT)
There was an interesting article the other day : http://searchwin2000.techtarget.com/tip/0,289483,sid1_gci969259,00.html?track=NL-120&ad=484520 Because of licensing issues we try to not let our users download adaware etc John |-+--> | | "Kern, Tom"| | | <[EMAIL PROTECTED]>| | | Sent by: | | | [EMAIL PROTECTED]| | | tivedir.org| | | | | | | | | 06/11/2004 09:16 AM| | | Please respond to | | | ActiveDir | | | | |-+--> >| | | | To: <[EMAIL PROTECTED]> | | cc: | | Subject: [ActiveDir] spyware(OT) | >| My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
Another option would be to make the shift from IE to another browser like Mozilla. Better pop-up stopper, too. We've had issues with AdAware causing more problems than it cures. Al -Original Message- From: Kern, Tom [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 7:16 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
I have SpyBot (http://www.safer-networking.org/) installed on all PC's and it runs as part of the local machine's Friday night routine (A/V, SpyBot etc.) using the AT / scheduler & some .bat files. If you don't have SpyBot installed already then I would just push out what ever program you choose. Just my 10 BITs. Rick -Original Message- From: Kern, Tom [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 9:16 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
can you distribute ad-aware and spybot via a gpo? also, for internet zones, what are some good things to disable without losing too much functionality. should i disable all active x(is most adware activex and javascript?)? thanks -Original Message- From: Manuel Santos [mailto:[EMAIL PROTECTED] Sent: Friday, June 11, 2004 10:49 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] spyware(OT) I distributed AdAware (http://www.lavasoftusa.com/software/adaware/) and made my users use it in a regular basis (once a week, at least) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom Sent: sexta-feira, 11 de Junho de 2004 15:16 To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
I distributed AdAware (http://www.lavasoftusa.com/software/adaware/) and made my users use it in a regular basis (once a week, at least) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom Sent: sexta-feira, 11 de Junho de 2004 15:16 To: [EMAIL PROTECTED] Subject: [ActiveDir] spyware(OT) My users are inundated with spyware and adware, what are the ways you guys deal with this? do you change the zone settings in I.E via gpo? can you turn spybot/spyblaster into an msi and push it out? Its hard for me to block access to web sites via an application firewall as we're a liquor ditribution company and our sales staff has to go to liqour sites that may have links to gambling or porn. i'd love to hear any ideas. thanks alot List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] spyware(OT)
You can do a combination of your suggestions. We will change the IE zones for problem users; so far that's worked OK for us. I'll lock down the internet zone so nothing much will run at all. We use Spybot and Ad-Aware to clean up when needed. You can also use Websense (or maybe another filtering product?) and block access selectively; i.e., allow less restrictive access for a group of users that need to get to those sites. Google toolbar also helps to block popups. For us it's about taking care of most of it so that our one-off work is minimized. It's really hard to prevent it all. ** Charlie Kaiser MCSE, CCNA Systems Engineer Essex Credit / Brickwalk 510 595 5083 ** > -Original Message- > From: Kern, Tom [mailto:[EMAIL PROTECTED] > Sent: Friday, June 11, 2004 7:16 AM > To: [EMAIL PROTECTED] > Subject: [ActiveDir] spyware(OT) > > My users are inundated with spyware and adware, what are the > ways you guys deal with this? > > do you change the zone settings in I.E via gpo? > can you turn spybot/spyblaster into an msi and push it out? > > Its hard for me to block access to web sites via an > application firewall as we're a liquor ditribution company > and our sales staff has to go to liqour sites that may have > links to gambling or porn. > > i'd love to hear any ideas. > thanks alot > List info : http://www.activedir.org/mail_list.htm > List FAQ: http://www.activedir.org/list_faq.htm > List archive: > http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/