| Author |
A form of New POP UPS?
|
|
| prezbedard 2003-09-21, 9:47 pm |
| Ok I recently started getting some new pop ups. They are not browser ones. The are called Messenger Service. It claims to part of the operating system and usually has and ad on how to prevent the pop uos. I of course close the box via the x and not by clicking ok. I am now getting these same messages on a seconf pc. I do not have any kind of p2p software of any kind loaded. I use Trillian but I don't thinl it is coming form that. antone else benn getting these. They are getting me a bit PO'd because they are interruoting me and I have no idea where they are coming from. | |
| Boulware5 2003-09-21, 9:55 pm |
| It's the M$ Messenger Service. Just turn off that service unless you need it (which you probably don't unless the machine is part of a corporate network). More and more spammers are taking advantage of it. You can use the net send command to send anyone with the messenger service running a message (not a good thing!). | |
| prezbedard 2003-09-21, 10:07 pm |
| Wow.
Thanks. Is there any way of blocking messages from outside of my internal network by blocking certin ports?
I don't need it just wondering if there is a way to block it. | |
| Boulware5 2003-09-21, 10:18 pm |
| The messenger service is part of the Netbios service that runs on TCP port 139. To detect potential targets, the spammer will scan IP addresses with port 139 open.
So blocking 139 should do the trick. Just turning off messenger service (and changing the startup type to disable) is probably easier. | |
| prezbedard 2003-09-21, 10:26 pm |
| Well that is good to know. At cyberspace I will probably block port 139 rather then disable the service on about 20 machines. | |
| Boulware5 2003-09-21, 10:42 pm |
| prez, did you see my post in the IT Jobs forum about why I havent been on AIM? | |
| prezbedard 2003-09-21, 10:44 pm |
| quote:
Originally posted by Boulware5
prez, did you see my post in the IT Jobs forum about why I havent been on AIM?
Nope but I will after I finish typing this.... | |
| ruscorp 2003-09-22, 1:04 pm |
| Just turn off messanger service and they will go away.
In case you would like to "scare" your friends with it. Find there IP and "net send <insert_ip_here> <message_here>" and they will get a popup from you if they are actively running the service. | |
| prezbedard 2003-09-22, 1:15 pm |
| quote:
Originally posted by ruscorp
Just turn off messanger service and they will go away.
In case you would like to "scare" your friends with it. Find there IP and "net send <insert_ip_here> <message_here>" and they will get a popup from you if they are actively running the service.
Now that sounds like fun.
<insert evil laugh>
 | |
|
|
| prezbedard 2003-09-22, 1:27 pm |
| net send ruscorp look out for Boston
| |
| ruscorp 2003-09-22, 1:30 pm |
| quote:
Originally posted by prezbedard
net send ruscorp look out for Boston
I'm sorry, but the World Series boat will be departing shortly for the Bronx. | |
| prezbedard 2003-09-22, 1:32 pm |
| quote:
Originally posted by ruscorp
I'm sorry, but the World Series boat will be departing shortly for the Bronx.
With a hudge gapping HOLE in IT!! | |
| ruscorp 2003-09-22, 1:43 pm |
| quote:
Originally posted by prezbedard
With a hudge gapping HOLE in IT!!
We'll plug it with a RedSox player.  | |
| prezbedard 2003-09-22, 1:52 pm |
| quote:
Originally posted by ruscorp
We'll plug it with a RedSox player.
You would require some real talent and that would do the trick. | |
| prezbedard 2003-09-22, 4:52 pm |
| Any way to mask the computer you are using when performing net send on the internal network? | |
| ruscorp 2003-09-22, 4:54 pm |
| quote:
Originally posted by prezbedard
Any way to mask the computer you are using when performing net send on the internal network?
IP spoofing. |
|
|
|