quote – Paul's Tech Talk

Being a Bad BOT!

PaulFebruary 23, 20097 Replies

I had the strangest thing happen today, Seemed a Bad Bot was Crawling my pages. I was getting at least 60 page views an hour from this bad Bot!! The individual IP’s of this Bad Are:

65.208.151.112
65.208.151.113
65.208.151.114
65.208.151.115
65.208.151.116
65.208.151.117
65.208.151.118
65.208.151.119

[ad#ad2-right]After the first initial hour of this going on, I started wondering what this bot was doing. I did some more research into this little bot. I did find out it is owned by Kintiskton LLC. (Twitter Search)

Anyways It bothers me that when you do a Google Search for this company, it comes back with no company. Some people have already did there research and have come up with very little.

I dug even more and some are saying this might be Homeland Security, and I have my own thoughts on this. I might be paranoid myself but if there is no company out there and the IP keeps coming back, I assume it is BAD mojo. Some people worry that it is a hacker probing for vulnerabilities and that worried me.

I decided with the Help from Godaddy, to ban the lot of IPs. I figure someone is trying to get information or trying something they shouldn’t, I’ll stop it myself. If you have WordPress and are also having problems with this ip, you can ban it by adding this to your HtAccess file:

order allow,deny
deny from 65.208.151.112
deny from 65.208.151.113
deny from 65.208.151.114
deny from 65.208.151.115
deny from 65.208.151.116
deny from 65.208.151.117
deny from 65.208.151.118
deny from 65.208.151.119
allow from all

This is how you block those ip in the HtAccess file. Thanks to WordPress for showing me how.

Careless Facebook profiling can lead to Identity Theft!

PaulFebruary 19, 2009

I just got in contact with a old friend from High school and another friend of mine suggest the new friend. I was looking at her profile and couldn’t believe what I saw:

As you can see this is not good I was amazed at how many people are giving out there birthdays and who they are married to to friends and family. So we heard about how people are claiming they need help or are in need of desperate money. This is nothing new, as you know people are having hard economy times and people are using the social engineering to scam people out of money.

I feel that I should warn people the important necessity. You shouldn’t be broadcasting your DOB and who your married to to your friends, just in case they get hacked.

Recent activity indicates that identity thieves are hacking into trustworthy profiles before selling on the login details to interested parties. This information is used by spammers to target legitimate users, posting misleading links on their “walls” – personalized message boards.

[Via Computing.Co.UK]

This deservese a little mind and a lot of understanding. By the spammers hacking into facebook accounts they have the chance to scam or spam people with links to possibly have a virus or trojan installer.

[ad#ad2-right]For example This one blog talks about the Virus:

Symantec’s Norton Antivirus software has flagged this as a “high risk” Infostealer.Gampass virus. More info on this particular Trojan vius is here. (Note: Symantec warns the risk level is “low,” since it originated in 2006, but this new Facebook email is a new iteration of the same virus.)

You might be inclined to click on this link because it’s from a friend, but they did not intentionally send it to you — and yes, their Facebook photo is attached, too.

[Via Sync-blog]

Now I went searching through my friends list and also found this little bit of information. As you can see this one is asking for people to use there account to scam people out of money. They could use this to find out even more information of the Other partner and make you believe your talking to the real deal. Saying they need money because they are stuck over seas or something like that. I’ve seen this on other blogs where people have sent money to “friends” but are actually people who are the scammers. Then if you send the money you are out of luck with your money and possibly your friends to. I am sure there are more but this is prime examples of what you shouldn’t do and why.

So what can you do to prevent Identity Theft and/or being scammed?

Roboform Review — A Password Manager that will help protect your passwords from key loggers and other such phishing sites. I strongly recommend it to to all who are security minded. (Never use the same password for all your accounts)

Are you worried about your identity? — This is good information in checking out sites that might be questionable. You can find out what type of site it by using your brains.

Old Phish Become New again — This is blog post about twitter and what may happen if you did give out your password. This is a good example of why you never should give out your password to third party websites.

Twitter Spammers a getting more smarter — This is also good example of what happens when you see become friends with someone who isn’t real. You could be the next to be spammed and/or impersonated.

If you follow some common steps you to could prevent from being the victim or getting your Identitiy stolen. Some things to remember is Never tell anyone your Birthday the whole date like someone did on twitter a few days ago. It’s nice that they are growing older but that gives people that much more information to use to steal your money or your idenitiy. Think before you give out any personal information like Age, Married, who your married to and anything that might be used to be able to access your account or your impersonate you. Remember only you can prevent from being scammed or lossing your identity, you wouldn’t want to have to pay for your mistakes.

Viacom and ATT layoff some people. (12,850 People)

PaulDecember 4, 2008

Today, we are announcing a company-wide restructuring plan that includes staffing reductions in all divisions. This will result in a reduction of our worldwide workforce of approximately 7 percent, or about 850 positions. We are also suspending salary increases for the Company’s senior level management in 2009. In addition, after a comprehensive review of our operations, we will write down certain programming and other assets. These three actions will bring us significant cost savings and other efficiencies.

[via Gawker]

[ad#ad2-left]This is a Sad day for the telecommunications industry both AT&T and Viacom are laying off people. According to reports Viacom will lay off around 850 people. ATT will layoff 12,000 Jobs. Here’s the quote from Associated Press:

AT&T Inc. joined the recession’s parade of layoffs Thursday by announcing plans to cut 12,000 jobs, about 4 percent of its work force.

[Via Associated Press]

So in all today total that is 12,850 people who are going to be laid off. This is another set of layoffs but isn’t the last to see the whole list of of Layoffs in the Tech industry that I’ve talked about please click this link. You may find some usefull tidbits if you search my blog enough, I’ve got some great tips on getting hired and what you should do to be prepared.

Microsoft kills a fake antivirus tool from 994,061 computers!

PaulNovember 25, 2008

According to Arstechnica and I’ll quote:

[ad#ad2-left]Win32/FakeSecSen has gone by various names, including Micro Antivirus 2009, MS Antivirus, Spyware Preventer, Vista Antivirus 2008, Advanced Antivirus, System Antivirus 2008, Ultimate Antivirus 2008, Windows Antivirus, XPert Antivirus, Power Antivirus, and Ultra Antivirus 2009. Furthermore, it is skinnable, so each of these variants has a different GUI, although the basic functionality is the same: bother users with warnings of malware until they pay up.

The Microsoft Malware Protection Center recently released some data on how the removal tool performed this month: FakeSecSen was removed from 994,061 machines. That number isn’t the highest Microsoft has recorded before, and the number of removals depends on which malware Microsoft adds each month and how widespread it is.

[via Arstechnica]

This seemed to of happened this month with the usual Windows update. If you haven’t updated your system just yet you should. This troublesome fake virus seems to have been killed from several systems. This could effectively make it harder for these guys who ever designed this program to make money. I hope microsoft does even more virus removals in next month. If you still want to try to get rid of these viruses don’t forget to check out my tips on Virus removal.

How to disable autorun the easy way!!!

PaulNovember 21, 2008

I read a report from Cnet about USB devices spreading Virus and I will quote:

The bad guys are intentionally developing new flavors of malware designed to propagate through USB devices,” said Gunter Ollmann, chief security strategist for IBM’s ISS security division. “They are today’s floppy drives.”

[ad#ad2-right]An infected computer can spread a virus to a clean USB thumb drive that is inserted. That USB drive will then be spreading the virus onto other computers if the operating system on those machines has an AutoRun-type feature enabled. The AutoRun function in Windows launches installers and other programs automatically when a flash drive or CD is inserted. The Mac has an equivalent function, according to Ollmann.

[Via Cnet]

In order to disable “autorun“, which in Vista is called Autoplay. In order to disable Autoplay from starting when you insert media into your computer here is how you do it:

You will need to be Logged in as Administrator before this can be done:

Next click start and type “Autoplay” without quotes. It will bring up a screen but all you have to worry about is this:

You will need to make sure there is no check mark for “Use AutoPlay for all media and Devices”. Click save and close.

[ad#ad2-left]Once that is done, you will have no more Autoruns from USB devices. If you want to disable Autorun in XP, I’d suggest reading some of these articles for XP.

Wikipedia – AutoRun

How to Disable Autorun

These are just a few and are really nice to articles but there are others out there that might be more to your liking. I suggest searching Google for them. I hope this helps you out!!!