What is this page about?

This page is generated to attempt to slow down Spam bots from collecting e-mail addresses off the web via spam programs. The purpose of this page is to try and fill the Spam bots with worthless non-existing emails which will force them to clean out their list which will clear all the emails including all the real emails it's collected.

How does this page work?

This page produces 50 random non-existing emails each time it is loaded. The spam bot will collect all of these emails and after it has completed the list, there is a link followed after which the bot will follow hence collecting more nonsense emails. This is iWEBTOOL's attempt to FIGHT Spam.

How can I help iWEBTOOL fight spam?

If you would like to help us fight spam then simply just add a link wherever you can.
You can try adding links onto:

- Forums/Message Boards
- Your Website
- Guest books
- Blogs

FIGHT SPAM NOW

The creator of software designed to surreptitiously observe individuals' online activities has been indicted for allegedly violating U.S. federal computer privacy laws, local and federal authorities said Friday. If convicted, Carlos Enrique Perez-Melara could face a maximum sentence of 175 years in prison and fines of up to $8.75 million. His current whereabouts are unknown. Four individuals who purchased the Loverspy software to illegally spy on others were also indicted. His indictment was returned on July 21 by a federal grand jury sitting in the U.S. District Court for the Southern District of California in San Diego but wasn't unsealed until last week.

"This federal indictment -- one of the first in the country to target a manufacturer of 'spyware' computer software -- is particularly important because of the damage done to people's privacy by these insidious programs," John Richter, acting assistant attorney general of the U.S. Department of Justice's Criminal Division, said in a statement. "Law enforcement must continue to take action against the manufacturers of these programs to protect unsuspecting victims and seek punishment for those responsible for wreaking havoc online."

Perez-Melara, 25, was indicted on 35 counts of manufacturing, sending and advertising a surreptitious interception device (the Loverspy program), unlawfully intercepting electronic communications, disclosing unlawfully intercepted electronic communications and obtaining unauthorized access to protected computers for financial gain. Each count carries a maximum penalty of five years in prison and a maximum fine of $250,000.

Perez-Melara advertised and sold Loverspy and EmailPI software over the Internet for $89 a copy to people looking to secretly monitor another computer user's e-mail, passwords, chat sessions, instant messages and the Web sites they visited. Purchasers of the program could log into a Loverspy Members Area on the Loverspy or EmailPI Web sites and choose an e-card and greeting that would be sent to the victim.

Bruce Schneier, a security expert, talks about a new set of MD5 collisions generated by two researchers in Bochum. This renders MD5 not safe, i.e. completely useless. A very interesting read indeed.

For those of you who have never heard of MD5 before, a simple explanation is in order. Keep in mind that I am not a cryptography expert, and I am trying to understand these things myself.

The MD4, MD5 and SHA-1 algorithms are secure hash functions. They take a string input, and produce a fixed size number - 128 bits for MD4 and MD5; 160 bits for SHA-1. This number is a hash of the input - a small change in the input results in a substantial change in the output. The uses of secure hashes include digital signatures and challenge hash authentication.

This document is a good introduction to hash. While many people view MD5 not safe. But for a web site it is generally more than enough. "JavaScript Here." There are other hash-functions that are still considered secure, Tiger for instance, and SHA-2.

A deadline has been extended that could have left tens of thousands of people without their Internet phone service next week.

The Federal Communications Commission said Friday it would delay a Monday deadline for providers of Internet-based phone calls to obtain acknowledgments that their customers understand the problems they may encounter when dialing 911 in an emergency.

Providers of the phone service, known as Voice over Internet Protocol or "VoIP," had been told by the FCC that they should disconnect service by Tuesday to people who had not responded.

The agency extended the deadline to Sept. 28. If by that time a provider still has not received confirmation, then the company should disconnect a customer's phone service, according to the FCC order. "Full Article"

   Top Chinese personal computer maker Lenovo Group will start to sell its namesake personal computers outside China in the first quarter of next year as part of its long-term plan to build the world's leading PC brand, its chief executive told Reuters.

Lenovo's PC shipments in China were three times those of its closest rival in the second quarter, but it has only recently broken into the international market in a big way, with its $1.25 billion acquisition of International Business Machines Corp.'s PC unit.

Lenovo will make IBM's flagship Thinkpad laptops available in Lenovo stores shortly. The acquisition has made it the third-biggest global PC vendor behind Dell Inc. and Hewlett-Packard Co.

The company spends 1.5 percent of its revenue on research, about twice the standard rate for the industry. It has plans to set up research centers in North Carolina and Beijing.

Cross-borders mergers are notoriously difficult to carry out. The Lenovo-IBM deal is particularly challenging because the drastic difference between East and West cultures.

IBM has used to think globally, but Lenovo makes decisions that target specific customers.  "Learn More"

I have personally used this software in real world datacenter environment. Though I typically only want the disk repaired long enough to ghost it to a new disk. I can say my success rate using this product is simply outstanding. In all honesty I have only had one disk so bad, that it simply was not worth the time.

Note: HDD Regenerator does not change the logical structure of a hard disk drive. Therefore the file system may contain logical bad sectors marked earlier, and other disk utilities such as Scandisk will detect bad sectors even if the hard drive is successfully regenerated by HDD Regenerator. To remove non-existent bad sectors from the file table, repartition your hard disk drive or use PowerQuest PartitionMagic (Bad Sector Retest option).
 

Download! (2.04 Mb)

Order Now! - Home Page

 

Publisher:	Dmitriy Primochenko
Date added:	Nov 14, 2004
File size:	2095 Kb (2.04 Mb)
License:	Shareware, $59.95
OS:	Win95/98/ME/NT4/2000/XP/2003
Keywords:	bad sectors, disk repair, data rescue, corrupted disk, damaged hard disk, repair bad sector, restoration tool, bad sector, Recovery software, regenerates hard disk drives, regenerate physically damaged hard disk drives

Google, Yahoo! still dominate search; MSN gains ground

"Google maintained its lead in the United States with 36.5 percent of all the searches in the month of July--followed by Yahoo! at 30.5 percent and MSN at 15.5 percent [...]

Microsoft's MSN earned the greatest search volume gain among any of the top search engines, rising 30 percent year-over-year and accounting for 744 million domestic searches."

Google stealthily monitoring clickthroughs from search-results

"There's some very subtle clickthrough tracking going on at Google. Just before you click on a link on a search-results page, at the 'on mousedown' event, Google rewrites the links in its search results with a long redirector URL that is presumably being used to track which search results are being selected most often."

Google ad display increases

"In more searches, particularly queries with commercial intent, Google now displays three paid PPC links instead of the traditional one or two."

Courts signal that Google's keyword policy is lawful

"We believe our current policy strikes a good balance between advertisers, users and trademark owners, don't be surprised if our policy evolves over time. We believe it is possible for an advertiser to create an ad that uses a trademark in a legal and non-confusing way - after all that is what comparative advertising is all about."

Three people accused of sending massive amounts of spam face possible prison sentences after being indicted by a grand jury in the U.S. state of Arizona and accused of violating the CAN-SPAM Act of 2003 and other charges, the U.S. Department of Justice said in a statement.

Named in the indictment are Jennifer R. Clason, Jeffrey A. Kilbride, and James R. Schaffer. The three are accused of sending spam that advertised pornographic Web sites, said the DOJ in a statement. They could make money from commissions that the Web sites paid in return for directing traffic to their sites, the statement said.

The defendant’s operation was ranked as one of the 200 largest sources of spam on the Internet by The Spamhaus Project Ltd., a group that tracks and battles against spam. America Online Inc. received more than 600,000 complaints between late January and early June last year related to spam from the operation, said the DOJ. The actual number of users who received spam from the operation could be in the tens of millions, it said.

“Each of those people [in the Spamhaus listing] sends out several million spams a day,” said Suresh Ramasubramanian, who heads anti-spam operations at e-mail outsourcing company Outblaze Ltd.

He said the defendants’ operation worked by buying large amounts of Internet bandwidth from major service providers. With the purchase they’d also get large blocks of IP addresses and the defendants would then send spam to the Internet from a small portion of the addresses they had. Once the addresses were blocked in anti-spam systems they’d start using different addresses until such a time as the pattern was recognized and they were terminated by their ISP. They’d then go to a new service provider and start all over again.

       Moroccan authorities arrested Farid Essebar, age 18; and simultaneously, Turkish officials arrested Atilla Ekici, age 21, both in connection with a global investigation into the outbreak of the Zotob network worm discovered just over two weeks ago. Louis M. Reigel, FBI Assistant Director for the Cyber Division, told reporters this afternoon that Essebar is believed to have been the sole author of the Zotob strain.

"The Moroccan was responsible, [it is] our belief, at this point in the investigation, for writing the code," A.D. Reigel stated. Referring to the suspect by his country of origin, he continued, "Moroccan has a financial relationship with the Turkish individual, Mr. Ekici. We believe that there was financial gain on the part of Moroccan in relationship to the writing of the code." However, Reigel added, the FBI had not seen official charges against the two suspects from their respective governments.

Essebar is also suspected, the FBI confirmed, of either writing or co-writing two other major instances of obtrusive and destructive code: The Mytob mass-mail attachment worm, discovered last February, to which Essebar is believed to have contributed, exhibits similar behavior to Zotob but is communicated in a different way. Zotob attacks systems through an unmonitored network port reserved for Universal Plug and Play, in order to exploit a deficiency in Windows 2000 which fails to authenticate traffic over that port.

Also being attributed to Essebar is the Rbot strain of worms, first detected in June 2004, for which anti-virus provider Sophos reports hundreds of known variants. Rbot manifests and distributes itself in a variety of ways, although it usually attempts first to attack Windows computers by exploiting open ports reserved for NetBIOS and Microsoft Directory Services traffic, passing itself off as legitimate network share traffic using a weak administrator password. Like both Mytob and Zotob, once a system is infected, Rbot changes some System Registry keys in order for it to run automatically at system startup, and then tries to communicate with an un-resourced (unnamed) IP address using Internet Relay Chat (IRC) protocol.

There has been quite a bit more discussion about an upcoming Google IM client, I find the entire concept amusing. Being an avid user of Skype since the early beta. How on earth can everyone be so jazzed over a search engine company offering something based on the old Jabber technology will be better than Skype. The only way it could be better is if it washed the car or something. I guess some people are totally Googled. If so here's your "google".

"Google Talk seems to be the name that all the tipsters are pointing too and some have even hinted that VoIP will be built right in (but with a name like Google Talk, how could it not include voice chat?). It’s not yet known if the voice features will be limited to PC-to-PC, but we’re hoping for the SkypeOut like ability to call home. "

Personally I feel that Google is a fantasic search engine. But really why re-invent the wheel yet again? I think that the 154 million downloads at skype speak for themself.

Due to a decreased rate of submissions, Symantec Security Response has downgraded W32.Netsky.D@mm from a Category 3 to a Category 2 as of October 27, 2004. W32.Netsky.D@mm is a mass-mailing worm that is a variant of W32.Netsky.C@mm. The worm scans drives C through Z for email addresses and sends itself to those that are found.
The Subject, Body, and Attachment names vary. The attachment will have a .pif file extension.  As of March 22, 2004, due to an increase in submission rate, Symantec Security Response has upgraded W32.Netsky.P@mm (also known as W32.Netsky.Q@mm) to a Category 3 level threat from a Category 2 threat. W32.Netsky.P@mm is a mass-mailing worm that uses its own SMTP engine to send itself to the email addresses it finds when scanning the hard drives and mapped drives. The worm also tries to spread through various file-sharing programs by copying itself into various shared folders.

The From line of the email is spoofed, and its Subject line and message body of the email vary. The attachment name varies with the .exe, .pif, .scr, or .zip file extension.
Removal Tool:

When you install anything be sure you know it is clean. Please don't put this garbage in your machine in the first place. Love the quote at Block-Checker.com proud to be spyware free, sure. Yet the only way we learned of the product was through McAfee this is clearly a good sign.

Virus Characteristics

Court approves AhnLab's spyware classification

Microsoft (Quote, Chart) confirmed it's on track to release Visual Studio 2005 in November, backing itself up with the release of a Community Technology Preview (CTP) of the development tool on Monday.

Microsoft released the beta 2 version of the software in April, as well as .NET Framework 2.0 beta 2, and the April Community Technology Preview (CTP) of SQL Server 2005.

Now, close to the November ship date, Microsoft must convince its most engaged developers that the product is good enough to ship.

As Visual Studio client development manager Shawn Burke put it on his own blog, the challenge Microsoft's Visual Studio team faces is: "How do I ship quality software that will do the right thing for my users and still close it down and get it out the door with known issues? You could literally keep at it forever if you kept fixing all the bugs."

On the MSDN Product Feedback Blog, product manager Marie Hagman wrote about "bug triage," the process of deciding which bugs to fix and which to ignore.

TRACE! is a free document security tool that provides personal protection against information privacy and compliance violations in all documents you touch. Run TRACE! against any Microsoft Office document on your computer, company network, or on internal or external websites.

TRACE! analyzes Microsoft Office documents and provides an "Always-On" document security risk rating to alert you to the presence of potentially costly violations of regulations as well as inside-out breaches of information security.

• Dynamic tracking of nearly 100 content security, privacy and compliance violations
• Always-on alerts with risk level warnings on problems in new and existing documents
• On demand or batch assessment of documents in folders, email and on websites
• Automatically updates as legislation and regulations change.

Plenty of speculation on the web today over Google being poised to compete with Microsoft and produce an alternate computing platform for PC users. Here is the eweek spin.

So let's do a simple compare just with the way their respective lawyers have done their jobs. While everyone thinks we all need desktop search features I question opening my computer up to either of these two companies to ralley at their sides and give away or put my computer more at risk than it already is.

What does Google Desktop do with the information on my computer?

So that you can easily search your computer, the Google Desktop application indexes and stores versions of your files and other computer activity, such as email, chats, and web history. These versions may also be mixed with your Web search results to produce results pages for you that integrate relevant content from your computer and information from the Web.

Your computer's content is not made accessible through Google Desktop to Google without your explicit permission. For more information about what Google Desktop can do, please see the Product FAQ.

What information does Google receive?

If you choose to enable Advanced Features, Google Desktop may send information about the websites that you visit to provide enhanced Google Desktop functions, such as personalizing news displayed in Sidebar. Enabling Advanced Features also allows Google Desktop to collect a limited amount of non-personal information from your computer and send it to Google. This includes summary information, such as the number of searches you do and the time it takes for you to see your results, and application reports we'll use to make the program better. You can choose to enable Advanced Features during installation and you can change your mind at any time in Desktop Preferences.

MSN Collection of your Personal Information

This MSN Privacy Statement applies to data collected by Microsoft through its MSN sites and services; it does not apply to data collected through other online or offline Microsoft sites, products or services. Other Microsoft sites and services linked to from this Web site, including microsoft.com, MapPoint, WindowsMedia.com and Xbox.com have their own privacy statements which can be viewed by clicking on the links.

This Statement contains a section with specific details regarding personal information collected from children. Click here to read more. In order to sign in to MSN services, you will be asked to enter an e-mail address and password, which we refer to as your MSN credentials. If you access our services via a mobile phone, your credentials will consist of your telephone number and a PIN. As part of creating your MSN credentials, you may also be requested to provide an alternate e-mail address, and questions and secret answers, which we use to verify your identity and assist in resetting your password. Some services may require added security, and in these cases, you may be asked to create an additional security key. Finally, a unique ID number will be assigned to your MSN credentials which will be used to identify your credentials and associated information.

If you have an e-mail address that has been provided by MSN (e.g. those ending in msn.com, hotmail.com, or webtv.net) that e-mail address and the associated password are your MSN credentials. You may also use any other Microsoft Passport Network credentials to sign into most MSN services.

At some MSN sites, Microsoft collects personal information, such as your e-mail address, name, home or work address or telephone number. We may also collect demographic information, such as your ZIP code, age, gender, preferences, interests and favorites. Information collected on MSN may be combined with information obtained from other Microsoft services and other companies.

After reading this legal speak. I will say they paid well to make sure every end user will have no clue what they are on about. It is simple they are marketing companies and they want your information. Thinking otherwise would honestly be as misleading as all this legal babble. Can anyone say anything simple anymore? Am I giving you the right to collect information from my machine or not? Google did a fair job of removing the ambiguity untill we get to the part about enabling the Advanced Features. Then as quick as a whip they too take us off to the color gray.

US-Cert has published a report on spyware, http://www.us-cert.gov/reading_room/spyware.pdf, a 15-page document that includes an overview, definition and examples of different types of threats. Some of the recommended defensive measures include the following:

1. Don't trust unknown or known high-risk sources.
2. Read the fine print.
3. Pay attention when installing applications.
4. Keep operating systems and software patched.
5. If you are running Windows XP, install Service Pack 2.
6. Use trusted anti-virus and anti-spyware tools.
7. Alternative internet applications.
8. Browser configuration.

Computer Associates announced a 6.9 million dollar contract to protect Department of Defense (DOD) computers from spyware. The need for the contract indicates spyware has infected military computers. An article from FCW.com about antispyware software at Fort Hood just read the quote from Army Maj. Bert Belisch:

Unlike with viruses, no one has offered the public a complete catalog of spyware threats. And until that happens, we're left with a lot of hype and fear instead of facts and solutions. In short, despite all the antispyware apps being produced these days, we're no closer to eradicating the spyware problem.

Antispyware vendors typically use three types of databases. Some use a community database which is drawn from subscribers who report suspected spyware. It was reported by Cnet that Microsoft uses Skynet for its spyware collection. Webroot (makers of SpySweeper) primarily use its Phileas Technology to crawl all over the Internet and find new examples of spyware. Finally, there are hybrid databases, combining the above two methods.

With the total failure of The Consortium of Anti-Spyware Technology vendors (COAST) which were a group founded by PestPatrol (now part of Computer Associates), Webroot (makers of SpySweeper), and Aluria (makers of Spyware Eliminator), but the group ceased to exist a few months ago after vicious in-fighting regarding the very definition of spyware. What then is the interest of any one to even define what it even is. As long as it is all driven by money there is no serious solution. The rambling will simply continue and every consumer will suffer.

Opinion: Nobody who takes security seriously could get hit through Windows 2000 PnP vulnerability, yet lots of large corporations were hit. You do the math.

Quotes From Larry Seltzer
August 16, 2005

After reading both of Larry Seltzers posts on the 16th over a patch MS05-039 that MS released on August 9th. It really is amazing that while this seemed to be straight forward worm easy enough to prevent it was over the network news channels as if it were terminal.

There are many unique terms associated with search engine optimization and search engine marketing. Keyword Effectiveness Index – A WordTracker term that refers to the number of times a Keyword has appeared in WordTracker’s database compared with the number of competing Web pages.

DETAILED EXPLANATION

The KEI for a keyword should increase if its popularity increases. Popularity is defined as the "Count" or number of times it appears.

The KEI for a keyword should decrease if it becomes more competitive. Competitiveness is defined as the number of sites which a search engine e.g. Google displays when you search for that keyword using exact match search.

Exact match search means that a search engine searches for only those sites which use the keyword exactly as typed in by the user. It is the equivalent of entering:

 

Partial match search means that a search engine also searches for sites which contain the individual words of the keyword but not necessarily occurring together or in the order typed in by the user. It is the equivalent of entering:

 

Partial match search presents a distorted picture of the competitiveness of a keyword because when you optimize your site for a particular keyword, you are actually competing with sites which have used the keyword exactly as typed in by the user.

I have personally found Word Tracker a great resource for everyone who really understands the importance of market speak. It really can profoundly effect the outcome of any web enterprise. Today in the news I also found this article provides some insight. It might make the experienced SEO pro say no kidding. Though when discussing the topic of KEI, the object is to remove as much of the ambiguity as possible.

CVE Reference : GENERIC-MAP-NOMATCH
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-08-21
 

	Some Questions for your developer. Make sure before you decide who will develop your website you have a good idea that the money is well spent. There are massive differences between developers. Everything about a web site does not hinge totally on their ability to write dynamic content. Though this is a important factor it is but one.
	Doing a search the Internet you see it for yourself.  Note the difference in the designs of the sites you visit. Some look like they were created by expensive media agencies while others look like a 12-year-old did it for his school project. Which might be the case.

Here are 5 questions your web site developer might not want you to ask. Click Here

Have you noticed your search engine rank slipping? Perhaps it is due to the fact that people are copying your content. How can you find out about this and track down who is using your content?

Well I have found that the easiest way is to simply go to this link and you run your domain name.

http://www.copyscape.com/

Below are some of the most useful options set and in their suggested order: If your developer is does not use these on your site, or if this is not part of any development costs then make sure they are. Also make sure to be aware of who will be defining the keywords for your web site. Having this established before hiring a developer is important. You also want to know what their SEO experience is. I have seen quoted prices for doing this part, ranging from $10.00 per page to $300.00 per page. With many things in life you get exactly what you pay for. It does not mean that the developer is trying to dupe you but in most cases it is only fair to compare what you get for your money evenly. This is the best way to make sure that the developer doing this work is being compared openly and fairly.

<title>Whatever Items for Sale</title>
<meta name="description" content="Description">
<meta name="keywords" content="keywords">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta http-equiv="Content-Style-Type" content="text/css">
<meta http-equiv="expires" content="30 days">
<meta name="author" content="John Doe">
<meta name="copyright" content="Copyright 2004 www.domainname.com">
<meta name="distribution" content="global">
<meta name="robots" content="index, follow">
<meta name="rating" content="Safe For Kids">

This article was pubished on 8-8-2005. Thinking this article might be usefull. I go to the source SpamButcher which sells yet another anti-spam application for only $29.95. Which I am sure it is as good as any though I did not test it. Since SpamBayes is my personal choice as it is a plug-in to the outlook client and is free. I was still interested in the article none the less it might prove useful.

The article starts with this quote. "This document is intended to help people with relatively little networking experience identify if they have a spam zombie problem and provide some basic strategies for dealing with them."  Let's cut to the chase, and find how we can get rid of the bad guys.

So, what should you do?

1. Disconnect the system from the network - do this now!
2. Backup any important data (just get your data- try to avoid copying any installers or executables that could've been the source of the zombie or exploit)
3. Format all drives

This may seem a bit extreme, but is generally a good idea. The best practice in any situation you've had a security compromise that you can't account for 100% is to "level" the computer in question."

We can make it much simplier than a five page article. The statement was that there are millions of hacked and zombied sytems. Everyone who has an infected computer format and start from scratch. Also don't worry about a backup just reinstall everything from scratch. This way you can be certain you are not inserting mal-ware. Also make sure you do the same for all the infected machines in your LAN. Inject dry humor here.

I personally view having to format your disks as a a bit of a pain. So can we look at the menu again, perhaps another option?

Online criminals trying to pry passwords and other sensitive information out of companies have started using phony e-mails that look as if they were sent from powerful executives of the targeted organizations, experts said yesterday.

Known as "spear phishing," the technique is an ingenious wrinkle on the "phishing" e-mail scams that try to trick consumers into giving up bank-account information and other sensitive details that can be used in identity theft.

Businesses are typically reluctant to publicly disclose when they are the targets of online attacks, but online security company MessageLabs Inc. said in June that it has seen the tactic grow steadily during the year to the point where it now sees one to two spear-phishing campaigns a week.

Rather than posing as a bank or other online business, spear phishers send e-mails to employees at a company or government agency that appear to come from a powerful person within the organization, several security experts said.

Unlike basic phishing attacks, which are sent out indiscriminately, spear phishers target only one organization at a time. Once they trick employees into giving up passwords, they can install Trojan horse programs or other malicious software to ferret out corporate or government secrets.

Spear phishing can be devastatingly effective even among employees who are aware of online threats.

At the U.S. Military Academy in West Point, N.Y., several internal tests found that cadets were all too willing to give sensitive information to an attacker posing as a high-ranking officer, said Aaron Ferguson, a visiting faculty member there.

"It's the 'colonel effect.' Anyone with the rank of colonel or higher, you execute the order first and ask questions later," he said.

Cadets in more recent tests have been somewhat more likely to report the messages as suspicious as awareness has grown, he said.