Innovation The Key To Success
Melbin Mathew
This user hasn't shared any biographical information
Homepage: http://www.talk2melbin.com
Posts by Melbin Mathew
Attack History Of Computer Viruses
Oct 25th
Computer Viruses in History
Computer viruses have a relatively short history by the damages caused by some of the most dangerous viruses pushed cyber-experts to open a chapter that includes a huge database on computer viruses and the cost of damages caused along with companies, government and universities highly affected by malware.
Here are some of the most dangerous computer viruses in history:
Jerusalem – 1987
This is one of the first MS-DOS viruses in history that caused enormous destructions, affecting many countries, universities and company worldwide. On Friday 13, 1988 the computer virus managed to infect a number of institutions in Europe, America and the Middle East. The name was given to the virus after one of the first places that got “acquainted” with it – the Jerusalem University.
Along with a number of other computer viruses, including “Cascade”, “Stoned”, “Vienna” the Jerusalem virus managed to infect thousands of computers while still remaining unnoticed. Back then the anti-virus programs were not as advanced as they are today and a lot of users had little belief of the existence of computer viruses.
Morris (a.k.a. Internet Worm) – November 1988
This computer virus infected over 6,000 computer systems in the United States, including the famous NASA research Institute, which for some time remained completely paralyzed. Due to erratic code, the worm managed to send millions of copies of itself to different network computers, being able to entirely paralyze all network resources. The damages caused by the Morris computer virus were estimated at $96 millions.
To be able to spread the computer virus used errors in such operating systems as Unix for VAX and Sun Microsystems. There were a number of other interesting ideas used by the virus – for example it could pick user passwords.
Solar Sunrise – 1998
A decade later the situation didn’t change, it might have gotten even got worse. Using a computer virus, hackers, in 1998, penetrated and took control of over 500 computers systems that belonged to the army, government and private sector of the United States. The whole situation was dubbed Solar Sunrise after the popular vulnerabilities in computers that run on the operating system called Sun Solaris. Initially it was believed that the attacks were planed by the operatives in Iraq. It was later revealed that the incidents represented the work of two American teenagers from California. After the attacks, the Defense Department took drastic actions to prevent future incidents of this kind.
Melissa – 1999
For the first time computers got acknowledged with Melissa computer virus on March 26, 1999, when the virus shut down Internet mail system, which got blocked with e-mails infected by the worm. It is worth mentioning that at first Melissa was not meant to cause any harm, but after it overloaded servers the virus led to unpredictable problems. For the first time it spread in the Usenet discussion group alt.sex. Melissa was hidden within a file called “List.DiC”, which featured passwords that served as keys to unlocking 80 pornographic websites. The original form of the virus was sent through e-mail to different users.
Melissa computer virus was developed by David L. Smith in Aberdeen Township, New Jersey. Its name comes from a lap dancer that the programmer got acknowledged with while in Florida. After being caught, the creator of the virus was sentenced to 20 months in federal prison and ordered to pay a fine of $5,000. The arrest represented a collaboration of FBI, New Jersey State Police and Monmouth Internet.
Melissa had the ability to multiply on Microsoft Word 97 and Word 2000, as well as Microsoft Excel 97, 2000 and 2003. In addition, the virus had the ability to mass-mail itself from Microsoft Outlook 97 or Outlook 98.
I Love You – May 2000
Using a similar method as the Melissa, the computer virus dubbed “I Love You” managed to infect millions of computers around the world in just one night. Just like Melissa this computer virus sent passwords and usernames, which were stored on the attacked computers, back to the developer of the virus. After authorities traced the virus they found that a young Filipino student was behind the attack. The young man was released due to the fact that the Philippines did not have any law that would prevent hacking and spreading malware. This situation served as one of the premises for creating the European Union’s global Cybercrime Treaty.
The Code Red worm – July 2001
This 21st century computer virus managed to penetrate tens of thousands of systems that ran Microsoft Windows NT as well as Windows 2000 server software. The damages caused by the Code Red computer virus were estimated at a total of $2 billion. Core Red was developed to use the power of all computers it infected against the official website of the White House at a predetermined date. In collaboration with different virus hunters and tech firms, the White House managed to decipher the code of the Code Red virus and stop traffic as the malware started its attacks.
Nimda – 2001
Shortly after the September 11 tragedy this computer virus infected hundreds of thousands of computers worldwide. Nimda was considered to be one of the most complicated viruses, having up to 5 different methods of infecting computers systems and duplicating itself.
Downadup – 2009
The latest and most dangerous virus is the “downadup” worm, which was also called “Conficker”. The computer security company F-Secure stated that the computer virus has infected 3.5 million computers worldwide. This malicious program was able to spread using a patched Windows flaw. Downadup was successful in spreading across the Web due to the fact that it used a flaw that Microsoft patched in October in order to distantly compromise computers that ran unpatched versions of Microsoft’s operating system. But the greatest power of the worm is believed to be the ability of computers, infected with the worm, to download destructive code from a random drop point. F-Secure stated that three of the most affected countries were China, Brazil and Russia.
Note Taken From : http://infoniac.com
Still one among us are planning for another attack….
Cheers!
Melbin Mathew
www.talk2melbin.com
Run commands for windows users
Oct 22nd
Do you use the Run feature in Windows XP? For most, this feature remains unused (or rarely used). The main reason most people don’t use the Run feature is because they don’t know the Commands. So, here is the solution….
To Access…. Run Command Accessibility Controls access.cpl Accessibility Wizard accwiz Add Hardware Wizard hdwwiz.cpl Add/Remove Programs appwiz.cpl Administrative Tools control admintools Adobe Acrobat (if installed) acrobat Adobe Designer (if installed) acrodist Adobe Distiller (if installed) acrodist Adobe ImageReady (if installed) imageready Adobe Photoshop (if installed) photoshop Automatic Updates wuaucpl.cpl Bluetooth Transfer Wizard fsquirt Calculator calc Certificate Manager certmgr.msc Character Map charmap Check Disk Utility chkdsk Clipboard Viewer clipbrd Command Prompt cmd Component Services dcomcnfg Computer Management compmgmt.msc Control Panel control Date and Time Properties timedate.cpl DDE Shares ddeshare Device Manager devmgmt.msc Direct X Control Panel (If Installed)* directx.cpl Direct X Troubleshooter dxdiag Disk Cleanup Utility cleanmgr Disk Defragment dfrg.msc Disk Management diskmgmt.msc Disk Partition Manager diskpart Display Properties control desktop Display Properties desk.cpl Display Properties (w/Appearance Tab Preselected) control color Dr. Watson System Troubleshooting Utility drwtsn32 Driver Verifier Utility verifier Event Viewer eventvwr.msc Files and Settings Transfer Tool migwiz File Signature Verification Tool sigverif Findfast findfast.cpl Firefox (if installed) firefox Folders Properties control folders Fonts control fonts Fonts Folder fonts Free Cell Card Game freecell Game Controllers joy.cpl Group Policy Editor (XP Prof) gpedit.msc Hearts Card Game mshearts Help and Support helpctr HyperTerminal hypertrm Iexpress Wizard iexpress Indexing Service ciadv.msc Internet Connection Wizard icwconn1 Internet Explorer iexplore Internet Properties inetcpl.cpl Internet Setup Wizard inetwiz IP Configuration (Display Connection Configuration) ipconfig /all IP Configuration (Display DNS Cache Contents) ipconfig /displaydns IP Configuration (Delete DNS Cache Contents) ipconfig /flushdns IP Configuration (Release All Connections) ipconfig /release IP Configuration (Renew All Connections) ipconfig /renew IP Configuration (Refreshes DHCP & Re-Registers DNS) ipconfig /registerdns IP Configuration (Display DHCP Class ID) ipconfig /showclassid IP Configuration (Modifies DHCP Class ID) ipconfig /setclassid Java Control Panel (If Installed) jpicpl32.cpl Java Control Panel (If Installed) javaws Keyboard Properties control keyboard Local Security Settings secpol.msc Local Users and Groups lusrmgr.msc Logs You Out Of Windows logoff Malicious Software Removal Tool mrt Microsoft Access (if installed) access.cpl Microsoft Chat winchat Microsoft Excel (if installed) excel Microsoft Frontpage (if installed) frontpg Microsoft Movie Maker moviemk Microsoft Paint mspaint Microsoft Powerpoint (if installed) powerpnt Microsoft Word (if installed) winword Microsoft Syncronization Tool mobsync Minesweeper Game winmine Mouse Properties control mouse Mouse Properties main.cpl Nero (if installed) nero Netmeeting conf Network Connections control netconnections Network Connections ncpa.cpl Network Setup Wizard netsetup.cpl Notepad notepad Nview Desktop Manager (If Installed) nvtuicpl.cpl Object Packager packager ODBC Data Source Administrator odbccp32.cpl On Screen Keyboard osk Opens AC3 Filter (If Installed) ac3filter.cpl Outlook Express msimn Paint pbrush Password Properties password.cpl Performance Monitor perfmon.msc Performance Monitor perfmon Phone and Modem Options telephon.cpl Phone Dialer dialer Pinball Game pinball Power Configuration powercfg.cpl Printers and Faxes control printers Printers Folder printers Private Character Editor eudcedit Quicktime (If Installed) QuickTime.cpl Quicktime Player (if installed) quicktimeplayer Real Player (if installed) realplay Regional Settings intl.cpl Registry Editor regedit Registry Editor regedit32 Remote Access Phonebook rasphone Remote Desktop mstsc Removable Storage ntmsmgr.msc Removable Storage Operator Requests ntmsoprq.msc Resultant Set of Policy (XP Prof) rsop.msc Scanners and Cameras sticpl.cpl Scheduled Tasks control schedtasks Security Center wscui.cpl Services services.msc Shared Folders fsmgmt.msc Shuts Down Windows shutdown Sounds and Audio mmsys.cpl Spider Solitare Card Game spider SQL Client Configuration cliconfg System Configuration Editor sysedit System Configuration Utility msconfig System File Checker Utility (Scan Immediately) sfc /scannow System File Checker Utility (Scan Once At Next Boot) sfc /scanonce System File Checker Utility (Scan On Every Boot) sfc /scanboot System File Checker Utility (Return to Default Setting) sfc /revert System File Checker Utility (Purge File Cache) sfc /purgecache System File Checker Utility (Set Cache Size to size x) sfc /cachesize=x System Information msinfo32 System Properties sysdm.cpl Task Manager taskmgr TCP Tester tcptest Telnet Client telnet Tweak UI (if installed) tweakui User Account Management nusrmgr.cpl Utility Manager utilman Windows Address Book wab Windows Address Book Import Utility wabmig Windows Backup Utility (if installed) ntbackup Windows Explorer explorer Windows Firewall firewall.cpl Windows Magnifier magnify Windows Management Infrastructure wmimgmt.msc Windows Media Player wmplayer Windows Messenger msmsgs Windows Picture Import Wizard (need camera connected) wiaacmgr Windows System Security Tool syskey Windows Update Launches wupdmgr Windows Version (to show which version of windows) winver Windows XP Tour Wizard tourstart Wordpad write
Cheers!
Melbin Mathew
www.talk2melbin.com
How To Check The User Creation Date And Time On Windows And Linux
Oct 22nd
How To Check The User Creation Date And Time On Windows And Linux
Finding user creation date on the Operating system is a key fact on security audit. This help us to ensure the validity of the user.
On Windows Operating System user creation date are analyised by checking Event viewers, Profiles creation date and net command.
1. Check on Event viewer. It would be good to enable the audit logs.
2. Profile creation date, help us to know the first login date.
*If the user have never login into the Operating System. System will not create a new profile folder.
3. Check the user status using net command.
Run -> cm -> net user nameofuser
On Linux Operating System user creation date are analyised by checking home directory creation, messages and auditlog.
1. Check the creation data of user home directory
# ls -ld /home/melbin/
Output
drwx—— 5 melbin melbin 4096 Aug 28 22:07 /home/melbin/
2. Grep messages logs.
cat /var/log/messages | grep melbin cat /var/log/messages.* | grep melbin
3. If system auditd are enabled. Search the logs using grep, aureport, ausearch commands. Daemon auditd collects audit subsystem logs and log them on /var/log/audit/audit.log. SELinux uses the audit subsystem.
* aureport –auth | grep melbin
* ausearch
These are two programs, ausearch and aureport, that provide retrieval capabilities. Ausearch is a grep program in that it can be given certain parameters and it will display any records that match. The aureport program was designed to aid in doing reports via awk, perl, or grep. It can select different kinds of information in the audit logs and present them in either columnar form or rankings. Some of the information it can select includes: logins, users, terminals, host names, executables, file access, avc objects, syscalls, watches, or event types.
cat /var/log/audit/audit.log | grep melbin cat /var/log/audit/audit.* | grep melbin
Cheers!
Melbin Mathew
www.talk2melbin.com
How To Backup And Restore Mozilla FireFox/Flock On Windows And Linux
Oct 22nd
How To Backup And Restore Mozilla Fire Fox On Windows And Linux
Mozilla Firefox is a commonly used Internet browser. Some time we need keep the backup of Firefox because we don’t need to loose our favorite bookmarks, saved sessions etc.
Conditions like Operating system re installation or up gradation and even hardware failures might cause loss of our favorite bookmarks. Following steps help us to backup and restore Mozilla Firefox.
Mozilla Backup And Restore On On Linux Operating System
Mozilla Firefox profile and contents are saved on the user home directory.
# ls ~/.mozilla
By default Mozilla contents are kept on a hidden folder. It prevent accidentally deletion of the folder.
Backup Mozilla Firefox to the backup location using “cp” command.
# cp -r ~/.mozilla /backuplocation/mozilla-backup
Restore Mozilla Firefox
Close Mozilla Firefox application and copy the backup to user home directory.
# cp -r /backuplocation/mozilla-backup ~/.mozilla
Mozilla Backup And Restore On Windows Operating System
On Windows machine we are able to take backup of Mozilla Firefox using an application called MozBackup
Download MozBackup Application from the url link http://mozbackup.jasnapaka.com/download.php
Run MozBackup on windows machine
Select backup.
If multiple profiles are using, we need to select each of them for backup.
Save the profile as .pcv file. The .pcv file have all the backup of Mozilla Firefox.
Run MozBackup and select restore.
Choose the previously saved .pcv file for restoration.
Cheers!
Melbin Mathew
www.talk2melbin.com
How To Add/Configure Network Printer On Windows PC – Hp LaserJet N/W Series
Oct 21st
How To Add/Configure Network Printer On Windows PC
A printer which is connected on a network is called network printer. The printer have assigned with a static ip address. All the communication between the printer and computer are done using this ip addresses.
We cannot able to add all printers to the network. To to add a printer to a network, it must have Ethernet port and it’s functions. Commonly we use print servers to manage and share the printer. Where the printer server is the machine on which the printer driver and software is installed.
Using network printer helps,
* Direct communication between printer and computer.
* It won’t affect the print service if the print server is down.
* Network printer itself provide buffering.
* Faster than print server.
* No need to access share.
* We can directly plug our laptop or computer into the network for printing.
* Guest users are restricted to use our network shares.
Adding HP Laser Jet 1220 series and similar network printers can be done using these steps.
Select Printer and Faxes from control panel or start menu.
Click on “Add a Printer”
Select Local Printer attached to this computer and Uncheck Automatically detect and install my plug and play printer.
Create a new port using TCP/IP
Press Next to continue
Enter network printer ip address. Make sure the printer is turned on
Press Finish button.
Select printer driver from windows default driver library.
If needed change the printer name.
Take a test page.
If the machine already have a default printer. Next windows ask for setting this HP printer as default one.
Click finish.
Now we are ready to take printouts.
Cheers!
Melbin Mathew
www.talk2melbin.com