Archive for the ‘Tips And Tricks’ Category

« Older Entries

SSL To Protect Your Web Server

Friday, September 18th, 2009

For fairly simple type of websites, average security system of web server on your web hosting account maybe enough to protect your websites. Simple informational http communication don’t need further protection against hacker attack. On the other hand, if you build an e-store, e-commerce, or web service which need secure transaction, you need something to protect your website against stealing information about you and your customers private details which may occur when web server communicate with client.

Secure Sockets Layer (SSL), are cryptographic protocols that provide security for communications over networks such as the Internet. It uses digital certificate issued by valid certification authority such as VeriSign, GeoTrust an WebTrust. For complete list of Certification Authority included in Mozilla as a leader in browser software, you can see here. SSL also need to ready to work in different environment such as Linux web hosting or Windows web hosting.

Another protocol for transmitting data securely over the World Wide Web is Secure HTTP (S-HTTP). Whereas SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely, S-HTTP is designed to transmit individual messages securely. SSL and S-HTTP, therefore, can be seen as complementary rather than competing technologies. Both protocols have been approved by the Internet Engineering Task Force (IETF) as a standard.

Many other method to secure your website from the attacks. To discuss more about security of web hosting, including SSH and another trechnical problem, you can get more information by visiting forum of webhosting UK.

Tags: , , , ,
Posted in Applications, Security, Tips And Tricks | No Comments »

Keep Your Site Secure With Better Web Hosting

Wednesday, September 9th, 2009

Many attacks against sites from the hackers should increase webmaster’s aware. Webmasters must protect their own site in any way, including from the server side. Since the website hosting providers are the main gate for the hackers to interrupt and present spywares, malwares, or viruses to us, choosing the most reliable and safe provider is the must.

Beside from server side, webmasters are also able to protect their sites since very beginning of development. When register a domain, there is always option to protect who is details from public access. This can be another way to protect sites from being attacked. Being friendly and familiar with the company who host your website is another way to get better customer service if one day your site is under attack. Try another various method to protect your site against hacker and lead it in to the high.

Tags: , , ,
Posted in Cyber News, Security, Tips And Tricks | No Comments »

Re-Enable Portable Regedit Saver After Virus Infection

Friday, September 4th, 2009

Most of the viruses, malware, spyware or trojan that infects Windows systems, sometimes disable regedit, task manager, system restore and command prompt. As a result we can not delete those files easily.

For some people who have enough computing skills and knowledge, they still can access regedit, task manager, system restore and command prompt. But for who with limited knowledge, it will be different.

If we do not know how to do it, here’s a free application called Re-Enable Portable 1.0.0.0, which can still access registry editing, after the computer was infected by spywares.

More than that, this program will also do re-enable Cmd / Taskmgr / System restore Config / config folder options and the Run command.

As quoted from Softpedia, Friday (4/9/2009) this 36.7 MB software can run on OS Windows XP, Vista, or 7. If you are interested to try this freeware please download the following link.

Tags: , , , , ,
Posted in Applications, Security, Tips And Tricks, Virus | No Comments »

Steps To Remove Conficker.dv Manually

Tuesday, September 1st, 2009

This is another series of virus removal tips:

Also Known As:
TA08-297A (other)
CVE-2008-4250 (other)
VU827267 (other)
Win32/Conficker.A (CA)
Mal/Conficker-A (Sophos)
Trojan.Win32.Agent.bccs (Kaspersky)
W32.Downadup.B (Symantec)
Trojan-Downloader.Win32.Agent.aqfw (Kaspersky)
W32/Conficker.worm (McAfee)
Trojan:Win32/Conficker!corrupt (Microsoft)
W32.Downadup (Symantec)
WORM_DOWNAD (Trend Micro)
Confickr (other)

This virus can be removed using 7 simple step only. Anyway this virus make some people mad because it’s attacking network (they might have more trouble when try to clean it) and of course your protection , If we look more deeply this virus using mostly lame virus technique included all in one packet. but in advanced the virus maker understand and really know how really weak windows protection is.

Detection of conficker: There are many signs like, Error message Generic Host Process, You can’t access some important site ex: www.microsoft.com, www.symantec.com, www.norman.com, www.clamav.com, www.grisoft.com, www.avast.com, etc. You can’t update your antivirus, Many application not working like usually specially network application, and many more sign.

This virus created with UPX compression with size 162kb, You might get trouble when try to killed this virus process because it’s using lame technique by running .dll files following fake svchost.exe file. Virus is not automatically active, it will start downloading some image files and create temporary files then build himself LAME.

Once virus build completed it will start disabling some windows services, Virus will blocking any string he found on each active application, here is the list:
Ccert – sans. – bit9. – windowsupdate – wilderssecurity – threatexpert – castlecops – spamhaus – cpsecure – arcabit – emsisoft – sunbelt – securecomputing – rising – prevx – pctools – norman – k7computing – ikarus – hauri – hacksoft – gdata – fortinet – ewido – clamav – comodo – quickheal – avira – avast – esafe – ahnlab – centralcommand – drweb – grisoft – nod32 – f’prot – jotti – kaspersky – f’secure – computerassociates – networkassociates – etrust – panda – sophos – trendmicro – mcafee – norton – symantec – microsoft – defender – rootkit – malware – spyware – virus

Lame technique (again) virus will try download and executed some images files from some website, Virus will make firewall rule that can make your computer attacked from outside and totally control your computer (scary…. some people know this as botnet).

Virus Spreading:
Brute force default share administrator account.
Lame autorun.inf and hidden file on recycler folder (mostly on each drive with hidden attributes)
SVCHOST.exe exploited (that’s why there is microsoft update).

Alright enough, here are the 7 simple steps to remove conficker:

  1. Unplug every computers from network.
  2. Deactivated system restore service (XP/Vista)
  3. Kill active virus in background service, you can use Norman Malware Cleaner (Click To Download). (Since this virus using UPX compression, the easiest way to detect it is by using Ansav Utility and killed any UPX packet in background)
  4. Delete fake SVSHOST.exe in registry.
  5. Delete “Schedule Task” that virus created (%systemrot%\WINDOWS\Tasks)
  6. Repair your registry using code below or download repair.inf[Version]
    Signature=”$Chicago$”
    Provider=Nobody

    [DefaultInstall]
    AddReg=UnhookRegKey
    DelReg=del

    [UnhookRegKey]
    HKCU, Software\Microsoft\Windows\CurrentVersion\
    Explorer\Advanced, Hidden, 0×00000001,1

    HKCU, Software\Microsoft\Windows\CurrentVersion\
    Explorer\Advanced, SuperHidden, 0×00000001,1

    HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
    \Advanced\Folder\Hidden\SHOWALL, CheckedValue, 0×00000001,1

    HKLM, SYSTEM\CurrentControlSet\Services\BITS, Start, 0×00000002,2
    HKLM, SYSTEM\CurrentControlSet\Services\ERSvc, Start, 0×00000002,2
    HKLM, SYSTEM\CurrentControlSet\Services\wscsvc, Start, 0×00000002,2
    HKLM, SYSTEM\CurrentControlSet\Services\wuauserv, Start, 0×00000002,2

    [del]
    HKCU, Software\Microsoft\Windows\CurrentVersion\Applets, dl
    HKCU, Software\Microsoft\Windows\CurrentVersion\Applets, ds
    HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Applets, dl
    HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Applets, ds
    HKLM, SYSTEM\CurrentControlSet\Services\Tcpip\Parameters, TcpNumConnections

    *NOTE: For files active on startup you can disabled it from msconfig or using hijackthis or deleted it manually in registry “HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Run”

    7. Scan with your best and updated antivirus to stop virus coming back in the future, and update your computer with this patch http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx

Tags: , , ,
Posted in Security, Tips And Tricks, Virus | No Comments »

Getting Familiar With Online Phishing and Fraud

Thursday, August 27th, 2009

Online theft is one criminal action in a virtual world that uses email, websites, chat rooms or message in your account page.

There are several types of this crime such as phishing and pharming scams, using email or websites to trick the recipient of a message to provide personal data such as credit card data, social security numbers, and their important account password.

However, although the movement is growing, it is not that hard to avoid it. Learn basic tips to deal with it so we do not fall to this cyber world of fraud that quoted from Symantec:

What to Do:

  • Consider to disable file sharing on your computer.
  • Be careful when opening file attachments, especially from unknown senders.
  • Familiarize yourself to understand privacy policy on the internet, especially if you are asked to provide sensitive or personal data.
  • Control the existing provisions in the bank and credit cards regularly.
  • Install and regularly update your software firewall, antivirus, and anti-spyware.
  • Maintain the habit of updating the Windows operating system and other applications with the latest patches.
  • Strengthen and secure passwords carefully, or consider using password protection software.
  • Lock your mailbox.
  • Mash or shredded recap or information obtained from the use of credit card or bank before discharge.
  • Check your bank account and your credit card every month.
  • Take advantage of free reports on your credit card transactions.
  • If you feel you’ve become victims of identity theft or other cyber crimes, report to the authorities immediately.

What to Avoid:

  • Do not provide personal data to anyone via phone or directly (including for purposes of seeking employment, applying for loans, etc.) unless you’re absolutely sure that the person or institution can be trusted.
  • Do not easily believe it and then reply to incoming email by providing your personal data, including the site obtained from the links, or pop-up ads that suddenly appear on the screen. Better, open a new browser page and type in URLs directly addressed in the address bar to make sure that the site is legitimate.
  • Do not store financial data on a laptop unless absolutely necessary. Because portable computers more easily and frequently stolen than a desktop computer.

Tags: , , ,
Posted in Ethics, Security, Tips And Tricks, Virus | No Comments »

Steps To Kill Full House Viruses

Wednesday, August 19th, 2009

Another virus that threatens the computer users is FullHouse virus. Characteristic of this virus is to create one additional drive with the name FullHouse Drive.

The virus is made using Visual Basic programming language. In the conduct action, it will make the drive in the Desktop, My computer and Control Panel that will show the image “Han Ji Eun” artist in the beautiful series Full House while it’s being opened.

To clean the virus, see the following steps:

Scan virus that is located in the directory C: RECYCLER with antivirus that can detect this virus with both. Vaksincom use Norman Security Suite.

After the scan is completed, there are files with virus deleted files status (defered) means the file will be removed when the windows restart

-Click the Close button Clean ago at the time of the Norman Security Suite also will ask the computer to restart

To renormalize registry that has been created by the virus, open Notepad then copy the script below:

[Version]

Signature=”$Chicago$”
Provider=Vaksincom Oyee
[DefaultInstall]
AddReg=UnhookRegKey
DelReg=del
[UnhookRegKey]
HKCR, batfileshellopencommand,,,”"”%1″” %*”
HKCR, comfileshellopencommand,,,”"”%1″” %*”
HKCR, exefileshellopencommand,,,”"”%1″” %*”
HKCR, piffileshellopencommand,,,”"”%1″” %*”
HKCR, lnkfileshellopencommand,,,”"”%1″” %*”
HKCR, scrfileshellopencommand,,,”"”%1″” %*”
HKCU, SoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced,
HKLM, SOFTWAREClassesexefileDefaultIcon,,,”"%1″”
HKLM, SOFTWAREClassesexefile,,,”Application”
HKLM, SoftwareCLASSESexefileshellopencommand,,,”"”%1″” %*”
HKLM, SoftwareCLASSESregfileshellopencommand,,,”regedit.exe “%1″”

[del]

HKLM, SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun, Task
Manager
HKCU, SoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerRun, Manager Task
HKCR, exefile, NeverShowExt
HKCR, CLSID{10020D75-0000-0000-C000-000000000000}
HKLM, SOFTWAREClassesCLSID{10020D75-0000-0000-C000-000000000000}

Save-as “repair.inf” select Save As Type choose All Files

Run-repair.inf with a right click and select install

-Delete the file created by the virus with the following characteristics:
File type “application”
Extension “exe”
Size 168 kb

-To facilitate the process of searching the files of virus use “Search Windows”
with the filter *. exe files that have a size of 168 KB and the date modified
pertanggal 7/8/2008

Next-delete “FullHouse Drive” on the Desktop, My Computer and Control
Panel

Recovery-Folder on the Flash Disk that has been in the Hidden

To re-display the hidden folder on the flash. Use
command “attrib” in the command prompt.
Click “Start”
Click “Run”
Type “CMD”, then press the “Enter”

-Move the directory to position Flash Disk drive, eg the type E
the E: and press “enter”

-Then type the command attrib-s-h-r / s / d and press the
“enter

Tags: , ,
Posted in Applications, Security, Tips And Tricks, Virus | No Comments »

Effectivity Of Online Diet Program

Thursday, July 30th, 2009

Online dieting is one of the method which available and become favorite nowadays. If you still wondering how can online dieting become so attractive, please take care of following reasons.

First, they are convenient: we can access Internet easily from anywhere. From home, kitchen, bedroom, office, on restaurant, etc. more than that, it’s open 24-hours a day, 7-days a week. The Internet also hide who the patients are, people who looking for solution of their personal issues such as weight loss. Additional fact, most adults prefer to lose weight without having to participate in a face-to-face program. Finally, many programs offer great tools that allows you to track your progress and may increase your motivation to stick with the program.

How effective this programs are actually depend on what program and the people who use that program themselves. One research proved The participants in the behavior therapy group received 24 weekly behavioral lessons via email and had access to an online bulletin board. Every week they also emailed self-monitoring diaries, and received individualized feedback in return. The results showed that participants in the behavior therapy group lost more weight than those simply provided with access to weight loss information on the Web.

Another study, by the same group of researchers, compared a basic Internet weight loss program with one that also offered behavioral counseling via email. Participants in the e-counseling group submitted calorie and exercise information via email and received weekly email behavioral counseling and feedback from a counselor. The study found that e-counseling group success reduce the weight more than basic group.

Based on studies given, there are criterias should meet before you take one online diet program.

  1. Designed and operated by highly qualified professionals.
  2. Be ware of programs that offer you additional supplements as well as advertising quick weight loss.
  3. Website should have professional appearance.
  4. Talk with your physician.

Now, it’s up to you to choose which program suitable with your condition (and budget). Have fun dieting.

Rachel, a guest webmaster that owns a weight loss pills website, submitted this article. By checking out her website, you will learn about diet pills, read weight loss tips, and learn about various weight loss medicines.

Tags: , ,
Posted in Cyber News, Tips And Tricks | No Comments »

Securing Your Wireless Computer

Monday, June 29th, 2009

Wireless Internet connections aren’t just convenient for you-they also may be convenient for hackers. Fortunately, it isn’t difficult to protect yourself.

Wireless systems can be particularly vulnerable to digital intruders, possibly putting sensitive or private data at risk. However, you can protect yourself by using WEP or WPA encryption, which require users to enter a password before they are allowed to access your wireless network.

These encryption methods are described in easy-to-understand language in a new book called “Geeks On Call Wireless Networking: 5-Minute Fixes” (Wiley, $14.95). The book also offers expert advice and step-by-step explanations of topics ranging from configuring a wireless router to troubleshooting a slow connection.

Here are some additional tips from the book that can help you protect your wireless network.

  • Reduce the range of your network. Doing so can keep nosy neighbors from intruding on your connection. Move your wireless router into the center of your home and decrease its power settings.
  • Pick a new password. Most routers have a default password of “admin.” Be sure to change it.
  • Disable SSID broadcasting. Most wireless routers broadcast the names of user networks (SSIDs) so that other users can log on. This could be a security risk.
  • Use encryption to protect credit card information you send wirelessly over the Web. Also, only use your card on a Web site that has SSL encryption (look for a padlock in the corner of the site).
  • Disable your wireless card when not in use. There’s no better way to secure your computer.
  • Use a firewall, which is a program that shields your computer from Internet criminals.
  • Don’t use shared files. Remove all important documents from your Shared Files folder before accessing a public network.
  • If you use a wireless laptop, disable the feature that attempts to connect your laptop to any available wireless network. For most Windows-based laptops, double-click the wireless icon in the lower right corner of Windows. Then click “Properties.” Click the “Wireless Network” tab. Next, click the “Advanced” button. Uncheck the “Automatically Connect to Non-Preferred Networks” option. Finally, click “Close.”

Tags: ,
Posted in Security, Tips And Tricks | No Comments »

Securely Protect Your Social Media Identity

Monday, June 8th, 2009

Every businessman is facing several security issues while they promote their products or services. One of them is copyright problem. Many successful business owners should dealing with another party which using their famous brand. This case wont’t happen if they protect their identity or image right in a proper way. 

Internet marketers should also take care about this issue. If you have already brand image or trademark, keep it safe in any form of marketing materials as secure as possible. One of the best place to build and keep your identity is social media sites. Misuse of social media identity leads to destructive side of  the image.

Submitinme.com helps your social identity safe before someone else use it. If you have one product that you need to protect in social media sites, try their service. Their vast experiences in this area should assure you that you choose the right people. The best thing is, they offer the service for really cheap price. You should try their service if you want to protect your trademark.

Tags: ,
Posted in Ethics, Security, Tips And Tricks | No Comments »

Watch Out For The Malware Via PowerPoint Files

Saturday, April 11th, 2009

Microsoft warned of the slit on the application in Microsoft Office PowerPoint. Opening the PowerPoint file can invite to malicious program computer.

Microsoft is warning delivered via Microsoft Security Advisory 969136 numbered. Mentioned that the rift in the Microsoft Office PowerPoint allows execution of malicious code program is done from a distance. In other words, the slit allows the computer to become victims of zombie or part of a botnet.

Microsoft released warning on Monday (6/4/2009) and they are currently working to find ways to overcome this rift. Steps to be taken can be spread include patch through their monthly update.

This is called cleft and it is more dangerous for users who run the operating system with the user profile messmate administrator. User profiles with normal might have little impact on the smaller.

Microsoft warned users to be careful of download sites that provide storage of files from other users. The evil trick and coax the user to download a PowerPoint file and open it in order to actively could been attacked.

Not only web sites, Microsoft also warned users to be careful in a PowerPoint file that is sent via e-mail or instant message. This weakness can not be exploited automatically, the new attack will be successful if users open the attachment that was sent in an e-mail.

Versions affected by the so-called rifts are Office PowerPoint 2000 Service Pack 3, Office PowerPoint 2002 Service Pack 3, and Office PowerPoint 2003 Service Pack 3.

Prevention advice

Some things you can do in order to prevent the exploitation of user rift this:

* Do not open or save Office files from sources that can not be trusted
* Use the Microsoft Office Isolated Conversion Environment (MOICE) to open files from sources unknown
* Use the Microsoft Office File Block to prevent of the opening file version of Office 2003 and earlier.

Posted in Security, Tips And Tricks | 1 Comment »

« Older Entries