UPDATED: UPDATED: November 13,
2007
©2006 L&A Computer Services
As we research computer problems, we find interesting articles about security, useful applications, website design and solving computer problems. We hope you find these tidbits useful.
Monday, October 06, 2008
OddBodd.com is an affordable new local search website that offers the advantage of a video introduction when someone clicks on your listing. They are offering incentives for people who sign up prior to their official launch. You can see examples (including my listing) and get more information by visiting their website: http://oddbodd.com/
# posted by lnacomp : 1:29 PM
0 comments 
Social bookmark this
Thursday, September 04, 2008
I just received the following email message in my inbox:
Subject:Your Online Flight Ticket N 49444
Greetings, Thank you for using our new service "Buy airplane ticket Online" on our website. Your account has been created:Attachments are .zip files with filename E-ticket_N7399294.zip (random number) with inside a E-ticket_N7399294_and_Invoice_for_N73992943442.exe.
On an infected computer the trojan will create a new files like %System%\ntos.exe, %System%\wsnpoem\audio.dll, %System%\wsnpoem\video.dll and creates a new directory %System%\wsnpoem.
It also adds and modifies entries in the Windows registry and make connection with a server for http://*********.ru/alaska/alaska.bin. It opens random TCP ports in order to provide backdoor capabilities.
# posted by lnacomp : 10:29 PM
0 comments
Social bookmark this
Thursday, August 21, 2008
Autorun will not work with ?regular? USB flash drives the way that they do with CD-ROMs, but there are some tricks that you can do that will come very close. I say ?regular? in that as many may know there are ways of modifying U3 drives so that they appear as CD-ROMs on Windows systems and can thus use autorun to silently run your ?tools? without any indication anything is happening. The U3 hack however is a bit more complicated, I will do another ?How to? on that later. For now let?s just discuss how we can create an autorun.inf file on a regular ?ol USB flash drive that will do some interesting things.
Also it is important to mention that some of these techniques will even work if autoplay is disabled!
First, although we cannot have an application run automatically with a traditional USB drive, we can make it so that when a USB drive is plugged we have Windows make a suggestion to the user and all they need to do is click ?OK? to a specific application or script you have deployed to the flash drive.
First in Notepad create a file called autorun.inf and save it to the root of your USB flash drive of choice. In the autorun file put this:
The first parameter is ?icon? this tells Windows what icon to use as the icon image for the drive etc. This is important for the social engineering portion of the trick, you must consider your target. The image you choose should help instill trust in the application they are about to run.
The ?open? parameter indicates the program you wish to run, this can be an executable, or as in this case a .bat file. You could even call a .bat file which calls a series of executables. Go crazy.
The next parameter is ?action? this is what will trigger the autorun dialog to appear. This text will appear in the dialog box along with your icon, so you probably want make this friendly, something like ?Fun Game,? you probably don?t want to put something like ?Click ?OK? to install backdoors and trojans!?.
Now unplug your flash drive and then replug it in, a dialog box like this should now appear:
So this is not as good as automatically running the application, but is useful nonetheless and there have actually been successful simulations where this has been used. A security consultancy used this technique as a proof of concept to test a credit union client of theirs. Several drives used this simple technique to run exectue a trojan that sent some simple data to an external email account. They scattered the drives in the parking lot, several employees picked the drives up on their way into work and within a short amount of time the email account they had set up was receiving emails.
Now we have our basic autorun.inf setup. But notice that if you click cancel and then click on the drive you just see the contents of the drive. However we can take this one step further, if the user is smart and their spidey senses are tingling from the dialog menu that appears and they click cancel, with the addition of one more line of code to the autorun.inf file that will automatically execute the code we specify when they click the drive either from ?My Computer? or Explorer. This is different than a true autorun as it still requires a user to take an action to exectue the application, but still a significant security risk.
Add these lines to your autorun.inf file
OK save it and then unplug and plug the drive back in again. This time when the prompt appears hit ?cancel?. Now go to double click the drive under ?My Computer?. The application will automatically execute. By the way, this second portion will still work even if autoplay is disabled on a system and is actually more dangerous than the dialog in my opinion.
So what if we don?t want to execute a command on the drive and just open a webpage? You could execute Explorer in your .bat file to do this, or in the exectuble you run, but there is a quick and easy way to do this in the autorun.inf file. Replace the last line with this instead:
# posted by lnacomp : 2:01 PM
0 comments
Social bookmark this
wget: Download entire websites easy v1.0.4 (en) Fooling sites to let wget crawl around wget is a nice tool for downloading resources from the internet. The basic usage is wget url: wget http://linuxreviews.org/ Therefore, wget (manual page) + less (manual page) is all you need to surf the internet. The power of wget is that you may download sites recursive, meaning you also get all pages (and images and other data) linked on the front page: wget -r http://linuxreviews.org/ But many sites do not want you to download their entire site. To prevent this, they check how browsers identify. Many sites refuses you to connect or sends a blank page if they detect you are not using a web-browser. You might get a message like: Sorry, but the download manager you are using to view this site is not supported. We do not support use of such download managers as flashget, go!zilla, or getright Wget has a very handy -U option for sites like this. Use -U My-browser to tell the site you are using some commonly accepted browser: wget -r -p -U Mozilla http://www.stupidsite.com/restricedplace.html The most important command line options are --limit-rate= and --wait=. You should add --wait=20 to pause 20 seconds between retrievals, this makes sure you are not manually added to a blacklist. --limit-rate defaults to bytes, add K to set KB/s. Example: wget --wait=20 --limit-rate=20K -r -p -U Mozilla http://www.stupidsite.com/restricedplace.html A web-site owner will probably get upset if you attempt to download his entire site using a simple wget http://foo.bar command. However, the web-site owner will not even notice you if you limit the download transfer rate and pause between fetching files. Use --no-parent --no-parent is a very handy option that guarantees wget will not download anything from the folders beneath the folder you want to acquire. Use this to make sure wget does not fetch more than it needs to if just just want to download the files in a folder. Copyright (c) 2000-2004 Øyvind Sæther. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the section entitled "GNU Free Documentation License".
# posted by lnacomp : 1:30 PM
0 comments
Social bookmark this
Thursday, August 14, 2008
Problem Brother MFC-230C won't recognize new black ink cartridge. Seems the remanufactured cartridges appear to be empty. It seems there are light sensors in the printer that sense the cartridge is empty even when it is full. The solution is to put tape on the back of the ink jet cartridge. The danger of such a procedure is that the cartridge could be totally empty and it will burn out the printhead before you realize it.
# posted by lnacomp : 1:06 PM
Social bookmark this
Monday, May 26, 2008
Description WirelessKeyView recovers all wireless network keys (WEP/WPA) stored in your computer by the 'Wireless Zero Configuration' service of Windows XP and by the 'WLAN AutoConfig' service of Windows Vista. It allows you to easily save all keys to text/html/xml file, or copy a single key to the clipboard.
# posted by lnacomp : 7:28 PM
Social bookmark this
Description Many applications, like CuteFTP, CoffeeCup Free FTP, VNC, IncrediMail, Outlook Express, and others, allows you to type a password for using it in the application. The typed password is not displayed on the screen, and instead of the real password, you see a sequence of asterisk ('****') characters. This utility can reveal the passwords stored behind the asterisks in standard password text-boxes. Asterisk Logger is a successor of AsterWin utility. It reveals the asterisk passwords in the same way as AsterWin utility, but it has some advantages over the previous utility: * You don't have to press a button in order to reveal the asterisk passwords. Whenever a new window containing a password box is opened, Asterisk Logger automatically reveals the password inside the password-box, and add a record to passwords list in the main window of Asterisk Logger. * Asterisk Logger displays additional information about the revealed password: The date/time that the password was revealed, the name of the application that contains the revealed password box, and the executable file of the application. * Asterisk Logger allows you the save the passwords to HTML file and to 3 types of text files.
# posted by lnacomp : 7:24 PM
Social bookmark this
Wednesday, May 21, 2008
I am looking in to a new business called sendout cards. It seems like an easy way to keep in touch with people in a personal way. Here is a video about it:
# posted by lnacomp : 4:13 PM
Social bookmark this
Thursday, February 07, 2008
Since the beginning of December, jChicago.net has grown 20x. They claim to have hundreds of registered users and listserv subscribers, thousands of monthly visitors, and tens of thousands of monthly page views. jChicago.net is becoming a top hit for literally hundreds of Google searches related to Jewish Chicago, and has received a good amount of attention from leaders across the Chicago Jewish community. By joining the listserv, you will help them to connect Jewish Chicago.
# posted by lnacomp : 10:19 AM
Social bookmark this
Tuesday, December 11, 2007
Does the software impact the performance of my computer? We have gone to great lengths to design the Windows Feedback Program software to limit the amount of computer resources it uses to collect data. You may see a minor change in performance when you first log in to Windows; however, this typically only occurs during the first few minutes after login while we are collecting basic configuration information.
What types of information will you collect and why? We are looking for information that will help us understand problems you encounter with Windows, how you have configured your computer and Windows, what hardware you are using, and general information about how you are using Windows and Microsoft Office products on your computer. You can see a list of examples of the data we collect in our FAQ.
How often will Microsoft collect data? How often you will share data depends on how actively you use your computer and how often your computer is connected to the internet. In general, the data is shared once per day.
When you choose to participate in the automated feedback program, most of the work is done behind the scenes, with no additional effort, time requirement, or inconvenience to you. Occasionally, we might send you an invitation to participate in a survey or another feedback program to get additional information about your use of computers.
Go to http://wfp.microsoft.com/Registration.aspx
Labels: freeware, microsoft, software, windows xp
# posted by lnacomp : 9:40 AM
Social bookmark this
