Playing Nmap Ubuntu Intrepid Ibex on the server localhost

This is the first any posts that I thole with Network Security. Also confused where to start, so finally this paper opener so, hopefully interesting.

I requested to try to Explore Nmap capabilities but must be on the server or local server time. Finally, I use LAMPP as my local server package, for those who want to download click here.

So .... What Nmap is ...?

According to Si-champion: Nmap, which is short for Network Network mapper is a tool that is used to make mapping a network. With Nmap can we know, the computer or host is active and about whether it will be more exploitation or not. Nmap is available in a variety of operating systems from Unix, Linux and Windows.

Well, for now, I use Nmap with the Ubuntu operating system. But, I do not use the graphical version but the version of the text or the Command Line (CL), so that the instruction or command line that I can do the same on other operating systems like Windows that I will describe next.

Once completed instalation ..., let's play ...
I lampp first run through the terminal,

abighazy @ abighazy: ~ $ sudo / opt / lampp / lampp start
[sudo] password for abighazy:
Starting XAMPP for Linux 1.6.5a ...
XAMPP: Starting Apache with SSL (and PHP5) ...
XAMPP: Starting MySQL ...
XAMPP: Starting ProFTPD ...
XAMPP for Linux started.

abighazy @ abighazy: ~ $ sudo / opt / lampp / lampp status
Version: XAMPP for Linux 1.6.5a
Apache is running.
MySQL is running.
ProFTPD is running.

... , we now try to use localhost with Nmap on a simple;

abighazy @ abighazy: ~ $ sudo nmap localhost
Starting Nmap 4.62 (http://nmap.org) at 2009-03-20 11:21 WIT
Interesting ports on localhost (127.0.0.1):
Not shown: 1708 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
139/tcp open NetBIOS-SSN
443/tcp open https
445/tcp open microsoft-ds
631/tcp open ipp
3306/tcp open mysql
Nmap done: 1 IP address (1 host up) scanned in 0399 seconds

More ...,

abighazy @ abighazy: ~ $ sudo nmap-v localhost
Starting Nmap 4.62 (http://nmap.org) at 2009-03-20 11:25 WIT
Initiating Syn Stealth Scan at 11:25
Scanning localhost (127.0.0.1) [1715 ports]
Discovered open port 443/tcp on 127.0.0.1
Discovered open port 21/tcp on 127.0.0.1
Discovered open port 80/tcp on 127.0.0.1
Discovered open port 631/tcp on 127.0.0.1
Discovered open port 445/tcp on 127.0.0.1
Discovered open port 3306/tcp on 127.0.0.1
Discovered open port 139/tcp on 127.0.0.1
Completed Syn Stealth Scan at 11:25, 0.35s elapsed (1715 total ports)
Host localhost (127.0.0.1) appears to be up ... good.
Interesting ports on localhost (127.0.0.1):
Not shown: 1708 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
139/tcp open NetBIOS-SSN
443/tcp open https
445/tcp open microsoft-ds
631/tcp open ipp
3306/tcp open mysql

Readmore »»

Data type of cable to connect mobile phones to Computers

Data cable, one of the tools for synchronizing mobile computer or laptop to us. Data cable is very useful to transfer the image files, documents or video from your mobile phone to laptop / computer, or vice versa. Perhaps we have all already know that many kinds of data-mcam cable for mobile phone.

To remember the course, this is kind of a data cable used to connect mobile phone to a computer or laptop.

1. Data cable DKU-5 (Nokia)

cable of this type of g is usually included in the sales package. although colokan have a USB cable is a true serial cable with an average speed of 20 kbps,

even though the settings are made to the computer 115 kbps or 230 kbps. lumayan cepat for if for file transfer, but ngegigit less if made in the modem.
phone use DKU-5 are:
Nokia 2112, Nokia 2280, Nokia 3100, Nokia 3105, Nokia 3108, Nokia 3120, Nokia 3120, Nokia 3200, Nokia 3205, Nokia 3220, Nokia 3585, Nokia 3586, Nokia 5100, Nokia 5140, Nokia 6015, Nokia 6100, Nokia 6108 , Nokia 6220, Nokia 6225, Nokia 6585, Nokia 6610, Nokia 6610i, Nokia 6800, Nokia 6820, Nokia 7200, Nokia 7210, Nokia 7250, Nokia 7250i, Nokia 7260

2. data cable DKU-2 (Nokia)

This type of cable is usually included in the sales package. different from the DKU-5 serial conversion requires that when connected to a PC, DKU-2 is able to directly read by the USB port because the POP-port manifold. however, because it is still using the USB version 1.0, the speed is still in the range of 1.5 to 12 Mbps.
mobile phone that supports the DKU-2 are:
Nokia 3155, Nokia 3300, Nokia 6155, Nokia 6230, Nokia 6230i, Nokia 6235, Nokia 6255, Nokia 6260, Nokia 6650, Nokia 6630, Nokia 6680, Nokia 6681, Nokia 7270, Nokia 7600, Nokia 7610, Nokia 9300, Nokia 9300i , Nokia E60, Nokia E70

3. Data cable CA-42 (Nokia)

data cable is a new generation of DKU-5, although the same serial, data cable CA-42 has several advantages including:
more energy efficient, plug and play capability.
mobile phone that supports the CA-42 are:
Nokia 2112, Nokia 2116, Nokia 2118, Nokia 2125, Nokia 2280, Nokia 2855, Nokia 3100, Nokia 3105, Nokia 3108, Nokia 3120, Nokia 3125, Nokia 3200, Nokia 3205, Nokia 3220, Nokia 3586, Nokia 5100, Nokia 5140i , Nokia 6012, Nokia 6015, Nokia 6020, Nokia 6021, Nokia 6100, Nokia 6101, Nokia 6103, Nokia 6108, Nokia 6220, Nokia 6225, Nokia 6585, Nokia 6610, Nokia 6610i, Nokia 6800, Nokia 6820, Nokia 6822, Nokia 7200, Nokia 7210, Nokia 7250, Nokia 7250i, Nokia 7260, Nokia 7360

4. Data cable CA-53 (Nokia)

data cable is a new generation of DKU-2, merupkan true USB cable with USB support the latest version (ver 2.0)

Note,
mini-USB cable in the N-Gage classic can not be regarded as a data cable,
This cable is only capable of reading MMC in the phone.
but if the mini USB DKE-2 type including a data cable

5. Data cable DCU-11 (Sony Ericsson)

PC allows synchronization with mobile phones in the speed of 20 kbps - 115 kbps, mobile phone that supports DCU-11 are:
Z300a, T29a, J300a, J290a, S710a, S700i, K500i, K700i, Z500a, P910a, Z502a, T637, Z600, P900, T630, T616, T610, T316, T310, T306, P800, T61u, T68i, T60c, T61z, T68, T60LX, T60d, R300LX, A2218z, R300d, R300z, R380 World, T28 World, T28z

6. Data cable DCU-60 (Sony Ericsson)

claimed to use the USB ver 2.0 data transfer memungkinkann reach 480 Mbps. mobile phone that supports the DCU-60 are:
D750i, K750i, W550i, W800i, W810i, W900i, Z520i

7. data cable DCA-500 (Siemens)

cable connector has a serial (RS232), data transfer speed can be done in 20 kbps - 115 kbps. This data cable can also be used to upgrade the firmware, the phone supports the DCA-500 are:
SP65, SL75, SL65, SL55, SK65, S75, S65, S55, ME75, MC60, M75, M65RE, M65, M55, CX75, CFX65, CF75, CX70emo, CX70, CX65, CL75, CF 62, CF110, C75, C72 , C65, C62, C60, C55, AX75, AX72, A65, A62, A60

8. data cable DCA-510 (Siemens)

This cable is using the serial connector, data transfer speed can be done in the 115 kbps-460 kbps. the ability of the almost same with the data cable DCA-500, but this cable can also function as a charge. (cable made a third party who is almost the same MA-8720p)
mobile phone that supports the DCA-510 are:
SP65, SL75, SL65, SL55, SK65, S75, S65, S55, ME75, MC60, M75, M65RE, M65, M55, CX75, CFX65, CF75, CX70emo, CX70, CX65, CL75, CF 62, CF110, C75, C72 , C65, C62, C60, C55, AX75, AX72, A65, A62, A60

9. data cable DCA-540 (Siemens)

is a true USB cable with a speed of 12 Mbps, the data cable can not be used for charging and firmware upgrade. mobile phone that supports the DCA-540 are:
SXG75, SX1, SP65, SL75, SL65, SL55, SP65, SK65, S75, S65, ME75, M75, M65RE, M65, CX75, CX70emo, CX70, CX65, CL75, CFX65, CF75, C75, C72, C65

10. data cable DCA-010 (Siemens)

using a true USB connection, allows data transfer up to 480 Mbps. mobile phone that supports the DCA-010 are:
U15, U10

11. Mini USB cable

This type of cable has a transfer speed of 1.5 Mbps - 12 Mbps with the support of the application Mobile Phone Tool, for some type motorola mobile phone, this cable also works as a charge. This cable easily found ditoko-shop, the price ranges 10,000 - 40,000
phones that support are:
C650, L6, L7, RAZR

12. UC600 USB data

This type of cable has the speed to 12 Mbps with the support of the application Mobile Phone Tool, price ranges for 150,000 and 50,000 for the original version of TW. phones that support are:
A835, A920, A925, T720i, V300, V500, V525, V600, V60i, V70, E398, ROKR

Perhaps the first kind of cable-type of data that we cover this time. When someone wanted to add, please.

Readmore »»

how to overcome the local virus

This made the local virus is not spread through email or a network computer, but Flashdisk via USB or floppy disks. This will also cause the level of the spread of the virus very quickly because the level of use of floppy disks and USB Flashdisk as storage media is quite high.

Virus-the virus that recently has pop resemblance to one another. The characteristics of the virus-the virus is usually the local is as follows:

Spread through the media or a USB storage disk Flashdisk
Deceive prospective victims with obscure virus files (executable files *. exe) with a file such as Word (*. doc), JPG (*. jpg), or even masquerade as a folder.
When the victim menginfeksi computer will disable Task Manager, regedit, and Sysconfig activity that can not be diterminate virus.
Usually mengkopikan himself in the% SYSTEM% folder (C: \ Windows \ System \)
Write a registry key in windows so that the virus is run each time Windows start.
Payloadnya form of poetry, song lyrics, open letters, or other matters that are not dangerous (compared with the virus-virus payloadnya made to the form of another virus again!)
See the similarity in the characteristics of the virus-the virus that is there now, it's virus-virus according to my local very easy to do. Among them are the following:
Have a Task Manager program alternative that can be used to menterminate virus when Windows Task Manager disabled by virus. Author using Process Explorer (www.sysinternals.com)
Selalui provide a windows registry file (*. reg) to enable the registry again blocked by the virus. This file can be created using a standard editor such as Notepad (the making of this file can be read below)
Yes, Seeing the two above tools are guaranteed to straighten your own virus-the virus locally.

Now what if your computer has been infected? Next steps eliminate the virus from your computer:
The first you have to do is menterminate virus. How? Use the Task Manager program alternatives you. Then find out how the virus? How easy-so easy, but the virus will usually be given a name similar to the existing program on your computer to trick you. For example, the virus Pesin disguise with the name ssEvtMgr.exe (similar to Norton AV ccEvtMgr.exe daemon). But sometimes there is a name that is given up to be easily recognizable, such as virus using the Kangen Kangen.exe.
After diterminate virus, the next step is to clean your computer from this virus. The first time you have to do is remove the virus. How do I know the location of the virus? When you run Process Explorer, the path to the location of the virus will also be displayed. Immediately open the folder where the virus, and delete.
The next step is to fix your Windows system with a windows registry file execute (tool number 2)
And last step is to clean this virus from your windows registry. Usually the virus will write a key value in the following:
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ RunOnce
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ RunOnceEx
HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run
Go to the above key-key and check whether there are suspicious that value (or check the path designated by the key, to check the files you find a virus)
Delete the value (do not forget to first make a backup with the export of key valuenya you remove akan)
(NOTE: be careful in editing your registry! If you do not understand there is a good idea to request the help of people who understand more! Damage your registry is not responsibility of the author)
Well, such a brief description of the virus-virus and how menanggulanginya. If you want to ask more information can contact me at gandhi.mtm @ gmail.com.

Appendix:
How to create a registry file help:
Run your editor (I use Notepad)
Copy and paste any posts under this

REGEDIT4

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System]
"DisableRegistryTools" = dword: 00000000

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System]
"DisableTaskMgr" = dword: 00000000

Save with the name of free (biasakan to name the obvious, such as rescue) but with a reg extension, for example: "rescue.reg" (with quotes)

Readmore »»

anticipation of the virus,,,,

When a few years or months ago yangg, Brontok virus seweaktu and variannya the entire boom and Indonesia., including especially in Yogyakarta, a lot of my friends that confusion and panic as anti-virus ternamanya not able to detect virus it. Similarly, the virus-the virus menggejala local time in Yogyakarta. And even then I was mengalaminya, finally my computer is also affected by that time (if not wrong because I was deliberately, not to prove, he he he).

I cling to now use Norton AntiVirus 2005 that I still continue to update virus definitionnya each week, but when the going local boomin virus, norton I also did not detect the presence of viruses capable of it. Several times and also go to local virus my computer. Nah, I use Widows Xp, I have the right tricks for the virus or virus killing a local in this fast, simple and easy. And the following tips and tricks

for this always successful save my computer from further damage due to viruses. Whatever the type of virusnya.

From some reading on my way to the virus that I get from internet sites such as vaksin.com, I often do not even implement the suggestions given in the guidelines of the virus. Often the advice given by a virus that some sites even told us how to turn off the feature restore point and go into safe mode. Now and then from there we try to remove the virus manually. This of course requires more expertise and often exhausting whirl and make the beginner like me.

Then what I do. I often suspect my computer when exposed to the virus. My computer does not work like aliases to be very slow or I can also find files that are suspicious. Usually files are berekstensi. Exe. Contohlah cases brontok the iconnya same folder with Windows XP but you have a file type and application berekstensi exe. This is only one example. I believe I, if you already know enough of the computer that accompany almost every week of you, a small change that does not always happens on your computer you can know.

Just this week, I also exposed to the virus that I do not know what indeed, it does not even know his name. Anti-virus I am not able to detect. This is because I download a file from a site hacking, shapes zip file. When I extract nothing happens, but when the file I want to try running and then I double click, eh does not appear that anything. Even then I always work the processor is over 80%. The result slowed my computer. Although there is no file that was destroyed because of this but with a virus infection that affect my work-processor which is already small, this does not make me more comfortable.

Because I think this is a virus into memory, I turn off my manually (not through the shut down but I immediately turn off the power with the push button while). I thought in this way may be the virus may be lost from memory and when the virus is not switched on the road again.

Unfortunately, the way I often do with the virus often menginfeksi memory is not successful. Usually with a direct way of manually turning off the virus can be stopped and we live mendelete virus (a shift delete, delete is not normal). Then how is my last I have often use to overcome all kinds of viruses I do.

I turn off my antivirus. Then go to the application:

Start>> All Programs>> Accessories>> System Tools>> System Restore

This is what I usually do if I was running out of the intellect virus. Few notes about System Restore. System Restore is a function to return the settingan you just use the time as you choose. You install any software or Uninstall, System Restore will usually save you Settingan long before you mengistal or Uninstall the software. In this way each extension exe or any application that is installed after akan eliminated or removed. Including the register of Windows you will be back as they are. This can make the virus disappear from your computer.

This way you would not require the installation of antivirus on your computer. But often there are some viruses that automatically turn off this function restore point. If this is going to do manual shutdown via power button or pull aja your cable, or turn off the power term (with the possible risk that the file is corrupted, but I usually do not occur), then boot from safe mode and restore it from there before settingan exposed to the virus. I usually successful, especially for brontok always successful. I also wonder brontok is very easy to recognize visually why I can bisanya-infected this virus, it may be time for a beginner ya? Ah I know me.

Strangely, I rarely find tips and tricks this dikajian antivirus sites. In fact, they told off the restore feature, and with the rather complex ways described how the virus manually. And then of course we menyuruk better to buy and use their antivirus indicate that they are able to detect and remove the virus. Perhaps this is a trick they do bisni.

Ohya, just info. Would be better if you save the document on your disk partition is different, because the virus usually attacks the C partition where your windows system to work. In this way, if your computer is not severe and can be exposed to the virus because, you simply re-install (format and install) your windows again. Of course, the format and install on the partition C. Thus your data in another partition that is not lost. So my suggestion.

Salam Virus Free

Readmore »»

Troubleshooting USER TIPS TO REMOTE AREA

Troubleshooting USER TIPS TO REMOTE AREA

There is a problem with the computer in a remote area kurou, pekanbaru, samarinda, jambi etc. but the network can still be accessed, then there are two ways of troubleshooting without the need to send IT Support to the field with remote assistance & remote deskstop.

Perbedaanya is with the remote user can monitor the assistance apasaja done by the IT Support deskstop while the remote user must be fully confident with IT Support only see the layer as a computer computer locked. Tip time is our only limit to perform remote troubleshooting with deskstop.

Phase - phase deskstop remote.

1. Request Username & Password the computer.
Terms of the first user to provide username & password to the computer that IT Support menghandle without this remote deskstop can not be done because at the time the computer should enter the username password.

2. Check IP
The steps are on the computer user should be checked first IPnya msdos how to run and run ipconfig from the results can be known is ipconfignya ip address computer users. This action must be done by yourself in the user or a more qualified person.

3. Settings on the computer user
The next stage in the computer user. Users or local support should be open access to the remote deskstop & remote access that can be accessed by IT Support. Way is to search my computer and then right click then select properties. From the menu select properties on the remote. Then allow remote assistance invitations to be sent from this computer and allow users to connect remotely from this computer and then check both of them must be okay.

4. Check connection
The next step of IT Support computer check computer connection to the IP-ping menge be by the user.

5. Setting the remote deskstop
After step ping finished no problem and then do the remote computer's desktop IT Support program with the remote desktop connection and then connect directly but do not select this option on the option we select local resources and then we can share our cd drive or local hard disk so that we can be also on the client computer (See the explorer in the user indicates that the computer user seolah2 see localharddisk & cd drive us as a local equipment). Next IT Support can make the process of troubleshooting. Make sure the user does not access to / use a computer because it is fully controlled from Jakarta by IT Support.

6. Trouble shooting

Readmore »»

Protect files Word / Excel.

Protect files Word / Excel.
The steps:
1. Open a Word or Excel file that you want to protect.
2. On the menu toolbar, choose the Tools menu and select Options and go to the Security menu.
3. After you enter the Security, akan box appears where you will be prompted for a password to protect files.

4. On the right box before, there is a menu Advanced. If you want a keyword that diisikan encrypted with the stronger, choose this menu. In the Advanced menu, there is a choice of encryption from the most vulnerable ie "Weak Encryption", which is working with the XOR operation. This level there is no long option keywords.

Then there is a higher selevel encryption mode "Office 97/2000 Compatible" for the standard file protection. Next level but varied with the RC4 encryption method. At this level, you have to fill in the length of keywords with a minimum of 40 up to 128 characters. Various encryption techniques offered, from the DSS, RSA and AES.

5. Click OK to select the type of encryption, and you will return to the initial Security.
7. Besides, there are boxes to fill in the keywords that will offer you protection for file modification, whether the file can be changed or only read-only. Our recommendations, fill out this box for a more robust security.
8. Click OK, and the dialog box will appear asking you to enter a keyword again to open and modify files.
9. You will be back in your file. Do not forget to menyimpannnya before you close it in order to influence the provision of nutritious before keywords.

What if you want to remove the protection retroactive? How:

1. Reopen the file
2. Log in to the Security section and delete keywords in the box that you fill.
3. Click OK
4. Back to the file and save the file again.

Readmore »»

Allsync

Allsync is a software utility to create backups or copying files from another computer on the network Network.

Before more detail to describe this software, we want to provide information for the needs Allsync software. When you work on a network the network, of dealing with many computer. One of the tasks it is a caring and maintaining the data so that staff remain safe and protected. Unfortunately not all operators or staff understand the importance of correct data on their computer.

If an office has all the data and enter data into the storage server, you certainly do not need to use software such as adjuvant AllSnyc. But a lot of important data that is personal from perkerjaan employees themselves and are generally stored in the computer hard drive each. Customer data, for example, Contact Person, Telephone, email address and even the draft document that is only temporary and the workers from certain. Data such as this generally is not included into the main storage as a backup. Of course you can imagine when you lose a secretary or the telephone book sales that the customer data stored on the hard disk. Or staff who love working with notebook diluaar be damaged and even lost notebook stolen.

With Allsync expected to prevent loss of data on personal computer in the network, at least when the computer is connected in a LAN network. Function application is Allsync backup data either periodically or manually. With Allsync then only the required data is retrieved, and stored to the computer for dibackup. Not only that, Allsync can also filter from the file name such as staff only need a backup file extension DOC, and other email directory.

IT staff simply to ask employees whether any personal data that need to backup regularly and ask staff to give workers access the file share. So that IT staff can perform backups regularly. With this rate, data loss occurs when the staff can ask the computer data that was last backup.

Readmore »»