Hello System Admin | Where system admins share technical article and tips | Create free Blog | Updates on domains, web hosting, servers and more » Cracking http://hellosystemadmin.com Fri, 09 Jul 2010 04:29:53 +0000 http://wordpress.org/?v=2.8.6 en hourly 1 skype automatically sends messages to all contacts http://hellosystemadmin.com/blog/skype-automatically-sends-messages-to-all-contacts-skype-virus/ http://hellosystemadmin.com/blog/skype-automatically-sends-messages-to-all-contacts-skype-virus/#comments Wed, 28 Apr 2010 11:18:57 +0000 Aneesh http://hellosystemadmin.com/?p=436

Recently we have faced a Skye virus attack on a LAN. One of the users received a message

Do you think this is the definition of SEXY? I do.
http://www.xxxxxxxxxx.com/uploads/94603/NewPicture004.JPG.zip

Now the same message was started to send from this machine to all his skype contacts. Also sent email through email client.  In a couple of minutes all systems were infected.  We have done the following steps to fix it

1. Cleaned the hosts file
We have noticed that the hosts file  located in c:\windows\sysetm32\drivers\etc\ was edited by the virus and it added many lines to the file at the very bottom.  We  scrolled down to the end and removed all unwanted entries.  Remember  this file is read only and you need to change the file attribute to save it.

2. Cleaned the System using ComboFix

Download this and run the file.  Follow the instructions and complete the steps. In some cases you need to do with something on the Network Card. Go to Device manager and you will find two copies of the same network card. One with an Yellow color and other is normal. Now remove the Normal card and click on Scan for hardware changes and your card will be automatically installed. Note that you may also to set the IP address if you are using static IP address

3.  complete System scan using a good Anti Virus

Use any good anti virus program to do a full system scan. I recommend Avast Antivirus and do a boot time scan with that

]]> http://hellosystemadmin.com/blog/skype-automatically-sends-messages-to-all-contacts-skype-virus/feed/ 0 “HEY TO GET FREE CELLPHONE RECHARGE SEEE MY PROFILE” http://hellosystemadmin.com/blog/hey-to-get-free-cellphone-recharge-seee-my-profile/ http://hellosystemadmin.com/blog/hey-to-get-free-cellphone-recharge-seee-my-profile/#comments Fri, 26 Feb 2010 02:43:21 +0000 Aneesh http://hellosystemadmin.com/?p=415 Orkut account being cracked again !! Beware of it. DO NOT COPY AND PASTE ANY JAVASCRIPT IN TO YOUR  ORKUT ADDRESS BAR

You may get message or scraps from your very close friend  which says  that “HEY TO GET FREE CELLPHONE RECHARGE SEEE MY PROFILE”. When you click on that link it will take you to the profile of your friend where you can find a java script  and you will be asked to copy and paste the java-script in to your orkut address bar. If you  do that Your account is cracked and your profile  will  be acted  as a marketing tool where  the cracker will get your friends list and they will scrap to all and repeat the same

So Beware of it…Orkut account being cracked again !! Beware of it. DO NOT COPY AND PASTE ANY JAVASCRIPT IN TO YOUR  ORKUT ADDRESS BAR

]]> http://hellosystemadmin.com/blog/hey-to-get-free-cellphone-recharge-seee-my-profile/feed/ 2