Some weeks before I have sent mails to the people who worked on the project. I was afraid, whether they will see my mail, as those email ids are their college ids. But fortunately, I received mails from two of them Andre and Luis. They told me that they'll help me in this project. Luis told me to learn to work with pointers in C. And Andre suggested me to learn how to install and configure OpenWRT in a router. I asked them whether any virtual environment to do the experiments that need a router. But they can't answer. They told me to buy a new router and work with it. Now I'm happy. Also I'll be very happy if they give their project documentation and the source code.... ;-D
Thursday, September 30, 2010
Wednesday, September 29, 2010
Don't worry. Its just Csrss.exe
I told in my last blog about csrss.exe. When I searched, there is some pages telling that it is a trojan. But Microsoft's official website tells that it is the process necessary for maintaining LAN connection. But you can't just let it be. As it is maintaining network connections, it can be easily hacked by a network intruder. So always have a look at it.
As a best practice, when you install a new Operating System, make a note of all the processes running in your computer and also the other details about those processes like memory usage, CPU usage, description, location etc,. Whenever you install new software some new processes will be added to your computer. So after installing a new software, update your note. I installed my new Windows-7(I have to rely on windows. Because my usb modem is platform dependent) some days before. Now the file size of csrss.exe is 944 kb and CPU usage is 00 (But no process can't run without using CPU) and having no description.
If you see csrss.exe is using very large memory and its CPU usage goes beyond 50%, you can conclude that, csrss.exe is infected with some viruses. Commonly the attack performed over csrss.exe is memory hijacking attack. The compromised csrss.exe will also use the memory space alloted for other programs. Because of less memory available, that program will run slowly. So you'll feel that your computer is getting slow. That is common. Also there are some trojan, that will run in the name of csrss.exe, which will steal you passwords and other sensitive information.
If you suspect csrss.exe is infected, immediately stop that process by running task manager in administrator mode. And scan your computer with a better anti virus program.
Tuesday, September 28, 2010
Commgr.exe! oh ****
Open task manager in your computer by hitting Ctrl+Alt+Del or Shift+Ctrl+Esc or by typing taskmgr.exe in command prompt or run. Now look into the processes running in your computer. If you see commgr.exe there (Not conmgr.exe, which is an important service), you are really in trouble. Today morning I saw that in my task manager. I felt something unwanted happening in my computer. Because I didn't install any new software. So how its been added. I asked my brother. He told he copied some songs form my computer to his friend's pen drive. Now a bulb glowing above my head, that it might be a virus.
I immediately googled about it. Google always has answers. I found 26,200 results from Google and also a suggestion for conmgr.exe. I moved to the first link Google present. It said commgr.exe is a malware program, and first detected ............. a lots of information. Thats not important to me. Its a virus. Its enough. I simply select the process and give end process. But what a ****, its appeared again. Now I tried end the whole process tree. But still. I tried with process explorer. But I can't do anything. Actually it was started by explore.exe. I felt that was really a bad time for me.
I restarted my computer in safe mode. Fortunately it was not running. I opened msconfig ( by typing msconfig in run). And searched for commgr.exe in the start-ups. It was there. I went to its location and deleted the source file.I searched in my registry for commgr.exe. Yes there was an entry in the run. I deleted that also. Now I searched Internet for the additional files added by that program. It told me some files would be created inside your C:\Recycler. I deleted that files. And restarted my computer in normal mode.
Now in the task manager I can't find the process commgr.exe. But now another process named csrss.exe running, that has no description. I googled. The first result came as "It is process registered as a torjan" :-( But now I gotta go. So I let that to run for some time...
Location for commgr.exe is
C:\Users\[username]\appdata\temp\commgr.exe
You better run a search in your full hard disk for this program.
The files added by commgr.exe are
c:\recycler\[some directory] sorry i forgot it. :-/
Monday, September 27, 2010
Don't blame your Computer
Today I went to dad's office. There was a guy typing something and shouting "you damn old computer ate all my files...... **** ... **** ...". He was really upset. I have no job there, I just went to give a document to my dad. I went near that guy and asked what happened. He said that the previous day, the computer never get boot. They called the technician. That damn old guy (actually not the computer) simply format the hard disk and installed a new WindowsXP (he is still two version back. So its correct to say damn old guy). So all the files he saved went to the outer space.
Not only him, most of my college friends do the same (me too, a couple of times). They think if the OS get crashed, everything has gone. And the only solution is to reinstall the OS. Its not correct actually. In Windows itself they gave an option to recover their OS, if its crashed (But most of the time it won't work. Because it is Windows). But you no need to loss your saved files. You will have to leave only the software those are installed in your computer. If you have a back-up for it, you'll never.
I hardly recommend to use more than one partition in your computer. One is for your Operating System and others, use as you wish. Store all your files, documents, songs, movies, etc in the other partition, not the one where the OS is installed. Even Windows provide My Pictures, My Movies like stuffs, don't trust. Because it is Windows. So if your OS get crashed (its common, as it is Windows), you can reinstall the OS in the old partition and the files saved in other partition are safe (even the viruses. But they won't run).
Even if you saved some data in the operating system's partition, you no need to worry. Always there is Linux to help you. Nowadays most of the Linux operating system comes as live Cd. It means you no need to install them. You can directly run them from the CD. Download such a live CD. You can write it into a CD, DVD or even in your pen drive (I'm not kidding. You can run OS from your pen drive) and boot from it. Now you can browse you hard disk and copy the required files to another media. Thats all. Now you can install your all time favorite Windows once again.
You can find link to download most of the Linux distribution here.
Don't blame your Computer
Today I went to dad's office. There was a guy typing something and shouting "you damn old computer ate all my files...... **** ... **** ...". He was really upset. I have no job there, I just went to give a document to my dad. I went near that guy and asked what happened. He said that the previous day, the computer never get boot. They called the technician. That damn old guy (actually not the computer) simply format the hard disk and installed a new WindowsXP (he is still two version back. So its correct to say damn old guy). So all the files he saved went to the outer space.
Not only him, most of my college friends do the same (me too, a couple of times). They think if the OS get crashed, everything has gone. And the only solution is to reinstall the OS. Its not correct actually. In Windows itself they gave an option to recover their OS, if its crashed (But most of the time it won't work. Because it is Windows). But you no need to loss your saved files. You will have to leave only the software those are installed in your computer. If you have a back-up for it, you'll never.
I hardly recommend to use more than one partition in your computer. One is for your Operating System and others, use as you wish. Store all your files, documents, songs, movies, etc in the other partition, not the one where the OS is installed. Even Windows provide My Pictures, My Movies like stuffs, don't trust. Because it is Windows. So if your OS get crashed (its common, as it is Windows), you can reinstall the OS in the old partition and the files saved in other partition are safe (even the viruses. But they won't run).
Even if you saved some data in the operating system's partition, you no need to worry. Always there is Linux to help you. Nowadays most of the Linux operating system comes as live Cd. It means you no need to install them. You can directly run them from the CD. Download such a live CD. You can write it into a CD, DVD or even in your pen drive (I'm not kidding. You can run OS from your pen drive) and boot from it. Now you can browse you hard disk and copy the required files to another media. Thats all. Now you can install your all time favorite Windows once again.
You can find link to download most of the Linux distribution here.
Not only him, most of my college friends do the same (me too, a couple of times). They think if the OS get crashed, everything has gone. And the only solution is to reinstall the OS. Its not correct actually. In Windows itself they gave an option to recover their OS, if its crashed (But most of the time it won't work. Because it is Windows). But you no need to loss your saved files. You will have to leave only the software those are installed in your computer. If you have a back-up for it, you'll never.
I hardly recommend to use more than one partition in your computer. One is for your Operating System and others, use as you wish. Store all your files, documents, songs, movies, etc in the other partition, not the one where the OS is installed. Even Windows provide My Pictures, My Movies like stuffs, don't trust. Because it is Windows. So if your OS get crashed (its common, as it is Windows), you can reinstall the OS in the old partition and the files saved in other partition are safe (even the viruses. But they won't run).
Even if you saved some data in the operating system's partition, you no need to worry. Always there is Linux to help you. Nowadays most of the Linux operating system comes as live Cd. It means you no need to install them. You can directly run them from the CD. Download such a live CD. You can write it into a CD, DVD or even in your pen drive (I'm not kidding. You can run OS from your pen drive) and boot from it. Now you can browse you hard disk and copy the required files to another media. Thats all. Now you can install your all time favorite Windows once again.
You can find link to download most of the Linux distribution here.
Sunday, September 26, 2010
Bom sobado!
Yesterday evening there was a buzz by Sathya about worm named BOM SOBADO. She wrote that it was a worm that would write a scrap in your orkut scrap book. If you try to reply it, your account will be hacked. But I didn't think it was true. I simply logged in my orkut account and searched for scraps. But unfortunately or fortunately there is no new scraps :-(. And I wrote a comment to her buzz as there is nothing like that and that may be a rumour.
But today morning I received forward messages to my mobile about Bom Sabado as it is a orkut hacking virus. So I immediately googled it. I never found any official announcement from Google. But there was a post about Bom Sabado and some people discussed on it. Also a person wrote that he saw such a scrap in his orkut scrap book. So it may be true. But some people says its now fixed and no more threat.
But whatever, if you saw any such scrap named as Bom Sabado, do the following...
- Delete all your scraps (may leave some important scraps but at-least the suspicious one)
- Sign out from your Orkut account or close the browser window
- Now open your browser once again and delete your browser history, cookies, saved passwords and also temporary files.
- You better run an anti-virus program. (But this is optional)
- Restart your browser and login your Orkut account and enjoy.................
Wednesday, September 22, 2010
zeroth review
Yeah today the zeroth review. We planned a lot and we create slides make it better. Fortunately our team is called only after lunch. Before entering the lab we discussed more than three times about the concept we are going to implement. But the review was so simple. Mr.Mohan was there. He asked some simple question even before we start, by seeing the title itself. We explained them is a good way they simply accepted. Actually we carried a ieee conference paper not the transaction paper. And the concept we used is totally new. But they never care about them. It was simply over and all our worries went off. At last we reported at our project guide Miss.Rekha and came.
Jolly
This is the name we selected for our project, just for fun. Actually its about defacing arp poisoning attack using a linux destro called openwrt, an embedded operating system that will be run in a router. I, Lakshman, Pranav are doing this project together. We got the base paper from ieee. We have registered with it. We are clear in the concept. But we know nothing about the hardware or software implementation. Now we are zero in technical knowledge, that required to implement this project. Tomorrow zeroth review. I don't know whether ours will be selected or not. But we have confidence. We believe in us. ALL IS WELL :-)
This is the first post about our project. I'll add posts daily about our every activity regarding to this project. I think this will be an unformated document for our project.
Subscribe to:
Posts (Atom)