TTC Shelbyville – Technical Blog

It spreads by compromising accounts and spamming out the users’ friends with a message that contains only a link. If followed, the link takes the potential victim to a page where he or she are offered what appears to be a screensaver for download:   Facebook worm leads to heavy infection.

You may have devices on your network that you can no longer connect (Vista/Windows 7) to or you may not be able to network to Windows XP (for whatever reason, this works).  Actually this changes settings to accept NTLMv1 and NTLMv2 so that you can connect to Samba Servers, Snap Servers, Older Windows Computers or whatever….

1. Go to Run, Type Regedit and open this key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa

2. If it doesn’t exist, create a DWORD value named
LmCompatibilityLevel

3. Set the value to 1

4. Reboot

Conquer these hidden challenges and crack the code to gain restricted access to a secret message – just for cyber warriors like you.   Cyber challenges and possibly a career…

Code breaking excites you. Reverse-engineering seems pretty straightforward. And you like to break down information security systems just to build them back, stronger and better. You seem to be the kind of person we look for at Raytheon: a cyber warrior who can help us protect the world’s most critical data from breach, fraud, theft and sabotage.Raytheon: Cyber Warriors | Cyber Security Careers.

Want to benchmark your computer?  OCCT is for professional and advanced users.   This software offers features overclocking information for your computer.  Use this software with caution. What is OCCT?  OCCT (stands for “OverClock Checking Tool) and therefore is a CPU stability testing program

If you have Moodle running on a server with PHP with IIS, you can add detailed statistics with Piwik.  While Moodle Statistics are detailed and is capable of giving analytics.  Piwik can be used on any website to obtain statistical information.

On IIS, go to Piwik and download their latest release.  Extract the file and copy it to your root folder of c:\inetpub\wwwroot.   Set permissions to full control with the security table on the extracted folder. For Network and IUSR accounts.

If you are using Microsoft’s SQL, you will need to download MySQL by using the Microsoft Web App Installer.   Because you have Moodle up and running, select to install MySQL only.  (You should have extracted Piwik and PHP is already running on the server).  Follow the installer’s wizard.

Once installed create a table called Piwik with MySQL.  At the MySQL command line (found in your program files) type:

CREATE DATABASE Piwik

Remove the ; in front of   extension=php_mysqli.dll on the php.ini file.  Save the php.ini file.  You will need to start and stop IIS.

Follow the installation instructions - http://piwik.org/docs/installation/

Open up the index.php file under your Moodle installation on your webserver.  Navigate to the login folder.  Open the index.php file to edit it add the following code at the top of your code (this will make javascript run with php).

<html>
<body>    Add the code your installation tells you after the body tag (following the installation instructions you will see the code the programmer tells you to put in your website) – This can be done for any of the pages.

Sample below

Piwik gives you very detailed analytics.

Piwik is a downloadable, open source (GPL licensed) real time web analytics software program. It provides you with detailed reports on your website visitors: the search engines and keywords they used, the language they speak, your popular pages… and so much more.

Piwik aims to be an open source alternative to Google Analytics, and is already used on more than 200,000 websites.

Here’s a copy of our previous post on Moodle Stats not working -
Need Statistics to show in Moodle ?

We normally try to put freeware and solutions for all users; however this seems to be a problem with Higher Education that use Moodle.

FIRST – In the Date section in your php.ini file – find the line ;date.timezone =, remove the semi-colon from the front of it and set it to the timezone that you have set in Administration > Locations (In the Moodle Administration Settings).  (Mine is America/Chicago). The line in your ini file should look like this date.timezone =’American/Chicago’ .  Save the php.ini and the locations set in Moodle under the Server’s time.  Restart IIS or Apache.

Go to – Modules | Blocks | Statistics   Enter at least 90 days on the graph – Save your settings

Go to – Server | Statistics | Disable Statistics in Moodle |Enter Maximum Processing – All  | Enter Maximum Runtime – Until Complete  | Enter Days to process 365 | Enter a Run Time 5-20 minutes before your current time on your computer (try to do this when at a Time when the server is not in use or has low usage – I am doing this at 12:40 a.m. – the stat time is at 12:30 a.m.)  Go down and Save your Changes!  Yes, It is disabled at this point.

On the SQL Server run the following query -

delete from mdl_stats_daily;
delete from mdl_stats_weekly;

delete from mdl_stats_monthly;
delete from mdl_config where name like ‘%stats%’;

Open up Moodle and now Enable Statistics and SAVE

Run cron from the command line – (Windows users, at the command prompt type -
c:\php\php.exe -f C:\inetpub\wwwroot\admin\cron.php

This should have worked…good luck!

No Graph in Stats? 
Go to Server | System Paths and make sure you specify GD is installed.  You must also take away the ; in front of  extension=php_gd2.dll in your php.ini file.  If you modify your php.ini, you must restart your webserver.

With IOBit’s Portable Free PC Repair ToolBox, this all in wonder tool can help you perform many tasks that usually takes many tools working together to thoroughly analyze and clean your computer.  This tool is an excellent tool for any computer tech.

Some of the features -

More than 20 tools in a portable app that allows you

An easy way to verify the drivers you have installed in Windows 7 besides looking at the device manager is to use the Verifier.  With Driver Verifier, you can see old drivers installed from previous versions of Windows, currently installed drivers,  unsigned drivers and more.  A great way to keep your computer running is to make sure you keep drivers up-to-date.

More info -
http://support.microsoft.com/kb/244617
http://msdn.microsoft.com/en-us/windows/hardware/gg487310  (About)
http://msdn.microsoft.com/en-us/windows/hardware/gg487399  (Download and Windows 7)

This slideshow requires JavaScript.

Note:  We do not encourage the use of tools that can be used maliciously.  These tools should only be used for educational purposes and for security scanning and penetration testing.   Scanning a computer or network that is not your own or without permission is illegal.

X-Scan is a basic network scanner that uses winpcap, nmap and other tools to scan your network or computers for vulnerabilites.  X-Scan works with the dll file npptools.dll.  When installing these types of programs, modern antivirus programs may detect this program as a virus because of its functionality.

Installation is just a matter of extracting the files to a folder.  It is important to install Winpcap in order to get the full functionality of the program.   The npptools.dll file has to be loaded in the Windows\System32 folder.   Although this tool was released around 2005/06, you can effectively use this program to see basic vulnerabilities.

Once you copy the .dll to the C:\Windows\System32 folder and you extract the program,  I recommend using compatibility mode and select Windows XP SP3 if using Windows 7.    Also check the run as Administrator box.  Double click on the xscan-gui.exe (you may have a UAC prompt – select yes)

Next click on Config.  Enter the IP address of the computer or network to scan.  You can also customize how you want to scan the computer or network along with parameters such as ports, programs or configurations.

       Next click on the arrow to begin scanning for vulnerabilities.

The Vulnerabilities tab will show the progress and vulnerabilities found.  A html report will follow.

Truly only properly trained personnel should use this program for scanning a computer or network.

Bookmarks4Techs is one of the largest compilation sites of technical blogs and websites.   Rick over at What’s On My PC has complied the list and keeps a mini blog going on the site.    When you visit Bookmarks4Techs, you’ll land on the home page with the latest articles.   If you want to see a list of all of the sites Rick put together, click on the tab Bookmarks4Techs.

Brandon and some of the other students including myself dream of having a solid state drive.  Bill Mullins recently purchased a solid state drive and gives and excellent review of how solid state drives are truly the way to go.  Go over and read his review.

Here’s a YouTube video of 24 SSDs in a RAID configuration.

Hackers attacking SCADA systems and wreaking havoc in a nation’s critical infrastructure has become a justified concern for all countries. But, setting aside Iran and attacks against its nuclear program for a moment, the U.S. seems to attract a seemingly disproportionate amount of these kind of assaults  Hackers destroy pump in U.S. water utility attack.

One of my  students sent over something really cool.  Go to Wolfram Alpha and type Flights Overhead.  Let it compute and check out the details.

This slideshow requires JavaScript.

 

Almost a year after being demoed at the Consumer Electronics Show, Microsoft’s next-generation Surface hardware is almost ready for customers. The giant, table-sized tablet, also wall-mountable, can now be pre-ordered from Samsung resellers in 23 countries, including the United States. Its release is slated for sometime in early 2012, Microsoft and Samsung said today.
Microsoft’s table-sized tablet Surfaces for pre-order.

Zone-h.org has an excellent site to see defacements and what is going on across the internet.   Reviewing the archives and live defacements, Linux is defaced (hacked) more times than Windows.   What exactly does this mean?  Is Linux unsafe?  Not at all.  It truly falls on the administrator who configured Linux.   There is a false sense of security when you install Linux based on all of the sites and forums that support Linux’s ability to be safe and reliable.   Truly it can be the safest if the following holds true -

• Proper configuration
• Updates
• Reading materials
• Frequent penetration tests
• Monitoring and logging
• Experience with advanced configurations

Zone-h archives

All operating systems have vulnerabilities.  And yes Apple, Microsoft and Linux is only as safe as the end user.

Android malware is up.  Users should take precautions by loading anti-virus software and only download from reputable sites.  Always do a review on an app before you download it.    Read more

Heat.  According to a Popular Science article, you are leaving a heat signature behind.  Read more here.

Thanks Kevin for this link!

If you have ever copied a web page or have a MS Word document with dozens or even hundreds of tables that need to be reformatted or removed, there is a simple solution.

Open MS Word

Hit Alt+F11

Double click on ThisDocument in the Project Window on the left

Click on Tools, Macros

Type in a Name for your Macros

Click on Create

Now Copy the code below between Sub Text () and End Sub

‘ TableToText Macro
Dim Check, Counter
Check = True: Counter = 0 ‘ variables.
Do ‘ Outer loop.
Do While Counter < 400 ‘ This is an Inner loop.
Selection.GoTo What:=wdGoToTable, Which:=wdGoToNext, Count:=1, Name:=”"
Selection.Find.ClearFormatting
With Selection.Find
.Text = “”
.Replacement.Text = “”
.Forward = True
.Wrap = wdFindContinue
.Format = False
.MatchCase = False
.MatchWholeWord = False
.MatchWildcards = False
.MatchSoundsLike = False
.MatchAllWordForms = False
End With
Selection.Rows.ConvertToText Separator:=wdSeparateByTabs, NestedTables:= _
True
Counter = Counter + 1 ‘ Increment Counter.
If Counter = 399 Then
Check = False
Exit Do ‘ Exit inner if necessary loop.
End If
Loop
Loop Until Check = False ‘ Exit loop immediately.

Click on the Arrow to Run the Macro.   This may show an error but should remove the formatting.

Damballa announced Failsafe 5.0, a solution that hunts for undetected threats by correlating a variety of observed network behaviors that indicate malware-infected devices (PCs, Macs, servers, smartphones, iPads, etc.) are communicating with criminals

Forensics for advanced threat activity.

AeroFS is an excellent program in beta.  You can get it for free in Apple (Mac) , Linux or Windows as downloads from Aerofs.com.   How does it work?  You simply download the program on your laptop and desktop.    You invite each of your devices to sync and what ever is on one is synced with the other.  No files in the cloud, no servers-these are your devices talking and your devices storing your files.   After testing this software this morning, I discovered that it does encrypt your files from end to end meaning your information is secure when you send them through the internet.    Because this works on all OSs, you can us a hybrid setup and sync files between your Mac and Windows.