kepada sesiapa yang berhajat nak beli pakej celcom broadband tuh..seeloknya fikirlah masak-masak dulu..artikel dibawah adalah berdasarkan pengalaman segelintir masyarakat yang telah menggunakan pakej tersebut.moga membantu.

—————————————————————————————————————————————-

baca lagi di blogsempoi.com

satu tempat lagi untuk rujukan goycp.wordpress.com

Today everyone has heard of computer worms.

Worms can be classified according to the propagation method they
use, i.e. how they deliver copies of themselves to new victim machines.
Worms can also be classified by installation method, launch method and
finally according to characteristics standard to all malware:
polymorphism, stealth etc.

Many of the worms which managed to cause significant outbreaks use
more then one propagation method as well as more than one infection
technique. The methods are listed separately below.

• Email Worms
• Instant Messaging Worms
• Internet Worms
• IRC Worms
• File-sharing Networks Worms

Email worms

Email worms spread via infected email messages. The worm may be in
the form of an attachment or the email may contain a link to an
infected website. However, in both cases email is the vehicle.

In the first case the worm will be activated when the user clicks on
the attachment.In the second case the worm will be activated when the
user clicks on the link leading to the infected site.

Email worms normally use one of the following methods to spread:

• Direct connection to SMTP servers using a SMTP API library coded into the worm
• MS Outlook services
• Windows MAPI functions

Email worms harvest email addresses from victim machines in order to
spread further. Worms use one or more of the following techniques:

• Scanning the local MS Outlook address book
• Scanning the WAB address database
• Scanning files with appropriate extensions for email address-like text strings
• Sending copies of itself to all mail in the user’s mailbox (worms may even ‘answer’ unopened items in the inbox)

While these techniques are the most common, some worms even
construct new sender addresses based lists of possible names combined
with common domain names.

Instant Messaging (ICQ and MSN) Worms

These worms have a single propagation method. They spread using
instant messaging applications by sending links to infected websites to
everyone on the local contact list. The only difference between these
worms and email worms which send links is the media chosen to send the
links.

Internet Worms

Virus writers use other techniques to distribute computer worms, including:

• Copying the worm to networked resources
• Exploiting operating system vulnerabilities to penetrate computers and/or networks
• Penetrating public networks
• Piggy-backing: using other malware to act as a carrier for the worm.

In the first case, the worms locate remote machines and copy
themselves into folders which are open for read and write functions.
These network worms scan all available network resources using local
operating system services and/or scan the Internet for vulnerable
machines. They will then attempt to connect to these machines and gain
full access to them.

In the second case, the worms scan the Internet for machines that
have not been patched, i.e. have operating systems with critical
vulnerabilities still open to exploitation. The worm sends data packets
or requests which install either the entire body of the worm or a
section of the worm’s source code containing downloader functionality.
If this code is successfully installed the main worm body is then
downloaded. In either case, once the worm is installed it will execute
its code and the cycle continues.

Worms that use Web and FTP servers fall into a separate category.
Infection is a two-stage process. These worms first penetrate service
files on the file server, such as static web pages. Then the worms wait
for clients to access the infected files and attack individual
machines. These victim machines are then used as launch pads for
further attacks.

Some virus writers use worms or Trojans to spread new worms. These
writers first identify Trojans or worms that have successfully
installed backdoors on victim machines. In most cases this
functionality allows the master to send commands to the victim machine:
such zombies which have backdoors installed can be commanded to
download and execute files – in this case copies of the new worm.

Many worms use two or more propagation methods in combination, in order to more efficiently penetrate potential victim machines.

IRC Worms

These worms target chat channels, although to day IRC worms have
been detected. IRC worms also use the propagation methods listed above
- sending links to infected websites or infected files to contacts
harvested from the infected user. Sending infected files is less
effective as the recipient needs to confirm receipt, save the file and
open it before the worm is able to penetrate the victim machine.

File-sharing Networks or P2P Worms

P2P worms copy themselves into a shared folder, usually located on
the local machine. Once the worm has successfully placed a copy of
itself under a harmless name in a shared folder, the P2P network takes
over: the network informs other users about the new resource and
provides the infrastructure to download and execute the infected file.

More complex P2P worms imitate the network protocol of specific
file-sharing networks: they respond affirmatively to all requests and
offer infected files containing the worm body to all comers.

Sometimes even an experienced user will not realise that a computer is infected with a virus. This is because viruses can hide among regular files, or camoflage themselves as standard files. This section contains a detailed discussion of the symptoms of virus infection, how to recover data after a virus attack and how to prevent data from being corrupted by malware.

Symptoms of infection

There are a number of symptoms which indicate that your computer has been infected. If you notice “strange things” happening to your computer, namely:

• unexpected messages or images are suddenly displayed
• unusual sounds or music played at random
• your CD-ROM drive mysteriously opens and closes
• programs suddenly start on your computer
• you receive notification from your firewall that some applications have attempted to connect to the Internet, although you did not initiate this, then it is very likely that your computer has been infected by a virus

Additionally, there are some typical symptoms which indicate that your computer has been infected via email:

• your friends mention that they have received messages from your address which you know you did not send
• your mailbox contains a lot of messages without a sender’s e-mail address or message header

These problems, however, may not be caused by viruses. For example, infected messages that are supposedly coming from your address can actually be sent from a different computer.

There is a range of secondary symptoms which indicate that your computer may be infected:

• your computer freezes frequently or encounters errors
• your computer slows down when programs are started
• the operating system is unable to load
• files and folders have been deleted or their content has changed
• your hard drive is accessed too often (the light on your main unit flashes rapidly)
• Microsoft Internet Explorer freezes or functions erratically e.g. you cannot close the application window

90% of the time the symptoms listed above indicate a hardware or software problem. Although such symptoms are unlikely to be caused by a virus, you should use your antivirus software to scan your computer fully.

What you should do if you notice symptoms of infection

If you notice that your computer is functioning erratically

1. Don’t panic! This golden rule may prevent the loss of important data stored in your computer and help you avoid unnecessary stress.
2. Disconnect your computer from the Internet.
3. If your computer is connected to a Local Area Network, disconnect it.
4. If the computer cannot boot from the hard drive (error at startup), try to start the system in Safe Mode or from the Windows boot disk
5. Before taking any action, back up all critical data to an external drive (a floppy disk, CD, flash memory, etc.).
6. Install antivirus software if you do not have it installed.
7. Download the latest updates for your antivirus database. If possible, do not use the infected computer to download updates, but use a friend’s computer, or a computer at your office, an Internet cafe, etc. This is important because if you are connected to the Internet, a virus can send important information to third parties or may try to send itself to all email addresses in your address book. You may also be able to obtain updates for your antivirus software on CD-ROM from the software vendors or authorized dealers.
8. Perform a full system scan.

If no viruses are found during a scan

If no viruses are found during the scan and the symptoms that alarmed you are classifed, you probably have no reason to worry. Check all hardware and software installed in your computer. Download Windows patches using Windows Update. Deinstall all unlicensed software from your computer and clean your hard drives of any junk files.

If viruses are found during a scan

A good antivirus solution will notify you if viruses are found during a scan, and offer several options for dealing with infected objects.

In the vast majority of cases, personal computers are infected by worms, Trojan programs, or viruses. In most cases, lost data can be successfully recovered.

1. A good antivirus solution will provide the option to disinfect for infected objects, quarantine possibly infected objects and delete worms and Trojans. A report will provide the names of the malicious software discovered on your computer.
2. In some cases, you may need a special utility to recover data that have been corrupted. Visit your antivirus software vendor’s site, and search for information about the virus, Trojan or worm which has infected your computer. Download any special utilities if these are available.
3. If your computer has been infected by viruses that exploit Microsoft Outlook Express vulnerabilities, you can fully clean your computer by disinfecting all infected objects, and then scanning and disinfecting the mail client’s databases. This ensures that the malicious programs cannot be reactivated when messages which were infected prior to scanning are re-opened. You should also download and install security patches for Microsoft Outlook Express.
4. Unfortunately, some viruses cannot be removed from infected objects. Some of these viruses may corrupt information on your computer when infecting, and it may not be possible to restore this information. If a virus cannot be removed from a file, the file should be deleted.

If your computer has suffered a severe virus attack

Some viruses and Trojans can cause severe damage to your computer:

1. If you cannot boot from your hard drive (error at startup), try to boot from the Windows rescue disk. If the system can not recognize your hard drive, the virus has damaged the disk partition table. In this case, try to recover the partition table using scandisk, a standard Windows program. If this does not help, contact a computer data recovery service. Your computer vendor should be able to provide contact details for such services.

If you have a disk management utility installed, some of your logical drives may be unavailable when you boot from the rescue disk. In this case, you should disinfect all accessible drives, reboot from the system hard drive and disinfect the remaining logical drives.

1. Recover corrupted files and applications using backup copies after you have scanned the drive containing this data.

Diagnosing the problem using standard Windows tools

Although this is not recommended unless you are an experience user, you may wish to:

• check the integrity of the file system on your hard drive (using CHKDSK program) and repair file system errors. If there are a large number of errors, you must backup the most important files to removable storage media before fixing the errors
• scan your computer after booting from the Windows rescue disk
• use other standard Windows tools, for example, the scandisk utility

For more details on using these utilities, refer to the Windows Help topics.

If nothing helps

If the symptoms described above persist even after you have scanned your computer, and checked all installed hardware and software and your hard drive using Windows utilities, you should send a message with a full description of the problem to your antivirus vendor’s technical support department.

Some antivirus software developers will analyse infected files submitted by users.

After you have eradicated the infection

Once you have eradicated the infection, scan all disks and removable storage media that may be infected by the virus.

Make sure that you have appropriately configured antivirus software installed on your computer.

Most computer vulnerabilities can be exploited in a variety of ways. Hacker attacks may use a single specific exploit, several exploits at the same time, a misconfiguration in one of the system components or even a backdoor from an earlier attack.

Due to this, detecting hacker attacks is not an easy task, especially for an inexperienced user. This article gives a few basic guidelines to help you figure out either if your machine is under attack or if the security of your system has been compromised. Keep in mind just like with viruses, there is no 100% guarantee you will detect a hacker attack this way. However, there’s a good chance that if your system has been hacked, it will display one or more of the following behaviours.

Windows machines:

• Suspiciously high outgoing network traffic. If you are on a dial-up account or using ADSL and notice an unusually high volume of outgoing network (traffic especially when you computer is idle or not necessarily uploading data), then it is possible that your computer has been compromised. Your computer may be being used either to send spam or by a network worm which is replicating and sending copies of itself. For cable connections, this is less relevant – it is quite common to have the same amount of outgoing traffic as incoming traffic even if you are doing nothing more than browsing sites or downloading data from the Internet.
• Increased disk activity or suspicious looking files in the root directories of any drives. After hacking into a system, many hackers run a massive scan for any interesting documents or files containing passwords or logins for bank or epayment accounts such as PayPal. Similarly, some worms search the disk for files containing email addresses to use for propagation. If you notice major disk activity even when the system is idle in conjunction with suspiciously named files in common folders, this may be an indication of a system hack or malware infection.
• Large number of packets which come from a single address being stopped by a personal firewall. After locating a target (eg. a company’s IP range or a pool of home cable users) hackers usually run automated probing tools which try to use various exploits to break into the system. If you run a personal firewall (a fundamental element in protecting against hacker attacks) and notice an unusually high number of stopped packets coming from the same address then this is a good indication that your machine is under attack. The good news is that if your personal firewall is reporting these attacks, you are probably safe. However, depending on how many services you expose to the Internet, the personal firewall may fail to protect you against an attack directed at a specific FTP service running on your system which has been made accessible to all. In this case, the solution is to block the offending IP temporarily until the connection attempts stop. Many personal firewalls and IDSs have such a feature built in.
• Your resident antivirus suddenly starts reporting that backdoors or trojans have been detected, even if you have not done anything out of the ordinary. Although hacker attacks can be complex and innovative, many rely on known trojans or backdoors to gain full access to a compromised system. If the resident component of your antivirus is detecting and reporting such malware, this may be an indication that your system can be accessed from outside.

Unix machines:

• Suspiciously named files in the /tmp folder. Many exploits in the Unix world rely on creating temporary files in the /tmp standard folder which are not always deleted after the system hack. The same is true for some worms known to infect Unix systems; they recompile themselves in the /tmp folder and use it as ‘home’.
• Modified system binaries such as ‘login’, ‘telnet’, ‘ftp’, ‘finger’ or more complex daemons, ’sshd’, ‘ftpd’ and the like. After breaking into a system, a hacker usually attempts to secure access by planting a backdoor in one of the daemons with direct access from the Internet, or by modifying standard system utilities which are used to connect to other systems. The modified binaries are usually part of a rootkit and generally, are ’stealthed’ against direct simple inspection. In all cases, it is a good idea to maintain a database of checksums for every system utility and periodically verify them with the system offline, in single user mode.
• Modified /etc/passwd, /etc/shadow, or other system files in the /etc folder. Sometimes hacker attacks may add a new user in /etc/passwd which can be remotely logged in a later date. Look for any suspicious usernames in the password file and monitor all additions, especially on a multi-user system.
• Suspicious services added to /etc/services. Opening a backdoor in a Unix system is sometimes a matter of adding two text lines. This is accomplished by modifying /etc/services as well as /etc/ined.conf. Closely monitor these two files for any additions which may indicate a backdoor bound to an unused or suspicious port.

disedut dari http://www.viruslist.com

Net-Worm.Win32.Kido

Status : moderate risk

Kaspersky Lab has detected that multiple variants of Kido, a polymorphic worm, are currently spreading widely.

Net-Worm.Win32.Kido exploits a critical vulnerability (MS08-067) in Microsoft Windows to spread via local networks and removable storage media.

The worm disables system restore, blocks access to security websites, and downloads additional malware to infected machines.

Users are strongly recommended to ensure their antivirus databases are up to date. A patch for the vulnerability is available from Microsoft.

Detailed descriptions of Net-Worm.Win32.Kido.bt, Net-Worm.Win32.Kido.dv and Net-Worm.Win32.Kido.fx are available in the Virus Encyclopaedia. A dedicated removal tool is available here.

Dijemput sume dak2 cs untuk ke csnite pada 20hb Feb 2009.

untuk sebarang maklumat makanan+pemakanan bole rujuk kat site ni…http://ehhmmm.blogspot.com/2009/01/cs-nite.html

Bayaran dalam RM60..memandangkan takde sponsor yang mencukupi untuk mengurangkan harga.so memang agak high la price tu…

Diharap sume dapat hadir sebab akan ada prince+princess,king+queen & emperor+emperess(betul ke??yang aku tau ada 2 je)

Top Internet Security Suites

Symantec’s easy-to-use Norton suite is a solid performer overall. BitDefender’s package is a great value, while Avira beat all competitors in malware detection.

Edited by Nick Mediati, PC World

	1. Symantec Norton Internet Security 2009 Price when reviewed: $70 ($50 renewal price), Performance: Superior, Ease of use: Superior, Features: Very GoodBottom Line: This strong security suite costs a little more than most alternatives, but it’s easy to use and good at blocking malicious software. Full Review • Test Report •
	2. BitDefender Internet Security 2009 Price when reviewed: $40 ($50 renewal price), Performance: Very Good, Ease of use: Good, Features: Very GoodBottom Line: BitDefender’s suite gives you good protection for a great price, if you’re willing to put up with a couple of interface annoyances. Full Review • Test Report •
	3. Panda Internet Security 2009 Price when reviewed: $50 ($60 renewal price), Performance: Very Good, Ease of use: Very Good, Features: GoodBottom Line: The Panda suite covers all the bases with its features, and it scans quickly, but in tests it lagged some rivals in malware detection. Full Review • Test Report •
	4. McAfee Internet Security Suite 2009 Price when reviewed: $60 ($60 renewal price), Performance: Very Good, Ease of use: Very Good, Features: SuperiorBottom Line: Its mix of pluses (such as good detection rates) and minuses (such as slow scan speed) lands McAfee’s offering in the middle of the pack. Full Review • Test Report •
	5. Avira Premium Security Suite 8.2 Price when reviewed: $54 ($54 renewal price), Performance: Superior, Ease of use: Good, Features: PoorBottom Line: Avira’s suite is a good choice for more-technical users who want the best detection but don’t need phone support or parental controls. Full Review • Test Report •
	6. Kaspersky Internet Security 2009 Price when reviewed: $80 ($120 renewal price), Performance: Superior, Ease of use: Good, Features: GoodBottom Line: If Kaspersky wants to charge the highest price, the suite should have the best protection and a smooth, intuitive interface. It doesn’t. Full Review • Test Report •
	7. F-Secure Internet Security 2009 Price when reviewed: $60 ($46 renewal price), Performance: Very Good, Ease of use: Very Good, Features: PoorBottom Line: F-Secure’s package provides decent detection and a clear, informative interface, but other suites offer stronger protection. Full Review • Test Report •
	8. Webroot Internet Security Essentials Price when reviewed: $60 ($50 renewal price), Performance: Very Good, Ease of use: Good, Features: PoorBottom Line: Webroot’s first foray into security suites needs some work–and better malware detection–before it becomes worthy of consideration. Full Review • Test Report •
	9. Trend Micro Internet Security Pro 2009 Price when reviewed: $70 ($70 renewal price), Performance: Good, Ease of use: Very Good, Features: GoodBottom Line: Trend Micro’s latest suite fails at the most basic task of detecting and blocking malicious software. Not recommended. Full Review • Test Report •

What is SpeedBit Video Accelerator?
SpeedBit Video Accelerator makes videos from YouTube and over 150 sites stream faster and play smoother by reducing buffering problems and video interruptions or “hiccups”.

SpeedBit Video Accelerator is another groundbreaking product from the creators of Download Accelerator Plus (DAP) – pioneers of acceleration technology!

Unique Video Acceleration features:
►
Reduces “movie freezes” and “buffering” problems!
►
Accelerates streaming videos from YouTube and over 150 sites!
►
Bookmarks videos you’ve recently accelerated, for easy replays!
►
Includes cool search tab feature for finding videos to watch around the web, right from your desktop!
►
Video Accelerator for iTunes (Premium) accelerates the download of iTunes movies, music videos and TV shows up to 10 times faster!

Salam…

application ni untuk kita trace route seseorang..

Jikalau sebelum ni kita guna cmd untuk trace sesuatu IP address kini dah ada software yang bole kita lihat secara visual apa sebenarnya yang berlaku waktu cmd trace sesuatu IP..

guna cmd :

->run cmd

->taip tracert <IPaddress/alamat web>

->enter

guna MNT :

->run MNT

->masukkan IPaddress/alamat web

->enter

untuk download –>McAfee Neo Trace

p/s: ini adalah trial version.limit untuk 30 hari je.