Blocking Skpye in a Network

One of the challenges which are faced by many administrator's is to block software's which create a Http tunnel. Skype is one of the software which works on similar principles. Lets first understand how it works.

How Skype Works?

When ever we install skype on any computer, it has a default list of server's to which it tries to connect, firstly it will try to connect using port 80 with P2P protocol. All the corporate houses have content and protocol filtering software's such as Websense, with which p2p protocols can be easyly be blocked, but skype is something which tries to sneek through these Content and policy based software's. If skype fails to connect through port 80 then it tries to connect using port 443 and creates a secured tunnel, once it creates a tunnel it tried to connect to supernode, which then inturn connect it to Skype login Server.

How to Block Skype?

If you try to trace the Ip's of the supernode and try to block them you will notice that it will still not block the skype, since the list of supernodes grows long.

One of the best ways to block Skype is to block the Ip based connectivity through your proxy. Here are some of the changes which can you would need to make in proxy server configuration file.

# Prevent Skype connecting HTTPs using CONNECT requests to IP addresses (those not using domain names)
acl numeric_IPs url_regex ^[0-9]+.[0-9]+.[0-9]+.[0-9]+
http_access deny CONNECT numeric_IPs all


# Prevent Skype connecting http
acl Skype_UA browser Skype
http_access deny Skype_UA

# Prevent anyone to download anything from skype website
acl Skype_domain dstdomain skype.com
http_access deny Skype_domain

Sphere: Related Content

Gameeeee.vbs Windows Script Host Error..........!

This is new variant of the old Chinese virus, If you see file name they using this team looks like gamers team in china. What they looking for? Spoofing your log! get your financial information, get your sensitive information, etc.

Symptoms that your computer is infected with it

->Gettings pops while browsing like windows script host error "gameeeee.vbs" "ags.vbs" and any other ends with vbs extension.
->Presence of "gameeeee.vbs" and "gameeeee.pif" in the "Temp" folder of your computer.
->Presence of "Thunder.cmd" in "Startup" folder of your computer.
->Presense of "ihhh.html" file in the "Temproray internet files"
->Internet browsing gets slow brower seems to hang, in status bar you see going to a particular website like "u.cruze3.cn"

If you observe any of the above mentioned symptoms then your computer seems to be infected with this virus. Actually its not a virus its a spyware which tries to steel information from your computer. This spyware has the capability to spreed itself over the network, if you see any computer infected with this then first step should be to remove this computer from the network else pretty soon all the system in the network will be infected with it.

Now let us start with troubleshooting.......

Step 1

Some of the files which are actually malicious files but would be showing as folders.

=> The folders that were found are as follows:

C:\WINDOWS\System32/{iifgfgf.dll ,vcmgcd32.dll and systems.txt}
C:\WINDOWS\{logo1_.exe, rundl132.dll, rundll16.exe and zts2.exe}

The above files are malicious but they were converted into folders. Deleted the above folders.

C:\WINDOWS\System32 \{spider.exe,winmine.exe and DSndUp.exe}
C:\WINDOWS\System32 or \drivers\{asyncmac.sys,beep.sys,aec.sys and
WDF01000.SYS}
C:\WINDOWS\{Lic.xxx,R.COM and WMSysPr9.prx}

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
\thunder.exe

Apart from the above mentioned files look for these files also which
were used by previous varient of the same spyware.

-system.exe
-HBBO.dll, HBCHIBI.dll, HBQQFFO.dll, HBmhly.dll, HBZHUXIAN.dll,
HBZG.dll,HBSO2.dll, HBQQSG.dll, HBSOUL.dll
-AcSpecf.sdb, AcXtrnel.sdb, AcSpecf.dll
-HBKernel32.sys, eth8023.sys

Delete the all mentioned files & also delete all the files from temp and temporary internet files folder.

You might not be able to delete some of the above file for that use Unlocker.

Step 2

After deleting the above mentioned files next step would be to block the url which you notice in the status bar of your screen. for example in the address bar i write google.com but notice u.cruze3.cn or i try to go to yahoo.com and notise the same url then block this url in the Proxy or in the firewall.

Step 3

Now run norman malware cleaner. This will remove all the infected files from your computer.

Step 4

Now we have to repair winsock for that go to registry.

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Winsock

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Winsock2

Delete the above mentioned folders then restart your machine.

Now you are free from this spyware enjoy your browsing..............................

I will be looking forward towards your feedback about this post..............

Sphere: Related Content

Innovative Designs and Devices

We all moving towards a fairy tale world where everything looks to be beautiful and perfect from the smallest little non living thing to the more visible creatures. With technology around we are able to live a comfortable life, but is comfortable good enough for us?? don't we wish to live life where everything around us is just like we want it to be?? well i think time is changing technology is advancing we are now moving towards a new world where consumers are having a say in the design, looks and features of every thing being built around us.

Its now end of those fat looking , heavy systems which would only satisfy our technological needs but still lack looks. Now it time for some makeover of devices its been long that we have been seeing things as they are but now we need change we want to get rid of these fat looking heavy device. Here are some new looking devices of 21st century which will change the way how we perceive things.

How about the remote control in shape of Apple??

Well well it gone be one fine experience to play with. Sony is expected to give our old fashioned remote a new look it will look like an apple














How about a Digital Pot Lets Plants tell you their demands???

A new Digital pot is being developed which will automatically tell us about what are the needs of the plant..............


These happens to be only just a few examples of our new devices. If you wish to see more then

Here is the link : smashingmagazine

Sphere: Related Content

Nokia 6110 Navigator

Finnish Mobile handset giant Nokia has unveiled a new smart phone mobile device Nokia 6110 Navigator which has the capability of navigating to a particular location using satellite images with inbuilt magnetic COMPASS & Global Positioning System.
Some of the noticeable features of Nokia 6110 Navigator are:

• Voice-guided 3-D GPS Navigation
• 2 megapixel camera with 4x digital zoom, integrated camera flash.
• Suppport for 3G Network.
• Video Calling.
• FM radio with Visual Radio.
• Push email with attachments.

Nokia has the collection of Nokia Maps 2.0 for 170+ countries maps to its database and maps could be used on its GPS enabled cell phones and could be used to browse LIVE streaming GPS navigation on mobile.You can easily track Geo magnetic directions, longitudes & latitudes with help of this mobile. It is also helpful in Drive Directions using one of the available 2 modes "Fastest Path Mode" & " Shortest Path Mode", besides them there is 3rd mode for pedestrians directions. It also provides information about the speed at which you are driving your car.

In INDIA navigator comes with pre-installed maps of eight cities including Delhi and NCR, Jaipur, Ahmedabad, Pune, Mumbai, Chennai,Bangalore and Hyderabad. These maps include the locations and details of roads, restaurants, hotels, banks, ATMs, schools, colleges, petrol pumps, hospitals and medicine shops, and other places of interests.

In India it is costing around Rs.13,500.

After my first experience with this mobile I will say the navigation system is really helpful but it can be dice at times for locations which are under development like Gurgoan. But thats not something to worry for since you can easily do away with this problem by simply downloading the latest maps. I think its a cool and helpful device to have.

Sphere: Related Content

Microsoft's Windows7

As i had predicted few months back when i posted about increasing need for parallel processing will bring in the need for Tabbed Viewing in File System Explorer. Well Finally Microsoft's New Windows7 has implemented it. In my previous post i had mentioned about the advantage of implementing it and also showed snaps from my project in which i had implemented Tab Viewing.

Some of the features of Windows 7 are:

• Tabbed Viewing for increasing the support for parallel processing.
• A New Disk Usage Analyzer which provide in-dept detailed analysis.
• Support for Virtual Drive.
  
• A new Website Blog and Portal Designer.
  

Here is a video showing how Windows7 would look like......


It gives me a feeling that Microsoft's Windows 7 gives user more power with customizing abilities and its gone be a cool new interface with some lovely new user friendly features....................

Link to some More Video's of Windows 7 : Windows7
Link Previous Post:Future Looks Of MyComputer

Sphere: Related Content