IT-AID

Last build:: Sun, 09 Mar 2008 00:04:18 -0600
Language:: en
Feed URL:: http://feeds.feedburner.com/it-aid

RSS FEED IDEMS: IT-AID

The Ten Most Dangerous Online Activities
Most computer users have no idea how dangerous their online behavior is.

No matter how many times you warn them, employees still manage to poison their computers with new malware because they "just couldn't resist looking at the attachment." Other common goofs: downloading software for personal use, lowering firewalls to speed up a connection and even leaving their passwords stuck to their laptops.

The following is our list of the ten most dangerous things people do online, along with some explanation of the risks associated with each. The list is based on input from information technology professionals and is arranged in descending order of danger.

Stick this list up on your office door. Better yet, post it to the company bulletin board. If it keeps just one person from making a big mistake, it will have been worth the effort.

1. Clicking on e-mail attachments from unknown senders
Haven't we beaten this one to death already? With all the computer training courses, news reports, magazine articles and memos from the IT department, are there any Internet users left out there who don't know they aren't supposed to open e-mail attachments from strangers?

Apparently, there are. IT managers, consultants and other experts maintain that of all the dangerous things corporate end users do, opening e-mail attachments is still the most potentially damaging. Even with today's new range of exploits, e-mail attachments continue to be the most likely means of contracting viruses, worms, Trojan horses and other digital infections. And because these attachments usually contain applications or executable files, they have the greatest potential to instigate the complete takeover--or destruction--of an enterprise PC.

But shouldn't end users know this by now? An August survey by security software vendor Finjan offers an interesting perspective. In a straw poll of 142 U.K. office workers, Finjan found that 93% of respondents knew that attachments and links found in e-mail messages could contain spyware or other forms of malicious code embedded in them.

The problem isn't that users don't know the risks--it's that they can't help themselves, Finjan said. In the survey, 86% of the workers admitted they open attachments and click on links without being sure if it's safe to do so. And despite frequent warnings, 76% of those surveyed said they routinely open what they assume to be viral marketing files, such as funny videos, jokes or Web sites.

"It's still the most dangerous thing end users do," says Richard Stiennon, founder of IT-Harvest, an IT consulting firm.

2. Installing unauthorized applications

What do you mean, "No IM?"

If you're like many organizations today, prohibiting instant messaging is out of the question. IM is rapidly becoming a standard corporate communication tool, even as the number of IM exploits rises. Like any other peer-to-peer application, instant messaging comes with some serious risks, but once your users are hooked on IM, they are hooked.

"IM is too useful to completely restrict. If you try to lock it down but don't provide any outlet for employees to stay in touch with the outside world, users will find a way around your security policy," says Thomas Ptacek, a researcher with Matasano Security. "It's 2006. Your users are going to use IM."

IM isn't the only peer-to-peer app your users may be installing on their desktops. There's also Kazaa and other free file-sharing utilities that let users share documents, software and music. But this freedom has its cost. "These applications can increasingly be the source of new viruses," says Rob Enderle, principal analyst with the Enderle Group, an IT consultancy.

And like other unauthorized or unregulated communication, peer-to-peer apps create the risk of bad stuff coming in and sensitive corporate or personal stuff going out.

It's safest to standardize by using one of the popular IM platforms, such as AIM and MSN, says Ptacek. "The only question is whether you're going to be able to monitor and control it or not."

The best defense is to ensure employees have only user--not admin--privileges on their machines, says Daniel Peck, a security researcher with SecureWorks. And have a written corporate policy about what users can and can't do with these apps.

"And never install programs unless you know what they do, whether they are 'comm' programs or otherwise," says Gary McGraw, chief technical officer of Cigital.

Your desktop firewalls can block specific ports, for instance, and a host-based information processing system can also help you lock down your desktops. "But that's not foolproof," warns Peck. If your organization can't live without instant messaging, you can require IM sessions to be encrypted, he says.

3. Turning off or disabling automated security tools
It still happens: A user, frustrated by the slow performance of an Internet service provider link or the constant exclusion of specific types of files, finds a way to turn off the firewall on his remote PC--or even at a branch office. Then, as if that's not bad enough, he "forgets" to turn the firewall back on, leaving that site open to all sorts of attacks until someone from IT finally recognizes the problem and reactivates the barrier.

And it isn't just firewalls: Every day, users reschedule automated virus updates, remote security patch installations or requests to change their passwords. Security stuff, they say, is an administrative hassle and keeps them from doing their "important" work.

The disabling of carefully evaluated, state-of-the-art security technology might be the most dangerous thing that users regularly do, according to the Enderle Group's Enderle. "This is what keeps many of us [IT and security professionals] up at night," he says. "Security applications take some overhead and may lower performance [of the end station]. Folks will turn them off as a result."

Cigital's McGraw agrees. "Sometimes you just have to postpone the old monolithic virus scan so you can get some work done," he notes. "There's always a trade-off--make sure you make the right one."

Most enterprise firewalls and antivirus applications now contain configuration options that enable IT to eliminate the "turn it off" option from the user's desktop, McGraw observes. In many cases, it may be better to force the user to accept a patch or a slow ISP connection--and deal with the complaints--than to leave the company's systems open to remote attack, experts say.

4. Opening HTML or plain-text messages from unknown senders
While most end users today are aware, if not respectful, of the dangers associated with opening e-mail attachments from strangers, many are not aware of the threats that may lie in a normal, everyday text or HTML message that contains no enclosure. Most of these users are those who have not updated their computer training lately and still labor under the illusion that only e-mail attachments can contain malware.

Many experts now believe that HTML mail poses a threat that may eventually be as serious as the traditional e-mail attachment. HTML text--and increasingly, images--can be infected with spyware, and in some cases, executable code. In July, experts at iDefense Labs, the security research arm of Verisign, discovered a new, relatively simple method of embedding shell code into commonly-loaded Web images, such as computer graphics, online photos or PDF documents.

HTML files may contain Javascript, ActiveX controls or macros that can allow an attacker to gain control of a PC or turn into a remotely controlled zombie, noted Finjan in a white paper issued last month. "The vast majority of Web pages contain one or more types of active content, with an unmistakable trend toward increasing use of active content in Web pages," the company said.

In a study of the Web-surfing habits of some 15,000 business users, Finjan found that about 6.9% of HTML traffic contained at least one content type that violated the security policy of the enterprise involved. Studies such as these have caused some enterprises to restrict the use of HTML e-mail, or even disallow it altogether.

"There is plenty of active-content spam out there, and phishers use it, too," says Cigital's McGraw. "When in doubt, delete it without looking at it. If it's important, real mail, the sender will try again--or maybe even pick up the phone."

5. Surfing gambling, porn or other dicey Web sites
One of the oldest abuses of corporate Internet links, the downloading of porn, gambling and other objectionable data, is another still-popular activity that falls into the "I thought we had that fixed" category.

Most companies today have established that such content, even when technically legal for consumers, could create a hostile working environment for employees, subjecting the company to legal or punitive action. Any human resources department will tell you that these pursuits are a major no-no, and most IT professionals will tell you that they have deployed some sort of content filter to restrict access to objectionable content.

However, the problem still runs rampant in some organizations. In fact, an investigation of the U.S. Department of the Interior published last month turned up some alarming data regarding the online surfing habits of its 80,000 employees.

In a study of one week's worth of computer logs, the U.S. Office of the Inspector General discovered over 1 million log entries in which 7,763 DOI computer users spent more than 2,004 hours accessing game and auction sites. Extrapolated over the course of a year, these shopping and gaming binges could account for 104,221 hours of lost productivity--amounting to more than $2,027,887 in lost costs, the OIG said.

The OIG also found that a significant number of employees were accessing pornographic sites, many for periods of 30 minutes to an hour. Four employees were found to have downloaded egregious volumes of pornography, including child pornography, and each was prosecuted and sentenced for anywhere from 10 months to eight years in jail.

The DOI had implemented Web site monitoring and blocking software, but users were able to get around it, the OIG said. In a final spot check of the DOI systems in August, OIG investigators were able to access both pornographic and gambling sites on three of the department's four main computer systems, despite the presence of content filtering and blocking tools.

Online gambling and pornographic sites also are "becoming a frequent source of infection via 'drive-by downloads' and 'zero-day exploits,'" observes Richard Stiennon, president of IT-Harvest.

6. Giving out passwords, tokens or smart cards
The password problem is as old as computers themselves. Despite years of trying, however, no one has come up with a workable solution.

In a study published just this week by global research firms Nucleus Research and KnowledgeStorm, companies' attempts to tighten IT security by regularly changing and increasing the complexity of passwords is having no effect on security.

Despite years of IT warnings to the contrary, about one in three people still write down their computer passwords somewhere near the machine, either on a piece of paper or in a text file on a PC or mobile device, the researchers said.

"This is really a lot like Mom and Dad buying a great new security system for the house, and Junior leaving the combination under the doormat," said David O'Connell, senior analyst at Nucleus Research, in a published interview. "Passwords are high maintenance: People forget them; people lose them; they have to be reset."

Some experts also say that employees can be too trusting of acquaintances, colleagues and family members who may "borrow" their passwords or authentication tokens, exposing them even more broadly to loss or theft. This is a particular risk among telecommuters or road warriors who may give out their passwords to help a friend or relative. "You might trust the employee, but you have to draw the line at friends and family," says one expert.

The researchers at Nucleus Research and KnowledgeStorm suggested that enterprises should look to increasingly improving authentication technologies, such as single sign-on and biometrics, as potential answers to the age-old problem of password management. Online payment vendors Pay By Touch and UPEK earlier this month unveiled a finger-sensor payment service, TrueMe, which lets users access account information through a biometric fingerprint scanner.

7. Random surfing of unknown, untrusted Web sites
Browser-based vulnerabilities are becoming one of the most popular targets of attackers on the Web. Just ask Microsoft and Mozilla, which have been busy patching new vulnerabilities the past few months. If your organization gives users free reign to surf the Web during or after business hours from the corporate network, beware.

In addition to the well-documented cross-site scripting (XSS) vulnerabilities floating around, there's also a lot of adware and spyware. You shouldn't put it past that 20-something intern to download music, for instance, and inadvertently contract some malware as a result.

Even if your corporate policy restricts Web access, the 20-somethings may not honor it. "This is something that young employees, bored security guards and interns are more likely to do," says the Enderle Group's Enderle. "It's an attractive nuisance and one of the reasons for a proxy server."

Internet Explorer 7.0, which was released by Microsoft on Monday, and Firefox 2.0, which was released on Tuesday, are expected to help browser security--at least until attackers start cracking them. But that may be wishful thinking: IE7's first bug was reported just hours after it went live, although Microsoft says the issue is a component in Outlook Express rather than in IE7.

"Attackers have started to compromise enterprises through the use of browser-based and other client-side vulnerabilities," says David Goldsmith, president of Matasano Security. "This also applies to home users who are becoming increasingly more security-savvy. Hopefully, the releases of Internet Explorer 7.0 and Firefox 2.0 will make it even more challenging for attackers to compromise the browser."

So if you're going to restrict Web access, how do you determine what sites you can trust? "If you're really paranoid, surf with active content disabled, use Opera or Firefox, and run your browser with very little permission [settings]," says Cigital's McGraw.

8. Attaching to any old Wi-Fi network
There's nothing more soothing than a good cup of java (lowercase) and a free Wi-Fi connection at your local coffee shop. But watch that guy sitting at the next booth--he may be hacking into your laptop over that very same Wi-Fi link.

Your network's users are even more at risk if their wireless card uses the Wireless Access Protocol, which is notoriously simple to hack. A hacker can use a sniffer and grab your corporate user name and password, for instance, or infect you with a worm, says Daniel Peck, a security researcher with SecureWorks.

Even if your employee is only sipping coffee and working offline, an attacker could use that employee's wireless card to access his machine--and eventually, your corporate network.

It's tempting for a user on the road to jump on the closest Wi-Fi connection they pick up while waiting at the airport or some other public place, but "there is no way of ensuring that the networks they connect to aren't run by a malicious attacker," says Matasano Security's Goldsmith. "While the unsuspecting user surfs the Web, an attacker could be using a man-in-the-middle attack to monitor their traffic--or even worse, use a client-side attack toolkit to compromise their machine."

A personal firewall can help, says the Enderle Group's Enderle--as long as your users keep it turned on.

"Attach away. Just tunnel through with SSH or a VPN client," says Cigital's McGraw. "Also be aware of low-level attacks, and don't do anything too sensitive."

But the only way to ensure that your users won't get hacked via Wi-Fi is to have them disable their wireless card altogether while they work from public places, says Matasano Security's Ptacek. "The safest reasonable attitude right now is that even browsing available wireless networks is risky."

9. Filling out Web scripts, forms or registration pages
If your users could actually see a hacker looking over their shoulder as they logged onto a Web site or typed sensitive data into a registration page, maybe then they would think twice. But since keyloggers and XSS don't have a human face, you'd better hope your users are hanging out on sites encrypted using secure sockets layer (SSL)--and know just what constitutes sensitive corporate data.

"Most Web sites handling sensitive info use SSL to protect the data in transit--check for that," says Cigital's McGraw.

Users are more likely to get hacked if they use the same user name and password for most every site they visit--a habit that puts their personal data in jeopardy, as well as the company's.

And even a trusted site can have an XSS exploit embedded in it. All it takes is for a user to read a message on a bulletin board that contains malware, and an attacker could gain control of the user's browser session.

Remote sessions should be encrypted using SSL. But SSL isn't foolproof--it has its own litany of problems and weaknesses, such as its susceptibility to man-in-the-middle attacks and keystroke loggers. "SSL has had some issues, but it's the best thing out there," says SecureWorks' Peck.

The bottom line is that consumers are more likely to enter sensitive data into Web scripts or registration pages than enterprise users, says the Enderle Group's Enderle. "Employees seldom have the opportunity to do this," he says. "Of course, we probably don't know about it when they do, suggesting this problem could be vastly worse than it looks."

10. Participating in chat rooms or social networking sites
The very same parents who frantically try to keep their kids off of MySpace are now flocking to business-oriented social networking sites like LinkedIn, either from home or at the office. They join a colleague's "network" on LinkedIn, post messages and maintain their own presence on the site. That's much safer than MySpace, because it's just like a professional organization, right?

Wrong. Social networking sites are a malicious social engineer's dream come true.

"The biggest security challenges businesses face with business social networking like LinkedIn is the sheer amount of information that a social engineer can learn by doing simple searches," says Matasano Security's Goldsmith. "Attackers can find out who your business partners, vendors and clients are simply by viewing your shared connections."

There's simply no way for LinkedIn and other sites to validate a member's employment record, so an attacker can claim to work at Matasano and find out which current and past employees are on the site. "Services like LinkedIn try to guard sensitive employment information by restricting it to colleagues--you have to have worked with Dave Goldsmith before to be able to click on him and see his work history, or have him come up in a search for 'Matasano,'" says Matasano's Ptacek. "But anyone can sign up to LinkedIn and claim to have worked for Matasano."

Users can also inadvertently leak sensitive company data in a message board post with a buddy, for instance. It may reach eyes for which it wasn't intended, or they may not realize that chatting about what they're doing at work today may lead to a corporate data breach. "It's different than having drinks with a buddy after work," says SecureWorks' Peck.

Aside from a chatty user, a browser can also be a weak link. "ActiveX controls and their browser can be used by an attacker to get into the corporate network," Peck says. "There are a lot of Web app vulnerabilities we've seen."

Even if you have a "closed circle," that doesn't mean you don't touch the outside world. Just clicking onto the site of a buddy's buddy can get you into security trouble. "Every subpage you go to in LinkedIn or MySpace is like going to a whole different Web site," Peck says. "It's most risky when you're going to the sites of people you don't know."

Aside from the social engineering threat, there's also the very real threat of getting infected with XSS, keyloggers, worms and spyware (just ask MySpace users). "There's going to be vulnerabilities in the software," Peck says.

If an enterprise allows access to social networking sites, it must ensure that users are wary of whom they're communicating with and what type of sensitive information they may be exposing. The bad news is that you may not know until it's too late.

"You should assume that anything you post to a social networking site is public," says Matasano's Ptacek.

http://www.forbes.com/2006/10/25/microsoft-mozilla-malware-ent-tech-cx_sb_1025smallbizresource_print.html

Sat, 08 Mar 2008 20:08:02 -0600
How to Remove Happy99.exe (ska)
This Happy99.exe (ska) virus or worm as it is better described, This worm is attached to newsgroup and e-mail messages as an attachment called Happy99.exe. You cannot get infected with this virus just by reading a newsgroup or e-mail message. You have to execute the attachment by opening it. Generally, the person who sent it does not know that they are sending it out. If you didn't execute the attachment, you can just delete it and move on. If you execute an infected attachment, it will display a firework display, once its been activated every email you send will have the file attached. When someone else opens it, the virus spreads and the destruction continues.

Manual Removal of Happy99.exe

Steps marked optional are not absolutely necessary and are completely safe to skip. If you're not comfortable with DOS, get someone knowledgable to help you with this. I cannot make guarantees of perfect safety since its a manual removal, Perform these at your own risk. If you have Windows NT, you don't have to follow the removal steps.

1. Click Start, then Shut Down, then "Restart Computer in MS-DOS mode", then click Yes. It's important to exit Windows in order to be able to replace the file WSOCK32.DLL which Windows normally has in use.
2.At the DOS prompt type this exactly and press enter at the end of each line:

CD \WINDOWS\SYSTEM

3. Delete SKA.EXE and SKA.DLL by typing

DEL SKA.EXE
DEL SKA.DLL

If you get "File not found" you're either not infected or in the wrong directory. Make sure you're in your Windows System directory; check to see if you followed step 2 exactly.
4.Copy WSOCK32.SKA to WSOCK32.DLL by typing

ATTRIB -R WSOCK32.DLL
COPY WSOCK32.SKA WSOCK32.DLL

Answer "Yes" if it asks if you want to overwrite WSOCK32.DLL.
WSOCK32.SKA is a backup of the original WSOCK32.DLL. You are replacing the modified DLL with the original. If you get a "Sharing violation" make sure you followed step 1.
5.Optional Delete WSOCK32.SKA by typing

DEL WSOCK32.SKA

You can leave WSOCK32.SKA on your system. It is a copy of your original WSOCK32.DLL Do not delete WSOCK32.SKA if you are unable to replace WSOCK32.DLL with WSOCK32.SKA.
6.Return to Windows by typing

EXIT

7.Optional Delete Windows Registry Key.
Click Start, then Run, then type regedit in the text box, then click OK. Click HKEY_LOCAL_MACHINE, then Software, then Microsoft, then Windows, then CurrentVersion. Under RunOnce check for SKA.EXE and select it if it is there. Press delete and then click Yes. Close Regedit. Don't change anything else without making a backup of the registry first. If you don't find SKA.EXE in the registry, it doesn't mean you're not infected. SKA.EXE is only added to the registry if HAPPY99.EXE is unable to modify WSOCK32.DLL when you run it. Also, you'll only find it in the registry if you haven't rebooted since you ran HAPPY99.EXE.
8.Optional Choose Start, Programs, Accessories, Notepad, choose File, then Open then type C:\WINDOWS\SYSTEM\LISTE.SKA in the File Name box. Warn the people on the list, then delete LISTE.SKA. Make it clear to the people you warn that they won't be infected unless they ran happy99.exe, to avoid alarming them unnecessarily. If you haven't sent out any infected e-mails, there won't be a LISTE.SKA.
9. Optional Delete the HAPPY99.EXE file. The location of HAPPY99.EXE will vary depending on where you saved it. You can delete it simply by dragging it to the Recycle Bin from within Windows or whatever method you prefer. You may still have some messages with HAPPY99.EXE attached in your mailbox. These cannot do anything unless you run them. You can delete them if you want to or just ignore them. 10.Optional If you aren't sure whether WSOCK32.DLL is infected, choose Start, then Find, then "Files or Folders". Then type WSOCK32.DLL in the "Named" box. In the "Look in" box choose drive C: or whatever drive you have Windows on. In the "Containing Text" box type "ska.dll" without the quotes. Then click "Find Now". If you don't find any files, that means that wsock32.dll isn't the modified version. If you don't have the modified WSOCK32.DLL, the virus has no way to attach to e-mails, even if you have SKA.EXE, SKA.DLL, and WSOCK32.SKA in the Windows System folder. If you have SKA.EXE in the RunOnce registry section, and you haven't deleted SKA.EXE, then the virus will try to modify WSOCK32.DLL the next time you restart the computer.
Make sure you type the instructions exactly including spaces and punctuation. You might want to print out the removal instructions so you have something to refer to. If you're having trouble with the DOS commands, get a local person to help you with them. It's hard to know exactly how you're typing the DOS commands and what your exact situation is without seeing it in person.
Tips:
Having a clean, locked, boot disk or CD on file helps with rescue and virus removal efforts.
Only modify the registry as explained in the steps above to avoid serious operational errors.
Locking a clean wsock32.dll file protects it from being modified by a virus in the future.

Facts about Quad Core and Dual Core Processors
Dual core and quad core processors are all the rage at the moment and both companies are advocating the need for these new processors as according to their marketing departments two processors can do more than one, and four … well, you get the point. But at the risk of repeating myself, although some things obviously need repeating, don’t expect to see any major leaps in performance from these. Two cores don’t mean twice the performance, nor do four cores quadruple the performance. Confusing? Not really, just a different game altogether, a few years ago things were clear-cut and obvious, every increase in processor clock speed equaled better performance, or rather all software would automatically take advantage of the faster execution. So basically more MHz meant more performance, simple really.

Not today though, you’d think that two processor cores running side by side would surely be faster than a single core right? And four cores working simultaneously would certainly run circles around it? Well no, only if the application that you are running is multithreaded and thus can take advantage of the extra cores, remember that about 99% of all software available today is programmed to run on a single core processor. Hence isn’t multithreaded and thus in the vast majority of cases you won’t see a speed up, as the second, third or fourth core is just sitting there idling, or handling simple operating system tasks that don’t eat up a lot of processing power in the first place. But wait a minute, you must have that backwards, dual and quad core processors speed up your operating system considerably and hence overall performance goes up. Well, no again, if running the operating system was such a resource hog and would eat up heaps and heaps of CPU-cycles then the difference between a 1GHz Pentium III and a 3GHz Dual Core processor would be astronomical wouldn’t it, well, rest assured, it isn’t.

So what’s needed to get these dual and quad core processors to offer genuine leaps in performance and make us forget about single core processors altogether? Well, basically the same thing that needs to happen with 64-bit support: software needs to be written, or a whole lot less likely, rewritten, to take advantage of these extra cores. And most software we use today, that includes your favorite browser, email client, etc. is not going to see much of a speedup, if any, from these optimizations. No, for dual and quad core processors to show their strengths you need some heavy applications that can benefit from parallel execution such as video and photo editing software, games, simulation and CAD/CAM software, etc. Don’t expect the mundane office applications most of us use during the day to run any faster though. So without software support dual and quad core processors simply are not going to shine, they’ll just be a novelty.

Tue, 04 Mar 2008 08:27:30 -0600
This can save your life! (ICE)
We all carry our mobile phones with names & numbers stored in its memory. But nobody, other than ourselves, knows which of these numbers belong to our closest family or friends.

If we were to be involved in an accident or were taken ill, the people attending on us would have our mobile phone but wouldn't know who to call. Yes, there are hundreds of numbers stored ; but which one is the contact person in case of an emergency? Hence this 'ICE' (In Case of Emergency) Campaign.

The concept of 'ICE' is catching on quickly. It is a method of contact during emergency situations. As cell phones are carried by the majority of the population, all you need to do is store the number of a contact person or persons who should be contacted during emergency under the name 'ICE' ( In Case Of Emergency).

The idea was thought up by a paramedic who found that when he went to the scenes of accidents, there were always mobile phones with patients, but they didn't know which number to call. He therefore thought that it would be a good idea if there was a nationally recognized name for this purpose. In an emergency situation, Emergency Service personnel and hospital Staff would be able to quickly contact the right person by simply dialing the number you have stored as 'ICE.'

For more than one contact name, simply enter ICE 1, ICE 2 and ICE 3 etc. A great idea that will make a difference!

Let's spread the concept of ICE by storing an ICE number in our mobile phones today!!!

Please spread/forward this.

It won't take too many 'forwards' before everybody will know about this. It really could save your life, or put a loved one's mind at rest.

ICE will speak for you

when you are not able to do so.

Sat, 01 Mar 2008 11:06:17 -0600
How Internet video is clogging the pipes
NEW YORK - Why are our Internet lines in danger of jamming up?

One way of looking at it is this: Internet service providers have been serving us an all-you-can-eat buffet for years. That has worked great, because they've had more food than they knew what to do with and we've enjoyed the simplicity of a flat price and our pick of the dishes.

But every year, our appetites have been growing. Some of us have turned into real gluttons, taking advantage of the pricing to eat 10 times as much as the majority of customers. The food is running out, and diners are starting to get in each other's way at the table.

Now, Internet service providers are starting to limit the availability of dishes that are popular with the big eaters (controlling traffic). They're also considering telling us to stick to two helpings per person (limiting monthly downloads). They might end up doing both.

The consumer ISPs at the forefront of these trends are cable providers. Comcast Corp. has become the poster case for traffic control by hampering some file sharing, and Time Warner Cable Inc. is testing monthly bandwidth caps.

This is hardly an accident, because congestion is a greater threat to cable companies.

In the basic configuration, each cable serves about 500 households, which share about 40 megabits per second of download capacity. If each household gets Internet service with a maximum download speed of 10 mbps, that means four of them downloading at full speed can saturate the connection.

"Fundamentally, the cable companies have come at this from kind of a disadvantage," said Rob Malan, chief technology officer of Arbor Networks, which provides traffic-management equipment. "One greedy person on that network knocks the whole neighborhood offline."

Cable companies can employ various tricks to increase capacity. For instance, they can devote additional channels to data, or they can "split the node" to reduce the number of households on each cable. A new modem technology called Docsis 3.0 that is starting to roll out this year can increase download capacity on a cable to 160 mbps.

But these solutions cost money. Stan Schatt, an analyst at ABI Research, estimates that cable providers need to spend $24 billion through 2012 to upgrade their networks.

Phone companies like AT&T Inc. and Verizon Communications Inc., which operate digital subscriber lines, aren't immune to congestion. But since phone lines aren't shared, bottlenecks for DSL service are deeper in the system, on routers and fiber-optic links that are easier to upgrade.

It's nothing new that cable and phone companies have sold more bandwidth than they can provide to everyone at the same time. The practice of "oversubscription" is as old as telecommunications, and it's the only way to build a network consumers can afford. The phone network, after all, has never been able to handle everyone trying to call at once.

Meanwhile, Internet use keeps climbing, with video being the big driver in recent years. Google Inc.'s YouTube, which started up in 2005, already accounts for about 10 percent of Internet traffic, according to Ellacoya Networks (which is being acquired by Arbor Networks).

"If you want to think of video, think of it as the cholesterol that has the potential to clog the arteries of the Internet," said ABI's Schatt.

(http://www.gmanews.tv/story/80221/How-Internet-video-is-clogging-the-pipes)

Thu, 28 Feb 2008 21:30:34 -0600
How to obtain access when you forgot your administrator password
I have often ran across computers that I needed to gain access to for data recovery, but I didn't have the administrator password to access the hard drive. Since in many situations, there is just one administrator account I can't log into another administrator account and change the password so I have to rely on other methods. I could put the hard drive into another computer as a slave and gain access (sometimes) or I could try installing a second copy of the operating system in parallel and gain access but there must be a better way.

That way is to try to reset the administrator password to something you do know and allow you to access to the user profile and the data. In most cases, this is the best solution. However, you have to make sure the data is not encrypted using the Windows XP Encrypting File System (EFS) or other encryption. If the data is encrypted, you probably will not be able to gain access to those encrypted files by changing the administrator password.

Petter Nordahl-Hagen's Offline NT Password & Registry Editor

This is absolutely one of the best free tools to reset the administrator password and gain access that I have ever used. It modifies the encrypted password in the registry's SAM file allowing you access to the account in Windows NT/2000/XP/2003/Vista systems.

There is an image file to create a bootable floppy disk or bootable CD to modify the admin password and access NTFS partitions. You do not need to know the old password to set a new one. It will also offer to unlock disabled or locked user accounts (a very helpful feature). The program was just updated on April 9, 2007 to include Vista support.

Please visit the site by clicking on the link below to download a CD image or floppy image of this great program.

LoginRecovery.com

Another option is to decrypt the password and show you the actual administrator password. A great site for doing this is loginrecovery.com. Basically, you download a small program to extract the password from the computer, then you submit the encrypted password file to their site and they will recover the lost password. Of course, you need a computer with Internet access to upload the file and find the password.

With this option, the administrator password is not changed so you wont lose access to EFS encrypted files. Visit their site by clicking below

Although there are probably other options to recover an administrator password, I find the two option shown above to be the quickest and easiest ways to either change or discover the password and allow you access to the user profile and data stored on the hard drive.

Tue, 26 Feb 2008 09:05:37 -0600
Installing Windows XP on a SATA HD
I've got a couple of e-mail asking me on how they can install Windows XP on a SATA HDD I've also encountered this same question posted in forum many times so I thought I should write an article on this problem. The problem is when they try to install Windows XP, they got the problem of not able to find any hard disk drives installed. The hard drive is detected in BIOS and also start up POST but not in Windows setup. Here is the exact error message.

"Setup did not find any hard disk drives installed in your computer. Make sure any hard disk drives are powered on and properly connected to your computer, and that any disk-related hardware configuration is correct. This may involve running a manufacturer-supplied diagnostic or setup program. Setup cannot continue. To quit Setup, press F3."

First method is to change the SATA Mode to IDE in BIOS. My computer BIOS is Phoenix AwardBIOS 6.00PG and I can change the SATA Mode to IDE by going to Integrated Peripherals > SATA Devices Configuration > SATA Mode [RAID] and change to [IDE].

Now I am able to install Windows XP as normal.If you’re unable to change RAID mode to IDE or disable SATA in BIOS, then you need to download SATA RAID from your motherboard manufacturer’s website, extract the drivers to a floppy disk and then insert the floppy to your computer during Windows XP installation.

Insert Windows XP CD and boot it up. You should see a message that says “Press any key to boot from CD…” Simply hit any key and it’ll start to boot from CD. Pay attention to the next blue colored windows setup screen. When you see a message that says “Press F6 if you need to install a third party or RAID driver…” at the bottom bar, immediately hit F6 key.

After loading some files, you will come to a screen that says the following:

Setup could not determine the type of one or more mass storage devices installed in your system, or you have chosen to manually specify an adapter. Currently, Setup will load support for the following mass storage devices(s):

<>

* To specify additional adapters, CD-ROM drives, or special disk controllers for use with Windows, including those for which you have a device support disk from a mass storage device manufacturer, press S.

* If you do not have any device support disks from a mass storage device manufacturer, or do not want to specify additional mass storage devices for use with Windows, press ENTER.
Enter floppy drive with SATA drivers and press S. It will present a list of drivers which it read from the disk earlier. Select the appropriate driver and continue the Windows XP installation. The setup will continue and this time it will recognize the SATA hard disk drive in your PC. This problem is quite common nowadays compared to last time because a lot of computers now are using SATA hard drive with better motherboards that has RAID.

Thu, 28 Feb 2008 10:27:56 -0600
Vista, Leopard, Linux to compete in hack contest
Apple's OS X, Microsoft Windows, and Linux operating systems are to be pitted against each other in an ethical hacking contest in Vancouver next month.

Run by the organizers of the CanSecWest Vancouver 2008 security conference, the competition is a repeat of the "PWN to Own" contest at CanSecWest in 2007, when security researchers competed to win a MacBook Pro and $10,000. The prize was shared between security researchers Dino Dai Zovi and Shane Macauley for their successful use of a zero-day QuickTime vulnerability, which they used to compromise the MacBook. The vulnerability was subsequently found to also affect Windows platforms.

The hacking competition at CanSecWest 2008 will pit the Linux, Leopard OS X, and Vista operating systems against each other, according to CanSecWest organizer Dragos Ruiu.

"The fur is flying right now about which is more secure--Linux, Vista, or Leopard," Ruiu said on Thursday. "Linux guys have their propaganda, Windows guys are saying this and that, Apple guys have buried their heads in the sand as usual. I guess the proof is in the pudding."

The prizes for the contest will be "several laptops," according to Ruiu. When he spoke to ZDNet UK, on Thursday, the security researcher was in Tokyo partly to organize a CanSecWest event and partly to go "shopping for laptops." Ruiu had not yet decided which laptops to buy, but said he was looking for something "new and thrilling."

"We want the prizes to inspire lust amongst geeks," said Ruiu. "It's going to be something lustworthy."

Last year the $10,000 prize money was supplied by security firm TippingPoint. This year's contest still needs a sponsor, and it is possible that the nature of the contest could still change, said Ruiu, although he declined to say what other form it might take.

(http://news.zdnet.com/2100-1009_22-6229577.html)

Thu, 28 Feb 2008 10:29:44 -0600
Don't answer a cell phone while it's being charged

Commentary:
Versions of this warning email have now been circulating for several years. The warning may have been originally derived from an August 2004 Indian news report that describes the electrocution death of a man who answered his mobile phone while it was charging. According to the report, 31-year-old K. Viswajith "was electrocuted when he attended a call on the mobile phone that was put for charging."

Charging Cell Phone
In 2005, another report identified the victim as a Nigerian man and used very similar wording to the example quoted above.

While the original report of Mr. Viswajith's death is probably true, details about the incident are quite vague, and I could find no subsequent reports that confirm the actual cause of death. Even if the charging cell phone was the cause of death, the incident does not mean that using a mobile phone while it is charging always represents a significant risk of electrocution. This is clearly untrue. Of course, any device that is connected to mains power is potentially unsafe if the device is faulty or is used inappropriately.

If an inherent risk of electrocution were present during normal battery charging, mobile phone manufacturers would ensure that customers were aware of it. They would not expose themselves to multi-million dollar legal actions by neglecting to make users aware of this potential risk. There would also be well-publicized warnings from government authorities and various consumer groups. Moreover, the media would certainly not remain silent on the issue.

When describing the incident, the message states that "after a few seconds electricity flowed into the cell phone unrestrained" and thus electrocuted the user. Obviously, this is not what is meant to happen, and would only occur if the charging and battery system were not working as intended. An article about battery charger cubes on Howstuffworks.com explains how such cubes transform normal household AC current down to a low voltage DC current. Thus, if the charger is working correctly, no high voltage charge should ever reach a person using the device.

Notably, the U.S. Consumer Product Safety Commission does not identify using a cell phone while it is being charged as an unsafe practice in its article about Cell Phone Battery Safety.

This warning may also be fuelled by numerous incidences of exploding cell phones. There have been a number of well-documented reports about mobile phone batteries exploding and these explosions have injured some people. In late 2007, a version of the warning began circulating that contained the following photographs of an exploded cell phone on a bed and the injury apparently caused to the phone user:
Exploded cell phone on bed Exploded cell phone on bed 2

Hand injured by exploding cell phone Hand injured by exploding cell phone
While the images are certainly compelling, they are not related to the supposed incident described in the warning message, which circulated for years before the photographs were attached. Although the victim was apparently burned on the hand by the exploding cell phone, there is no suggestion that he was electrocuted as described in the message. It seems that someone has attempted to add credibility to the warning message by tacking on photographs of an unrelated cell phone explosion incident.

In the majority of cases, faulty, counterfeit or damaged batteries cause such explosions. It should be noted that these battery explosions do not only happen while the phone is being charged. Phones have exploded while in the pockets of users or while being used in the normal way, not just while they were plugged into chargers.

Thus, the information in the email could be considered true only to the extent that there is potential for mishap whenever an electrically connected device is used. There is absolutely no evidence to suggest that a compatible and correctly connected, non-faulty phone charger is as inherently dangerous as is implied in this email. Many cell phone users regularly make or receive calls while the phone is being charged. With hundreds of millions of cell phones being used constantly around the world, any inherent danger of electrocution would have long since been discovered and publicized.

Thu, 28 Feb 2008 10:31:21 -0600
Mobile Secret Codes: Nokia
Secret Codes Of Nokia Mobiles:
A friend shared this mobile codes with me so I also might as well share this to all of the readers of this blog. Here are some of the mobile codes for Nokia you can try.

Below we present secret codes of nokia mobile phones which are very useful for people who unlock phones and for amateurs of this topic. These special key sequences entered fromkeyboard of phone allow you to get some important information like IMEI number, release date, software version and much more. You can also choose default language, activatenetmonitor ect.

1610/1630
*#170602112302# (software version)

1610/1611
IMEI number: -*# 0 6 #Software version: -* # 1 7 0 6 0 2 1 1 2 3 9 2 #Simlock status: - # 9 2 7 0 2 6 8 9 #
2110
*#9999# (software version)
2110i/2110e
*#170602112302# or (depends on model)*#682371158412125# (software version)
NOKIA3110
*#06# -IMEI
*#3110# -Software version
##002# - allows to turn off voice mail.
*#7780# - restore factory settings
*#746025625#(or *#sim0clock#) - to check if clock of sim (SIM-Clock) can be stopped (SIM-Clock-stop is akind of standby mode which saces battery)
*#92702689# (or *#war0anty#) -"warranty code:"- you have to enter one of the following codes:
6232 (OK)displays month and year of production date (ie "0198")
7332 (OK) - displays date of last repair - if there is (ie. "DATE NOT SAVED")
7832 (OK) - displays date of purchase - if there is (ie. "DATE NOT SAVED")
9268 (OK) -displays serial number
37832 (OK) -sets purchase date in format MMYY (MM - month, YY - year)- attention: you can set it only once, so beware !
87267 (OK)-displays message "Confirm Transfer?" - meaning is unknown (?)
* # 9 2 7 0 2 6 8 9 # -Simlock info
*#31# (call) -sets if your phone no. will be hidden or not (works only in some networks)
*#76# (call) -sets if target phone number when you call should be displayed (works only in some networks)
*#77# (call) -(work s only in some networks)
*#33/35# (call -displays message "Service not active".
**31# (call) -your no. will not be showed to others when you make a call

3210
*#06# -IMEI
*#0000# -software version
*#92702689# (or *#war0anty#)- enters service mode.
*3370# -Turns on sound encoding system - Enhanced Full Rate.
#3370# -Turns off sound encoding system Enhanced Full Rate .
*4720# -Turns on battery save mode - saves about 30 % of energy.
#4720# -Turns off battery save mode.
xx# -Replace xx with desired phonebook entry - press # and you will see it on display.
51XX
*#06# -IMEI
*#0000# - Software version
*#92702689#( or *#war0anty#) Enter service mode.
*3370# -Turns on sound encoding system - Enhanced Full Rate.
#3370# -Turns off sound encoding system - Enhanced Full Rate.
*4720# -Turns on battery save mode - saves about 30 % of energy.
#4720# -Turns off battery save mode.
#pw+1234567890+1 -provider lock status
#pw+1234567890+2 -Network lock status
#pw+1234567890+3 -Provider lock status
#pw+1234567890+4 - SimCard lock status
NOKIA 61XX
*#06# -IMEI
*#0000# ;-*#99 99# (Nokia 6130)
*#92702689# (or *#war0anty#) Software versionEnter service mode.
*3370# -Turns on sound encoding system - Enhanced Full Rate.
#3370# -Turns off sound encoding system - Enhanced Full Rate.
*4720# -Turns on battery save mode - saves about 30 % of energy.
#4720# -Turns off battery save mode.
NOKIA8810
*#06# - IMEI
*#0000# -Software version
*#92702689# (or *#war0anty#) Enter service mode.
*3370# -Turns on sound encoding system - Enhanced Full Rate.
#3370# -Turns off sound encoding system - Enhanced Full Rate.
*4720# -Turns on battery save mode - saves about 30 % of energy
#4720# -Turns off battery save mode - saves about 30 % of energy

NOKIA99OO
*#06# -IMEI
*#682371158412125# -Software version
*#3283# -Displays week and year of manufacture, ie. 1497 means 14th week of 1997.

NOKIA 911O
*#06# IMEI
*#0000# SOFTWARE VERSION
*3370# Turns on sound encoding system - Enhanced Full Rate.
#3370# Turns off sound encoding system - Enhanced Full Rate.
*4720# Turns on battery save mode - saves about 30 % of energy.
#4720# Turns off battery save mode.

NOKIA 81XX
*#06# IMEI*#8110# Software versionxx# Replace xx with desired phonebook entry - press # and you will see it on display
*#92702689# (or *#warOanty#)
"Warranty code:" - you have to enter one of the following codes:
9268 (OK) displays IMEI (International Mobile Equipment Identification)
6232 (OK) displays date of manufacture in format MMYY (MM - month, RR - year)
7832 (OK) displays date of purchase
7332 (OK) displays date of repair or upgrade
37832 (OK) sets date of purchase in format MMYY (MM - month, RR - year) - attention: you can set it only once, so beware !!!
87267 (OK) transmits user data/move data do service PC

Mon, 18 Feb 2008 21:35:54 -0600
Mobile Secret Codes: Ericsson
Ericsson Mobile Secret Codes:T10

*#06# for checking the IMEI (International Mobile Equipment Identity)

>*<<*<* for checking the firmware revision information (software release) >*<<*<*>> n-row text strings. if pressing yes you can check the phones text programming in currently selected language.

Shortcut for Last Dialed call menu

If you for some reason don't want to enter the 'Last Dialed calls menu' by using the 'YES' key you can use the following key
stroke instead: First '0' then '#'.

Access menu without Sim card

To access to the menu in your phone without having a card inside do the following: type **04*0000*0000*0000# When display say "Wrong Pin" press NO and you have access to the all menus: Info, Access, Settings, Calculator, Clock, Keylock On?, Mail, Phone book. NOTE if you try this on your phone may stop at Keylock On? menu and you´ll have to take your battery out to turn the phone on again. And this will not care about Phone lock!

A way to (un)lock your cell phone on to the network(subset):

1. Press <**< style="font-weight: bold;">Warning: The Service Provider (SP) Lock menu is used to lock the cell phone to the SP's SIM card. Once the cell phone is locked to a specific operator, if one inserts a SIM card from a different operator the phone will refuse to accept it! The cell phone will however accept another SIM card from the same operator. To activate/deactivate this lock one needs a special secret code that is not available to the end user. Your phone can be locked to a service provider FOREVER by doing this! If an invalid code is entered all five times, the menu will exit and be deactivated! Any further attempt to activate the NCK/NSCK lock Menu will result in the response "Not allowed"! However the NCK/NSCK lock can be recover through a direct clearing in the EEPROM.

Message Report

When you writing a message, place at the start of it the code *0# and continue with your message. It's job is like nokias report. It gives you information about the sended message.

T18

*#06# for checking the IMEI (International Mobile Equipment Identity) Information you get from the IMEI:

XXXXXX XX XXXXXX X

TAC FAC SNR SP

TAC = Type approval code
FAC = Final assembly code
SNR = Serial number
SP = Spare

To access SIM-Locking menu of your phone, press: < * [CLR] < style="font-weight: bold;">Message Report

When you writing a message, place at the start of it the code *0# and continue with your message. It's job is like nokias report. It gives you information about the sended message.

T28

*#06# for checking the IMEI (International Mobile Equipment Identity)

>*<<*<* for checking the firmware revision information (software release) >*<<*<*> 1-row text strings. if pressing yes you can check the phones text programming in currently selected language.

>*<<*<*>> n-row text strings. if pressing yes you can check the phones text programming in currently selected language.

The Service Provider (SP) Lock

The Service Provider (SP) Lock menu is used to lock the cell phone to the SP's SIM card. Once the cell phone is locked to a specific operator, if one inserts a SIM card from a different operator the phone will refuse to accept it! The cell phone will however accept another SIM card from the same operator.

To activate/deactivate this lock one needs a special secret code that is not available to the end user.

Here is how to activate the menu:

<**< style="font-weight: bold;">Shortcut for Last Dialed call menu

If you for some reason don't want to enter the 'Last Dialed calls menu' by using the 'YES' key you can use the following key
stroke instead: First '0' then '#'.

Message Report

When you are writing a message, place at the start of it the code *0# and continue with your message. It's job is like nokias report. It gives you information about the sended message.

388

*#06# for checking the IMEI (International Mobile Equipment Identity)

*#0000# to reset the phones menu-language to English.

>*<<*<* for checking the firmware revision information (software release) >*<<*<*> 1-row text strings. if pressing yes you can check the phones text programming in currently selected language.(298 entries)

>*<<*<*>> n-row text strings. if pressing yes you can check the phones text programming in currently selected language.(160 entries?)

The Service Provider (SP) Lock menu is used to lock the cell phone to the SP's SIM card. Once the cell phone is locked to a specific operator, if one inserts a SIM card from a different operator the phone will refuse to accept it! The cell phone will however accept another SIM card from the same operator.

To activate/deactivate this lock one needs a special secret code that is not available to the end user. (not even to you... or is it ? in case please let me know!)

<**< style="font-weight: bold;">Shortcut for Last Dialed call menu...

If you for some reason don't want to enter the 'Last Dialed calls menu' by using the 'YES' key you can use the following key
stroke instead: First '0' then '#'.

Access menu without Sim card ...

To access to the menu in your phone without having a card inside do the following: type **04*0000*0000*0000# When display say "Wrong Pin" press NO and you have access to the all menus: Info, Access, Settings, Calculator, Clock, Keylock On?,Mail, Phone book. NOTE if you try this on the GH688 your phone may stop at Keylock On? menu and you´ll have to take your battery out to turn the phone on again.

GA628

*#06# for checking the IMEI (International Mobile Equipment Identity)

*#0000# to reset the phones menu-language to English.

*#103# then YES Time and date will be shown.

>*<<*<* for checking the firmware revision information (software release) >*<<*<*> 1-row text strings. if pressing yes you can check the phones text programming in currently selected language.(298 entries)

>*<<*<*>> n-row text strings. if pressing yes you can check the phones text programming in currently selected language.(160 entries?)

The Service Provider (SP) Lock

The Service Provider (SP) Lock menu is used to lock the cell phone to the SP's SIM card. Once the cell phone is locked to a specific operator, if one inserts a SIM card from a different operator the phone will refuse to accept it! The cell phone will however accept another SIM card from the same operator.

To activate/deactivate this lock one needs a special secret code that is not available to the end user.

Here is how to activate the menu:

<**< style="font-weight: bold;">Shortcut for Last Dialed call menu

If you for some reason don't want to enter the 'Last Dialed calls menu' by using the 'YES' key you can use the following key
stroke instead: First '0' then '#'.

Bat. level indicator when turned OFF

When the phone is turned off and the phone is not changing - the bat. level can be seen for a short period of time by pressing the 'NO' key quick once (it has to be quick!) and then wait for about 2 sec. The bat. level will now be shown in the display at its normal position.

Access menu without Sim card

To access to the menu in your phone without having a card inside do the following: type **04*0000*0000*0000# When display say "Wrong Pin" press NO and you have access to the all menus: Info, Access, Settings, Calculator, Clock, Keylock On?,Mail, Phone book. NOTE if you try this on your phone may stop at Keylock On? menu and you´ll have to take your battery out to turn the phone on again.

Alarm Clock Menu

Go to MissedCall Empty the list Press the -> key for a second or two The option Menu size turns up Choose 'yes' and go from there.

An alarm clock turned up too but it never rang. I think this was because there is no clock in the phone.

Free phone calls using the GA628

This trick has only been reported working on PREPAID GSM CARDS and in some countries and with some sw versions.
The prepaid GSM SIM CARD is a kind of "SIM card" which only has a sertant amount of credit on it (like a normal phonebox telecard)... if it can be traced? - we don't know...

Well..here's the trick you dial the no. normally and press YES. While "connecting" is shown on the screen, the following procedure should be carried out: Press CLR then 0 then # and then NO (twice) so as to switch OFF the phone. You can then still speak on the phone while it is switched off but the SIM card does not record your calls which will lead to FREE phone calls in some countries.. we hope!!

Another variant of the code

Make a Call, while the phone says Connecting type 083# (the position 83 must be empty! ), when phone says Pos Emtpy, press the NO key and turn off the phone.

If you can make the call with the phone turned off you will face a problem when you need to hang up the phone...the only way for you to do that is remove the battery...???

Sun, 17 Feb 2008 09:34:40 -0600
Mobile Secret Codes: Motorola
A friend shared this mobile codes with me so I also might as well share this to all of the readers of this blog.

Here are some of the mobile codes for Motorola you can try.

Motorola Codes:

Motorola 920
---------------

Press menu and type one of these numbers and press OK:

11 = Status Review
13 = Available Networks
14 = Preferred Networks
22 = Select Keypad Tones
25 = Require SIM Card PIN
26 = Language Selection
32 = Repetitive Timer
33 = Single Alert Timer
34 = Set IN-Call Display
35 = Show Call Timers
36 = Show Call Charges
37 = Call Charge Settings
38 = Reset All Timers
43 = Reset All Timers
45 = Show Last Call
46 = Total For All Calls
47 = Lifetime Timer
51 = Change Unlock Code
52 = Master Reset
53 = Master Clear (Warning!! May result in deleting the Message Editor!!!)
54 = New Security Code
55 = Automatic Lock
63 = Battery Saving Mode

Free call tip

1 Enter the phone number
2 Enter OK
3 Type *#06#
4 Press Button C
5 And finally press the button for power off.

You should now be able to talk without being billed.

The 54# Tip:

Type 1#, 2#........54# on the keypad (when you're not in the menu) to get the phone number used for with this key when speed dialing.

Motorola 930
--------------

Press menu and type one of these numbers and press OK:

11 = Status Review
13 = Available Networks
14 = Preferred Networks
22 = Select Keypad Tones
25 = Require SIM Card PIN
26 = Language Selection
32 = Repetitive Timer
33 = Single Alert Timer
34 = Set IN-Call Display
35 = Show Call Timers
36 = Show Call Charges
37 = Call Charge Settings
38 = Reset All Timers
43 = Reset All Timers
45 = Show Last Call
46 = Total For All Calls
47 = Lifetime Timer
51 = Change Unlock Code
52 = Master Reset
53 = Master Clear (Warning!! May result in deleting the Message Editor!!!)
54 = New Security Code
55 = Automatic Lock
63 = Battery Saving Mode

Free call tip

1 Enter the phone number
2 Enter OK
3 Type *#06#
4 Press Button C
5 And finally press the button for power off.

You should now be able to talk without being billed.

Motorola 930

The 54# Tip:

Type 1#, 2#........54# on the keypad (when you're not in the menu) to get the phone number used for with this key when speed dialing.

Motorola 6200
--------------

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

These countries has been reported working:

UK (Orange)
AU

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Pin Outs

Numbered left to right, keypad up, battery down

1. Audio Ground
2. V+
3. True data (TD) (input)
4. Downlink - Complimentary data (CD) (input)
5. Uplink - Return data (RD) (output)
6. GND
7. Audio Out - on/off
8. Audio In
9. Manual Test - ???
10. Battery Feedback
11. Antenna connector

Motorola 7500
-------------

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

IT (model: F16 HW: 5.2 SW: 2.1)

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Pin Outs
Numbered right to left, keypad up, battery down looking

1. Gnd
2. Pos
3. True data (TD) (input)
4. Complimentary data (CD) (input)
5. Return data (RD) (output)
6. Audio gnd
7. Audio out
8. Audioin

Motorola 8200
--------------

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

These countries has been reported working:

ES, AU, NL, BE

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Pin Outs

Numbered right to left, keypad up, battery down looking

1. Audio Ground
2. V+
3. True data (TD) (input)
4. Downlink - Complimentary data (CD) (input)
5. Uplink - Return data (RD) (output)
6. GND
7. Audio Out - on/off
8. Audio In
9. Manual Test - ???
10. Battery Feedback
11. Antenna connector

Motorola 8400
-------------

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

These countries has been reported working:

ES, AU, NL, BE

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Pin Outs

Numbered right to left, keypad up, battery down looking

1. Audio Ground
2. V+
3. True data (TD) (input)
4. Downlink - Complimentary data (CD) (input)
5. Uplink - Return data (RD) (output)
6. GND
7. Audio Out - on/off
8. Audio In
9. Manual Test - ???
10. Battery Feedback
11. Antenna connector

Motorola 8700
--------------

*#06# for checking the IMEI (International Mobile Equipment Identity)

Activate RBS

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

These countries has been reported working:

AU, IT, SG, DE, ES, ZA

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Motorola CD 160
---------------

Press menu and type one of these numbers and press OK:

11 = Status Review
13 = Available Networks
14 = Preferred Networks
22 = Select Keypad Tones
25 = Require SIM Card PIN
26 = Language Selection
32 = Repetitive Timer
33 = Single Alert Timer
34 = Set IN-Call Display
35 = Show Call Timers
36 = Show Call Charges
37 = Call Charge Settings
38 = Reset All Timers
43 = Reset All Timers
45 = Show Last Call
46 = Total For All Calls
47 = Lifetime Timer
51 = Change Unlock Code
52 = Master Reset
53 = Master Clear (Warning!! May result in deleting the Message Editor!!!)
54 = New Security Code
55 = Automatic Lock
63 = Battery Saving Mode

Free call tip

1 Enter the phone number
2 Enter OK
3 Type *#06#
4 Press Button C
5 And finally press the button for power off.

You should now be able to talk without being billed.

Motorola CD 520
----------------

Press menu and type one of these numbers and press OK:

11 = Status Review
13 = Available Networks
14 = Preferred Networks
22 = Select Keypad Tones
25 = Require SIM Card PIN
26 = Language Selection
32 = Repetitive Timer
33 = Single Alert Timer
34 = Set IN-Call Display
35 = Show Call Timers
36 = Show Call Charges
37 = Call Charge Settings
38 = Reset All Timers
43 = Reset All Timers
45 = Show Last Call
46 = Total For All Calls
47 = Lifetime Timer
51 = Change Unlock Code
52 = Master Reset
53 = Master Clear (Warning!! May result in deleting the Message Editor!!!)
54 = New Security Code
55 = Automatic Lock
63 = Battery Saving Mode

Free call tip

1 Enter the phone number
2 Enter OK
3 Type *#06#
4 Press Button C
5 And finally press the button for power off.

You should now be able to talk without being billed.

Motorola d460
--------------

#06# for checking the IMEI (International Mobile Equipment Identity)

Activate RBS

(Note: pause means the * key held in until box appears)
To activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 1 [pause] [ok]
You now have to press the [MENU] and scroll to the 'Eng
Field Options' function with the keys, and enable it.

De-activate RBS

To de-activate RBS type: [pause] [pause] [pause] 1 1 3
[pause] 0 [pause] [ok]
This only works with some versions of software.

What's the use of RBS:

Get Distance From Base Station - Place a call, when it
is answered, press [MENU] until 'Eng Field Option' is
displayed, press [OK], select 'Active Cell', press [OK],
press [MENU] until 'Time Adv xxx' appears, where xxx is
a number. Multiply this number by 550, and the result is
the distance from the RBS (Radio Base Station), in
meters.

Get Signal Quality - press [MENU] until 'Eng Field
Option' is displayed, press [OK], select 'Active Cell',
press [OK], press [MENU] until 'C1' appears. This is the
signal quality. If it becomes negative for longer than 5
seconds, a new cell is selected.

Sun, 17 Feb 2008 08:12:19 -0600
Mobile Secret Codes: Siemens
Siemens Mobile Secret Codes:

C25:

SP unlock *#0003*(secret code 8 digits)#

*#0606# shows you Secret Code, but only without SIM Card.

*#06# for checking the IMEI (International Mobile Equipment Identity)

Resets language to automatic selection : * # 0000 # then Green button

Pin Out (electrical connections)

1- GND
2- SB
3- POWER
4- NC
5- TX
6- RX
7- CLOCK
8- DATA
9- GND MIC
10- HF MIC
11- AUDIO
12- GND AUDIO

Languages:

*#0000#+green phone - choose automaticaly
*#0001#+green phone - English
*#0030#+green phone - Greek
*#0031#+green phone - Netherlands
*#0032#+green phone - French
*#0034#+green phone - Spanish
*#0039#+green phone - Italian
*#0049#+green phone - German
*#0090#+green phone - Turkish

How to change PIN:

**04*old PIN*new PIN*new PIN#

How to check simlock status

*#0606# and then press left soft-key, you will see strange characters, then text ("brak blokad"). If you see for example 260-02, it means the phone is locked to Era GSM. In older models you can use *#06# and see the same information after clicking on left key (you will see IMEI and software version).

S4:

Monitor Mode - how to activate:

Press left soft-key, then 9 (SET UP) 8 (Phone Status). You will see IMEI number, then press left soft-key and in order 7684666 and red phone at the end (monitor mode has been activated). To read information from Monitor Mode - press left soft-key, then 5 (GSM SERVICE) and 6 (Monitor). Monitor mode turns off when you switch off the phone. You must activate it again if you want.

How to see date of software:

Press left soft-key, then 9 (SET UP) 8 (Phone status). You will see IMEI number, then press twice left soft-key, 98, left soft-key, 7684666, red phone (activates Monitor Mode), left soft-key, 56 (turns on Monitor Mode), left soft-key, 98, left soft-key, 7684666, hang up (red phone) >abck to "normal" and then left soft-key, 56.

S6, S8:

If you add to phonebook under 'own phone number' +12022243121 with namez (for example MMI), then you will see something smile.gif

S10, E10:

In phonebook enter +12022243121 as your own phone no. You will see a picture with sun, two palms and greetings.

S15e:

Monitor Mode:

Code: *#7436267*8378# (*#SIEMENS*TEST#)
Hold red phone button until it code disapears.
Menu 3.3.4 Choose frequency.
Menu 3.3.4.1 Automaticaly.
Menu 3.3.4.2 Choose GSM-900
Menu 3.3.4.3 Choose GSM-1800

Menu 10.1 MS info
Menu 10.2 Soft date
Menu 10.2.1 Software version.
Menu 10.2.2 EEProm version.
Menu 10.3 Tst and product info.
Menu 10.3.1 Handware data.
Menu 10.3.2 Date of manufacture
Menu 10.3.3 Service date
Menu 10.3.4 Date of repair.

S25:

Enhanced Full Rate
*#3370# turns on
#3370# turns off

Haft Rate Mode
*#4720# turns on
#4720# turns off.

Languages:

*#0000#+green phone - choose automaticaly
*#0001#+green phone - English
*#0030#+green phone - Greek
*#0031#+green phone - Netherlands
*#0032#+green phone - French
*#0034#+green phone - Spanish
*#0039#+green phone - Italian
*#0049#+green phone - German
*#0090#+green phone - Turkish

How to change PIN2?

**04*old PIN2*new PIN2*new PIN2#

What is my software version?

Menu 8-8-2 press left-softkey when you see IMEI number, or *#06# and then green phone button and then press left soft-key.

How to extend battery life:

IrDA - turn on only when you need.
Turn off automatic network search (6-3)Turn off Vibration alarm.

SP unlock *#0003*(secret code 8 digits)#

*#0606# shows you Secret Code, but only without SIM Card.

*#06# for checking the IMEI (International Mobile Equipment Identity)

Resets language to automatic selection : * # 0000 # then Green button

S25, M35, S35, C35

SP unlock *#0003*(secret code 8 digits)#

*#0606# shows you Secret Code, but only without SIM Card.

*#06# for checking the IMEI (International Mobile Equipment Identity)

Resets language to automatic selection : * # 0000 # then Green button

Sun, 17 Feb 2008 08:23:21 -0600
Delete An "undeletable" File
Are you having a problem deleting a certain file? a lot of us PC users sometimes face this kind of PC problem. sometimes we just let the "undeletable file" inside our pc but after you've read and understand the process on how to delete "Undeletable file" then it will not be a problem anymore. here are the steps to help and guide you to delete the "undeletable file".

follow the steps below carefully

Windows 95/98/ME
- If you are using Windows 95, 98, or Windows ME, the easiest way to remove an undeletable file is to boot to a DOS prompt and manually delete the file. Before you do this, you'll want to make a note of the location of the file including the entire path to it. Follow the steps below to delete these types of files.
- If you already know the path to the file, please skip to Step 7
- Click on Start, Find, Files and Folders
- Type the name of the undeletable file in the Named or Search For box
- Make sure the Look In box shows the correct drive letter
- Click on Find Now or Search Now and let the computer find the file
- Once the file is located, right-click on it and choose properties, make a note of the file location. Usually this is something similar to
  
  c:\windows\system32\file.exe
Close the search box
- Locate a boot disk for your version of Windows. if you don't have a boot disk then follow the steps below to create one:
for windows 95/98/ME
FORMAT /S A:
COPY C:\AUTOEXEC.BAT A:
COPY C:\CONFIG.SYS A:
COPY C:\WINDOWS\SYSTEM.INI A:
COPY C:\WINDOWS\WIN.INI A: