Month: May 2011

Prevent synattack in Windows server 2003

To prevent synattack in Windows server 2003 please follow this- Save the following in synattackprotect.reg and double click it to merge- Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters] “EnableTCPChimney”=dword:00000000 “SynAttackProtect”=dword:00000002 “TcpMaxHalfOpen”=dword:00000064 “TcpMaxHalfOpenRetried”=dword:00000050 “TcpMaxPortsExhausted”=dword:00000005 “TcpMaxConnectResponseRetransmissions”=dword:00000003

Continue Reading

Windows log file locations

Please note the path may differ with respect to the application installed or configured (IIS) SMTP log files C:\WINDOWS\system32\LogFiles\SMTPSVC1 Webalizer other statistics logs IIS -> domain -> website -> right click -> open -> You can find account name / logs ex: e:\billgates\logs e:\billgates\microsoft.com IIS logs IIS -> domain -> properties -> Website -> properties […]

Continue Reading

Reported attack site

To remove “Reported attack site” banner from the website, website should be checked for Malware or malicious links. The following sites are helpful in identifying the malware in a site. 1.  sitecheck.sucuri.net/scanner/ 2.  unmaskparasites.com Still the domain needs to be checked with the help of a programmer to remove it thoroughly. Once it is cleared, […]

Continue Reading