Question

answer all the questions

if you can not, at leaset answer the assigned ones

Windoes Firewa has been andard snce Wndrwa XP In Wndows 3P SP2, was anatied by defadt firewll is designed to protect a compuer or netwark by aontroing inbound and oubound tamc Most fiwats operae wih an implit deny phiosophy. In other wonds, al raic is ocked (mpicit deny) untess there is a nde that explicity alows the traic Windws Firewal on Winarws 7 aso uses an inplcit deny phsophy. The only traffic that is alicwed is the foilowing Taftic that is explicity alowed by an eception or a ue Both iebound and outound nies can be cenfgured Retum trafic that has been requested For esampe, fa uer nequests a web page from a websile the web page is alowed as return aaffic Windows Frewal works as boh a packat nitoring frowall and a stefu Swal PackeString Sewal Apacket ing frewat can Sitar c bmed on P adiress pots and some protcs The fiwall eamines packets indviduly Packats can be aloued or blocked bassd only on what is in each packet A packethering frewal cant evaluale packets based on he entre communikcation Se wal A sa fiwal can monitor the state of a conection in other werds, insead of axamining aach packat individualy, t evaluatos the packats in the convaration This alous a statet iwal to deect and block many atacks As a statetul firewal t can inepect and iter all IPd and IP6 tafic )Use your web beowser te investigate the technical differeace between a virs, a woem and a Trojan horse. a Faom your investigation, give a short working definition of cach of the tems i.Computer vinus ii. Computer worm i Trjan horse b. How ane computer vinuses like biological viruses? c Vrucs exploit flaus in services by targeting ports in order to spread What measures should be takn in ceder to limit these explots? How would this be accomplished? 2) art Wireshark Connect to myututoledo edu look for 3-way sonnection and disconnect Handshakes aWhatis the IP Address of the "myututoledo.edu" Server? bwhat are the Source and Destinarion pots in the "SYN ACK" packet? 3) Rus "netstat-a" fom the commnd prompe on your compater. Consider the olwing oput How is the etput you soe the wne or dif Active Connectieas Prote locsl adtees a.a. ig ddr .0.8.0 Sate TO 0. B. .04.0 . 0 4,04.0 STEN tor 13.0.4.1st TOP 127.0.3.1ls20 274.0. HED a2.0.4.u or 232-1a.3 .b.4.a 4.0-8-018) TOF 82-1 233 12ss.. TOP 332-1 .03132 .61.01 TA ETNING UITNNG or 6-4.0.i44 -4.0.aUBE yer 127.0. O 127.0.l.ia10 180-16..0 vo 1a.3 Notice that each line has the following celumns Pros, Lecal Address, Foreign Address and Sute Ler's eumine each one The name of the finst colm, Proto, sands fe potocel md is eiher TCP or UDP TCP and UDP are two typos of network protocols in the Intemet Noice tat the TCP s all ed wth cither ESTABLISHED or LISTENING S a sa ESTABLISHEDconnections are those tat are actively being usod to trasfer data The LISTENING consections are not cunestly being ased to sfer daa but they nepresent server soware that is neady to accapt and ropand to requests shold they anive The frign and local address partions of cach line are composed of two potions sparated by a cekn-an IP aldes md a port umb. The IP akdros indicaes the merical address of the computer en which the network software is nunning The port mamber indicnes the mbo" anber on that patioular computer foe that particulr service or network coveraticn bYou can ivesigate cach type of sorvice runsing on your machine For exumple, comider the fet ine TCP0300135 6.0n.a0 LISTENING tsays that a service is stming on TC port 135, What type of service typically ns on TCP pert 135 What are sone compater vinuses that have esploted flaws in this service Do a complete imvestigation of each service naning on your computer. Whut services ae nnning on your computer? What is the escstable fle involved in creating the coencction o litesing po d Agoup aled the latemet Assignod Nunsbers Authority docides what servicos nun on what pers What is the sem used to descrbe the ponts assigned by the lternet Assignod Nusbers Athority

Answer 1

Solution

a)

i)Computer Viruses

A computer virus is a program that attaches itself to a program or file so it can spread

from one computer to another computer

ii)Computer worms

Computer worm is one type of virus

The major difference between worm and virus is it will spread from one computer to another computer without human help

Computer Worms used to slow the network by consuming too much memory

iii)Trojan horses

Trojan horse looks like a genuine software but it will do damage if you install and run on your computer

Trojan Horse creates backdoor for all the malware in your system

--

B)

Computer Virus more or less it is similar like biological virus, Biological virus will spread by inserting itself into living cells.

In both computer virus and biological virus insertion of virus is called infection

Antibiotic is required to cure biological virus
Antivirus is required to remove computer virus

--

the c part in the question 1

and question 3 picture is not clear

please repost the question with good quality picture

love to answer

all the best