Tag Archive: virus


Another MS Monday

Filed under: IT CrowdLeave a comment
March 1, 2004

Okay so today’s troubles weren’t exactly Microsoft related. I was scheduled along with another coworker to attend an online Made2Manage virtual class. I was first to log in and called in soon after for the voice side of the class. Probably about 10 minutes into the class I loose sound in the phone. So I informed the instructor that I was heading up to the coworkers office to attend from there. Then I found she too was not getting sound. All of the office was down! We could call each other inside the office and receive DID calls from the outside, but no incoming to the main number nor could we pick up an outside line to make calls. So I borrowed a cell phone from someone and call our Executone office and they were going to call back on the cell. Needless to say… this techie could not figure out how the dang thing worked to answer it! I kept bringing up the address book. Then when I got it figured out, it wasn’t the call I was waiting for! Oh well, they showed up and fixed it after some time by just resetting the cards. Learning more and more each time he comes out to fix us up. I was telling him if he kept that up they would become obsolete.

Me and the family went to our home town this weekend. Didn’t want to since we had planned to for Easter too. I figured we’d better now before it got any closer. It was supposed to be a non event visit. Turns out they made it a combined birthday party on Sunday for my daughter and nephew who’s birthdays was on the 22nd. We were only there for about 24 hours. Sometimes those short trips are the best but they also kill the weekend. I’d say most of my weekends feel like three days but this kind of trip made it feel like one day. I had a great talk with my grandmother. She is a devout Catholic/Presbyterian. Attends church both Saturday and Sunday to both churches. She also tithes to both! I gave her the “Purpose Driven Life” book for Christmas. I almost thought it was the most meaningful gift I ever gave her. She expressed a satisfying thankfulness for the gift. This trip I see she has read 7 chapters. Doesn’t have a lot of time to read it she says. Not sure if that is the case but rather a hard to swallow conviction maybe. Her beliefs go deeper into tradition than I could expect her to give up. She thinks the death of so many churches is because of the parents. She thinks having a personal relationship with God means feeling his presence as a physical touch. She prays in memorized prayer. She has a problem with the woman’s position God has given them in the world. This was an awesome opportunity to tell her about what my relationship was like. I told her that the death of so many churches are due to their inability to change tradition to accept younger people. Our church is well aware of this and employs ongoing changes to the music worship ever year. Not to mention many other youth inviting places to server. Having a relationship with God could include feeling his touch, but there is a more indescribable feeling when you are close to Him. Having a continual chit-chat with Him throughout the day. Not getting stuck in repetitive meaningless chants. The Lutheran church we attend there sounds so robotic! Every prayer is written in the handouts and there seems to be no prayer from the heart. Everyone prays with their eyes open reading the words instead of listening. Not going to mention the off key tone deaf singing. But then again God does love all forms of worship! My point here is finding the reason why churches are dying today. If God has answered me, he has mentioned that nothing will save these dying churches. Only new born-again churches will rise. Some will occupy the same buildings, but most will not be of the same denomination. Religion is spelled as “D-O”, what I can do to get what I want. Christianity is spelled “D-O-N-E”, what has been done already. Jesus has already made the biggest sacrifice for our eternity and we can’t repay him. To attempt to repay him is an insult. Like paying someone back for giving you a birthday present! I would be insulted for getting the gift back. So I pray that my grandma would think about what I had said and that God would open her mind to a new rebirth.

I think I’m going to just give up on the virus updates. There are just too many to keep up on to mention here. I recommend updating your data files every hour! :D

Last Friday I determined this SCSI tape drive we have here has a bad motor for driving the tape reals. Talked with Certance, who handles Seagate tape hardware now. The tech said I needed to call their warranty dept for a swap and pay ~$165 for a refurbished unit that has a warranty of 90 days. The gal I spoke with wants $250! So I flat out said she must be pulling my leg because I could get one elsewhere for less without sending them my broken one. Without the core they would charge another $500 something! So I have now found a few sites selling refurbished units for less like I said without having checked, plus some do 90 days and others do 1 year!

Was unable to post Thursday. Bresnan had upgraded some hardware causing major outages and thus changing my IP again. I had a bigger skuff about this with our business account and the fact that we pay for a static IP. I wanted a discount because of this as well. Point being that they missed our account for calling before the outage. I want to make sure they understand that we are serious about keeping the same IP we pay extra for. On the flip side I got a new bill from USA Digital. They charged us $150 for not returning the cable modem the corporate office already conceded that we own and said they would let the local office know. In my talking with the corporate office again, they got that straightened… I wasn’t going to bring it up but now that this communication problem keeps rolling around with them, I had to mention that we have not been getting our $5 discount for the past 2 years then. So she was going to check into that and get back with me. Sometimes it doesn’t pay to keep dragging your feet. I was going to just let it go, but since they just want to milk us I couldn’t resist.

Tags: , , , , , ,
Comment

The Pain of Conviction

Filed under: IT CrowdLeave a comment
February 19, 2004

The Men’s Mentoring Ministry meeting went off last night. Got out about 10PM. Made for a long evening spent at the church with the normal Wednesday night service before that. I mentioned what I guessed the meeting would be like yesterday. I wasn’t too far off! What I feared most was that we’d all be lined up and those in the known click crowd would be team members and hand pick from those on the wall for teammates. But as I had guessed it… the place was packed with very ambitious guys wanting to disciple and mentor. That is awesome you know! A rather large number on hand were very open about speaking out and even against some ideas. Today I (as one who didn’t speak up) emailed the leader of the ministry my thoughts and suggestions. As I am already a part of a couple mentoring groups wasn’t looking for more ppl. I wanted more resource information and training opportunities. The outcome of this meeting has possibly opened my accountability partners eyes to a real need for commitment in getting together. We both suffer sins of the flesh yet need mentors ourselves.

The home PC is still not working in Windows. I had gone into safe mode and removed the hotfix driver and the hardware device listing. Again… in normal mode it detected the device and installs it. Up to the install everything runs fine, but after it’s installed it crawls again. Checking the BIOS I only have the option of PCI or AGP as the video selection. Oddly I did notice the on-board NIC was enabled which I changed, as well as sound was disabled!?! Sound was never a problem however and to the best of my knowledge the change made no difference. So I’m running out of plans. I guess next I just need to go with the flow. You know… “can’t beat ‘em, join ‘em”. Well I will try deleting the Matrox driver and keep the Intel installed or just dump them both. Then try reinstalling the Matrox drivers later. Currently the display properties do show that it is using the Matrox drivers. My guess is that a shared library got overwritten.

Got some progress out of the QC wireless today! Found a driver and firmware update available. The new config utility works great and easier to get around in. Only one problem and that is it’s a bit slower in bringing up the network. But hey, it beats having to set the WEP password every boot.

This week must have had a hex put over the DLT tape backup unit. Friday one workstation was turned off by mistake. Monday the boss turned his PC off. Tuesday had a tape failure. Wednesday I accidentally left the tape cleaner in the drive. However I was able to remember that type of error will start the job the moment it gets a writable tape and so I had the correct tape in for Wednesday. Tonight will prove the broken spell. I should ping the bosses PC since he left on vacation…

Yet another virus out this afternoon! ClamAV calls it Worm.SomeFool, Symantec coins it W32.Netsky.B@mm. So far we have had only four.

This afternoon I offered a suggestion to the church IT manager. Currently the sermons online are in the RealAudio format. It is also packaged as a streaming method. I mentioned that several ppl have asked me how to download them. This proves to be a much larger task for them than they expected. View the ram file for the actual URL and wget the ra file to your disk. Then I run a vplayer command that plays it through RealAudio to a wav file, then I use that to burn an audio CD. What’s so hard about that? :D So I suggested offering a couple quality versions of a mp3 format. He took the bate! So now he wants me to draw up a plan for the transition. We don’t want to scare the folks already used to this system at hand. Cool, then we could measure the stats to see what ppl like. Now if I could figure how to incorporate using Linux to do this from home. Time to think about this now.

Tags: , , , , , , ,
Comment

Who’s DOSing Me Now?

Filed under: IT CrowdLeave a comment
February 17, 2004

Finally getting around to posting today. Was meaning to do all kinds of things the past couple days but time keeps slipping by.

Loading up my usual tabs in Mozilla, I noticed my family photo gallery site was running rather slow. Then I notice that there was 8 guests on the site! My poor little server! The load was rather low tho around 0.37 at times. It was my upload on the cable modem that was the bottleneck. Turns out that some web forum was on to a couple of my photos of the World Trade Center and Baghdad. They were not my photos for sure… I had run into them while carousing through someone’s FTP site. One is 14MB and the other is 16MB. The density of the 14MB photo of the WTC is rather packed. It takes a good CPU to process this size of image. So this forum post was mostly about how their computers either gulped it up or died in the process. Some did complain about how slow it was not really knowing it was from a cable modem. They wrote it off to all of them hitting at once. There was easier ways of finding who the referrence was but I just noticed a ref when I was tailing the access log. So I jumped on their forum and posted a question as to “where the heck did you find these photos?” The poster responded that he noticed it from another forum. They were all rather nice folks… a DSL forum from the UK. The easier less fun way I found the original forum was form the httprefs log from the PostNuke CMS I use. This turns out less posts but more hits. Actually I should recalculate. The second forum seemed to pop in with several different ref pages so I would have to say today’s did make a bigger presence. The first forum hits came yesterday. I didn’t even notice. The fun part was that I discover that the guy who posted the original post yesterday happens to live here in Billings! Now I did show this at our last LUG meeting in January or maybe December. This guy had a birthday on January 14th turning 18. I only know one guy who could have been there but it seemed rather strange from the quality of his posts. Seemed to be Windows type questions and this guy is a hard core Linux guy. So I hesitate to place my bets on him. Will have to update later.

This same guy showed us a cool thing to do with SAMBA clients; smbclient -M . I was going to email him to ask what that was but another friend I had been talking with for most of the day via ysm (ICQ) informed me. What this does after executing the command is lets you type a message then ctrl-d to end and send to a Windows PC. So I popped one off to our receptionist and said “I know what you did last summer!” She immediately ran over knowing it was me since it does say who it was from. She thought it was pretty funny. So I sent the same to our backup receptionist only I added “All your bases are belong to us!” She didn’t respond much to that. However after I confessed, our receptionist remembered that phrase when they both started work there. I sent a couple test faxes to our main fax machine via fax software. The former receptionist seemed a little frazzled so I didn’t want to freak them out too bad. Anyway the receptionist caught onto it and I fessed up to that. So now they probably think I’m really some kind of hack prankster.

Earlier in the day I had been bouncing back and forth between a few projects that for the life of me don’t know what kept me going back and forth. I was troubleshooting that Quickbooks deal and trying to get the wireless connection on the secure AP working. Also trying to get this Orinoco antennae converted to use a SMA connector. I first needed to figure which of the hundreds of connectors I needed. Not sure that will be too easy since I’m sure it will require a special order and some way to crimp it. I think I’ll just get another Linksys card. They seem to have bigger antennae. The Quickbooks deal may be at an end sadly. The install to my bosses laptop failed too. So this means the data is messed up. So unless I can get it wittled down to something like the last 6 months of data, I don’t know if I can help much. However I did find that a new CD for his broken 2003 version could be replaced for $20. I also found some error logs that showed more detail about what errors were repaired during the upgrade. None however show failed attempts to fix the data. Like most of the day went, this paragraph is depicting how I bounced around so much. The wireless AP WEP I had been using before was incomplete. I am male! It was right in from of me when I wrote it down the first time. The dang thing was word wrapped! Who would ever think they would word wrap a 26 double digit form box screen? Linksys.

Well it seems another new virus hit today. Got the first couple form the Boulder LUG list then later they started coming into the company system. Our scanner calls it Worm.YoursID but Symantec calls it by several names W32.Beagle.B@mm mainly. This one seems rather wicked for forging addresses like I have ever seen so not sure what it’s purpose is yet. My guess is that this one was poorly written because they have less random points. You can ban about 4 domains and a handful of known attachments.

Tags: , , , , ,
Comment

The Dueling ISPs

Filed under: IT CrowdLeave a comment
January 29, 2004

Just as I was leaving to head home last night I get a call from Bresnan trying to set up a time to schedule our install for Internet connection at our CNC shop downtown. Not knowing the time he agreed to call back first thing in the morning. With the cold temps the past weeks our CNC shop has been having great difficulty with their wireless connection with USA Digital. Being very close to the tower on the rims across from the Conoco refinery posed a problem during the winter months. The steam and vapors coming out of Conoco has been so thick the connection would fail to the Internet. So I thought I’d call Bresnan to find out about business service thinking they aren’t ATT@Home any longer, why would they restrict their service still? They actually have great service plans! At any rate, I also called our current provider OneEighty to hear their offer. They have DSL for cheaper but slower as well. It would take a bit longer to provide the install also. They would also take over our normal lines making it cheaper in the long run. I needed to call Bresnan back to cancel the installation. A while later Bresnan calls back with the deal of a lifetime proving that cost was my issue. They offered twice the speed for the lower cost and dropped the installation fee! Ooh that reminds me I need to inform OneEighty too now.

Just got off the phone wthi M2M. We’re going to do a WebEx session today! Lets pray this does the job.

So I guess the second strain of this latest virus is out: mydoom.b. Not sure I have seen this yet unless my system thinks it’s the A strain still. I had to turn off notification of the virus to it’s destination. Strange it took my coworkers this long to start asking questions about all these virus notices. So now only I get the notifications. I cheer when I see a virus by a different name tho :D

After 2 hours and 45 minutes on the phone with M2M at $165 per hour, we got the SQL2SQL update done! Turns out it was some drab technique ADS used to install our Made2Manage system. They assured me it wasn’t something I did. So I’m glad to have this behind me and we are now progressing without ADS.

Tags: , ,
Comment

Virus Haven

Filed under: UncategorizedLeave a comment
January 27, 2004

It started yesterday… got a few new viruses called Worm.SCO.A by our ClamAV email scanner. Of course I couldn’t find any info by that name. Looked at Symantecs latest info on new viri and W32.Novarg.A@mm looked most promising. They rated it a category 4 out of 5 being the highest. Seems this one is a call to all zombies to attack www.sco.com. They are notorious for attacking Linux companies claiming ownership of Unix code. So I have spent part of the day looking for email statistical applications to start tracking some of this type of activity. Seems that this has been the heaviest hitting email I’ve ever seen.

M2M has closed my case last night. This doesn’t make me happy since every single problem listed still exists. Sometimes I feel they need to try desperately to close cases by a certain amount of time. They haven’t spent any time on this case of mine because any time spent on it was by my calling them because I was tired of waiting on them to call back on my mission critical issues. After meeting a lot of their staff when I went to Indianapolis last spring, I had a better appreciation for them. Now that they seem to have forgotten what we look like they tend to fall back into their routine of sell sell sell instead of fix fix fix.

Surprisingly a lot of spam containing links to their sites for unsubscribe instructions actually work! Some seem to host about a thousand different companies so you end up seeing the same screen but I think they are legit for each company. I definitely don’t use the ones who only accept unsubscribes via email only. For one I wouldn’t want to take the time forging the address. Was a little surprised to see one site today that sends back a email for confirmation. So my next thing will be to create a blacklist I think I mentioned yesterday with helping Scott out with. Man! Speaking of Scott… he still hasn’t added a virus scanner to his system. Just trusts the stripping of attachment types to do the work. So now with this sco virus he has to temporarily strip zip files even. Those are fairly acceptable files used to compress file or files contained for delivery on floppy or email. Pretty soon he’ll just have to strip all attachments because just about anything can contain virus these days. Hmm… if I were devious I’d have to create some virus that could be transmitted via jpg. The jpg would even be viewable, just that the header would contain some type of virus. They have already proven that cryptographic data could be stored in them.

Well it turns out that ADS IFE reinstall uninstall didn’t do the trick. So back to opening up that case!

Tags: , , ,
Comment
Follow

Get every new post delivered to your Inbox.