R: NOD32 FP

[HELP_PC]

But people ,less lucky than you, are probably in troubles and managing the 
issue through recovery console ! 


GuidoElia
HELPPC

-Messaggio originale-
Da: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Inviato: martedì 10 marzo 2009 22.27
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

I did not have to reboot.

Peter


-Original Message-
From: HELP_PC [mailto:g...@enter.it]
Sent: Tuesday, March 10, 2009 2:54 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

But if a reboot should be requested in the meantime ? 


GuidoElia
HELPPC

-Messaggio originale-
Da: Peter Schwarz [mailto:pschw...@syndeotech.com]
Inviato: martedì 10 marzo 2009 19.05
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: MagicJack

[Daniel Rodriguez]

You 'sarcastic' remark, and it was funny, reminded me of the following
conversation;

Homer: Are you saying you're never going to eat any animal again? What about
bacon?
Lisa: No.
Homer: Ham?
Lisa: No.
Homer: Pork chops?
Lisa: Dad, those all come from the same animal.
Homer: Heh heh heh. Ooh, yeah, right, Lisa. A wonderful, magical animal.

On Tue, Mar 10, 2009 at 5:48 PM, Micheal Espinola Jr <
michealespin...@gmail.com> wrote:

> Certainly they put a call out to the Dongle Fairy who wisks through
> your bedroom window in the middle of the night and places a shiny new
> one under your pillow - free of charge - just in time for your morning
> phone cal.
>
> --
> ME2
>
>
>
> On Tue, Mar 10, 2009 at 4:21 PM, Daniel Rodriguez 
> wrote:
> > Ah! But you don't need to be paying for that $19,95. Their EULA states
> that
> > their service is free and that yo don't need the USB interface to a POT
> > Phone. The charge is to get you a phone number in your area. If you have
> a
> > headset/mic then you can use their service to make computer to computer
> > calls.
> >
> > Now, in my case, my dad is 'old school'. He wanted to pay the initial
> $39.95
> > that they initially were offering on the infomercial. I have been using
> > Skype for over two years and only have had to pay for the phone number
> for
> > the few months before I moved to Louisville, KY. I used a local number to
> > Louisville so that the recruiters only called a number with a 502 area
> code.
> > Since all of my brothers and sisters have computer, and Skype, we just
> > needed to get my dad to convert.
> >
> > He now has Skype, and he loves it. He even got the phone number for the
> > year. He was paying over $140 for an old land line through AT&T.
> >
> > If you want to use Magic Jack, by all means, that is your option. To me,
> it
> > was the USB to RJ11 device. If something goes wrong with that item, do
> you
> > need to purchase another one? Or do they provide a replacement at no
> charge?
> >
> > On Mon, Mar 9, 2009 at 4:56 PM, Joe Heaton  wrote:
> >>
> >> Daniel,
> >>
> >>
> >>
> >> Not really arguing your research or anything, but as I mentioned
> >> before,™ve been using Magicjack for almost a year now, with no
> issues��
> >> And you ca���™t beat the price of $19.95/ye¦.not per month, but per
> >> year.
> >>
> >>
> >>
> >> Joe Heaton
> >>
> >> Employment Training Panel
> >>
> >>
> >>
> >> From: Daniel Rodriguez [mailto:drod...@gmail.com]
> >> Sent: Friday, March 06, 2009 8:17 AM
> >>
> >> To: NT System Admin Issues
> >> Subject: Re: OT: MagicJack
> >>
> >>
> >>
> >> I researched this about four months ago. My father saw their TV ads and
> >> was wanting to get one. Talked him out of it and had him sign up with
> Skype,
> >> instead.
> >>
> >> This is what it does; When you get the device, it plugs into one of your
> >> available USB ports. The Installation Software loads the drivers and
> >> application to use the "dongle". You plug a regular phone, be it an old
> >> handset or a wireless, it doesn't matter, into the other end of the
> dongle
> >> and you will get a dailtone. During the installation process the
> software
> >> that comes with the device actually goes out to the Magic Jack's main
> site
> >> and downloads the adminstration software onto your desktop. Its at this
> >> point that you have to sign up for their service.
> >>
> >> While I was looking at the EULA I found out that you don't need the
> dongle
> >> to use their service. You can use a regular headset/mike if you wanted
> to.
> >> All that is needed is a credit card for billing purposes. Well, if that
> is
> >> the case, then why not just use Skype, or some other similar service. At
> >> least with Skype you don't need any additional hardware to make it work.
> >>
> >> A lot of reviews that I have seen have been very negative on this
> product.
> >> But, on that same note, Radio Shack is now selling this item. If it were
> up
> >> to me, I would just have setup Skype on their desktop/laptops and have
> them
> >> use that. There are third party devices that give you a phone handset
> that
> >> plugs into the USB port, some wireless using Bluetooth, that works with
> >> Skype.
> >>
> >> My $.02
> >>
> >> On Thu, Mar 5, 2009 at 11:15 AM, Jason Morris  wrote:
> >>
> >> Thanks everybody for your feedback. ™ll see what comes of it. Right
> >> now we��™re leaning towards buying a couple and letting the users beat
> them
> >> up down in Panama.
> >>
> >> Jason
> >>
> >>
> >>
> >> From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
> >> Sent: Thursday, March 05, 2009 9:53 AM
> >>
> >> To: NT System Admin Issues
> >> Subject: RE: OT: MagicJack
> >>
> >>
> >>
> >> A former co-worker went to work for them and when he found a better job
> >> they tried to hijack his last paycheck in return for their tools (fair)
> and
> >> return of a cash bonus earned working over the Christmas holidays (NOT
> fair,
> >> imho.) At least that��™s what my former co-worker said, and I

OT

[Clayton Doige]

Barbie = 50

 

Madonna = 50

 

hmm


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: MagicJack

[Micheal Espinola Jr]

Oh, my mistake; I thought he was the Dingle Fairy:

http://www.urbandictionary.com/define.php?term=Dingle%20Fairy

--
ME2



On Tue, Mar 10, 2009 at 5:56 PM, Rob Bonfiglio  wrote:
> aka Shook's night job.
>
> On 3/10/09, Micheal Espinola Jr  wrote:
>> Certainly they put a call out to the Dongle Fairy who wisks through
>> your bedroom window in the middle of the night and places a shiny new
>> one under your pillow - free of charge - just in time for your morning
>> phone cal.
>>
>> --
>> ME2
>>
>>
>>
>> On Tue, Mar 10, 2009 at 4:21 PM, Daniel Rodriguez  wrote:
>>> Ah! But you don't need to be paying for that $19,95. Their EULA states
>>> that
>>> their service is free and that yo don't need the USB interface to a POT
>>> Phone. The charge is to get you a phone number in your area. If you have a
>>> headset/mic then you can use their service to make computer to computer
>>> calls.
>>>
>>> Now, in my case, my dad is 'old school'. He wanted to pay the initial
>>> $39.95
>>> that they initially were offering on the infomercial. I have been using
>>> Skype for over two years and only have had to pay for the phone number for
>>> the few months before I moved to Louisville, KY. I used a local number to
>>> Louisville so that the recruiters only called a number with a 502 area
>>> code.
>>> Since all of my brothers and sisters have computer, and Skype, we just
>>> needed to get my dad to convert.
>>>
>>> He now has Skype, and he loves it. He even got the phone number for the
>>> year. He was paying over $140 for an old land line through AT&T.
>>>
>>> If you want to use Magic Jack, by all means, that is your option. To me,
>>> it
>>> was the USB to RJ11 device. If something goes wrong with that item, do you
>>> need to purchase another one? Or do they provide a replacement at no
>>> charge?
>>>
>>> On Mon, Mar 9, 2009 at 4:56 PM, Joe Heaton  wrote:

 Daniel,



 Not really arguing your research or anything, but as I mentioned
 before,™ve been using Magicjack for almost a year now, with no
 issues��
 And you ca���™t beat the price of $19.95/ye¦.not per month, but per
 year.



 Joe Heaton

 Employment Training Panel



 From: Daniel Rodriguez [mailto:drod...@gmail.com]
 Sent: Friday, March 06, 2009 8:17 AM

 To: NT System Admin Issues
 Subject: Re: OT: MagicJack



 I researched this about four months ago. My father saw their TV ads and
 was wanting to get one. Talked him out of it and had him sign up with
 Skype,
 instead.

 This is what it does; When you get the device, it plugs into one of your
 available USB ports. The Installation Software loads the drivers and
 application to use the "dongle". You plug a regular phone, be it an old
 handset or a wireless, it doesn't matter, into the other end of the
 dongle
 and you will get a dailtone. During the installation process the software
 that comes with the device actually goes out to the Magic Jack's main
 site
 and downloads the adminstration software onto your desktop. Its at this
 point that you have to sign up for their service.

 While I was looking at the EULA I found out that you don't need the
 dongle
 to use their service. You can use a regular headset/mike if you wanted
 to.
 All that is needed is a credit card for billing purposes. Well, if that
 is
 the case, then why not just use Skype, or some other similar service. At
 least with Skype you don't need any additional hardware to make it work.

 A lot of reviews that I have seen have been very negative on this
 product.
 But, on that same note, Radio Shack is now selling this item. If it were
 up
 to me, I would just have setup Skype on their desktop/laptops and have
 them
 use that. There are third party devices that give you a phone handset
 that
 plugs into the USB port, some wireless using Bluetooth, that works with
 Skype.

 My $.02

 On Thu, Mar 5, 2009 at 11:15 AM, Jason Morris  wrote:

 Thanks everybody for your feedback. ™ll see what comes of it. Right
 now we��™re leaning towards buying a couple and letting the users beat
 them
 up down in Panama.

 Jason



 From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
 Sent: Thursday, March 05, 2009 9:53 AM

 To: NT System Admin Issues
 Subject: RE: OT: MagicJack



 A former co-worker went to work for them and when he found a better job
 they tried to hijack his last paycheck in return for their tools (fair)
 and
 return of a cash bonus earned working over the Christmas holidays (NOT
 fair,
 imho.) At least that��™s what my former co-worker said, and I have no
 reason
 to doubt his veracity. That being said, I have not heard their side of
 things, so I c™t comment 

Re: OT: MagicJack

[Rob Bonfiglio]

aka Shook's night job.

On 3/10/09, Micheal Espinola Jr  wrote:
> Certainly they put a call out to the Dongle Fairy who wisks through
> your bedroom window in the middle of the night and places a shiny new
> one under your pillow - free of charge - just in time for your morning
> phone cal.
>
> --
> ME2
>
>
>
> On Tue, Mar 10, 2009 at 4:21 PM, Daniel Rodriguez  wrote:
>> Ah! But you don't need to be paying for that $19,95. Their EULA states
>> that
>> their service is free and that yo don't need the USB interface to a POT
>> Phone. The charge is to get you a phone number in your area. If you have a
>> headset/mic then you can use their service to make computer to computer
>> calls.
>>
>> Now, in my case, my dad is 'old school'. He wanted to pay the initial
>> $39.95
>> that they initially were offering on the infomercial. I have been using
>> Skype for over two years and only have had to pay for the phone number for
>> the few months before I moved to Louisville, KY. I used a local number to
>> Louisville so that the recruiters only called a number with a 502 area
>> code.
>> Since all of my brothers and sisters have computer, and Skype, we just
>> needed to get my dad to convert.
>>
>> He now has Skype, and he loves it. He even got the phone number for the
>> year. He was paying over $140 for an old land line through AT&T.
>>
>> If you want to use Magic Jack, by all means, that is your option. To me,
>> it
>> was the USB to RJ11 device. If something goes wrong with that item, do you
>> need to purchase another one? Or do they provide a replacement at no
>> charge?
>>
>> On Mon, Mar 9, 2009 at 4:56 PM, Joe Heaton  wrote:
>>>
>>> Daniel,
>>>
>>>
>>>
>>> Not really arguing your research or anything, but as I mentioned
>>> before,™ve been using Magicjack for almost a year now, with no
>>> issues��
>>> And you ca���™t beat the price of $19.95/ye¦.not per month, but per
>>> year.
>>>
>>>
>>>
>>> Joe Heaton
>>>
>>> Employment Training Panel
>>>
>>>
>>>
>>> From: Daniel Rodriguez [mailto:drod...@gmail.com]
>>> Sent: Friday, March 06, 2009 8:17 AM
>>>
>>> To: NT System Admin Issues
>>> Subject: Re: OT: MagicJack
>>>
>>>
>>>
>>> I researched this about four months ago. My father saw their TV ads and
>>> was wanting to get one. Talked him out of it and had him sign up with
>>> Skype,
>>> instead.
>>>
>>> This is what it does; When you get the device, it plugs into one of your
>>> available USB ports. The Installation Software loads the drivers and
>>> application to use the "dongle". You plug a regular phone, be it an old
>>> handset or a wireless, it doesn't matter, into the other end of the
>>> dongle
>>> and you will get a dailtone. During the installation process the software
>>> that comes with the device actually goes out to the Magic Jack's main
>>> site
>>> and downloads the adminstration software onto your desktop. Its at this
>>> point that you have to sign up for their service.
>>>
>>> While I was looking at the EULA I found out that you don't need the
>>> dongle
>>> to use their service. You can use a regular headset/mike if you wanted
>>> to.
>>> All that is needed is a credit card for billing purposes. Well, if that
>>> is
>>> the case, then why not just use Skype, or some other similar service. At
>>> least with Skype you don't need any additional hardware to make it work.
>>>
>>> A lot of reviews that I have seen have been very negative on this
>>> product.
>>> But, on that same note, Radio Shack is now selling this item. If it were
>>> up
>>> to me, I would just have setup Skype on their desktop/laptops and have
>>> them
>>> use that. There are third party devices that give you a phone handset
>>> that
>>> plugs into the USB port, some wireless using Bluetooth, that works with
>>> Skype.
>>>
>>> My $.02
>>>
>>> On Thu, Mar 5, 2009 at 11:15 AM, Jason Morris  wrote:
>>>
>>> Thanks everybody for your feedback. ™ll see what comes of it. Right
>>> now we��™re leaning towards buying a couple and letting the users beat
>>> them
>>> up down in Panama.
>>>
>>> Jason
>>>
>>>
>>>
>>> From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
>>> Sent: Thursday, March 05, 2009 9:53 AM
>>>
>>> To: NT System Admin Issues
>>> Subject: RE: OT: MagicJack
>>>
>>>
>>>
>>> A former co-worker went to work for them and when he found a better job
>>> they tried to hijack his last paycheck in return for their tools (fair)
>>> and
>>> return of a cash bonus earned working over the Christmas holidays (NOT
>>> fair,
>>> imho.) At least that��™s what my former co-worker said, and I have no
>>> reason
>>> to doubt his veracity. That being said, I have not heard their side of
>>> things, so I c™t comment beyond how they allegedly treated one of
>>> their
>>> former employees.
>>>
>>>
>>>
>>>
>>>
>>> From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us]
>>> Sent: Thursday, March 05, 2009 10:12 AM
>>> To: NT System Admin Issues
>>> Subject: RE: OT: MagicJack
>>>
>>>
>>>
>>> Which may or may not be represent

Re: OT: MagicJack

[Micheal Espinola Jr]

Certainly they put a call out to the Dongle Fairy who wisks through
your bedroom window in the middle of the night and places a shiny new
one under your pillow - free of charge - just in time for your morning
phone cal.

--
ME2



On Tue, Mar 10, 2009 at 4:21 PM, Daniel Rodriguez  wrote:
> Ah! But you don't need to be paying for that $19,95. Their EULA states that
> their service is free and that yo don't need the USB interface to a POT
> Phone. The charge is to get you a phone number in your area. If you have a
> headset/mic then you can use their service to make computer to computer
> calls.
>
> Now, in my case, my dad is 'old school'. He wanted to pay the initial $39.95
> that they initially were offering on the infomercial. I have been using
> Skype for over two years and only have had to pay for the phone number for
> the few months before I moved to Louisville, KY. I used a local number to
> Louisville so that the recruiters only called a number with a 502 area code.
> Since all of my brothers and sisters have computer, and Skype, we just
> needed to get my dad to convert.
>
> He now has Skype, and he loves it. He even got the phone number for the
> year. He was paying over $140 for an old land line through AT&T.
>
> If you want to use Magic Jack, by all means, that is your option. To me, it
> was the USB to RJ11 device. If something goes wrong with that item, do you
> need to purchase another one? Or do they provide a replacement at no charge?
>
> On Mon, Mar 9, 2009 at 4:56 PM, Joe Heaton  wrote:
>>
>> Daniel,
>>
>>
>>
>> Not really arguing your research or anything, but as I mentioned
>> before,™ve been using Magicjack for almost a year now, with no issues��
>> And you ca���™t beat the price of $19.95/ye¦.not per month, but per
>> year.
>>
>>
>>
>> Joe Heaton
>>
>> Employment Training Panel
>>
>>
>>
>> From: Daniel Rodriguez [mailto:drod...@gmail.com]
>> Sent: Friday, March 06, 2009 8:17 AM
>>
>> To: NT System Admin Issues
>> Subject: Re: OT: MagicJack
>>
>>
>>
>> I researched this about four months ago. My father saw their TV ads and
>> was wanting to get one. Talked him out of it and had him sign up with Skype,
>> instead.
>>
>> This is what it does; When you get the device, it plugs into one of your
>> available USB ports. The Installation Software loads the drivers and
>> application to use the "dongle". You plug a regular phone, be it an old
>> handset or a wireless, it doesn't matter, into the other end of the dongle
>> and you will get a dailtone. During the installation process the software
>> that comes with the device actually goes out to the Magic Jack's main site
>> and downloads the adminstration software onto your desktop. Its at this
>> point that you have to sign up for their service.
>>
>> While I was looking at the EULA I found out that you don't need the dongle
>> to use their service. You can use a regular headset/mike if you wanted to.
>> All that is needed is a credit card for billing purposes. Well, if that is
>> the case, then why not just use Skype, or some other similar service. At
>> least with Skype you don't need any additional hardware to make it work.
>>
>> A lot of reviews that I have seen have been very negative on this product.
>> But, on that same note, Radio Shack is now selling this item. If it were up
>> to me, I would just have setup Skype on their desktop/laptops and have them
>> use that. There are third party devices that give you a phone handset that
>> plugs into the USB port, some wireless using Bluetooth, that works with
>> Skype.
>>
>> My $.02
>>
>> On Thu, Mar 5, 2009 at 11:15 AM, Jason Morris  wrote:
>>
>> Thanks everybody for your feedback. ™ll see what comes of it. Right
>> now we��™re leaning towards buying a couple and letting the users beat them
>> up down in Panama.
>>
>> Jason
>>
>>
>>
>> From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
>> Sent: Thursday, March 05, 2009 9:53 AM
>>
>> To: NT System Admin Issues
>> Subject: RE: OT: MagicJack
>>
>>
>>
>> A former co-worker went to work for them and when he found a better job
>> they tried to hijack his last paycheck in return for their tools (fair) and
>> return of a cash bonus earned working over the Christmas holidays (NOT fair,
>> imho.) At least that��™s what my former co-worker said, and I have no reason
>> to doubt his veracity. That being said, I have not heard their side of
>> things, so I c™t comment beyond how they allegedly treated one of their
>> former employees.
>>
>>
>>
>>
>>
>> From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us]
>> Sent: Thursday, March 05, 2009 10:12 AM
>> To: NT System Admin Issues
>> Subject: RE: OT: MagicJack
>>
>>
>>
>> Which may or may not be representative of peop™s overall experiences,
>> since folks are generally more likely to complain about something than to
>> say good things about it.
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> From: Steven Calvanese [mailto:scalvan...@membersolutions.com]
>> Sent: Thursday, March 05, 2009 9

Re: Unlock accounts

[Steven Peck]

http://dmitrysotnikov.wordpress.com/2007/08/14/enable-disable-unlock-user-accounts/



On Tue, Mar 10, 2009 at 1:48 PM, Kennedy, Jim
 wrote:
> So one of the issues I have is 100's of accounts that are locked out. Anyone 
> have an idea or a script that I can fire to unlock everyone at once?
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Sam Cayze]

Hats off to eSet for that.  Pretty slick.   

-Original Message-
From: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Sent: Tuesday, March 10, 2009 4:25 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

It was all automatic. I was surprised, but it worked. See also: 
http://kb.eset.eu/esetkb/index?page=content&id=SOLN2181
" Updating to the latest virus definition database (3920 or higher) should 
automatically restore the affected files from quarantine."

Peter


-Original Message-
From: Sam Cayze [mailto:sam.ca...@rollouts.com]
Sent: Tuesday, March 10, 2009 2:45 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

The update and defs told the Quarantine to put the files, or you manually had 
to?  If the prior, that's pretty slick. 

-Original Message-
From: Peter Schwarz [mailto:pschw...@syndeotech.com]
Sent: Tuesday, March 10, 2009 1:05 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Peter Schwarz]

I did not have to reboot.

Peter


-Original Message-
From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 2:54 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

But if a reboot should be requested in the meantime ? 


GuidoElia
HELPPC

-Messaggio originale-
Da: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Inviato: martedì 10 marzo 2009 19.05
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Peter Schwarz]

It was all automatic. I was surprised, but it worked. See also: 
http://kb.eset.eu/esetkb/index?page=content&id=SOLN2181
" Updating to the latest virus definition database (3920 or higher) should 
automatically restore the affected files from quarantine."

Peter


-Original Message-
From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Tuesday, March 10, 2009 2:45 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

The update and defs told the Quarantine to put the files, or you manually had 
to?  If the prior, that's pretty slick. 

-Original Message-
From: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Sent: Tuesday, March 10, 2009 1:05 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Unlock accounts

[Sam Cayze]

Someone did post a script here not too long ago, perhaps check the
archives if you don't here from us soon,

In the mean time, I do remember Sunbelt posting a removal tool not too
long ago:



___

Hi All:

Sunbelt Software is pleased to announce that a removal tool for the
Conficker/Downadup worm is now available from our new Research site:

http://www.sunbeltsecurity.com/DownLoads.aspx

This removal tool will detect and clean the vast majority of
Conficker/Downadup variants. It can be used either as a standlone tool
or as a supplement to VIPRE or CounterSpy. Indeed, even if you have run
VIPRE or CounterSpy to clean up an Conficker/Downadup infestation on one
of your boxes, we strongly recommend that you perform a followup scan
with this new removal tool.

The tool itself is simple to run. Usage notes are included in the
download. If you continue to see signs of infection after running the
tool, please contact Sunbelt Support for assistance.

Best regards,

Eric L. Howes
Sunbelt Software
..
Archive of list discussions:
http://lyris.sunbelt-software.com/read/?forum=cse
List Charter and FAQ at:
http://www.sunbelt-software.com/forums/cse.cfm
Sponsored By: CounterSpy Enterprise Edition.
http://www.sunbelt-software.com/CounterSpyEnterprise.cfm












 

-Original Message-
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] 
Sent: Tuesday, March 10, 2009 4:05 PM
To: NT System Admin Issues
Subject: RE: Unlock accounts

Joeware unlock FTW!

Thanks joe.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 4:48 PM
> To: NT System Admin Issues
> Subject: Unlock accounts
> 
> So one of the issues I have is 100's of accounts that are locked out.
> Anyone have an idea or a script that I can fire to unlock everyone at 
> once?
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Account lockouts

[Phil Brutsche]

I'm curious to know what classes they need that for. If you can
determine that local admin is only needed for (say) a computer
programming class you would greatly limit your exposure.

For the schools I take care of the students, staff and faculty don't do
anything that require them to have local admin and therefore don't have
it; I have management backing me 1000%. Heck, most teachers are relieved
to know that neither they nor the students can screw stuff up!

Glen Johnson wrote:
> Students need to be able to do anything on the machines but reboot and
> it's back to a known state.

-- 

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Unlock accounts

[Kennedy, Jim]

Joeware unlock FTW!

Thanks joe.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 4:48 PM
> To: NT System Admin Issues
> Subject: Unlock accounts
> 
> So one of the issues I have is 100's of accounts that are locked out.
> Anyone have an idea or a script that I can fire to unlock everyone at
> once?
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Account lockouts

[Ben Scott]

On Tue, Mar 10, 2009 at 4:29 PM, Glen Johnson  wrote:
> Students need to be able to do anything on the machines 

  Have you considered using VMs?  Isolate the VMs from the main
networks (or, if possible, all networks).  Lock down the host OS.  The
student can do whatever they want to the VM, but they're in their own
little sandbox and can't harm others.

 Cost may be non-trivial, of course.  :)

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Unlock accounts

[Kennedy, Jim]

So one of the issues I have is 100's of accounts that are locked out. Anyone 
have an idea or a script that I can fire to unlock everyone at once?

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[Glen Johnson]

Amen.
We're working toward that end on faculty and staff machines, but not on
the student lab machines.
Students need to be able to do anything on the machines but reboot and
it's back to a known state.
Deep freeze does that nicely.
Now that AV and updates are on them, we'll be in better shape.
Not perfect but that's one of the pitfalls of working in edu.


-Original Message-
From: Phil Brutsche [mailto:p...@optimumdata.com] 
Sent: Tuesday, March 10, 2009 3:50 PM
To: NT System Admin Issues
Subject: Re: Account lockouts

I suspect many of your problems would be eliminated by strictly adhering
to the principle of least privilege.

Glen Johnson wrote:
> I feel your pain.
> We're just now getting past it.
> We had 200+ lab machines w/o AV and latest patches.  Said machines
have
> deep freeze so they didn't stay infected after reboot but seems like
> every day a new one would get infected and spread.
> We're in the process of isolating each lab via vlans and have added AV
> and updates.  Even got a nightly maintenance schedule working so
> hopefully were in a much better position next week when students
return
> from spring break.
> Hope you get all the mess cleaned up.  
> BTW, we did end up reloading a couple machines as they didn't have
> freeze so the infection was permenant.

-- 

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: MagicJack

[Daniel Rodriguez]

Ah! But you don't need to be paying for that $19,95. Their EULA states that
their service is free and that yo don't need the USB interface to a POT
Phone. The charge is to get you a phone number in your area. If you have a
headset/mic then you can use their service to make computer to computer
calls.

Now, in my case, my dad is 'old school'. He wanted to pay the initial $39.95
that they initially were offering on the infomercial. I have been using
Skype for over two years and only have had to pay for the phone number for
the few months before I moved to Louisville, KY. I used a local number to
Louisville so that the recruiters only called a number with a 502 area code.
Since all of my brothers and sisters have computer, and Skype, we just
needed to get my dad to convert.

He now has Skype, and he loves it. He even got the phone number for the
year. He was paying over $140 for an old land line through AT&T.

If you want to use Magic Jack, by all means, that is your option. To me, it
was the USB to RJ11 device. If something goes wrong with that item, do you
need to purchase another one? Or do they provide a replacement at no charge?

On Mon, Mar 9, 2009 at 4:56 PM, Joe Heaton  wrote:

>  Daniel,
>
>
>
> Not really arguing your research or anything, but as I mentioned
> before,™ve been using Magicjack for almost a year now, with no issues��
> And you ca���™t beat the price of $19.95/ye¦.not per month, but per
> year.
>
>
>
> Joe Heaton
>
> Employment Training Panel
>
>
>
> *From:* Daniel Rodriguez [mailto:drod...@gmail.com]
> *Sent:* Friday, March 06, 2009 8:17 AM
> *To:* NT System Admin Issues
> *Subject:* Re: OT: MagicJack
>
>
>
> I researched this about four months ago. My father saw their TV ads and was
> wanting to get one. Talked him out of it and had him sign up with Skype,
> instead.
>
> This is what it does; When you get the device, it plugs into one of your
> available USB ports. The Installation Software loads the drivers and
> application to use the "dongle". You plug a regular phone, be it an old
> handset or a wireless, it doesn't matter, into the other end of the dongle
> and you will get a dailtone. During the installation process the software
> that comes with the device actually goes out to the Magic Jack's main site
> and downloads the adminstration software onto your desktop. Its at this
> point that you have to sign up for their service.
>
> While I was looking at the EULA I found out that you don't need the dongle
> to use their service. You can use a regular headset/mike if you wanted to.
> All that is needed is a credit card for billing purposes. Well, if that is
> the case, then why not just use Skype, or some other similar service. At
> least with Skype you don't need any additional hardware to make it work.
>
> A lot of reviews that I have seen have been very negative on this product.
> But, on that same note, Radio Shack is now selling this item. If it were up
> to me, I would just have setup Skype on their desktop/laptops and have them
> use that. There are third party devices that give you a phone handset that
> plugs into the USB port, some wireless using Bluetooth, that works with
> Skype.
>
> My $.02
>
>  On Thu, Mar 5, 2009 at 11:15 AM, Jason Morris  wrote:
>
> Thanks everybody for your feedback. ™ll see what comes of it. Right now
> we��™re leaning towards buying a couple and letting the users beat them up
> down in Panama.
>
> Jason
>
>
>
> *From:* John Aldrich [mailto:jaldr...@blueridgecarpet.com]
> *Sent:* Thursday, March 05, 2009 9:53 AM
>
>
> *To:* NT System Admin Issues
> *Subject:* RE: OT: MagicJack
>
>
>
> A former co-worker went to work for them and when he found a better job
> they tried to hijack his last paycheck in return for their tools (fair) and
> return of a cash bonus earned working over the Christmas holidays (NOT fair,
> imho.) At least that��™s what my former co-worker said, and I have no reason
> to doubt his veracity. That being said, I have not heard their side of
> things, so I c™t comment beyond how they allegedly treated one of their
> former employees.
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
> *From:* John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us]
> *Sent:* Thursday, March 05, 2009 10:12 AM
> *To:* NT System Admin Issues
> *Subject:* RE: OT: MagicJack
>
>
>
> Which may or may not be representative of peop™s overall experiences,
> since folks are generally more likely to complain about something than to
> say good things about it.
>
>
>
>
>
>
>
>
>
> *From:* Steven Calvanese [mailto:scalvan...@membersolutions.com]
> *Sent:* Thursday, March 05, 2009 9:48 AM
> *To:* NT System Admin Issues
> *Subject:* RE: OT: MagicJack
>
>
>
> I have heard nothing but bad things about Magic Jack.
>
>
>
> A quick Google will dig up a lot of pissed off customers.
>   --
>
>
>
>
>  --
>
> *From:* Jonathan Link [mailto:jonathan.l...@gmail.com]
> *Sent:* Thursday, March 0

Re: Account lockouts

[Phil Brutsche]

I suspect many of your problems would be eliminated by strictly adhering
to the principle of least privilege.

Glen Johnson wrote:
> I feel your pain.
> We're just now getting past it.
> We had 200+ lab machines w/o AV and latest patches.  Said machines have
> deep freeze so they didn't stay infected after reboot but seems like
> every day a new one would get infected and spread.
> We're in the process of isolating each lab via vlans and have added AV
> and updates.  Even got a nightly maintenance schedule working so
> hopefully were in a much better position next week when students return
> from spring break.
> Hope you get all the mess cleaned up.  
> BTW, we did end up reloading a couple machines as they didn't have
> freeze so the infection was permenant.

-- 

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Phil Brutsche]

My boss is weird that way.

Another example: we don't have working AC in our "datacenter". Repair
cost? $5k.

The cost of replacing thermally damaged equipment, and business losses
due to lost productivity from network downtime, have already exceeded
that cost of replacing the unit.

But, my boss is not like yours and there are a lot of internal politics
involved in why he won't replace it.

Brian Desmond wrote:
> Other than in 7 months you will have paid for installing the feeder
> from the cable company and will be stuck on a slower platform?

-- 

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: R: R: NOD32 FP

[Micheal Espinola Jr]

I am absolutely talking about the manager part, which is really the
only part I care about.  If the client part didnt work as expected, it
wouldnt even be up for discussion.

--
ME2



On Tue, Mar 10, 2009 at 2:49 PM, HELP_PC  wrote:
> You are probably talking about the Manager part.
> From the first version of SEP I had a contact with Symantec telling them I 
> didn't find the product suitable for a DC (like SBS i.e.)  and they agreed 
> with me that a small ad-hoc server would be better. In fact many dealers 
> ,here in Italy offered HP or Fujitsu  low end servers bundled with SEP 
> solution. The same server could be also used for other monitoring tools
>
>
> GuidoElia
> HELPPC
>
> -Messaggio originale-
> Da: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
> Inviato: martedì 10 marzo 2009 19.16
> A: NT System Admin Issues
> Oggetto: Re: R: NOD32 FP
>
> I did. It was a horrible administrative experience.  One that i beleive i 
> described on this list at the time.
>
> --
> ME2
>
>
>
> On Tue, Mar 10, 2009 at 1:49 PM, HELP_PC  wrote:
>> I really don't feel myself nor my customers sucked by SEP 11
>>
>> GuidoElia
>> HELPPC
>>
>> 
>> Da: Cliff Partlow [mailto:cliff...@cox.net]
>> Inviato: martedì 10 marzo 2009 18.38
>> A: NT System Admin Issues
>> Oggetto: RE: NOD32 FP
>>
>> You can fix " Better to be screwed up"
>>
>> Suck just sucks...
>>
>>
>>
>>
>>
>> "From The Sunny Side Of The Street!"
>>
>> Cliff P.
>>
>>
>>
>> From: HELP_PC [mailto:g...@enter.it]
>> Sent: Tuesday, March 10, 2009 10:37 AM
>>
>> To: NT System Admin Issues
>> Subject: R: NOD32 FP
>>
>>
>>
>> Is it a matter of preferences ? Better to be screwed up or ..sucked ?
>>
>>
>>
>> GuidoElia
>>
>> HELPPC
>>
>>
>>
>>
>>
>> 
>>
>> Da: Tim Vander Kooi [mailto:tvanderk...@expl.com]
>> Inviato: martedì 10 marzo 2009 18.17
>> A: NT System Admin Issues
>> Oggetto: RE: NOD32 FP
>>
>> Yes it sure does.
>>
>> NOD screwing up doesn't make Symantec not suck. Sorry.
>>
>> TVK
>>
>>
>>
>> From: HELP_PC [mailto:g...@enter.it]
>> Sent: Tuesday, March 10, 2009 12:15 PM
>> To: NT System Admin Issues
>> Subject: R: NOD32 FP
>>
>>
>>
>> Oh , isn't Symantec !
>>
>>
>>
>> GuidoElia
>>
>> HELPPC
>>
>>
>>
>>
>>
>> 
>>
>> Da: Andy Ognenoff [mailto:andyognen...@gmail.com]
>> Inviato: martedì 10 marzo 2009 14.20
>> A: NT System Admin Issues
>> Oggetto: NOD32 FP
>>
>> Anyone hit by this?
>>
>>
>>
>> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
>> 839&Itemid=2
>>
>>
>>
>> "Unfortunately, an error in the heuristics module, coupled with the
>> specific virus signature database update, caused ESET to incorrectly
>> identify several Windows operating system files, including dllhost.exe
>> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>>
>>
>>
>>  - Andy O.
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> __ NOD32 3924 (20090310) Information __
>>
>> This message was checked by NOD32 antivirus system.
>> http://www.eset.com
>>
>>
>>
>>
>>
>>
>>
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
> <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

RE: Account lockouts

[Glen Johnson]

I feel your pain.
We're just now getting past it.
We had 200+ lab machines w/o AV and latest patches.  Said machines have
deep freeze so they didn't stay infected after reboot but seems like
every day a new one would get infected and spread.
We're in the process of isolating each lab via vlans and have added AV
and updates.  Even got a nightly maintenance schedule working so
hopefully were in a much better position next week when students return
from spring break.
Hope you get all the mess cleaned up.  
BTW, we did end up reloading a couple machines as they didn't have
freeze so the infection was permenant.
Glen.

-Original Message-
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] 
Sent: Tuesday, March 10, 2009 3:33 PM
To: NT System Admin Issues
Subject: RE: Account lockouts

Officially conflicker.  We were/are fully patched. Must have been via a
thumb drive or website download. It then hit almost every xp machine on
the same subnet and infected it. I hope I am the only one on this list
that gets it, it is ugly.

Thanks for all the help, hints and ideas gang, it was of great value.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 12:41 PM
> To: NT System Admin Issues
> Subject: RE: Account lockouts
> 
> Appreciate the responses...I am digging into your ideas now. I now see
> syn floods on two dc's that are in the same subnet from 169.254.2.x
> addresses.
> 
> Looking like a virus now..
> 
> 
> 
> 
> > -Original Message-
> > From: Glen Johnson [mailto:gjohn...@vhcc.edu]
> > Sent: Tuesday, March 10, 2009 12:34 PM
> > To: NT System Admin Issues
> > Subject: RE: Account lockouts
> >
> > Sounds like you've got the conflicker virus running somewhere.
> > We had that one for a while.
> > Many locked accounts.
> > Check the account you are using on the server to make sure it isn't
> > locked out.  If it is, you wont be able to use it to unlock anyone.
> > We had to use the "administrator" account to unlock my account so I
> > could unlock others.  I'm pretty sure the "administrator" account
> can't
> > be locked out.
> > We also found a script that we could run to unlock all of them.
> Saved
> > lots of time.
> > Also, if you look at the event logs you should see where the
infected
> > computer has failed login for different user accounts.
> > It was event 539 on server 2003.  Not sure what the server 08
> > equivalent
> > event number is.
> >
> > -Original Message-
> > From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> > Sent: Tuesday, March 10, 2009 12:07 PM
> > To: NT System Admin Issues
> > Subject: RE: Account lockouts
> >
> > I should have added 2008 DC's. Seeing this in 3 of the 5 DC's. The
> > killer is I can't unlock the locked accounts.
> >
> >
> >
> > > -Original Message-
> > > From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> > > Sent: Tuesday, March 10, 2009 11:53 AM
> > > To: NT System Admin Issues
> > > Subject: Account lockouts
> > >
> > > I am getting hammered with these in the event log:
> > >
> > > The SAM database was unable to lockout the account of USERNAME due
> to
> > a
> > > resource error, such as a hard disk write failure (the specific
> error
> > > code is in the error data) . Accounts are locked after a certain
> > number
> > > of bad passwords are provided so please consider resetting the
> > password
> > > of the account mentioned above.
> > >
> > >
> > > And accounts are getting locked out left and right, others are
not.
> I
> > > have reset the passwords on some of them and disabled/enabled and
> > they
> > > still remain locked out.
> > >
> > > At first glance you/I might think a dictionary attack, but it
feels
> > > more like Kerberos blowing up...
> > >
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > > ~   ~
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Brian Desmond]

Let's say cable service is 100/month for Don. The cable company absorbs US$15K 
in construction costs. Don now needs to pay his bill for 150 months or a little 
over 12 years for the cable company to recover that cost. There is no incentive 
for them in that equation. It sounds like Don is in a physically isolated 
location so there's probably few or no customers between the current end of the 
line and him.

I used to see the costs for stringing aerials, trenching, etc for running 
connectivity all over Chicago - it's not cheap /at all/.

Thanks,
Brian Desmond
br...@briandesmond.com

c - 312.731.3132

Active Directory, 4th Ed - http://www.briandesmond.com/ad4/
Microsoft MVP - https://mvp.support.microsoft.com/profile/Brian


-Original Message-
From: Sam Cayze [mailto:sam.ca...@rollouts.com]
Sent: Tuesday, March 10, 2009 10:34 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

I was really under the impression that cable providers would wire
anything for a customer, and absorb the costs.  1 Block, 15,000K?
Yikes.

Mind sharing the company name?

-Original Message-
From: Erik Goldoff [mailto:egold...@gmail.com]
Sent: Tuesday, March 10, 2009 10:18 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity


Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
and
*most* DSL is rated as "up to" which starts at zero ... Check the
Service Level Agreements of any DSL you'd be considering, as far as
guaranteed bandwidth, and response time to trouble tickets


Erik Goldoff
IT  Consultant
Systems, Networks, & Security


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Tuesday, March 10, 2009 10:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Brian Desmond]

T1 is goingto cost you a lot more and be slower than DSL typically is today. 
What you pay for with the T1 is a guarantee from the telco about availability, 
getting it fixed, etc.

You can get commercial DSL (do you have speakeasy in your area) with similar 
guarantees for less money and faster service.

The $15K sounds pretty realistic.

Thanks,
Brian Desmond
br...@briandesmond.com

c - 312.731.3132

Active Directory, 4th Ed - http://www.briandesmond.com/ad4/
Microsoft MVP - https://mvp.support.microsoft.com/profile/Brian


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Tuesday, March 10, 2009 9:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[Kennedy, Jim]

Officially conflicker.  We were/are fully patched. Must have been via a thumb 
drive or website download. It then hit almost every xp machine on the same 
subnet and infected it. I hope I am the only one on this list that gets it, it 
is ugly.

Thanks for all the help, hints and ideas gang, it was of great value.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 12:41 PM
> To: NT System Admin Issues
> Subject: RE: Account lockouts
> 
> Appreciate the responses...I am digging into your ideas now. I now see
> syn floods on two dc's that are in the same subnet from 169.254.2.x
> addresses.
> 
> Looking like a virus now..
> 
> 
> 
> 
> > -Original Message-
> > From: Glen Johnson [mailto:gjohn...@vhcc.edu]
> > Sent: Tuesday, March 10, 2009 12:34 PM
> > To: NT System Admin Issues
> > Subject: RE: Account lockouts
> >
> > Sounds like you've got the conflicker virus running somewhere.
> > We had that one for a while.
> > Many locked accounts.
> > Check the account you are using on the server to make sure it isn't
> > locked out.  If it is, you wont be able to use it to unlock anyone.
> > We had to use the "administrator" account to unlock my account so I
> > could unlock others.  I'm pretty sure the "administrator" account
> can't
> > be locked out.
> > We also found a script that we could run to unlock all of them.
> Saved
> > lots of time.
> > Also, if you look at the event logs you should see where the infected
> > computer has failed login for different user accounts.
> > It was event 539 on server 2003.  Not sure what the server 08
> > equivalent
> > event number is.
> >
> > -Original Message-
> > From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> > Sent: Tuesday, March 10, 2009 12:07 PM
> > To: NT System Admin Issues
> > Subject: RE: Account lockouts
> >
> > I should have added 2008 DC's. Seeing this in 3 of the 5 DC's. The
> > killer is I can't unlock the locked accounts.
> >
> >
> >
> > > -Original Message-
> > > From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> > > Sent: Tuesday, March 10, 2009 11:53 AM
> > > To: NT System Admin Issues
> > > Subject: Account lockouts
> > >
> > > I am getting hammered with these in the event log:
> > >
> > > The SAM database was unable to lockout the account of USERNAME due
> to
> > a
> > > resource error, such as a hard disk write failure (the specific
> error
> > > code is in the error data) . Accounts are locked after a certain
> > number
> > > of bad passwords are provided so please consider resetting the
> > password
> > > of the account mentioned above.
> > >
> > >
> > > And accounts are getting locked out left and right, others are not.
> I
> > > have reset the passwords on some of them and disabled/enabled and
> > they
> > > still remain locked out.
> > >
> > > At first glance you/I might think a dictionary attack, but it feels
> > > more like Kerberos blowing up...
> > >
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > > ~   ~
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Brian Desmond]

Other than in 7 months you will have paid for installing the feeder from the 
cable company and will be stuck on a slower platform?

Thanks,
Brian Desmond
br...@briandesmond.com

c - 312.731.3132

Active Directory, 4th Ed - http://www.briandesmond.com/ad4/
Microsoft MVP - https://mvp.support.microsoft.com/profile/Brian

-Original Message-
From: Phil Brutsche [mailto:p...@optimumdata.com]
Sent: Tuesday, March 10, 2009 2:20 PM
To: NT System Admin Issues
Subject: Re: Internet connectivity

$15k sounds high, but depending on the exact location I can see it.

When we moved into our current location back in 2003 our business park
didn't have much in terms of infrastructure with the local cable
company. Cox Cable wanted $5k to put in the stuff needed to make their
service work.

Paying $700+/mo for a T1 was cheaper.

Sam Cayze wrote:
> I was really under the impression that cable providers would wire
> anything for a customer, and absorb the costs.  1 Block, 15,000K?
> Yikes.

--

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Ben Scott]

On Tue, Mar 10, 2009 at 10:02 AM, Holstrom, Don  wrote:
> Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
> or some other such DSL?

  Define "better".  As others have said, we're talking about a totally
different class of service here.  A T1 is 1.544 megabit/sec both ways,
typically with very good latency.  If it does down, or isn't
performing up to snuff, you don't pay.  DSL will be whatever they can
get to you, varying speed and latency, and if it breaks, it's a best
effort to fix it, usually without any credit to you.  In other words,
a T1 will come with a Service Level Agreement that spells everything
out, while DSL typically doesn't come with anything.

  Which is appropriate again depends.  Web browsing is almost all
incoming.  Remote access tends to be mostly outgoing, so the lower
upstream may matter.  For email, it depends on your users.

  You may find trouble putting email on a consumer (DSL or cable)
feed; lots of systems reject any mail attempts from them.  We even got
the occasional bounce on our Comcast "Workplace" feed, which has a
static IP in a different IP block.

  We have two feeds for our office.  Comcast for web browsing -- it's
cheap, disposable, incoming bandwidth.  And a local ISP with a
symetrical, SLA'ed feed for email and remote access.

  Since it sounds like you're in a city, check around for a local ISP
doing fixed-wireless.  They put an antenna on your roof and beam the
Internet to you.  This will often get you a good feed and good service
at a much better price.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Phil Brutsche]

$15k sounds high, but depending on the exact location I can see it.

When we moved into our current location back in 2003 our business park
didn't have much in terms of infrastructure with the local cable
company. Cox Cable wanted $5k to put in the stuff needed to make their
service work.

Paying $700+/mo for a T1 was cheaper.

Sam Cayze wrote:
> I was really under the impression that cable providers would wire
> anything for a customer, and absorb the costs.  1 Block, 15,000K?
> Yikes.  

-- 

Phil Brutsche
p...@optimumdata.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Ben Scott]

On Tue, Mar 10, 2009 at 11:34 AM, Sam Cayze  wrote:
> I was really under the impression that cable providers would wire
> anything for a customer, and absorb the costs.

  It depends on whether they think it's worth it or not.  If there are
lots of potential subscribers on the path, sometimes they'll absorb
the cost.  If it's just one customer, usually not.  Sometimes they'll
be more willing if you get a bunch of people in the area to sign-on to
being new subscribers.

> 1 Block, 15,000K? Yikes.

  Yah, that did seem high to me, but it's prolly in the city, so maybe
they have to dig up the streets to run new conduit or something.

  We had to have Comcast run a new line down three telephone poles
worth, a few hundred feet.  Cost us around $1500, I think.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: DNS / WINS Issue?

[Ben Scott]

On Tue, Mar 10, 2009 at 11:22 AM, Kevan Dickinson
 wrote:
> If I ping the FQDN I get the correct resolved address.
> If I ping just the netbios name of the machine I get the wrong IP
> address returned.

  Check hosts (DNS) and LMHOSTS (NetBIOS) files.

  Run NSLOOKUP (or better yet, DIG.EXE from ISC BIND) on the short and
FQDN names.  This will tell you what DNS is seeing.

  Run "NBTSTAT -a" on the short name.  This will tell you what NetBIOS
is seeing.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Trend OfficeScan Client Rename

[Joe Fox]

I recently had an issue which caused me to rename all the clients on my
network (poor naming convention by prior admin which caused a naming
conflict).  Now none of my clients that have been renamed are showing up in
my OfficeScan console.  Is there an easy way to get all the clients to show
up, or will I have to do and uninstall and reinstall to be able to manage
them?

Thanks in advance.

Joe Fox
Systems/Network Administrator

Mobile# (716) 846-9308
http://www.linkedin.com/in/josephfoxjr

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Joseph L. Casale]

>Is someone using PMail?

Nah, he just has NOD scanning his outgoing :)


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

R: NOD32 FP

[HELP_PC]

But if a reboot should be requested in the meantime ? 


GuidoElia
HELPPC

-Messaggio originale-
Da: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Inviato: martedì 10 marzo 2009 19.05
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

R: R: NOD32 FP

[HELP_PC]

You are probably talking about the Manager part.
>From the first version of SEP I had a contact with Symantec telling them I 
>didn't find the product suitable for a DC (like SBS i.e.)  and they agreed 
>with me that a small ad-hoc server would be better. In fact many dealers ,here 
>in Italy offered HP or Fujitsu  low end servers bundled with SEP solution. The 
>same server could be also used for other monitoring tools


GuidoElia
HELPPC

-Messaggio originale-
Da: Micheal Espinola Jr [mailto:michealespin...@gmail.com] 
Inviato: martedì 10 marzo 2009 19.16
A: NT System Admin Issues
Oggetto: Re: R: NOD32 FP

I did. It was a horrible administrative experience.  One that i beleive i 
described on this list at the time.

--
ME2



On Tue, Mar 10, 2009 at 1:49 PM, HELP_PC  wrote:
> I really don't feel myself nor my customers sucked by SEP 11
>
> GuidoElia
> HELPPC
>
> 
> Da: Cliff Partlow [mailto:cliff...@cox.net]
> Inviato: martedì 10 marzo 2009 18.38
> A: NT System Admin Issues
> Oggetto: RE: NOD32 FP
>
> You can fix " Better to be screwed up"
>
> Suck just sucks...
>
>
>
>
>
> "From The Sunny Side Of The Street!"
>
> Cliff P.
>
>
>
> From: HELP_PC [mailto:g...@enter.it]
> Sent: Tuesday, March 10, 2009 10:37 AM
>
> To: NT System Admin Issues
> Subject: R: NOD32 FP
>
>
>
> Is it a matter of preferences ? Better to be screwed up or ..sucked ?
>
>
>
> GuidoElia
>
> HELPPC
>
>
>
>
>
> 
>
> Da: Tim Vander Kooi [mailto:tvanderk...@expl.com]
> Inviato: martedì 10 marzo 2009 18.17
> A: NT System Admin Issues
> Oggetto: RE: NOD32 FP
>
> Yes it sure does.
>
> NOD screwing up doesn't make Symantec not suck. Sorry.
>
> TVK
>
>
>
> From: HELP_PC [mailto:g...@enter.it]
> Sent: Tuesday, March 10, 2009 12:15 PM
> To: NT System Admin Issues
> Subject: R: NOD32 FP
>
>
>
> Oh , isn't Symantec !
>
>
>
> GuidoElia
>
> HELPPC
>
>
>
>
>
> 
>
> Da: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Inviato: martedì 10 marzo 2009 14.20
> A: NT System Admin Issues
> Oggetto: NOD32 FP
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> __ NOD32 3924 (20090310) Information __
>
> This message was checked by NOD32 antivirus system.
> http://www.eset.com
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
<http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

RE: NOD32 FP

[Michael B. Smith]

Is someone using PMail?

-Original Message-
From: Steve Kelsay [mailto:kels...@sctax.org] 
Sent: Tuesday, March 10, 2009 2:23 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP
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~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Sam Cayze]

The update and defs told the Quarantine to put the files, or you manually had 
to?  If the prior, that's pretty slick. 

-Original Message-
From: Peter Schwarz [mailto:pschw...@syndeotech.com] 
Sent: Tuesday, March 10, 2009 1:05 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5
> 839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the 
> specific virus signature database update, caused ESET to incorrectly 
> identify several Windows operating system files, including dllhost.exe 
> and msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[John Hornbuckle]

We've used a wildcard cert from them for several years. Just renewed a few 
weeks ago. No problems with the initial purchase, and no problems with the 
renewal.



John Hornbuckle
MIS Department
Taylor County School District
318 North Clark Street
Perry, FL 32347

www.taylor.k12.fl.us





-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 10:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Steve Kelsay]
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Re: R: NOD32 FP

[Micheal Espinola Jr]

I did. It was a horrible administrative experience.  One that i
beleive i described on this list at the time.

--
ME2



On Tue, Mar 10, 2009 at 1:49 PM, HELP_PC  wrote:
> I really don't feel myself nor my customers sucked by SEP 11
>
> GuidoElia
> HELPPC
>
> 
> Da: Cliff Partlow [mailto:cliff...@cox.net]
> Inviato: martedì 10 marzo 2009 18.38
> A: NT System Admin Issues
> Oggetto: RE: NOD32 FP
>
> You can fix " Better to be screwed up"
>
> Suck just sucks...
>
>
>
>
>
> "From The Sunny Side Of The Street!"
>
> Cliff P.
>
>
>
> From: HELP_PC [mailto:g...@enter.it]
> Sent: Tuesday, March 10, 2009 10:37 AM
>
> To: NT System Admin Issues
> Subject: R: NOD32 FP
>
>
>
> Is it a matter of preferences ? Better to be screwed up or ..sucked ?
>
>
>
> GuidoElia
>
> HELPPC
>
>
>
>
>
> 
>
> Da: Tim Vander Kooi [mailto:tvanderk...@expl.com]
> Inviato: martedì 10 marzo 2009 18.17
> A: NT System Admin Issues
> Oggetto: RE: NOD32 FP
>
> Yes it sure does.
>
> NOD screwing up doesn’t make Symantec not suck. Sorry.
>
> TVK
>
>
>
> From: HELP_PC [mailto:g...@enter.it]
> Sent: Tuesday, March 10, 2009 12:15 PM
> To: NT System Admin Issues
> Subject: R: NOD32 FP
>
>
>
> Oh , isn't Symantec !
>
>
>
> GuidoElia
>
> HELPPC
>
>
>
>
>
> 
>
> Da: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Inviato: martedì 10 marzo 2009 14.20
> A: NT System Admin Issues
> Oggetto: NOD32 FP
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2
>
>
>
> “Unfortunately, an error in the heuristics module, coupled with the
> specific virus signature database update, caused ESET to incorrectly
> identify several Windows operating system files, including dllhost.exe and
> msdtc.exe, as being infected with Win32/Kryptik.JX.”
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> __ NOD32 3924 (20090310) Information __
>
> This message was checked by NOD32 antivirus system.
> http://www.eset.com
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Re: Gmail Organization

[Micheal Espinola Jr]

LOL

--
ME2



On Tue, Mar 10, 2009 at 2:06 PM, Sherry Abercrombie  wrote:
> Yeah, it's called labels.
>
> On Tue, Mar 10, 2009 at 1:01 PM, Roger Wright  wrote:
>>
>> Is there a way to have Gmail auto-label messages as they’re received, much
>> the way Outlook rules will move to folders upon receipt?
>>
>>
>>
>>
>>
>>
>>
>> Roger Wright
>>
>> Network Administrator
>>
>> Evatone, Inc.
>>
>> 727.572.7076  x388
>>
>>
>>
>> _
>>
>>
>>
>> "Nobody in the game of football should be called a genius. A genius is
>> somebody like Norman Einstein." - Joe Theismann
>>
>>
>>
>>
>
>
> --
> Sherry Abercrombie
>
> "Any sufficiently advanced technology is indistinguishable from magic."
> Arthur C. Clarke
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: NOD32 FP

[Micheal Espinola Jr]

Actuallty, i think that *is* an excuse. No doubt thier support center
is slammed. Personally, i havent had a bad experience with them yet.

--
ME2



On Tue, Mar 10, 2009 at 2:04 PM, Peter Schwarz  wrote:
> I have been trying to get their Support on the phone for a different issue 
> since then but they don't even call back. I am assuming they are inundated by 
> calls because of this mistake, but that is no excuse for bad support.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Gmail Organization

[Joe Tinney]

That should be in the Filters section.
http://mail.google.com/support/bin/answer.py?hl=en&answer=6579

 

From: Roger Wright [mailto:rwri...@evatone.com] 
Sent: Tuesday, March 10, 2009 2:01 PM
To: NT System Admin Issues
Subject: Gmail Organization

 

Is there a way to have Gmail auto-label messages as they're received,
much the way Outlook rules will move to folders upon receipt?

 

 

 

Roger Wright

Network Administrator

Evatone, Inc.

727.572.7076  x388

  

 

_

 

 

"Nobody in the game of football should be called a genius. A genius is
somebody like Norman Einstein." - Joe Theismann 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<>

Re: Gmail Organization

[Sherry Abercrombie]

Yeah, it's called labels.

On Tue, Mar 10, 2009 at 1:01 PM, Roger Wright  wrote:

>  Is there a way to have Gmail auto-label messages as they’re received,
> much the way Outlook rules will move to folders upon receipt?
>
>
>
>
>
>
>
> Roger Wright
>
> Network Administrator
>
> Evatone, Inc.
>
> 727.572.7076  x388
>
>
>
> [image: ET E-mail Signature Logo]
>
> _
>
>
>
>
> "Nobody in the game of football should be called a genius. A genius is
> somebody like Norman Einstein." - Joe Theismann
>
>
>
>
>
>


-- 
Sherry Abercrombie

"Any sufficiently advanced technology is indistinguishable from magic."
Arthur C. Clarke

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<>

RE: Gmail Organization

[Andy Ognenoff]

Look at Filters in Gmail under Settings.

 - Andy O. 

From: Roger Wright [mailto:rwri...@evatone.com] 
Sent: Tuesday, March 10, 2009 12:01 PM
To: NT System Admin Issues
Subject: Gmail Organization

Is there a way to have Gmail auto-label messages as they’re received, much
the way Outlook rules will move to folders upon receipt?



Roger Wright
Network Administrator
Evatone, Inc.
727.572.7076  x388
  

_


"Nobody in the game of football should be called a genius. A genius is
somebody like Norman Einstein." - Joe Theismann 

 
 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Gmail Organization

[Roger Wright]

Never mind... FILTERS is the magic word.

 

   

 

Roger Wright

Network Administrator

Evatone, Inc.

727.572.7076  x388

_  

 

From: Roger Wright [mailto:rwri...@evatone.com] 
Sent: Tuesday, March 10, 2009 2:01 PM
To: NT System Admin Issues
Subject: Gmail Organization

 

Is there a way to have Gmail auto-label messages as they're received,
much the way Outlook rules will move to folders upon receipt?

 

 

 

Roger Wright

Network Administrator

Evatone, Inc.

727.572.7076  x388

  

 

_

 

 

"Nobody in the game of football should be called a genius. A genius is
somebody like Norman Einstein." - Joe Theismann 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<>

RE: NOD32 FP

[Peter Schwarz]

One client of mine got hit. ESET corrected the problem one hour later with an 
update which retrieved the False Positive from Quarantine and put it back in 
its original location. 

I have been trying to get their Support on the phone for a different issue 
since then but they don't even call back. I am assuming they are inundated by 
calls because of this mistake, but that is no excuse for bad support.

Peter

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] 
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2
>
>
>
> "Unfortunately, an error in the heuristics module, coupled with the
> specific virus signature database update, caused ESET to incorrectly
> identify several Windows operating system files, including dllhost.exe and
> msdtc.exe, as being infected with Win32/Kryptik.JX."
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Gmail Organization

[Roger Wright]

Is there a way to have Gmail auto-label messages as they're received,
much the way Outlook rules will move to folders upon receipt?

 

 

 

Roger Wright

Network Administrator

Evatone, Inc.

727.572.7076  x388

  

 

_

 



"Nobody in the game of football should be called a genius. A genius is
somebody like Norman Einstein." - Joe Theismann 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<>

R: NOD32 FP

[HELP_PC]

I really don't feel myself nor my customers sucked by SEP 11
 
GuidoElia
HELPPC
 

  _  

Da: Cliff Partlow [mailto:cliff...@cox.net] 
Inviato: martedì 10 marzo 2009 18.38
A: NT System Admin Issues
Oggetto: RE: NOD32 FP



You can fix " Better to be screwed up"

Suck just sucks...

 

 

"From The Sunny Side Of The Street!"

Cliff P.

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 10:37 AM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Is it a matter of preferences ? Better to be screwed up or ..sucked ?

 

GuidoElia

HELPPC

 

 

  _  

Da: Tim Vander Kooi [mailto:tvanderk...@expl.com] 
Inviato: martedì 10 marzo 2009 18.17
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

Yes it sure does.

NOD screwing up doesn't make Symantec not suck. Sorry.

TVK

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Oh , isn't Symantec !

 

GuidoElia

HELPPC

 

 

  _  

Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content 
<http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2>
 &task=view&id=5839&Itemid=2

 

"Unfortunately, an error in the heuristics module, coupled with the specific 
virus signature database update, caused ESET to incorrectly identify several 
Windows operating system files, including dllhost.exe and msdtc.exe, as being 
infected with Win32/Kryptik.JX."

 

 - Andy O.

 

 

 

 

 

 

 

 

 

 

 

 



__ NOD32 3924 (20090310) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com


 


 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

RE: NOD32 FP

[Tim Vander Kooi]

Personally, I prefer dealing with a one-time "oops" than a long term pain. Keep 
in mind, I am not here to tell others not to hit themselves in the head with a 
hammer repeatedly, it's just not my cup of tea. :)
TVK

From: HELP_PC [mailto:g...@enter.it]
Sent: Tuesday, March 10, 2009 12:37 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

Is it a matter of preferences ? Better to be screwed up or ..sucked ?

GuidoElia
HELPPC



Da: Tim Vander Kooi [mailto:tvanderk...@expl.com]
Inviato: martedì 10 marzo 2009 18.17
A: NT System Admin Issues
Oggetto: RE: NOD32 FP
Yes it sure does.
NOD screwing up doesn't make Symantec not suck. Sorry.
TVK

From: HELP_PC [mailto:g...@enter.it]
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

Oh , isn't Symantec !

GuidoElia
HELPPC



Da: Andy Ognenoff [mailto:andyognen...@gmail.com]
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?



http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2



"Unfortunately, an error in the heuristics module, coupled with the specific 
virus signature database update, caused ESET to incorrectly identify several 
Windows operating system files, including dllhost.exe and msdtc.exe, as being 
infected with Win32/Kryptik.JX."



 - Andy O.





















~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Cliff Partlow]

You can fix " Better to be screwed up"

Suck just sucks...

 

 

"From The Sunny Side Of The Street!"

Cliff P.

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 10:37 AM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Is it a matter of preferences ? Better to be screwed up or ..sucked ?

 

GuidoElia

HELPPC

 

 

  _  

Da: Tim Vander Kooi [mailto:tvanderk...@expl.com] 
Inviato: martedì 10 marzo 2009 18.17
A: NT System Admin Issues
Oggetto: RE: NOD32 FP

Yes it sure does.

NOD screwing up doesn’t make Symantec not suck. Sorry.

TVK

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Oh , isn't Symantec !

 

GuidoElia

HELPPC

 

 

  _  

Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content
<http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&I
temid=2> &task=view&id=5839&Itemid=2

 

“Unfortunately, an error in the heuristics module, coupled with the specific
virus signature database update, caused ESET to incorrectly identify several
Windows operating system files, including dllhost.exe and msdtc.exe, as
being infected with Win32/Kryptik.JX.”

 

 - Andy O.

 

 

 

 

 

 

 

 

 

 

 

 



__ NOD32 3924 (20090310) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

RE: Cisco parts source

[Rohyans, Aaron]

I can probably source those for you myself if you're interested.  I know
I have 2 and probably have 3 if I can dig it up.

 

Thanks!

 

Aaron T. Rohyans
Senior Network Engineer

CCIE #21945, CCSP, CCNA, CQS-Firewall, CQS-IPS, CQS-VPN, ISSP, CISP,
JNCIA-ER

DPSciences Corporation
7400 N. Shadeland Ave., Suite 245

Indianapolis, IN 46250
Office:  (317) 348-0099
Fax:   (317) 849-7134
arohy...@dpsciences.com  
http://www.dpsciences.com/

 

From: Jim Majorowicz [mailto:jmajorow...@gmail.com] 
Sent: Tuesday, March 10, 2009 1:17 PM
To: NT System Admin Issues
Subject: Cisco parts source

 

Anyone got a recommendation for a source on Refurbished Cisco parts?

 

I need 3 WIC-1ENET cards for a Cisco 1760.

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

R: NOD32 FP

[HELP_PC]

Is it a matter of preferences ? Better to be screwed up or ..sucked ?
 
GuidoElia
HELPPC
 

  _  

Da: Tim Vander Kooi [mailto:tvanderk...@expl.com] 
Inviato: martedì 10 marzo 2009 18.17
A: NT System Admin Issues
Oggetto: RE: NOD32 FP



Yes it sure does.

NOD screwing up doesn't make Symantec not suck. Sorry.

TVK

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Oh , isn't Symantec !

 

GuidoElia

HELPPC

 

 

  _  

Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content 

 &task=view&id=5839&Itemid=2

 

"Unfortunately, an error in the heuristics module, coupled with the specific 
virus signature database update, caused ESET to incorrectly identify several 
Windows operating system files, including dllhost.exe and msdtc.exe, as being 
infected with Win32/Kryptik.JX."

 

 - Andy O.

 

 

 

 

 

 


 


 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: NOD32 FP

[Micheal Espinola Jr]

+1

--
ME2



On Tue, Mar 10, 2009 at 1:17 PM, Tim Vander Kooi  wrote:
> Yes it sure does.
>
> NOD screwing up doesn’t make Symantec not suck. Sorry.
>
> TVK

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Cisco parts source

[Jacob]

http://www.alliancedatacom.com/

 

I have used them for years for Cisco repairs and parts.

 

Contact Jim Smylie:  smy...@alliancedatacom.com

 

Jacob

 

From: Jim Majorowicz [mailto:jmajorow...@gmail.com] 
Sent: Tuesday, March 10, 2009 10:17 AM
To: NT System Admin Issues
Subject: Cisco parts source

 

Anyone got a recommendation for a source on Refurbished Cisco parts?

 

I need 3 WIC-1ENET cards for a Cisco 1760.

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Cisco parts source

[Erik Goldoff]

Try Atlantix Global, they're a subsidiary (?) of SolarCom and deal with
refurbs ...  Call Craig and tell him I sent you
Craig M. Wade 
Account Executive 
Atlantix Global Systems 
One Sun Court - Norcross, GA 30092 
email: cw...@atlantixglobal.com  - AOL IM - CWadeAtlantix 
Direct: 770-582-7186 Fax: 770-582-8841 
Toll Free: 1-888-786-2727 Extension # 7186 
  www.atlantixglobal.com 


Erik Goldoff


IT  Consultant

Systems, Networks, & Security 

 

  _  

From: Jim Majorowicz [mailto:jmajorow...@gmail.com] 
Sent: Tuesday, March 10, 2009 1:17 PM
To: NT System Admin Issues
Subject: Cisco parts source



Anyone got a recommendation for a source on Refurbished Cisco parts?

 

I need 3 WIC-1ENET cards for a Cisco 1760.

 

 


 


 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Cliff Partlow]

+1

 

 

"From The Sunny Side Of The Street!"

Cliff P.

 

From: Tim Vander Kooi [mailto:tvanderk...@expl.com] 
Sent: Tuesday, March 10, 2009 10:17 AM
To: NT System Admin Issues
Subject: RE: NOD32 FP

 

Yes it sure does.

NOD screwing up doesn’t make Symantec not suck. Sorry.

TVK

 

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

 

Oh , isn't Symantec !

 

GuidoElia

HELPPC

 

 

  _  

Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content
<http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&I
temid=2> &task=view&id=5839&Itemid=2

 

“Unfortunately, an error in the heuristics module, coupled with the specific
virus signature database update, caused ESET to incorrectly identify several
Windows operating system files, including dllhost.exe and msdtc.exe, as
being infected with Win32/Kryptik.JX.”

 

 - Andy O.

 

 

 

 

 

 

 

 

 



__ NOD32 3924 (20090310) Information __

This message was checked by NOD32 antivirus system.
http://www.eset.com


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

RE: NOD32 FP

[Mike French]

+1


From: Tim Vander Kooi [mailto:tvanderk...@expl.com] 
Sent: Tuesday, March 10, 2009 12:17 PM
To: NT System Admin Issues
Subject: RE: NOD32 FP

Yes it sure does.
NOD screwing up doesn't make Symantec not suck. Sorry.
TVK

From: HELP_PC [mailto:g...@enter.it] 
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

Oh , isn't Symantec !
 
GuidoElia
HELPPC
 


Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP
Anyone hit by this?

http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2

"Unfortunately, an error in the heuristics module, coupled with the 
specific virus signature database update, caused ESET to incorrectly identify 
several Windows operating system files, including dllhost.exe and msdtc.exe, as 
being infected with Win32/Kryptik.JX."

 - Andy O.

 
 

 
 

 
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Cisco parts source

[Mike French]

Try here:

Steve O'Neil - Buy and Sell Networking Hardware
Cisco, Extreme, Foundry, HP, Nortel, 3Com and more 
Dexon Computer, Inc 
9201 E. Bloomington Freeway, Suite BB
Minneapolis, MN 55420
952-888-8922 Ext 104 
952-888-9136 Fax
son...@dexon.com
www.dexon.com


From: Jim Majorowicz [mailto:jmajorow...@gmail.com] 
Sent: Tuesday, March 10, 2009 12:17 PM
To: NT System Admin Issues
Subject: Cisco parts source

Anyone got a recommendation for a source on Refurbished Cisco parts?

I need 3 WIC-1ENET cards for a Cisco 1760.



 
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Tim Vander Kooi]

Yes it sure does.
NOD screwing up doesn't make Symantec not suck. Sorry.
TVK

From: HELP_PC [mailto:g...@enter.it]
Sent: Tuesday, March 10, 2009 12:15 PM
To: NT System Admin Issues
Subject: R: NOD32 FP

Oh , isn't Symantec !

GuidoElia
HELPPC



Da: Andy Ognenoff [mailto:andyognen...@gmail.com]
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP

Anyone hit by this?



http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2



"Unfortunately, an error in the heuristics module, coupled with the specific 
virus signature database update, caused ESET to incorrectly identify several 
Windows operating system files, including dllhost.exe and msdtc.exe, as being 
infected with Win32/Kryptik.JX."



 - Andy O.











~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Cisco parts source

[Jim Majorowicz]

Anyone got a recommendation for a source on Refurbished Cisco parts?

 

I need 3 WIC-1ENET cards for a Cisco 1760.

 

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

R: NOD32 FP

[HELP_PC]

Oh , isn't Symantec !
 
GuidoElia
HELPPC
 

  _  

Da: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Inviato: martedì 10 marzo 2009 14.20
A: NT System Admin Issues
Oggetto: NOD32 FP



Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content 

 &task=view&id=5839&Itemid=2

 

"Unfortunately, an error in the heuristics module, coupled with the specific 
virus signature database update, caused ESET to incorrectly identify several 
Windows operating system files, including dllhost.exe and msdtc.exe, as being 
infected with Win32/Kryptik.JX."

 

 - Andy O.


 


 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Micheal Espinola Jr]

Sounds about right to me.  They offered something outrageous like that
to me when I asked tem to extend (1) telephone pole to reach my house
when I lived in NH.


--
ME2



On Tue, Mar 10, 2009 at 12:45 PM, Holstrom, Don  wrote:
> Comcast.
>
> -Original Message-
> From: Sam Cayze [mailto:sam.ca...@rollouts.com]
> Sent: Tuesday, March 10, 2009 11:34 AM
> To: NT System Admin Issues
> Subject: RE: Internet connectivity
>
> I was really under the impression that cable providers would wire
> anything for a customer, and absorb the costs.  1 Block, 15,000K?
> Yikes.
>
> Mind sharing the company name?
>
> -Original Message-
> From: Erik Goldoff [mailto:egold...@gmail.com]
> Sent: Tuesday, March 10, 2009 10:18 AM
> To: NT System Admin Issues
> Subject: RE: Internet connectivity
>
>
> Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
> and
> *most* DSL is rated as "up to" which starts at zero ... Check the
> Service Level Agreements of any DSL you'd be considering, as far as
> guaranteed bandwidth, and response time to trouble tickets
>
>
> Erik Goldoff
> IT  Consultant
> Systems, Networks, & Security
>
>
> -Original Message-
> From: Holstrom, Don [mailto:dholst...@nbm.org]
> Sent: Tuesday, March 10, 2009 10:02 AM
> To: NT System Admin Issues
> Subject: Internet connectivity
>
> My museum is disconnected from any other blocks by cable TV, so I cannot
> hook up to that without a $15,000 fee. I have FIOS at home and am loving
> it, even though they lied to me about connectivity and I cannot run test
> web sites from home and I send them way too much dough every month...
>
> Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
> or some other such DSL? I remember using a T-1 much earlier in my career
> and it was pretty good, but of course we didn't have the constant use
> the web gets by the youngsters now.
>
> I have about 60 serious web users and also run Exchange 2003. I don't
> need to host any websites but I do have a couple of dozen remote access
> users...
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Scott Kaufman at HQ]

We ran into these issues last year with a number of providers, when
trying to run cable/dsl to our remote locations to offload Internet
traffic.

It all depends on if the provider already provides access to the area,
and if not, then they have to run the line.  Depending on the area, they
might have to pay a developer for access to the property & running the
line, construction costs, permits, new equipment, etc...
Usually the first company in an area/business park has to pay the large
fee for new construction, then other businesses will get the benefit.
Sometimes the providers will bury the construction costs into the MRC,
if you can sign for a 3-5 year service engagement.


Scott Kaufman
Lead Network Analyst
ITT ESI, Inc.


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org] 
Sent: Tuesday, March 10, 2009 12:45 PM
To: NT System Admin Issues
Subject: RE: Internet connectivity

Comcast.

-Original Message-
From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Tuesday, March 10, 2009 11:34 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

I was really under the impression that cable providers would wire
anything for a customer, and absorb the costs.  1 Block, 15,000K?
Yikes.  

Mind sharing the company name? 

-Original Message-
From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Tuesday, March 10, 2009 10:18 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

 
Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
and
*most* DSL is rated as "up to" which starts at zero ... Check the
Service Level Agreements of any DSL you'd be considering, as far as
guaranteed bandwidth, and response time to trouble tickets


Erik Goldoff
IT  Consultant
Systems, Networks, & Security 


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Tuesday, March 10, 2009 10:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Sean Rector]

I used Komodo for our wildcard cert.

Sean Rector, MCSE

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 10:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us
$3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~
> 2008-2009 Season:  The Barber of Seville
> Recently Announced:  Virginia Opera's 35th Anniversary Season 2009-2010
Visit us online at www.vaopera.org or call 1.866.OPERA.VA

This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Firewall Recommendations

[Joe Heaton]

Watchguard has some very nice field office type firewalls.  Their Edge
products.  Take a look at them, along with whatever you look at.

 

Joe Heaton

Employment Training Panel

 

From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Monday, March 09, 2009 2:05 PM
To: NT System Admin Issues
Subject: Firewall Recommendations

 

Alright, this is continuation of my previous post regarding a Site to
Site VPN endpoint, but it turns out I will need a full blown
Router/Firewall.  (The new ISP is no longer will be providing me with
one...)

 

I little info:

 

This is for a very small office

I prefer simple setup; GUI preferred.  I am not an networking expert;
most of our firewall management is performed by a solutions provider.

Only about 4 NATs, 20 users, VPN needed

SonicWall is sore spot for me.  I know many of you will recommend it...
I have used a TZ170 a few years ago.  The support was horrendous and
they could not figure out why all the users where constantly
disconnecting from VPN.  The VPN Client Software was terrible as well.
I trashed it after 2 weeks.

 

Bonuses:

Dual WAN connection and or/

EVDO Card PC Slot

 

Thanks,

 

Sam Cayze
Information Technology Administrator
ROLLOUTS
ONSITE * ON DEMAND

 

952.279.6218...Direct Dial
612.386.3946...Mobile
877.471.6495...eFax
www.Rollouts.com http://www.Rollouts.com> 
www.e-Technicians.net  

CONFIDENTIALITY NOTICE: This email and any attachment(s) are intended
only for the designated recipient(s).   Rollouts Incorporated prohibits
use, distribution or transmittal by or to an unintended recipient
without Rollouts' express written approval.  If you are not the intended
recipient, please delete this email and notify Rollouts.

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Holstrom, Don]

Comcast.

-Original Message-
From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Tuesday, March 10, 2009 11:34 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

I was really under the impression that cable providers would wire
anything for a customer, and absorb the costs.  1 Block, 15,000K?
Yikes.  

Mind sharing the company name? 

-Original Message-
From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Tuesday, March 10, 2009 10:18 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

 
Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
and
*most* DSL is rated as "up to" which starts at zero ... Check the
Service Level Agreements of any DSL you'd be considering, as far as
guaranteed bandwidth, and response time to trouble tickets


Erik Goldoff
IT  Consultant
Systems, Networks, & Security 


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Tuesday, March 10, 2009 10:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: DNS / WINS Issue?

[Kurt Buff]

First place to look is your lmhosts file.

On Tue, Mar 10, 2009 at 08:22, Kevan Dickinson
 wrote:
> Hi
>
> I have followed the article http://support.microsoft.com/kb/318803 and
> made the changes to the registry so that resolved DNS names are not
> cached on the server.  If I do a ipconfig /displaydns all I see are
> entries for localhost.
>
> If I ping the FQDN I get the correct resolved address.
> If I ping just the netbios name of the machine I get the wrong IP
> address returned.
>
> I have checked my WINS server and DNS servers and they have recorded the
> correct IP address of my laptop connected over the VPN.
>
> What else on the server could be caching the Netbios name of my laptop.
> I did a nbtstat -R but that made no difference.
>
> Really looking for help on this if you or anyone else have anything else
> to suggest.
>
> Kevan Dickinson
> Network Manager
> NSF-CMI
> 23 Lodge Road
> Hanborough Business Park, Long Hanborough,
> Oxford, OX29 8SJ, UK
>
> T:+44 01993 885661
> E:kevan.dickin...@nsf-cmi.com
> W:www.nsf-cmi.com
>
>
>
> -Original Message-
> From: Steph Balog [mailto:validemai...@gmail.com]
> Sent: 28 February 2009 11:38
> To: NT System Admin Issues
> Subject: RE: DNS / WINS Issue?
>
> Ahhh, (i see say the blind man as he tripped over is cane and saw) ;-)
> You issue isnt really sql at all, nor is it dns so much. You are a
> victim of one of MS's better TCP/IP stack designs (no really, it is a
> better design).
> MS did a great thing is the use of caches when it does its network
> lookups, it ALWAYS looks at the cache first. Simply flushing the DNS
> cache won't get rid of your issue, you need to tell those clients not to
> keep that info cached for so long. You can first try to stop your
> dnscache doing a net stop dnscache and then try to recreate your
> problem. You need your dns client running though so you will need to
> hack the registry of the client and set down the maxpositive TTL and
> maxmegtive TTL (time to live) values. Default for positive is like a day
> (measured in seconds) and default value for negative reponse is 15 mins.
> All that can be found here
> http://support.microsoft.com/kb/318803
>
> Good luck!
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
>
>                          ***Disclaimer***
>
> The contents of this Email may be privileged and are confidential. If you are 
> not the intended recipient, any disclosure, copying, distribution or any 
> action taken or omitted to be taken in reliance on it, is prohibited and may 
> be unlawful.
>
> Should you wish to use Email as a mode of communication, NSF-CMi Ltd and its 
> subsidiaries are unable to guarantee the security of Email content outside of 
> our own computer systems.
>
> This footnote also confirms that this Email message has been checked by 
> MailMarshal for the presence of computer viruses. Whilst we run anti-virus 
> software, you are solely responsible for ensuring that any Email or 
> attachment you receive is virus free. We disclaim any liability for any 
> damage you suffer as a consequence of receiving any virus.
>
> NSF-CMi Ltd
> Registered in England No: 1899857
> Registered Office 4th Floor, 35 New Bridge Street, London, EC4V 6BW
>
> **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[Kennedy, Jim]

Appreciate the responses...I am digging into your ideas now. I now see syn 
floods on two dc's that are in the same subnet from 169.254.2.x addresses.

Looking like a virus now..




> -Original Message-
> From: Glen Johnson [mailto:gjohn...@vhcc.edu]
> Sent: Tuesday, March 10, 2009 12:34 PM
> To: NT System Admin Issues
> Subject: RE: Account lockouts
> 
> Sounds like you've got the conflicker virus running somewhere.
> We had that one for a while.
> Many locked accounts.
> Check the account you are using on the server to make sure it isn't
> locked out.  If it is, you wont be able to use it to unlock anyone.
> We had to use the "administrator" account to unlock my account so I
> could unlock others.  I'm pretty sure the "administrator" account can't
> be locked out.
> We also found a script that we could run to unlock all of them.  Saved
> lots of time.
> Also, if you look at the event logs you should see where the infected
> computer has failed login for different user accounts.
> It was event 539 on server 2003.  Not sure what the server 08
> equivalent
> event number is.
> 
> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 12:07 PM
> To: NT System Admin Issues
> Subject: RE: Account lockouts
> 
> I should have added 2008 DC's. Seeing this in 3 of the 5 DC's. The
> killer is I can't unlock the locked accounts.
> 
> 
> 
> > -Original Message-
> > From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> > Sent: Tuesday, March 10, 2009 11:53 AM
> > To: NT System Admin Issues
> > Subject: Account lockouts
> >
> > I am getting hammered with these in the event log:
> >
> > The SAM database was unable to lockout the account of USERNAME due to
> a
> > resource error, such as a hard disk write failure (the specific error
> > code is in the error data) . Accounts are locked after a certain
> number
> > of bad passwords are provided so please consider resetting the
> password
> > of the account mentioned above.
> >
> >
> > And accounts are getting locked out left and right, others are not. I
> > have reset the passwords on some of them and disabled/enabled and
> they
> > still remain locked out.
> >
> > At first glance you/I might think a dictionary attack, but it feels
> > more like Kerberos blowing up...
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[James Winzenz]

What's the event ID number?  Is it 12294?  Are there any other
associated events listed at the same time?  Look for 1083, 1955 in the
File Replication log indicating replication conflicts.  What's your
domain/forest functional level at?  Do you have any corresponding 680's
or 539's/644's indicating failed logins/account lockouts for the
accounts that are locking out that might provide additional information?
What about the possibility of an infected PC on your network?

Thanks,

James Winzenz
Infrastructure Systems Engineer II - Security
Pulte Homes Information Services

-Original Message-
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
Sent: Tuesday, March 10, 2009 8:53 AM
To: NT System Admin Issues
Subject: Account lockouts

I am getting hammered with these in the event log:

The SAM database was unable to lockout the account of USERNAME due to a
resource error, such as a hard disk write failure (the specific error
code is in the error data) . Accounts are locked after a certain number
of bad passwords are provided so please consider resetting the password
of the account mentioned above.


And accounts are getting locked out left and right, others are not. I
have reset the passwords on some of them and disabled/enabled and they
still remain locked out.

At first glance you/I might think a dictionary attack, but it feels more
like Kerberos blowing up...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


CONFIDENTIALITY NOTICE:  This email may contain confidential and privileged 
material for the sole use of the intended recipient(s).  Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately by 
email and delete the message and any file attachments from your computer.  
Thank you.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[Glen Johnson]

Sounds like you've got the conflicker virus running somewhere.
We had that one for a while.
Many locked accounts.
Check the account you are using on the server to make sure it isn't
locked out.  If it is, you wont be able to use it to unlock anyone.
We had to use the "administrator" account to unlock my account so I
could unlock others.  I'm pretty sure the "administrator" account can't
be locked out.
We also found a script that we could run to unlock all of them.  Saved
lots of time.
Also, if you look at the event logs you should see where the infected
computer has failed login for different user accounts.
It was event 539 on server 2003.  Not sure what the server 08 equivalent
event number is.

-Original Message-
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] 
Sent: Tuesday, March 10, 2009 12:07 PM
To: NT System Admin Issues
Subject: RE: Account lockouts

I should have added 2008 DC's. Seeing this in 3 of the 5 DC's. The
killer is I can't unlock the locked accounts.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 11:53 AM
> To: NT System Admin Issues
> Subject: Account lockouts
> 
> I am getting hammered with these in the event log:
> 
> The SAM database was unable to lockout the account of USERNAME due to
a
> resource error, such as a hard disk write failure (the specific error
> code is in the error data) . Accounts are locked after a certain
number
> of bad passwords are provided so please consider resetting the
password
> of the account mentioned above.
> 
> 
> And accounts are getting locked out left and right, others are not. I
> have reset the passwords on some of them and disabled/enabled and they
> still remain locked out.
> 
> At first glance you/I might think a dictionary attack, but it feels
> more like Kerberos blowing up...
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Brian Desmond]

Take a look at Digicert - they're affordable and have done some nice 
integration work on their website for the UC certs.

I'm not a huge fan of GoDaddy because of the intermediate issues and WM compat 
problems as well. Plus their website is just annoying with all the upsell 
attempts.

Thanks,
Brian Desmond
br...@briandesmond.com

c - 312.731.3132


-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com]
Sent: Tuesday, March 10, 2009 9:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: HP LTO Autoloader Speed Issues

[RichardMcClary]

In the log anywhere do you see a write speed for that job?  Try running a 
similar job on another host to see how this compares.  I've had similar 
things just because a particular job was "troublesome".
--
Richard D. McClary
Systems Administrator, Information Technology Group
 
ASPCA®
1717 S. Philo Rd, Ste 36
Urbana, IL  61802
 
richardmccl...@aspca.org
 
P: 217-337-9761
C: 217-417-1182
F: 217-337-9761
www.aspca.org
 
The information contained in this e-mail, and any attachments hereto, is 
from The American Society for the Prevention of Cruelty to Animals® (ASPCA
®) and is intended only for use by the addressee(s) named herein and may 
contain legally privileged and/or confidential information. If you are not 
the intended recipient of this e-mail, you are hereby notified that any 
dissemination, distribution, copying or use of the contents of this 
e-mail, and any attachments hereto, is strictly prohibited. If you have 
received this e-mail in error, please immediately notify me by reply email 
and permanently delete the original and any copy of this e-mail and any 
printout thereof.
 

"Joseph L. Casale"  wrote on 03/10/2009 
10:55:40 AM:

> I have an LTO2 autoloader from HP that had no hardware changes all 
> of a sudden slow its write speed to an unacceptable rate:
> 
> Backup started on 3/9/2009 at 7:28 PM.
> Backup completed on 3/9/2009 at 8:46 PM.
> Directories: 16
> Files: 15
> Bytes: 14,404,937,238
> Time:  1 hour,  18 minutes, and  18 seconds
> 
> --
> 
> Verify started on 3/9/2009 at 8:47 PM.
> Verify completed on 3/9/2009 at 9:07 PM.
> Directories: 16
> Files: 15
> Different: 0
> Bytes: 14,404,937,238
> Time:  19 minutes and  53 seconds
> 
> Wtf could have caused this? I can?t make my window no more, the only
> changes possibly done were sp updates.
> 
> Anyone experience anything like this?
> 
> jlc
> 
> 
> 
> 
> 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Account lockouts

[Kennedy, Jim]

I should have added 2008 DC's. Seeing this in 3 of the 5 DC's. The killer is I 
can't unlock the locked accounts.



> -Original Message-
> From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
> Sent: Tuesday, March 10, 2009 11:53 AM
> To: NT System Admin Issues
> Subject: Account lockouts
> 
> I am getting hammered with these in the event log:
> 
> The SAM database was unable to lockout the account of USERNAME due to a
> resource error, such as a hard disk write failure (the specific error
> code is in the error data) . Accounts are locked after a certain number
> of bad passwords are provided so please consider resetting the password
> of the account mentioned above.
> 
> 
> And accounts are getting locked out left and right, others are not. I
> have reset the passwords on some of them and disabled/enabled and they
> still remain locked out.
> 
> At first glance you/I might think a dictionary attack, but it feels
> more like Kerberos blowing up...
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Tech Podcasts (was: Godaddy.com for SSL certs ?)

[Matthew W. Ross]

Anybody have any recommended Tech podcasts?

I already listen to the stuff at Twit.tv, (Windows weekly, Floss weekly, 
Security Now!, etc) but I'm curious if there are any other really good review 
podcasts out there, especially with enterprise level equipment. (servers, 
network equipment, antivirus software, etc...)

I'll check out GeekBrief when I get home. Thanks!


--Matt Ross
Ephrata School District


- Original Message -
From: Jason Morris
[mailto:jmor...@mjmc.com]
To: NT System Admin Issues
[mailto:ntsysad...@lyris.sunbelt-software.com]
Sent: Tue, 10 Mar 2009
08:18:18 -0700
Subject: RE: Godaddy.com for SSL certs?


> Also, for those who watch the GeekBrief podcast, if you use promocode
> GB1, GB2, GB3 or GB4, you'll get an extra percentage off. I think it's
> 10%.
> Jason
> 
> 
> -Original Message-
> From: Stefan Jafs [mailto:sj...@amico.com] 
> Sent: Tuesday, March 10, 2009 10:16 AM
> To: NT System Admin Issues
> Subject: RE: Godaddy.com for SSL certs?
> 
> Yes, I just got 5 domains for 3 years for my E2k7 server, since was a
> new customer I got an additional 25% of, ended of costing me $172 for 3
> years.
> GeoCerts wanted $900 +!
> 
> ___
> Stefan Jafs
> 
> -Original Message-
> From: Jacob [mailto:ja...@excaliburfilms.com] 
> Sent: Tuesday, March 10, 2009 10:59 AM
> To: NT System Admin Issues
> Subject: Godaddy.com for SSL certs?
> 
> Anybody use godaddy.com for the SSL certs for IIS?
> 
> We been using VeriSign for years now. At three servers, this costs us
> $3,000
> a year.
> 
> With godaddy.com, I can secure all three servers for $299.
> 
> http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs
> 
> Jacob
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> --
> The pages accompanying this email transmission contain information from
> MJMC, Inc., which
> is confidential and/or privileged. The information is to be for the use of
> the individual
> or entity named on this cover sheet. If you are not the intended recipient,
> you are
> hereby notified that any disclosure, dissemination, distribution, or copying
> of this
> communication is strictly prohibited. If you received this transmission in
> error, please
> immediately notify us by telephone so that we can arrange for the retrieval
> of the original
> document.
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

HP LTO Autoloader Speed Issues

[Joseph L. Casale]

I have an LTO2 autoloader from HP that had no hardware changes all of a sudden 
slow its write speed to an unacceptable rate:

Backup started on 3/9/2009 at 7:28 PM.
Backup completed on 3/9/2009 at 8:46 PM.
Directories: 16
Files: 15
Bytes: 14,404,937,238
Time:  1 hour,  18 minutes, and  18 seconds

--

Verify started on 3/9/2009 at 8:47 PM.
Verify completed on 3/9/2009 at 9:07 PM.
Directories: 16
Files: 15
Different: 0
Bytes: 14,404,937,238
Time:  19 minutes and  53 seconds

Wtf could have caused this? I can't make my window no more, the only changes 
possibly done were sp updates.

Anyone experience anything like this?

jlc



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Account lockouts

[Kennedy, Jim]

I am getting hammered with these in the event log:

The SAM database was unable to lockout the account of USERNAME due to a 
resource error, such as a hard disk write failure (the specific error code is 
in the error data) . Accounts are locked after a certain number of bad 
passwords are provided so please consider resetting the password of the account 
mentioned above.


And accounts are getting locked out left and right, others are not. I have 
reset the passwords on some of them and disabled/enabled and they still remain 
locked out.

At first glance you/I might think a dictionary attack, but it feels more like 
Kerberos blowing up...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet connectivity

[Micheal Espinola Jr]

If they stopped short of your location, and its within he same
town/jurisdiction, you can bet there is good reason that they did so.
And a reason that is fiscally based.

--
ME2



On Tue, Mar 10, 2009 at 11:34 AM, Sam Cayze  wrote:
> I was really under the impression that cable providers would wire
> anything for a customer, and absorb the costs.  1 Block, 15,000K?
> Yikes.
>
> Mind sharing the company name?
>
> -Original Message-
> From: Erik Goldoff [mailto:egold...@gmail.com]
> Sent: Tuesday, March 10, 2009 10:18 AM
> To: NT System Admin Issues
> Subject: RE: Internet connectivity
>
>
> Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
> and
> *most* DSL is rated as "up to" which starts at zero ... Check the
> Service Level Agreements of any DSL you'd be considering, as far as
> guaranteed bandwidth, and response time to trouble tickets
>
>
> Erik Goldoff
> IT  Consultant
> Systems, Networks, & Security
>
>
> -Original Message-
> From: Holstrom, Don [mailto:dholst...@nbm.org]
> Sent: Tuesday, March 10, 2009 10:02 AM
> To: NT System Admin Issues
> Subject: Internet connectivity
>
> My museum is disconnected from any other blocks by cable TV, so I cannot
> hook up to that without a $15,000 fee. I have FIOS at home and am loving
> it, even though they lied to me about connectivity and I cannot run test
> web sites from home and I send them way too much dough every month...
>
> Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
> or some other such DSL? I remember using a T-1 much earlier in my career
> and it was pretty good, but of course we didn't have the constant use
> the web gets by the youngsters now.
>
> I have about 60 serious web users and also run Exchange 2003. I don't
> need to host any websites but I do have a couple of dozen remote access
> users...
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Sam Cayze]

+1 on the intermediary certificate burn.

Also, GoDaddy's cart/checkout system is like a choose your own adventure
book.  Careful :)



-Original Message-
From: Neil Standley [mailto:n...@net-venture.com] 
Sent: Tuesday, March 10, 2009 10:20 AM
To: NT System Admin Issues
Subject: RE: Godaddy.com for SSL certs?

We use them here, the only issue I had was when I forgot to install the
intermediary certificate which caused the chain to break.  Other than
that they work well, we have used a Deluxe Wildcard cert, Standard Cert
and I just installed a UCC cert for a customer running Exchange 07 with
Outlook Anywhere.



Neil 

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com]
Sent: Tuesday, March 10, 2009 7:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us
$3,000 a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Sam Cayze]

I was really under the impression that cable providers would wire
anything for a customer, and absorb the costs.  1 Block, 15,000K?
Yikes.  

Mind sharing the company name? 

-Original Message-
From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Tuesday, March 10, 2009 10:18 AM
To: NT System Admin Issues
Subject: RE: Internet connectivity

 
Just remember that a T1 normally is guaranteed 1.544mbps speed both ways
and
*most* DSL is rated as "up to" which starts at zero ... Check the
Service Level Agreements of any DSL you'd be considering, as far as
guaranteed bandwidth, and response time to trouble tickets


Erik Goldoff
IT  Consultant
Systems, Networks, & Security 


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Tuesday, March 10, 2009 10:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Webster]

> -Original Message-
> From: Jacob [mailto:ja...@excaliburfilms.com]
> Subject: Godaddy.com for SSL certs?
> 
> Anybody use godaddy.com for the SSL certs for IIS?
> 
> We been using VeriSign for years now. At three servers, this costs us
> $3,000
> a year.
> 
> With godaddy.com, I can secure all three servers for $299.

That is a very popular question in the Citrix world with using GD Wildcard
SSL Certs.  I am in the process of writing a 3-part article on using them in
a XenApp environment.  Part 1 should, I'm hoping, be published today at
http://www.dabcc.com/Webster .


Webster


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Godaddy.com for SSL certs?

[Sherry Abercrombie]

We stay away from godaddy.com.  They've not been good for domain names, have
heard too many horror stories about that.  For certs we use RapidSSL.com

On Tue, Mar 10, 2009 at 10:16 AM, Stefan Jafs  wrote:

> Yes, I just got 5 domains for 3 years for my E2k7 server, since was a new
> customer I got an additional 25% of, ended of costing me $172 for 3 years.
> GeoCerts wanted $900 +!
>
> ___
> Stefan Jafs
>
> -Original Message-
> From: Jacob [mailto:ja...@excaliburfilms.com]
> Sent: Tuesday, March 10, 2009 10:59 AM
> To: NT System Admin Issues
> Subject: Godaddy.com for SSL certs?
>
> Anybody use godaddy.com for the SSL certs for IIS?
>
> We been using VeriSign for years now. At three servers, this costs us
> $3,000
> a year.
>
> With godaddy.com, I can secure all three servers for $299.
>
> http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs
>
> Jacob
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>


-- 
Sherry Abercrombie

"Any sufficiently advanced technology is indistinguishable from magic."
Arthur C. Clarke

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: DNS / WINS Issue?

[Kevan Dickinson]

Hi

I have followed the article http://support.microsoft.com/kb/318803 and
made the changes to the registry so that resolved DNS names are not
cached on the server.  If I do a ipconfig /displaydns all I see are
entries for localhost.

If I ping the FQDN I get the correct resolved address.
If I ping just the netbios name of the machine I get the wrong IP
address returned.

I have checked my WINS server and DNS servers and they have recorded the
correct IP address of my laptop connected over the VPN.  

What else on the server could be caching the Netbios name of my laptop.
I did a nbtstat -R but that made no difference.

Really looking for help on this if you or anyone else have anything else
to suggest.

Kevan Dickinson
Network Manager
NSF-CMI
23 Lodge Road
Hanborough Business Park, Long Hanborough,
Oxford, OX29 8SJ, UK
 
T:+44 01993 885661
E:kevan.dickin...@nsf-cmi.com
W:www.nsf-cmi.com
 
 

-Original Message-
From: Steph Balog [mailto:validemai...@gmail.com] 
Sent: 28 February 2009 11:38
To: NT System Admin Issues
Subject: RE: DNS / WINS Issue?

Ahhh, (i see say the blind man as he tripped over is cane and saw) ;-)
You issue isnt really sql at all, nor is it dns so much. You are a
victim of one of MS's better TCP/IP stack designs (no really, it is a
better design).
MS did a great thing is the use of caches when it does its network
lookups, it ALWAYS looks at the cache first. Simply flushing the DNS
cache won't get rid of your issue, you need to tell those clients not to
keep that info cached for so long. You can first try to stop your
dnscache doing a net stop dnscache and then try to recreate your
problem. You need your dns client running though so you will need to
hack the registry of the client and set down the maxpositive TTL and
maxmegtive TTL (time to live) values. Default for positive is like a day
(measured in seconds) and default value for negative reponse is 15 mins.
All that can be found here
http://support.microsoft.com/kb/318803

Good luck!
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


  ***Disclaimer***

The contents of this Email may be privileged and are confidential. If you are 
not the intended recipient, any disclosure, copying, distribution or any action 
taken or omitted to be taken in reliance on it, is prohibited and may be 
unlawful.

Should you wish to use Email as a mode of communication, NSF-CMi Ltd and its 
subsidiaries are unable to guarantee the security of Email content outside of 
our own computer systems.

This footnote also confirms that this Email message has been checked by 
MailMarshal for the presence of computer viruses. Whilst we run anti-virus 
software, you are solely responsible for ensuring that any Email or attachment 
you receive is virus free. We disclaim any liability for any damage you suffer 
as a consequence of receiving any virus.

NSF-CMi Ltd
Registered in England No: 1899857
Registered Office 4th Floor, 35 New Bridge Street, London, EC4V 6BW

**

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Troy Meyer]

HOLY $...@#%  $3k a year !

www.certificatesforexchange.com just renewed a month ago, $30 a year per cert.

-troy

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 7:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Neil Standley]

We use them here, the only issue I had was when I forgot to install the 
intermediary certificate which caused the chain to break.  Other than that they 
work well, we have used a Deluxe Wildcard cert, Standard Cert and I just 
installed a UCC cert for a customer running Exchange 07 with Outlook Anywhere.



Neil 

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 7:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Internet connectivity

[Erik Goldoff]

 
Just remember that a T1 normally is guaranteed 1.544mbps speed both ways and
*most* DSL is rated as "up to" which starts at zero ... Check the Service
Level Agreements of any DSL you'd be considering, as far as guaranteed
bandwidth, and response time to trouble tickets


Erik Goldoff
IT  Consultant
Systems, Networks, & Security 


-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org] 
Sent: Tuesday, March 10, 2009 10:02 AM
To: NT System Admin Issues
Subject: Internet connectivity

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving it,
even though they lied to me about connectivity and I cannot run test web
sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download or
some other such DSL? I remember using a T-1 much earlier in my career and it
was pretty good, but of course we didn't have the constant use the web gets
by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't need
to host any websites but I do have a couple of dozen remote access users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Jason Morris]

Also, for those who watch the GeekBrief podcast, if you use promocode
GB1, GB2, GB3 or GB4, you'll get an extra percentage off. I think it's
10%.
Jason


-Original Message-
From: Stefan Jafs [mailto:sj...@amico.com] 
Sent: Tuesday, March 10, 2009 10:16 AM
To: NT System Admin Issues
Subject: RE: Godaddy.com for SSL certs?

Yes, I just got 5 domains for 3 years for my E2k7 server, since was a
new customer I got an additional 25% of, ended of costing me $172 for 3
years.
GeoCerts wanted $900 +!

___
Stefan Jafs

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 10:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us
$3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

--
The pages accompanying this email transmission contain information from MJMC, 
Inc., which
is confidential and/or privileged. The information is to be for the use of the 
individual
or entity named on this cover sheet. If you are not the intended recipient, you 
are
hereby notified that any disclosure, dissemination, distribution, or copying of 
this
communication is strictly prohibited. If you received this transmission in 
error, please
immediately notify us by telephone so that we can arrange for the retrieval of 
the original
document.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Godaddy.com for SSL certs?

[Stefan Jafs]

Yes, I just got 5 domains for 3 years for my E2k7 server, since was a new 
customer I got an additional 25% of, ended of costing me $172 for 3 years.
GeoCerts wanted $900 +!

___
Stefan Jafs

-Original Message-
From: Jacob [mailto:ja...@excaliburfilms.com] 
Sent: Tuesday, March 10, 2009 10:59 AM
To: NT System Admin Issues
Subject: Godaddy.com for SSL certs?

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Godaddy.com for SSL certs?

[Jacob]

Anybody use godaddy.com for the SSL certs for IIS?

We been using VeriSign for years now. At three servers, this costs us $3,000
a year.

With godaddy.com, I can secure all three servers for $299.

http://www.godaddy.com/gdshop/ssl/ssl.asp?ci=8979#tabs

Jacob


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Changing Account Settings en Masse

[Eisenberg, Wayne]

Look for a tool from MS called "ADModify.NET". It may do what you are
looking for. See
http://technet.microsoft.com/en-us/library/aa996216(EXCHG.65).aspx. You
may have to do a Google search for a download location.
 
 



From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Tuesday, March 10, 2009 4:20 AM
To: NT System Admin Issues
Subject: Re: Changing Account Settings en Masse


That would be assuming all of your user accounts were in one OU - could
be a bit tricky when you have hundreds of OUs and thousands of users


2009/3/9 Len Hammond 


I thought you could select multiple accounts in ADUC and make
the change to all of the selected items at the same time. Doesn't ctrl+a
select everything at once? Don't have a server available at the moment
to try it. I'll be at a client wit one tomorrow and tryit there.
 


 
On Thu, Mar 5, 2009 at 9:58 AM, John Hornbuckle
 wrote:


I'm okay with a command line (I grew up in the days of
DOS), but given a choice I generally prefer a GUI.

 

Of course, there are some tasks that just don't lend
themselves easily to GUIs.

 

 

 

 

From: KenM [mailto:kenmli...@gmail.com] 
Sent: Thursday, March 05, 2009 8:34 AM 

To: NT System Admin Issues

Subject: Re: Changing Account Settings en Masse 





 

John

 

It sounds like you do not like the command line. There
are a few other options for this. I am assuming you are running 2003.
Using DSA you can highlight multiple users in a OU and make this change.
You could also create a search query for user objects and highlight the
ones you want and make the change. My preferance would be using a either
a vbscript or adfind\admod though.

 

 



 

On Thu, Mar 5, 2009 at 6:50 AM, John Hornbuckle
 wrote:

Thanks!

 

 

From: !Amado Abenojar [mailto:abe9...@hotmail.com] 
Sent: Wednesday, March 04, 2009 8:15 PM 


To: NT System Admin Issues

Subject: RE: Changing Account Settings en Masse 

 

Try "dsquery" and pipe it into "dsmod" in the command
line.

i.e. 

dsquery user "OU=Employees, DC=Domain, DC=Com"
-stalepassword 60 | dsmod user -mustchpwd yes

this command line queries users in the Employees OU who
have not changed their password in 60 days and pipes the list to dsmod
which configures each object with "User must change password at next
logon"

regards

Amado Abenojar
MCSE,MCSA

==





From: john.hornbuc...@taylor.k12.fl.us
To: ntsysadmin@lyris.sunbelt-software.com
Date: Tue, 3 Mar 2009 18:43:11 -0500
Subject: Changing Account Settings en Masse

We've previously not allowed users to change their own
passwords; we've handled that for them, and in Active Directory have
their accounts configured to prevent them from doing it.

 

We're implementing some new policies now, and in the
near future users will need to be able to change their own passwords.

 

I feel sure there's a way for me to enable this
capability without having to launch ADUC and bring up each user's
account individually.

 

Could one of you command line commandos give me a point
in the right direction?


John Hornbuckle

MIS Department

Taylor County School District

www.taylor.k12.fl.us  

 

 

 

 

 

 

 

 

 


 



 






-- 
Len Hammond
CSI:Hartland
lenhamm...@gmail.com


 



 


 

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Mike French]

One of my DC's got hit - msdtc.exe got quarantined.


From: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Sent: Tuesday, March 10, 2009 8:20 AM
To: NT System Admin Issues
Subject: NOD32 FP

Anyone hit by this?

http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2

"Unfortunately, an error in the heuristics module, coupled with the 
specific virus signature database update, caused ESET to incorrectly identify 
several Windows operating system files, including dllhost.exe and msdtc.exe, as 
being infected with Win32/Kryptik.JX."

 - Andy O.

 
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Internet connectivity

[Holstrom, Don]

My museum is disconnected from any other blocks by cable TV, so I cannot
hook up to that without a $15,000 fee. I have FIOS at home and am loving
it, even though they lied to me about connectivity and I cannot run test
web sites from home and I send them way too much dough every month...

Would a T-1 be a better connection than a 768 up by 5 or 6 MB download
or some other such DSL? I remember using a T-1 much earlier in my career
and it was pretty good, but of course we didn't have the constant use
the web gets by the youngsters now.

I have about 60 serious web users and also run Exchange 2003. I don't
need to host any websites but I do have a couple of dozen remote access
users...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: NOD32 FP

[Jon Harris]

I have one off-campus user that has not checked in since last week but I
suspect he will be nailed and not able to at this point.

Jon

On Tue, Mar 10, 2009 at 9:47 AM, Micheal Espinola Jr <
michealespin...@gmail.com> wrote:

> I guess I wouldn't know, since I didn't reboot in-between signature
> updates. I have heard of anyone getting hit either. Time of day for
> the potential hit looks like it was relatively good for minimal
> exposure for most of the U.S.
>
> --
> ME2
>
>
>
> On Tue, Mar 10, 2009 at 9:20 AM, Andy Ognenoff 
> wrote:
> > Anyone hit by this?
> >
> >
> >
> >
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2
> >
> >
> >
> > “Unfortunately, an error in the heuristics module, coupled with the
> > specific virus signature database update, caused ESET to incorrectly
> > identify several Windows operating system files, including dllhost.exe
> and
> > msdtc.exe, as being infected with Win32/Kryptik.JX.”
> >
> >
> >
> >  - Andy O.
> >
> >
> >
> >
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Michael B. Smith]

My initial thought was "what the heck is it going to do about an infected
dllhost"? :-P

(Note: I don't use ESET, so it was a purely philosophic question on my
part.)

-Original Message-
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] 
Sent: Tuesday, March 10, 2009 9:49 AM
To: NT System Admin Issues
Subject: Re: NOD32 FP

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
>
http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&It
emid=2
>
>
>
> “Unfortunately, an error in the heuristics module, coupled with the
> specific virus signature database update, caused ESET to incorrectly
> identify several Windows operating system files, including dllhost.exe and
> msdtc.exe, as being infected with Win32/Kryptik.JX.”
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: NOD32 FP

[Micheal Espinola Jr]

I guess I wouldn't know, since I didn't reboot in-between signature
updates. I have heard of anyone getting hit either. Time of day for
the potential hit looks like it was relatively good for minimal
exposure for most of the U.S.

--
ME2



On Tue, Mar 10, 2009 at 9:20 AM, Andy Ognenoff  wrote:
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2
>
>
>
> “Unfortunately, an error in the heuristics module, coupled with the
> specific virus signature database update, caused ESET to incorrectly
> identify several Windows operating system files, including dllhost.exe and
> msdtc.exe, as being infected with Win32/Kryptik.JX.”
>
>
>
>  - Andy O.
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: NOD32 FP

[Micheal Espinola Jr]

What did you have to do to recover?

--
ME2



On Tue, Mar 10, 2009 at 9:39 AM, Steve Kelsay  wrote:
> Yes.
>
>
>
> From: Andy Ognenoff [mailto:andyognen...@gmail.com]
> Sent: Tuesday, March 10, 2009 9:20 AM
> To: NT System Admin Issues
> Subject: NOD32 FP
>
>
>
> Anyone hit by this?
>
>
>
> http://www.eset.com/joomla/index.php?option=com_content&task=view&id=5839&Itemid=2
>
>
>
> “Unfortunately, an error in the heuristics module, coupled with the
> specific virus signature database update, caused ESET to incorrectly
> identify several Windows operating system files, including dllhost.exe and
> msdtc.exe, as being infected with Win32/Kryptik.JX.”
>
>
>
>  - Andy O.
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: NOD32 FP

[Steve Kelsay]

Yes. 

 

From: Andy Ognenoff [mailto:andyognen...@gmail.com] 
Sent: Tuesday, March 10, 2009 9:20 AM
To: NT System Admin Issues
Subject: NOD32 FP

 

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content&task=view&id=583
9&Itemid=2

 

"Unfortunately, an error in the heuristics module, coupled with the
specific virus signature database update, caused ESET to incorrectly
identify several Windows operating system files, including dllhost.exe
and msdtc.exe, as being infected with Win32/Kryptik.JX."

 

 - Andy O.

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Firewall Recommendations

[Tom Miller]

Here too.  

>>> "Alan Monaghan"  3/10/2009 8:36 AM >>>
Fortigates are what we moved to here. 


Felis demulcta mitis ...
Alan G. Monaghan 
   [ MCSE+I - Win4.0/ MCSE - Win2k/ BJCP # C0389(Recognized)  Ò¿Ó¬ ]
Systems Administrator 
Gardner Publications, Inc.

*Phone .. 1-513-527-8867 
*Fax  1-513-527-8801 
*Cell ... 1-513-378-0919  
*E-mail . al...@gardnerweb.com
*URL  http://Bullwinkle.GardnerWeb.Com/



>> -Original Message-
>> From: Kelsey, John [mailto:jckel...@drmc.org]
>> Sent: Tuesday, March 10, 2009 8:34 AM
>> To: NT System Admin Issues
>> Subject: RE: Firewall Recommendations
>> 
>> +1
>> 
>> 
>> ***
>> John C. Kelsey
>> DuBois Regional Medical Center
>> (:  814.375.3073
>> *:   jckel...@drmc.org 
>> ***
>> 
>> -Original Message-
>> From: Erik Goldoff [mailto:egold...@gmail.com]
>> Sent: Monday, March 09, 2009 19:32
>> To: NT System Admin Issues
>> Subject: RE: Firewall Recommendations
>> 
>> 
>> ok ... when I think FULL BLOWN ROUTER, I think Cisco with WIC
slots,
etc 
>> 
>> Cisco ASA would work well for you, as would Fortigate, Juniper ...
a
few in the sub $500 range
>> ... I too won't touch SonicWall again, regardless of recent reports
that
they 'fixed' support
>> 
>> 
>> 
>> Erik Goldoff
>> 
>> 
>> IT  Consultant
>> 
>> Systems, Networks, & Security
>> 
>> 
>> 
>> 
>> 
>> From: Sam Cayze [mailto:sam.ca...@rollouts.com]
>> Sent: Monday, March 09, 2009 7:21 PM
>> To: NT System Admin Issues
>> Subject: RE: Firewall Recommendations
>> 
>> 
>> via Ethernet drop.  No DSu/CSU's or anything needed.
>> 
>> 
>> 
>> From: Erik Goldoff [mailto:egold...@gmail.com]
>> Sent: Monday, March 09, 2009 6:02 PM
>> To: NT System Admin Issues
>> Subject: RE: Firewall Recommendations
>> 
>> 
>> How will you connect to the internet ?  Will your ISP provide you
with ethernet ( or PPPoE ) or
>> will you need a T1 WIC for T1/Frame Relay ?
>> 
>> When you say "full blown Router" you need to specify the type of
WAN
circuit you'll be using to
>> get accurate advice
>> 
>> 
>> 
>> Erik Goldoff
>> 
>> 
>> IT  Consultant
>> 
>> Systems, Networks, & Security
>> 
>> 
>> 
>> 
>> 
>> From: Sam Cayze [mailto:sam.ca...@rollouts.com]
>> Sent: Monday, March 09, 2009 5:05 PM
>> To: NT System Admin Issues
>> Subject: Firewall Recommendations
>> 
>> 
>> Alright, this is continuation of my previous post regarding a Site
to
Site VPN endpoint, but it
>> turns out I will need a full blown Router/Firewall.  (The new ISP is
no
longer will be providing me
>> with one...)
>> 
>> I little info:
>> 
>> This is for a very small office
>> I prefer simple setup; GUI preferred.  I am not an networking
expert;
most of our firewall
>> management is performed by a solutions provider.
>> Only about 4 NATs, 20 users, VPN needed
>> SonicWall is sore spot for me.  I know many of you will recommend
it... I have used a TZ170 a
>> few years ago.  The support was horrendous and they could not figure
out
why all the users where
>> constantly disconnecting from VPN.  The VPN Client Software was
terrible
as well.  I trashed it after
>> 2 weeks.
>> 
>> Bonuses:
>> Dual WAN connection and or/
>> EVDO Card PC Slot
>> 
>> 
>> Thanks,
>> 
>> 
>> 
>> Sam Cayze
>> Information Technology Administrator
>> ROLLOUTS
>> ONSITE * ON DEMAND
>> 
>> 
>> 
>> 952.279.6218...Direct Dial
>> 612.386.3946...Mobile
>> 877.471.6495...eFax
>> www.Rollouts.com http://www.Rollouts.com>
>> www.e-Technicians.net 
>> 
>> CONFIDENTIALITY NOTICE: This email and any attachment(s) are
intended
only for the designated
>> recipient(s).   Rollouts Incorporated prohibits use, distribution
or
transmittal by or to an
>> unintended recipient without Rollouts' express written approval.  If
you
are not the intended
>> recipient, please delete this email and notify Rollouts.
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> This email and any files transmitted with it are confidential and
intended
solely for the use of the
>> individual or entity to whom they are addressed. If you have
received this
email in error please
>> notify the system manager. This message contains confidential
information
and is intended only for
>> the individual named. If you are not the named addressee you should
not
disseminate, distribute or
>> copy this e-mail.
>> 
>> 
>> 
>> 
>> 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


Confidentiality Notice:  This e-mail message, including attachments, is
for the sole use of the intended recipient(s) and may contain
confidential and privileged information.  Any unauthorized review, use,
disclosure, or distribution is prohibited.  If yo

NOD32 FP

[Andy Ognenoff]

Anyone hit by this?

 

http://www.eset.com/joomla/index.php?option=com_content
 &task=view&id=5839&Itemid=2

 

"Unfortunately, an error in the heuristics module, coupled with the specific
virus signature database update, caused ESET to incorrectly identify several
Windows operating system files, including dllhost.exe and msdtc.exe, as
being infected with Win32/Kryptik.JX."

 

 - Andy O.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Firewall Recommendations

[James Kerr]

I am right with you on Sonicwall, will never go there again, EVAR!
  - Original Message - 
  From: Erik Goldoff 
  To: NT System Admin Issues 
  Sent: Monday, March 09, 2009 7:32 PM
  Subject: RE: Firewall Recommendations


  ok ... when I think FULL BLOWN ROUTER, I think Cisco with WIC slots, etc 

  Cisco ASA would work well for you, as would Fortigate, Juniper ... a few in 
the sub $500 range ... I too won't touch SonicWall again, regardless of recent 
reports that they 'fixed' support 

  Erik Goldoff
  IT  Consultant

  Systems, Networks, & Security 





--
  From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
  Sent: Monday, March 09, 2009 7:21 PM
  To: NT System Admin Issues
  Subject: RE: Firewall Recommendations


  via Ethernet drop.  No DSu/CSU's or anything needed.



--
  From: Erik Goldoff [mailto:egold...@gmail.com] 
  Sent: Monday, March 09, 2009 6:02 PM
  To: NT System Admin Issues
  Subject: RE: Firewall Recommendations


  How will you connect to the internet ?  Will your ISP provide you with 
ethernet ( or PPPoE ) or will you need a T1 WIC for T1/Frame Relay ?  

  When you say "full blown Router" you need to specify the type of WAN circuit 
you'll be using to get accurate advice

  Erik Goldoff
  IT  Consultant

  Systems, Networks, & Security 





--
  From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
  Sent: Monday, March 09, 2009 5:05 PM
  To: NT System Admin Issues
  Subject: Firewall Recommendations


  Alright, this is continuation of my previous post regarding a Site to Site 
VPN endpoint, but it turns out I will need a full blown Router/Firewall.  (The 
new ISP is no longer will be providing me with one...)

  I little info:

  This is for a very small office
  I prefer simple setup; GUI preferred.  I am not an networking expert; most of 
our firewall management is performed by a solutions provider.
  Only about 4 NATs, 20 users, VPN needed
  SonicWall is sore spot for me.  I know many of you will recommend it... I 
have used a TZ170 a few years ago.  The support was horrendous and they could 
not figure out why all the users where constantly disconnecting from VPN.  The 
VPN Client Software was terrible as well.  I trashed it after 2 weeks.

  Bonuses:
  Dual WAN connection and or/
  EVDO Card PC Slot

  Thanks,

   

  Sam Cayze
  Information Technology Administrator
  ROLLOUTS
  ONSITE . ON DEMAND


  952.279.6218...Direct Dial
  612.386.3946...Mobile
  877.471.6495...eFax
  www.Rollouts.com
  www.e-Technicians.net

  CONFIDENTIALITY NOTICE: This email and any attachment(s) are intended only 
for the designated recipient(s).   Rollouts Incorporated prohibits use, 
distribution or transmittal by or to an unintended recipient without Rollouts' 
express written approval.  If you are not the intended recipient, please delete 
this email and notify Rollouts.










 





 





 





 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Firewall Recommendations

[Alan Monaghan]

Fortigates are what we moved to here. 


Felis demulcta mitis ...
Alan G. Monaghan 
   [ MCSE+I - Win4.0/ MCSE - Win2k/ BJCP # C0389(Recognized)  Ò¿Ó¬ ]
Systems Administrator 
Gardner Publications, Inc.

*Phone .. 1-513-527-8867 
*Fax  1-513-527-8801 
*Cell ... 1-513-378-0919  
*E-mail . al...@gardnerweb.com
*URL  http://Bullwinkle.GardnerWeb.Com/



>> -Original Message-
>> From: Kelsey, John [mailto:jckel...@drmc.org]
>> Sent: Tuesday, March 10, 2009 8:34 AM
>> To: NT System Admin Issues
>> Subject: RE: Firewall Recommendations
>> 
>> +1
>> 
>> 
>> ***
>> John C. Kelsey
>> DuBois Regional Medical Center
>> (:  814.375.3073
>> *:   jckel...@drmc.org 
>> ***
>> 
>>  -Original Message-
>>  From: Erik Goldoff [mailto:egold...@gmail.com]
>>  Sent: Monday, March 09, 2009 19:32
>>  To: NT System Admin Issues
>>  Subject: RE: Firewall Recommendations
>> 
>> 
>>  ok ... when I think FULL BLOWN ROUTER, I think Cisco with WIC slots,
etc 
>> 
>>  Cisco ASA would work well for you, as would Fortigate, Juniper ... a
few in the sub $500 range
>> ... I too won't touch SonicWall again, regardless of recent reports that
they 'fixed' support
>> 
>> 
>> 
>>  Erik Goldoff
>> 
>> 
>>  IT  Consultant
>> 
>>  Systems, Networks, & Security
>> 
>> 
>> 
>> 
>> 
>>  From: Sam Cayze [mailto:sam.ca...@rollouts.com]
>>  Sent: Monday, March 09, 2009 7:21 PM
>>  To: NT System Admin Issues
>>  Subject: RE: Firewall Recommendations
>> 
>> 
>>  via Ethernet drop.  No DSu/CSU's or anything needed.
>> 
>> 
>> 
>>  From: Erik Goldoff [mailto:egold...@gmail.com]
>>  Sent: Monday, March 09, 2009 6:02 PM
>>  To: NT System Admin Issues
>>  Subject: RE: Firewall Recommendations
>> 
>> 
>>  How will you connect to the internet ?  Will your ISP provide you
with ethernet ( or PPPoE ) or
>> will you need a T1 WIC for T1/Frame Relay ?
>> 
>>  When you say "full blown Router" you need to specify the type of WAN
circuit you'll be using to
>> get accurate advice
>> 
>> 
>> 
>>  Erik Goldoff
>> 
>> 
>>  IT  Consultant
>> 
>>  Systems, Networks, & Security
>> 
>> 
>> 
>> 
>> 
>>  From: Sam Cayze [mailto:sam.ca...@rollouts.com]
>>  Sent: Monday, March 09, 2009 5:05 PM
>>  To: NT System Admin Issues
>>  Subject: Firewall Recommendations
>> 
>> 
>>  Alright, this is continuation of my previous post regarding a Site to
Site VPN endpoint, but it
>> turns out I will need a full blown Router/Firewall.  (The new ISP is no
longer will be providing me
>> with one...)
>> 
>>  I little info:
>> 
>>  This is for a very small office
>>  I prefer simple setup; GUI preferred.  I am not an networking expert;
most of our firewall
>> management is performed by a solutions provider.
>>  Only about 4 NATs, 20 users, VPN needed
>>  SonicWall is sore spot for me.  I know many of you will recommend
it... I have used a TZ170 a
>> few years ago.  The support was horrendous and they could not figure out
why all the users where
>> constantly disconnecting from VPN.  The VPN Client Software was terrible
as well.  I trashed it after
>> 2 weeks.
>> 
>>  Bonuses:
>>  Dual WAN connection and or/
>>  EVDO Card PC Slot
>> 
>> 
>>  Thanks,
>> 
>> 
>> 
>>  Sam Cayze
>>  Information Technology Administrator
>>  ROLLOUTS
>>  ONSITE * ON DEMAND
>> 
>> 
>> 
>>  952.279.6218...Direct Dial
>>  612.386.3946...Mobile
>>  877.471.6495...eFax
>>  www.Rollouts.com http://www.Rollouts.com>
>>  www.e-Technicians.net 
>> 
>>  CONFIDENTIALITY NOTICE: This email and any attachment(s) are intended
only for the designated
>> recipient(s).   Rollouts Incorporated prohibits use, distribution or
transmittal by or to an
>> unintended recipient without Rollouts' express written approval.  If you
are not the intended
>> recipient, please delete this email and notify Rollouts.
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> This email and any files transmitted with it are confidential and intended
solely for the use of the
>> individual or entity to whom they are addressed. If you have received this
email in error please
>> notify the system manager. This message contains confidential information
and is intended only for
>> the individual named. If you are not the named addressee you should not
disseminate, distribute or
>> copy this e-mail.
>> 
>> 
>> 
>> 
>> 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Firewall Recommendations

[Kelsey, John]

+1
 
 
***
John C. Kelsey
DuBois Regional Medical Center
(:  814.375.3073  
*:   jckel...@drmc.org   
***

-Original Message-
From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, March 09, 2009 19:32
To: NT System Admin Issues
Subject: RE: Firewall Recommendations


ok ... when I think FULL BLOWN ROUTER, I think Cisco with WIC
slots, etc 
 
Cisco ASA would work well for you, as would Fortigate, Juniper
... a few in the sub $500 range ... I too won't touch SonicWall again,
regardless of recent reports that they 'fixed' support 
 


Erik Goldoff


IT  Consultant

Systems, Networks, & Security 

 



From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Monday, March 09, 2009 7:21 PM
To: NT System Admin Issues
Subject: RE: Firewall Recommendations


via Ethernet drop.  No DSu/CSU's or anything needed.



From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, March 09, 2009 6:02 PM
To: NT System Admin Issues
Subject: RE: Firewall Recommendations


How will you connect to the internet ?  Will your ISP provide
you with ethernet ( or PPPoE ) or will you need a T1 WIC for T1/Frame
Relay ?  
 
When you say "full blown Router" you need to specify the type of
WAN circuit you'll be using to get accurate advice
 


Erik Goldoff


IT  Consultant

Systems, Networks, & Security 

 



From: Sam Cayze [mailto:sam.ca...@rollouts.com] 
Sent: Monday, March 09, 2009 5:05 PM
To: NT System Admin Issues
Subject: Firewall Recommendations


Alright, this is continuation of my previous post regarding a
Site to Site VPN endpoint, but it turns out I will need a full blown
Router/Firewall.  (The new ISP is no longer will be providing me with
one...)
 
I little info:
 
This is for a very small office
I prefer simple setup; GUI preferred.  I am not an networking
expert; most of our firewall management is performed by a solutions
provider.
Only about 4 NATs, 20 users, VPN needed
SonicWall is sore spot for me.  I know many of you will
recommend it... I have used a TZ170 a few years ago.  The support was
horrendous and they could not figure out why all the users where
constantly disconnecting from VPN.  The VPN Client Software was terrible
as well.  I trashed it after 2 weeks.
 
Bonuses:
Dual WAN connection and or/
EVDO Card PC Slot
 

Thanks,

 

Sam Cayze
Information Technology Administrator
ROLLOUTS
ONSITE * ON DEMAND



952.279.6218...Direct Dial
612.386.3946...Mobile
877.471.6495...eFax
www.Rollouts.com http://www.Rollouts.com> 
www.e-Technicians.net  

CONFIDENTIALITY NOTICE: This email and any attachment(s) are
intended only for the designated recipient(s).   Rollouts Incorporated
prohibits use, distribution or transmittal by or to an unintended
recipient without Rollouts' express written approval.  If you are not
the intended recipient, please delete this email and notify Rollouts.




 


 


 




 


 




 


 




 


 



This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to whom they are addressed. If 
you have received this email in error please notify the system manager. This 
message contains confidential information and is intended only for the 
individual named. If you are not the named addressee you should not 
disseminate, distribute or copy this e-mail.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~