Folks,
We are moving to a new enterprise system here, and most staff need to be
trained on it. This means we need space to accommodate large groups of people,
possibly simultaneously. Our current training labs and various seminar rooms
won't be large enough. My boss is thinking of renting
Hampton University has a nice training lab on the the top floor of the
library. You could check with them about renting it, but a 5-7 month gig is
probably not feasible. http://cit.hamptonu.edu/inside_cit/departments/atm/
On the trailer side of things, Usry (based in Richmond) has a great
System Center Data Protection Manager? DPM is pretty cheap, has file level
backup, and works with the volume snapshot service since it's a Microsoft
product. Does disk-to-disk and disk-to-tape backup. It can also back up
Exchange and Hyper-V. Licensed per client.
Jack Kramer
Computer
Some experience with vRanger – a little bit of a pain to set up, amazing when
it works; however, SAN or NAS issues cripple it. Also has problems with very
large (1TB+) VMs – the ESX server has a tendency to get stuck forever at taking
the snapshot of the VM and you'll lose some performance not
+1 on the file level restores for Windows guest VMs. Very nifty.
On 18 November 2010 14:51, Kramer, Jack jack.kra...@ur.msu.edu wrote:
Some experience with vRanger – a little bit of a pain to set up, amazing
when it works; however, SAN or NAS issues cripple it. Also has problems with
very
Our local libraries have meeting rooms and such that are available, yours might
too. Again, 5-7 months is probably a stretch but you could always check.
From: RS [mailto:rich...@gmail.com]
Sent: Thursday, November 18, 2010 8:40 AM
To: NT System Admin Issues
Subject: Re: Slightly OT:
Back story: As I have discussed here earlier, I have a client that I was going
to effectively P2V a server onto itself, and one tool I was pointed at was
DISK2VHD...in tests I managed to get everything to look good, the DISK2VHD
system worked fine on a different Hyper-V host, but what I
I don't know where you are but I would think at this time many
colleges/universities would have space and facilities to do this. I know
our local community college (now a state college) and university both have
space they rent out and if you want to rent the extra's they will supply
hardware
What CPU is it?
You need to have hardware virtualization assistance, and it must be enabled.
Plan B: Put Windows 2003 back on the server you flattened, install
VirtualBox on that server and run the VHD image you have.
http://www.virtualbox.org/wiki/Downloads
Then put 2008 R2 on the other box
In the BIOS...
Shook
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday, November 18, 2010 10:13 AM
To: NT System Admin Issues
Subject: Re: You guys ever do this?
What CPU is it?
You need to have hardware virtualization assistance, and it must be enabled.
Plan B: Put Windows
Microsoft Virtual server will run your VHD. Have you placed a call into
Dell to see if you can run the Hyper-V? I know I have had to turn on the VT
technology in the BIOS on every machine I have touched from Dell. Why they
don't turn it on by default is beyond me but that is just me.
I have
On Wed, Nov 17, 2010 at 5:31 PM, Steve Ens stevey...@gmail.com wrote:
Abra Cadavra...hocus pocus...
Abra Ca-pocus. Hocus-Cadabra
I heat up, I can't cool down / My situation goes 'round and 'round
-- Ben
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
Okay a lot caffeine and sleep deprived here. I know MAK is the sort of
single use license. Is it MKS that uses the new licensing model and what is
the name of the technology, please? I know after some sleep I will remember
but hey I am sorry I want to get this proposal I am working on completed
Are you spinning round and round sir?
-sc
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, November 18, 2010 10:22 AM
To: NT System Admin Issues
Subject: Re: A Very Potter Musical
On Wed, Nov 17, 2010 at 5:31 PM, Steve Ens stevey...@gmail.com
It's a PowerEdge 840 with a Pentium D CPU. Some of them came with Xeon's which
would have met the requirements.
Plan B is use an older server to have 2003 on it, put 2008 R2 on the newer box
and migrate functions off the 2003 box as time allows. The 2008 system is now
their file/print and the
KMS is the acronym you are seeking.
http://www.microsoft.com/licensing/existing-customers/product-activation.aspx
Expand
the first section on this page for details.
-Jeff Steward
On Thu, Nov 18, 2010 at 10:23 AM, Jon Harris jk.har...@gmail.com wrote:
Okay a lot caffeine and sleep deprived
KMS. However it isn't really licensing. It is activation.
If you go KMS you set up your own internal serverset up your
computers/servers with no license code entered other than the KMS server. They
automagically contact your internal KMS server to activate. How the license
count is kept
KMS you mean?
*ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker
*Exploiting Technology for Business Advantage...*
* *
On Thu, Nov 18, 2010 at 10:23 AM, Jon Harris jk.har...@gmail.com wrote:
Okay a lot caffeine and sleep deprived here. I know MAK is the sort of
single use license. Is
Deploy an iSCSI target on the Pendium D machine and run your VM on the other
Hyper-V capable box with the disk targeted being the iSCSI you just deployed?
Very kludgy but it could work.
Jack Kramer
Computer Systems Specialist
University Relations, Michigan State University
w: 517-884-1231
As it says: the server authentication certificate must be issued to the FQDN of
the computer on which your AD LDS instance is running.
That's the internal FQDN. If you want to use it externally, you are going to
need something that does SSL termination and URL rewriting. Such as ISA or TMG.
Your best bet might be a community center. Many larger libraries have
meeting/conference rooms. 5-7 months might be a stretch though.
Jim M
From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Thursday, November 18, 2010 7:48 AM
To: NT System Admin Issues
Subject: Slightly OT: training space
Thanks guys I knew I had it wrong. Yes KMS and I am proposing 2008 R2. We
do the MAK now I am working on a proposal to use WDS as a stage one and
switch to KMS licensing as a stage two. I think with the two of them in
place life for the Application and Help Desk staffs would be much easier to
http://blogs.mcafee.com/mcafee-labs/u-s-based-internet-traffic-redirected-to-china
David Lum // SYSTEMS ENGINEER
NORTHWEST EVALUATION ASSOCIATION
(Desk) 971.222.1025 // (Cell) 503.267.9764
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
KMS made my head explode setting it up. My problem was I made it far more
complicated in my head that it really is. It was worth it, much easier to
manage everythingtech's don't have to think about keys..so far no
issues after about 2 months on it. We activate Office 2010, 2008 R2 and
Thanks for posting that link. First I've hear of it. SHUZMMM!
On Thu, Nov 18, 2010 at 9:46 AM, David Lum david@nwea.org wrote:
http://blogs.mcafee.com/mcafee-labs/u-s-based-internet-traffic-redirected-to-china
*David Lum** **// *SYSTEMS ENGINEER
NORTHWEST EVALUATION ASSOCIATION
Do you use it in a multi-domain environment?
Jon
On Thu, Nov 18, 2010 at 10:46 AM, Kennedy, Jim kennedy...@elyriaschools.org
wrote:
KMS made my head explode setting it up. My problem was I made it far more
complicated in my head that it really is. It was worth it, much easier to
manage
Dude that is old news, its been happening off and on for years by some
of the major ISP's across the globe.
Why you want to encrypt your sensitive traffic accordingly... (SSL,
better yet, IPSEC (ESP))
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan
Yep. BGP is not secure.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Thursday, November 18, 2010 11:17 AM
To: NT System Admin Issues
Subject: RE: Um, WTF?
Dude that is old news, its been happening
Ok so I'm behind the curve.
BGP?
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Thursday, November 18, 2010 8:20 AM
To: NT System Admin Issues
Subject: RE: Um, WTF?
Yep. BGP is not secure.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
Nope, single domain. But it looks like you can just set a reg key to publish
it's DNS record to multiple domains.
http://technet.microsoft.com/en-us/library/ff793409.aspx
Scroll down to Publishing to Multiple DNS Domains
From: Jon Harris [mailto:jk.har...@gmail.com]
Sent: Thursday, November
http://en.wikipedia.org/wiki/Border_Gateway_Protocol
On 18 November 2010 16:21, David Lum david@nwea.org wrote:
Ok so I’m behind the curve.
BGP?
*From:* Michael B. Smith [mailto:mich...@smithcons.com]
*Sent:* Thursday, November 18, 2010 8:20 AM
*To:* NT System Admin Issues
http://en.wikipedia.org/wiki/Border_Gateway_Protocol
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: David Lum [mailto:david@nwea.org]
Sent: Thursday, November 18, 2010 11:21 AM
To: NT System Admin Issues
Subject: RE: Um, WTF?
Ok so I'm behind
Border Gateway Protocol
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: David Lum [mailto:david@nwea.org]
Sent: Thursday, November 18, 2010 11:21 AM
To: NT System Admin Issues
Subject: RE:
Ah. I have heard that term I just didn't connect it.
Why is it the more I learn the more ignorant I feel? Some days I actually think
I do know a lot and then something like this pops up and I'm back to eh, I'm
just a n00b...
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Thursday,
Again thanks a lot guys! I have enough of the proposal done now to allow me
some rest.
Jon
On Thu, Nov 18, 2010 at 11:22 AM, Kennedy, Jim kennedy...@elyriaschools.org
wrote:
Nope, single domain. But it looks like you can just set a reg key to
publish it’s DNS record to multiple domains.
Are we all not noobs most of the time with something?
Jon
On Thu, Nov 18, 2010 at 11:33 AM, David Lum david@nwea.org wrote:
Ah. I have heard that term I just didn’t connect it.
Why is it the more I learn the more ignorant I feel? Some days I actually
think I do know a lot and then
If you've never worked for an ISP, or acquired a CCNP (or higher), or worked
for a telecommunications company - it's unlikely that you would've run into BGP
or ASNs.
We all have our areas of expertise. Don't ask me to set up KMS, for example (to
reference another ongoing thread on this mailing
Sorry I'm late to this discussion.
If you are not apposed to a linux backup server, I like BackupPC. File based
backup with deduplication, Web interface, can backup client machines directly
as well as the servers. Works with SMB, Rsync or SSH tunneled tar. Zero cost,
and easy to install on
Any networking course should cover BGP.
When I did my networking subjects, we have to cover OSPF, RIP, BGP etc.
Cheers
Ken
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, 19 November 2010 12:39 AM
To: NT System Admin Issues
Subject: RE: Um, WTF?
If you've never worked for
If you don't need to backup all the clients, then WHS might be an option.
Cluster level de-dupe. Image based restore (or file/folder if you want). Web
based interface for accessing files outside the office (as well as a RDP proxy
to the clients/servers). $600 or so if you want to buy it in a
You sure about this? It seems to me that you just need a generic server
authentication OID.
IN that case, the CN property in the cert just needs to match whatever FQDN is
used to connect to the AD LDS instance. If that happens to be the same
internally and externally, then there is no problem.
I've never seen BGP covered in networking courses. Other than advanced Cisco
courses.
OSPF and RIP and IGRP - common interior protocols, yes; but not BGP.
You must attend a better grade of schooling than I did. :)
Regards,
Michael B. Smith
Consultant and Exchange MVP
What external source are you trying to connect with? We run LDAPs
externally for SAAS applications and we just send the vendor the public keys
so they can make the connection.
On Thu, Nov 18, 2010 at 8:10 AM, Oliver Marshall
oliver.marsh...@g2support.com wrote:
Thanks Michael,
Does that
The most recent Network+ covers BGP and the other routing protocols, although
not in great detail . . .
From: Michael B. Smith
Sent: Thursday, November 18, 2010 10:04 AM
To: NT System Admin Issues
Subject: RE: Um, WTF?
I’ve never seen BGP covered in networking courses. Other than advanced
Yeah, I don't recall any basic course covering BGP unless it was at a very
high level. (i.e. BGP = Border Gateway Protocol, the cat's meow to dynamic
routing). Of course, I don't remember the last time I studied all things
networking...
On Thu, Nov 18, 2010 at 9:04 AM, Michael B. Smith
I wouldn't think so. BGP is almost a course in itself. I know plenty about
BGP, but there's plenty I don't know about BGP as well...
On Thu, Nov 18, 2010 at 9:07 AM, James Winzenz james.winz...@hotmail.comwrote:
The most recent Network+ covers BGP and the other routing protocols,
although
Sounds right. I had some Cisco classes over 10 years ago and I remember RIP and
IGRP. I should take another router class to freshen up.
One thing about IT, never a shortage of technology to learn! (says the guy who
just built a TS gateway/web access server, TS broker, and 4 TS servers...).
Using stolen SSN isn't criminal impersonation, court says
Colorado justices play legal Twister to overturn conviction
http://www.networkworld.com/community/blog/using-stolen-ssn-isnt-crimina
l-impersonation-?source=NWWNLE_nlt_security_2010-11-18
Honestly, I think the judges in this one
Ummm, how did that whole deal pass the credit check at the dealer? It says he
used his real name and someone elses SSN Didn't anyone notice the dudes name
and the name on the credit report for the social security number were different?
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent:
Why do you need to buy $700 worth of ANOTHER 2008 Server OS ?
If the only purpose of that is to run a Hyper-V host on standby hardware,
just install the free Hyper-V server.
Carl
From: David Lum [mailto:david@nwea.org]
Sent: Thursday, November 18, 2010 10:04 AM
To: NT System Admin
Anyone know how to scroll through the output from this command slmgr -dli all
It appears in a window with no scroll controls and is way longer than the
screen.
Slmgr -dli all test.txt doesn't work either.
We're trying to see if the office 2010 key we entered is being accessed on the
kms
yeah mainline courses like network+ do not get into ISP level routing tech.
Bill
Michael B. Smith wrote:
I've never seen BGP covered in networking courses. Other than advanced
Cisco courses.
OSPF and RIP and IGRP -- common interior protocols, yes; but not BGP.
You must attend a
Like a record, baby.
On Thu, Nov 18, 2010 at 10:25 AM, Steven M. Caesare
scaes...@caesare.com wrote:
Are you spinning round and round sir?
-sc
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, November 18, 2010 10:22 AM
To: NT System Admin Issues
On Thu, Nov 18, 2010 at 11:33 AM, David Lum david@nwea.org wrote:
Why is it the more I learn the more ignorant I feel?
The more I learn, the more I realize, the less I know. (Unknown)
-- Ben
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
Hey don't feel bad, yesterday I just ordered the following books to come
up to speed.
HIPAA Security/Privacy Law Practical Guide
Hacking Exposed Malware
Hacking Exposed Computer Forensics
Hacking Exposed Web Applications 3
SQL 2008 R2 unleashed
SQL 2008 Administration
On the
To be fair, BGP is not just for ISP's... I've run BGP in quite a few
companies depending on the needs...
On Thu, Nov 18, 2010 at 10:28 AM, Bill Humphries nt...@hedgedigger.comwrote:
yeah mainline courses like network+ do not get into ISP level routing tech.
Bill
Michael B. Smith wrote:
But big boys, right? Not your average SMORG.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: Don Ely [mailto:don@gmail.com]
Sent: Thursday, November 18, 2010 1:41 PM
To: NT System Admin Issues
Subject: Re: Um, WTF?
To be fair, BGP is not just for
Not always. I did some work a few years back for a company with multiple
T1's, multiple providers and they were only a 1 site, 100 user company.
Their business model dictated that they needed multiple paths... On a 15
site dual MPLS WAN, I run BGP as well. It just depends on the needs.
On Thu,
BGP is also very helpful in companies with mixed vender gear. For instance we
use it here as it makes the Junipers and Cisco and Palo Alto devices all play
together nicely.
From: Don Ely [mailto:don@gmail.com]
Sent: Thursday, November 18, 2010 10:49 AM
To: NT System Admin Issues
Subject:
Plan C: Put ESXi on the box, and run both of the VMs on it.
I'm sitting in a VMWare 4.1 class this week, and I'm liking what I see, a lot...
Kurt
On Thu, Nov 18, 2010 at 07:13, Andrew S. Baker asbz...@gmail.com wrote:
What CPU is it?
You need to have hardware virtualization assistance, and it
I can't tell you how it didn't throw some kind of red flag, but a
similar thing happened to me. When I was buying my first home many
years ago, the credit check revealed that someone had used my SSN to get
a loan on which they defaulted. As in this case, they didn't use my
name or address. I
You are very lucky.
On Thu, Nov 18, 2010 at 2:23 PM, Mayo, Bill bem...@pittcountync.gov wrote:
I can't tell you how it didn't throw some kind of red flag, but a similar
thing happened to me. When I was buying my first home many years ago, the
credit check revealed that someone had used my
I have been there done that also, for a company of 100 or so employees. We
hosted parts of a major vendors website (it's amazing how often that happens
BTW) and had to have very reliable and redundant communications and server
systems.
Tim
From: Don Ely [mailto:don@gmail.com]
Sent:
I see they don't have any commas in Oklahoma.
Shook
From: Tim Vander Kooi [mailto:tvanderk...@expl.com]
Sent: Thursday, November 18, 2010 2:38 PM
To: NT System Admin Issues
Subject: RE: Um, WTF?
I have been there done that also, for a company of 100 or so employees. We
hosted parts of a major
So I am setting up a testing version of my domain, to practice upgrading
from Win2003 AD to Win2008 AD, by making a copy of my domain on my ESX
cluster. We have a parent and child domain structure. I have 1 DC in
each domain as a VM (each is a DNS server, but do *not* hold any FSMO
roles). So I
It helps get the sentence out Sooner.
On Thu, Nov 18, 2010 at 2:39 PM, Andy Shook andy.sh...@peak10.com wrote:
I see they don’t have any commas in Oklahoma.
Shook
*From:* Tim Vander Kooi [mailto:tvanderk...@expl.com]
*Sent:* Thursday, November 18, 2010 2:38 PM
*To:* NT System Admin
They were voted out in the recent elections...
On Thu, Nov 18, 2010 at 11:39 AM, Andy Shook andy.sh...@peak10.com wrote:
I see they don’t have any commas in Oklahoma.
Shook
*From:* Tim Vander Kooi [mailto:tvanderk...@expl.com]
*Sent:* Thursday, November 18, 2010 2:38 PM
*To:* NT
OU did not just do that!
On Thu, Nov 18, 2010 at 2:43 PM, Jonathan Link jonathan.l...@gmail.comwrote:
It helps get the sentence out Sooner.
On Thu, Nov 18, 2010 at 2:39 PM, Andy Shook andy.sh...@peak10.com wrote:
I see they don’t have any commas in Oklahoma.
Shook
*From:* Tim
Size isn't the main factor here. It's usually a need for redundancy across
multiple sites or circuits.
I worked in a location with 100 users (but ~175 servers) and we used BGP to
manage our site redundancy between two office locations.
*ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker
Don't ask me to explain it, but I logged out of the domain admin
account, and logged in as another account (which is *also* in the Domain
Admins, Enterprise Admins, Schema Admins groups, exactly like the domain
administrator account).
And it worked perfectly, exactly as it should. Huh?
I had
Now that raises an interesting question - what metadata cleanup is typically
required after a role seizure?
Jack Kramer
Computer Systems Specialist
University Relations, Michigan State University
w: 517-884-1231 / c: 248-635-4955
From: Mike Leone
Vipre did not detect it, or clean it. Anti-virus definitions were up to
date, active scanner was running as well, so I’m a bit concerned the active
scanner didn’t pick it up.
The virus was still loading in his run command in the registry so I had to
uninstall Vipre and put my own copy of McAfee
What did Vipre Tech Support say when you called them?
Jim Holmgren
Manager of Server Engineering
XLHealth Corporation
The Warehouse at Camden Yards
351 West Camden Street, Suite 100
Baltimore, MD 21201
410.625.2200 (main)
443.524.8573 (direct)
443-506.2400 (cell)
www.xlhealth.com
OH I yet to call them, I will call them soon, but want to see what the list
says.
But I wanted to see if the malling list saw this before..
Back-Door-F!1, is the name that mcafee detected it as.
On Thu, Nov 18, 2010 at 3:11 PM, Jim Holmgren jholmg...@xlhealth.comwrote:
What did Vipre Tech
On 11/18/2010 3:07 PM, Kramer, Jack wrote:
Now that raises an interesting question - what metadata cleanup is typically
required after a role seizure?
You have to remove the non-existant DCs. You can't DCPROMO them down
from being DCs, since they don't exist. :-) And you can't ignore them,
I had one today Win32.Autorun.gen (v)
Vipre detected it, but could not clean it.
Malwarebytes (free) took care of it.
From: justino garcia [mailto:jgarciaitl...@gmail.com]
Sent: Thursday, November 18, 2010 3:14 PM
To: NT System Admin Issues
Subject: Re: vipre: SVCHOST.EXE virus.
Personally, I'd prefer using AntiVirus 2010 over McAfee.
When you get things under control, could you please share with us what it
was which tipped you off, what it was doing, etc? I think many of us are
curious now.
--
Richard D. McClary
Systems Administrator, Information Technology Group
There was a post on ISC just a day or two ago about another version of
Conficker B++ accordingly, making the rounds. Just an idea, but might be your
culprit.
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Interesting... My machine blue screened twice on me today, and another
user's machine gave him the BSOD as well. Makes me wonder if maybe we dont
have something on our machines. I'll run a quick check on mine and see if I
find anything.
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent:
The virus came in this morning, via the internet browser.
hkey_users\default\software\Microsoft\Windows NT\Current backdoor-faaa!1
Torjan
windows|Load hkey_users\s-1-5-19\Software\WIndows NT\CUrrent\
Backdoor-FAAA1! Torjan
Internet Settigns [Proxy Server
Oof! (TM -sc)
On Thu, Nov 18, 2010 at 3:22 PM, richardmccl...@aspca.org wrote:
Personally, I'd prefer using AntiVirus 2010 over McAfee.
When you get things under control, could you please share with us what it
was which tipped you off, what it was doing, etc? I think many of us are
So any ideas? is COnficker2 not being stoped by vipre?
On Thu, Nov 18, 2010 at 3:33 PM, RS rich...@gmail.com wrote:
Oof! (TM -sc)
On Thu, Nov 18, 2010 at 3:22 PM, richardmccl...@aspca.org wrote:
Personally, I'd prefer using AntiVirus 2010 over McAfee.
When you get things under control,
Contact Support. It could be that you have a new variant that isn't picked
up yet, and won't be until the A/V companies see it.
-Jeff Steward
On Thu, Nov 18, 2010 at 3:39 PM, justino garcia jgarciaitl...@gmail.comwrote:
So any ideas? is COnficker2 not being stoped by vipre?
On Thu, Nov 18,
I am on hold with vipre tech...
On Thu, Nov 18, 2010 at 3:39 PM, justino garcia jgarciaitl...@gmail.comwrote:
So any ideas? is COnficker2 not being stoped by vipre?
On Thu, Nov 18, 2010 at 3:33 PM, RS rich...@gmail.com wrote:
Oof! (TM -sc)
On Thu, Nov 18, 2010 at 3:22 PM,
The funny thing is, mcafee did catch it (I had to uninstall vipre, and use
mcafee).
On Thu, Nov 18, 2010 at 3:41 PM, justino garcia jgarciaitl...@gmail.comwrote:
I am on hold with vipre tech...
On Thu, Nov 18, 2010 at 3:39 PM, justino garcia
jgarciaitl...@gmail.comwrote:
So any ideas?
I've seen on a few computers over the last couple of weeks where there is a
file on the user's desktop called MSTSC.exe, and there are various executables
scattered around in the user's profile with various names the same as or close
to legitimate Windows files, including SVCHOST.EXE.
I sent
I guess best is just to reimage / wipe / reimage the system.
Ralph what do you use for reimage of the system?
On Thu, Nov 18, 2010 at 3:46 PM, Ralph Smith m...@gatewayindustries.orgwrote:
I've seen on a few computers over the last couple of weeks where there is
a file on the user's desktop
Yep, that is a driveby malware we have seen accordingly, it's the thinkpoint
virus.
C:\Documents and Settings\username\Application Data\hotfix.exe
C:\Documents and Settings\username\Application Data\dkfjasdfshd.bat
C:\Documents and Settings\username\Desktop\mstsc.exe
Is what we saw in
It depends on the machine. At various times we have used Norton Ghost,
GhostImage, Drive Image XML and Acronis to create an image, so the appropriate
tool is used to restore it. When we set up a new computer we create an image
of the clean install, and then use that if we need to reimage it
I’ll send you a bill.
-sc
From: RS [mailto:rich...@gmail.com]
Sent: Thursday, November 18, 2010 3:34 PM
To: NT System Admin Issues
Subject: Re: vipre: SVCHOST.EXE virus.
Oof! (TM -sc)
On Thu, Nov 18, 2010 at 3:22 PM, richardmccl...@aspca.org wrote:
Personally, I'd prefer using
Yes, that's it. We had one workstation that had the fake Thinkpoint scan
running, so apparently VIPRE AP didn't block it from executing on that one.
On every affected machine we have seen, looking at the browser history each
user was on Facebook immediately prior to VIPRE AP reacting. I
So maybe facebook needs to be blocked, oh how horrible..
On Thu, Nov 18, 2010 at 4:14 PM, Ralph Smith m...@gatewayindustries.orgwrote:
Yes, that's it. We had one workstation that had the fake Thinkpoint scan
running, so apparently VIPRE AP didn't block it from executing on that one.
On
I would think that Mr. McClary's brilliantly executed joke would be payment
enough*, but if you require old fashioned monetary compensation I'll be
happy to send a check. What's your address again?
* Seriously, one of several great LOL moments today.
On Thu, Nov 18, 2010 at 4:09 PM, Steven M.
I never thought the day would come!!!
Vile weed!
(who can tell me which TV show that line came from?)
Don Guyer
Systems Engineer - Information Services
Prudential, Fox Roach/Trident Group
431 W. Lancaster Avenue
Devon, PA 19333
Direct: (610) 993-3299
Fax: (610) 650-5306
His current location doesn't have postal service.
On Thu, Nov 18, 2010 at 4:17 PM, RS rich...@gmail.com wrote:
I would think that Mr. McClary's brilliantly executed joke would be payment
enough*, but if you require old fashioned monetary compensation I'll be
happy to send a check. What's
Welcome back Kotter?
That 70's show?
FBI, with Inspector Erskine?
From: Don Guyer [mailto:don.gu...@prufoxroach.com]
Sent: Thursday, November 18, 2010 3:28 PM
To: NT System Admin Issues
Subject: RE: vipre: SVCHOST.EXE virus.
I never thought the day would come!!!
Vile weed!
Reefer Madness?
From: Kim Longenbaugh [mailto:k...@colonialsavings.com]
Sent: Thursday, November 18, 2010 3:30 PM
To: NT System Admin Issues
Subject: RE: vipre: SVCHOST.EXE virus.
Welcome back Kotter?
That 70's show?
FBI, with Inspector Erskine?
From: Don Guyer
No, no and never heard of that show-no.
Don Guyer
Systems Engineer - Information Services
Prudential, Fox Roach/Trident Group
431 W. Lancaster Avenue
Devon, PA 19333
Direct: (610) 993-3299
Fax: (610) 650-5306
don.gu...@prufoxroach.com mailto:don.gu...@prufoxroach.com
From: Kim
Not that kind of weed.
Don Guyer
Systems Engineer - Information Services
Prudential, Fox Roach/Trident Group
431 W. Lancaster Avenue
Devon, PA 19333
Direct: (610) 993-3299
Fax: (610) 650-5306
don.gu...@prufoxroach.com mailto:don.gu...@prufoxroach.com
From: Maglinger, Paul
Seinfeld
From: Don Guyer [mailto:don.gu...@prufoxroach.com]
Sent: Thursday, November 18, 2010 4:32 PM
To: NT System Admin Issues
Subject: RE: vipre: SVCHOST.EXE virus.
No, no and never heard of that show-no.
Don Guyer
Systems Engineer - Information Services
Prudential, Fox
1 - 100 of 138 matches
Mail list logo