Latest phishing attempt that I’ve gotten that looks pretty interesting. The sender is symantec@microsoft.com (spoofed, obviously) but actually gets sent from n4b.n4b.ch. This is a hoax. It tries to send you to toptunersites.com/banners/eamxxx/worm267fix.exe for your security check. THAT IS A VIRUS. This is just a reminder to try to keep people safe. Oh and the entire message is in spanish. Habla Espanol? Just make sure you don’t click the link. I’m off to sleep
As you can probably tell, I have enough trouble keeping up one blog, so my time for Zimbio has been extremely limited. Ok, i’ll be honest: non-existant. This doesn’t mean the Zimbio team hasn’t been up to anything though. In fact, a great update just took place. In fact, there was a press release about all the new changes over at Yahoo! Finance. If you haven’t gotten a Zimbio addiction yet, now’s the time to find out about anything and everything. I think I might just start a portal about Chillout Music since… i kinda like it.
Speaking of music, I ordered a cd a while ago and never heard how it was doing. It was international peoples gang 0006 from em:t records. It just showed up tomorrow (a day after i complained i hadn’t heard anything ironically) and I have to say, it’s impressive. I saw the review on Mike G’s site (no, i don’t remember his site, but he does the lounge on the chillout channel on di every other monday). It brings unique chill and some ambiant together in a very nice package. I honestly must admit my love right off the bat. If i wasn’t trying to catch up on some sleep, I’d be sure to say more.
Oh and tomorrow is a free webinar from zend. don’t forget to sign up! (check your email if you’re on the newsletter)
I love music. Even when I’ve heard it before, I still like to own it. This week, I made up for not getting a new CD last week by getting two. This week was Jon Hopkins week.
Jon is a pretty young artist (23 or 24 I believe) with a lot of skill. This is definitely not ambiant music. What Jon makes is a sort of upbeat chillout. It’s really lovely music too. I purchased Contact Note and The Art of Chill 2 (note: only 2 songs are actually Jon’s on the art of chill 2. That also has Brian Eno, Imogen Heap, Ulrich Schnauss and more). If you listen to di.fm, you’ve probably heard a lot of this. The full Art of Chill 2, both cds, gets played from time to time. About half of Contact Note is there too.
This is good and bad. It’s good because you will probably have a good idea if you like it regardless of what I say. It’s bad because there is a lot less suprise when you get the cds. I loved the cds anyway.
Read more
(Let’s hope my internet connection doesn’t die while i’m doing this…)
As I previously stated, I have gotten a bunch of emails from a few different hosts. They all obviously have something in common, but I cannot be sure what. The content is similar, but ips never correspond and they even go to differnt emails of mine. I apparently am not alone. What this reminds me of is spam list checks. That refers to hacker/crackers/phishers going through lists of email addresses to see which ones are valid and what gets through. This appears to be another, but with a twist.
Ok, let’s start with what we know: the ips. This is always a good place to start. If you take the ips and go back, you’ll find residential ips. These don’t have much in common that I can see except they all are residential (one was from Spain, another from Isreal, so you can see location varies). The sites themselves that are being “used” seem to be your average, everyday crappy web site. (1-tek.com has been under construction from 2002.) This implies that there is probably a weak smtp server (outgoing mail) on those sites that is just being used to bounce messages. So we have messages coming from a random house and going to a random server and then coming to me. Here’s where we start noticing little things.
Ok, on all of the messages, the headers are pretty limited. Only one of them contains an X-mailer header which is of The Bat! (v 2.02). The Bat! is a valid client program, but there’s something else you should realize: The Bat! is up to 3.5 or 3.8 (can’t remember which). Also, a piece of software called Advanced Mass Sender by kbbsoftware will use that mailer as one of the defaults for sending out massive amounts of mail. Hm… so random clients are using a mass mailer (for Windows including 98) to hit weak and non-existant servers to send out lists. Why?
This is where I start to really theorize/guess. Any good hacker doesn’t send out anything from a computer that can be tracked back. You make “zombies” and use those. These tend to be random civilians that can be exploited. These civilians run Windows, frequently old and unpatched and little to no internet security software. Also, some security firms have started stumbling upon these caches of user data. They need to be tested and sorted. What better way than random zombies?
The difference in headers leads me to think that the domains that are being used are a means of categorizing the data. Other than that, they could just be what was available to distribute the load. Anyway, that’s my thoughts on the subject. Please contribute yours below. I’m quite aware that I could be wrong.
First, you can be amused by the fact that I just complimented my MacBook… and had to reformat it last night. Note to users: don’t put your computer to sleep (close lid) when it’s doing an update of the operating system. I’d love to send that message to apple, but I don’t know who to send it to. That was fun. That takes care of “damn.”
Also, I’ve been getting a bunch of random (spam?) messages at a bunch of my email addresses. I know I am on just about every spam list known to man, but these are just weird. The subject is always 3 characters long. It’s always uppercase letters (ISO-8859-1 encoding) and might contain a number (like Y7V). The message is a bunch of random phrases together separated by line breaks and tabs. They seem to be relayed from various domains (like 0451.com 1-tek.com and mail.ru). If anyone knows what this is, i’d love to know. This is one sent to quad341@quad341.com (which i bounce to my gmail account).
X-Gmail-Received: 6298d862a38bfcb18ae605eb0f55f8fdee66edd2
Delivered-To: quad341@gmail.com
Received: by 10.78.29.5 with SMTP id c5cs13622huc;
Wed, 12 Jul 2006 10:18:16 -0700 (PDT)
Received: by 10.54.93.15 with SMTP id q15mr1081664wrb;
Wed, 12 Jul 2006 10:18:15 -0700 (PDT)
Return-Path: <abcd8355633 @0451.com>
Received: from host.qqnx.com ([216.120.255.149])
by mx.gmail.com with ESMTP id 6si1609978wrh.2006.07.12.10.18.15;
Wed, 12 Jul 2006 10:18:15 -0700 (PDT)
Received-SPF: neutral (gmail.com: 216.120.255.149 is neither permitted nor denied by domain of abcd8355633@0451.com)
Received: from [196.202.85.188] (helo=brmail1.brassring.com)
by host.quad341.com with esmtp (Exim 4.52)
id 1G0iLZ-0007xn-QG
for quad341@quad341.com; Wed, 12 Jul 2006 12:18:08 -0500
Message-ID: <662161c8060436r0gr8rhvq2pc7s9r2cwvrelnel2zel345@mail.0451.com>
Date: Wed, 12 Jul 2006 18:21:15 -0060
From: "Bonita Sierra" <bonitasierra @0451.com>
To: quad341@quad341.com
Subject: XI5
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-Spam: Not detected
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - host.qqnx.com
X-AntiAbuse: Original Domain - quad341.com
X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12]
X-AntiAbuse: Sender Address Domain - 0451.com
X-Source:
X-Source-Args:
X-Source-Dir:
scientific community when questions come up on implementing UN decisions
in ten thousand years. The Law said stay; Jonathan said go; and by now he
So I decided the hell with it. The last time I had gone into the Zone at
"I do " he said softly.
Anyone know anything or getting something similar?
I don’t know how many of you actually saw my first PHP site. It was when I first got the domain quad341.com in 2003. I was working on remaking my school’s web site with a friend and also starting making this site for myself. Everything was written from scratch. It never really got changed either. I added on at times (so some parts are later coding than earlier), but generally the old stuff stayed. I didn’t add any documentation either. This is all original. I don’t have the original index page or the /new directory anymore (in 3 or 4 server changes, that didn’t make it or just got deleted sometime). It’s poorly written, procedural code. There are some vulgar comments in there that show my frustration (just check out my database password). The original install script is still present too, so if you want to actually set up my old site, just run that. Anything that references th /images directory probably still references a current file on my site if you want to grab any of them I didn’t pack in the zip. It just makes me laugh. I also packed my first attempt at PHP object oriented code in there (which was to parse Live Journal) as well as the flash version of my old site. I don’t have the flash source files anymore (or don’t know where they are if I do). If you want them, I can look around a little, but i’m pretty sure they’re lost. Check out the archive to have a look at how I started out. I’ll finish up a game project this weekend maybe and you can compare the code. It should be funny.
In music news, I finally uploaded the md5 hash of Marco Torrance’s mix, Silent Train of Thoughts. I have not listened to that mix by Torrance, but I have heard another of his, Return to Cape Arcona, on di.fm. If I remember, I’ll ask him if I can put it up. That one is definitely chillout though, so I’m not sure what to expect out of a truly ambiant mix. (Torrance is also Zilent Zpott, if you were wondering, so he can do very good ambiant). I also added the track lists for the last two mixes added on the mixes page if you’d like to look.
Oh and a little note: MacBooks are VERY impressive machines. I can’t stop loving mine.
Cheers all.
For all you people who have given in to the superior preformance or just like Opera more, you should be happy to know that Opera 9 full was released some time ago. I finally got around to updating my main computer. You may want to move your profile from Opera 9 Beta over to Opera 9 (they are independant and Opera 9 will not import the Beta settings). To do this, you need to copy your files from the beta folder to the full (profile, not application files).
- Install Opera 9
- Find your Opera 9 Beta Profile. Depending on your operating system it could be:
- Windows
- C:\Documents and Settings\[Username (or All Users if you specified 1 profile for all users during install)\Application Data\Opera\Opera 9 Beta
- Mac OS X
- /Users/[username]/Library/Preferences/Opera Preferences/Opera 9 Beta Preferences
- Linux/BSD
- I don’t have Opera installed on a linux box, but it’s probably like ~/.opera or something like that. Try “ls -a” in your home and see what you find. Please comment.
- Copy that folder in to the Opera 9 folder in the same location. (Note: i believe Macs will automatically pick up bookmarks, mail, etc. It’s just preferences)
If you ever want to check the paths for anything in Opera, you can always go to about (Help->About or Opera->About or type opera:about in url bar).
Um… I doubt I ever am going to get around to writing anything more on those 3 cds, so… sorry? Anyway, I’m planning on ordering the Art of Chill (mixed by Jon Hopkins) later today from Amazon. I’ve heard that and was very impressed. It actually has Roots Minerva in one track. He has such a cool voice.
Because of some DNS problems (and because i was saving the ip for someone who enlisted in the army), I moved the music mirror’s ip. This means that the url, cardamar.quad341.com, will NOT work for a while (between 5 minutes if you’re lucky to 72 hours if you’re really not). You can, however access it through it’s new ip directly at 216.120.255.175. Just use that for now (or indefinitely. that won’t stop working while i mess with dns). Cheers.
So I didn’t get around to that update. Big deal. And the worst part is, this isn’t it either.
Well, so you all are informed, I recently have bought 2 Pete Namlook cds (well, 1 from iTunes) and 1 Tetsu Inuoe cd. They are Silence, Air, and Zenith respectively. They’re some of the best ambiant that I’ve heard in a while. It really is ambiant, though, so be prepared and be amazed.
I had oral surgury last Friday so I’m just starting to eat real food again. Kind of annoying to say the least. Also, the new Marco Torrance album is available for presale on Cardamar Music. Check it out or preorder here.
There’s also a new Marco Torrance mix on the mirror. I haven’t even listened to it yet, but it’s supposed to be pretty ambiant too. It’s the only Torrance one on there, so feel free to browse for it until I post and have listened to it and have a link.