tag:blogger.com,1999:blog-8742720.post7159338144480424021..comments2024-03-19T08:44:42.902-04:00Comments on Cubic: A Most Coincidental Event!Thomas Hruskahttp://www.blogger.com/profile/03374180853410256194noreply@blogger.comBlogger5125tag:blogger.com,1999:blog-8742720.post-24640110771562338172010-10-27T03:49:14.814-04:002010-10-27T03:49:14.814-04:00good writings you have here :)good writings you have here :)Anonymoushttps://www.blogger.com/profile/09937938221478037168noreply@blogger.comtag:blogger.com,1999:blog-8742720.post-8833146335021490122007-08-28T15:24:00.000-04:002007-08-28T15:24:00.000-04:00If MS is pushing out updates without permission*, ...If MS is pushing out updates without permission*, maybe it is also doing some verifying on the genuine advantage servers without telling us. So instead of just the verication that we know of - when we download updates, patches, and certain other software - our windows boxes are constantly calling home to verify their own authenticity?? *I have seen strange activity with those two files before on my pc(s) and I turn updates OFF!Anonymoushttps://www.blogger.com/profile/05648526036174357274noreply@blogger.comtag:blogger.com,1999:blog-8742720.post-35640185813770391002007-08-28T00:50:00.000-04:002007-08-28T00:50:00.000-04:00asdfasdfasdfasd3ddd wrote..."A secret update is ba...asdfasdfasdfasd3ddd wrote..."A secret update is bad, but you really don't explain why it went down just "it barfs". Gee, that tells a lot! And why is someone does taking out MSFT's WGA servers seems weird.<BR/><BR/>This whole thing seems like a big plug for verifymyPc, which apparently exists? I haven't heard of a single person using this.<BR/><BR/>The fact only one other person has left a comment leads me to believe this story was a waste. Especially since only one other person cared enough to comment."<BR/><BR/>(Blogger is starting to REALLY annoy me...you can't edit comments for content - either allow or deny the whole thing)<BR/><BR/>asdf, let me address your three concerns:<BR/><BR/>1) I _DID_ explain the "it barfs" portion later on in the blog entry. I describe in excruciating detail of how and why the use of an IDS system could trigger the effect the world saw.<BR/><BR/>2) The reason you've never heard of VerifyMyPC is because I suck at marketing and rely on word-of-mouth. Those who use VerifyMyPC swear by it up and down as being one of the best tools they have ever used. Just today I had someone call it "The 'poor man's Tripwire".<BR/><BR/>3) If you look, most of the comments are being placed on the other blog entry that started this whole thing (the secret Windows Update). That said, I've had more people on this blog in the past 24 hours than I've had in the past 3 years - yet I blog anyway. I refuse to let a lack of visitors affect my blogging.Thomas Hruskahttps://www.blogger.com/profile/03374180853410256194noreply@blogger.comtag:blogger.com,1999:blog-8742720.post-15519723489719577132007-08-27T15:16:00.000-04:002007-08-27T15:16:00.000-04:00damien: You are right. I looked at the message i...damien: You are right. I looked at the message incorrectly. wups.dll is 'added'. Looking at the detailed logs, the file was added to 'C:\WINDOWS\LastGood\system32\'. However, a number of files WERE indeed changed. VerifyMyPC doesn't go by timestamps, it goes by hashes of the files. I've updated the first article with a list of files that were changed.Thomas Hruskahttps://www.blogger.com/profile/03374180853410256194noreply@blogger.comtag:blogger.com,1999:blog-8742720.post-81293214573816489282007-08-27T12:59:00.000-04:002007-08-27T12:59:00.000-04:00I manage lots of PC's that have Automatic Updates ...I manage lots of PC's that have Automatic Updates enabled, and I see that the two DLL's have not been updated since April (4/16/2007) and they all have the same version of the DLL's (7.0.6000.374). What are the version on your files that have changed?damienhttps://www.blogger.com/profile/17526055916049144314noreply@blogger.com