Matraex, Inc has moved offices
February 22nd, 2011
The move affects only our office location, where all of the consulting, administration and accounting work for our business is done. No changes have been made to our hosting environment which remains in the rock-solid data center we have been located in for the last 8 years.
We use our own VoIP phone hosting service so moving our phone networkwas as simple as unplugging them from the old location and plugging them in at our new location. All phone numbers remain the same and you can still reach us at (208) 344-1115.
The biggest change to will be to our clients that send mail to our office Letters and payments will need to be delivered to a different address. All payments and mail communication should now be addressed to:
Matraex, Inc
1101 W Grove Street
Suite 202
Boise, Idaho
83702
If you have any questions about the move and how it may affect you as our client, please call Michael Blood at (208) 344-1115 extension 250.
Fixed Hacked Site - PHP ‘injection’
May 7th, 2010
Today a customer called me about a PHP website that was popping up viruses all over the place.
I loaded up the site and there it was, the page was immediately redirected to a spyware / virus type site that tried to convince me to download their software to fix a problem. Since I knew better I carefully answered the browser prompts to make sure I closed out and left the page without opening anything malicious.
Then I went back to the page that had the problem and tried to load it again. But the problem was GONE!
After a bit more investigation I found that the people who wrote the “virus” dropped a cookie on my machine and made sure they allowed me back in the site. I am sure this trick helps them to keep the “virus” on a site for longer because the site administrators may not recognize it as an on going problem (or even a problem that their site caused).
In digging I found that each PHP page on the site had some PHP code added to the top of it.
something like
This was on a single line at the top of the file and even the administrator who had noticed the odd code at the top passed over it not thinking it was malicious.
However, the text inside the “encoded” string was VERY malicious. I decoded it and found several PHP functions and additional encoded strings.
I decided it wasn’t worth figuring out what all they did with the code but instead decided to just clean it up. I assumed that the code probably helped “replicate” itself by checking that ALL other PHP pages on the site also had the same code in them. So if someone removed the code and then the code was run on another page it put itself back where you removed it.
Anyway, pretty sophisticated but it was easy for me to find the problem just opened and looked at the PHP file and saw code that shouldn’t have been there.
A cool way that I found where the problem was before even opening the PHP file was to use HTTPWatch to see which exact files were downloaded from which site in the browser. I use the free version of the softwar and it has met all my needs so far. It is similar to firebug in FireFox.
Great SQL Formatting Tool
April 14th, 2010
We often deal with very complex, dynamically generated SQL Statements which run from our applications.
If we need to debug them for any reason we often have to display them to the screen and then copy and paste them in to an SQL Query window. The problem is that those SQL Statements are not always formatted to be very readable. Sometimes they might even be on a single line. This requires a bunch of time going through and reformatting the sql statement, making it legible for debugging.
I have used this tool “SQLinFORM” several times in the past but I keep forgetting about when I dont have to use it very often.
I just copy and paste the SQL into the window and click “Format”.
It does a great job formatting code quickly and even has some options for how you would like to see the output, I then select the output and paste it into my SQL Query window.
If you use it often they do have a version for sale.