There are 10 types of people in this world: those who understand binary and those who don't.
Published on January 14, 2010
I found this program called BlueScreenView. It is quite handy as it can open up memory dumps without having WinDBG installed, can open them remotely through c$ shares, is portable, easy to use and the best part: it’s free!
Below you can see it in action. This was on a Dell D600 laptop who’s motherboard was toasted. I couldn’t even image the laptop without the whole thing locking up. You can see the error message and the very handy column “Caused by” that should give you some clues about where the problem is.
- Soli Deo Gloria
Published on January 7, 2010
For a limited time: enjoy EASEUS Data Recovery Wizard 4.3.6 for free!
- Soli Deo Gloria
Published on January 5, 2010
Provided courtsey of http://bearware.info…
1. Anti Virus/Spyware: Microsoft Security Essentials
2. File Search: Everything
3. File Synchronizer/clone: FreeFileSync
4. Internet TV: Hulu Desktop
5. Password and Form Filler: LastPass
6. Program Launcher: SlickRun
7. Uninstaller: RevoUninstaller
8. Video Player/Recorder: VLC
9. Web Browser: Google Chrome
10. Video/Audio Capture: TubeMaster++
- Soli Deo Gloria
Published on December 31, 2009
Having a lot of vacation time on my hands, I decided it was time to organize all my DVDs and CDs for the new year. I was on the hunt for some freeware and found two really nice programs to help me.
The first one is called Ant Movie Catalog. Working from just a CSV list of movies, I was able to import all my DVD movies into AMC within seconds. Now comes the cool part: I could update them in batch from IMDB! Just highlight a bunch of entries, hit F6, pick the movie database you want (I like IMDB) and then it will grab all of the information about that movie, including downloading a thumbnail picture for you! Most titles are unique enough so it was pretty easy to pick the correct movie.
The next project was to catalog all of my old software stored on CDs and DVDs (yes, I still horde Windows 95, 98 and 2000 CDs!). I tried many different programs, but the one that seemed to work the best, not have many limitations and updated on a regular basis was Wincatalog Light 2009. When scanning disks, I kept getting an error that archiveinfo.dll didn’t exist, so I installed the full version and copied archiveinfo.dll and the ARC directory to the light version directory and then the error went away.
The program doesn’t do automatic numbering for media, so I put the CD # manually in the comment section and it shows the comment section as a column for each CD/DVD. The only snag is that it sorts them as text and not numbers, so 1, 10, 100, 101… are all grouped together. This really isn’t a big deal, because you can do a search for what you want and then use the “jump to item in catalog” feature. For programs requiring serial numbers, I just put a comment on the first folder within the CD. When you expand the CD item in the normal view, you’ll clearly see the serial number.
Since Microsoft Money is going away, I also found this program to replace it that is very slick called Money Manager Ex. It’s based on the SQLite engine, it’s very small and efficent unlike MS Money and best of all: FREE! I like the canned reports “Where the Money Goes” and “Where the Money Comes From”.
Finally, I ditched WinRAR which I got from a Slickdeals deal in favor of opensource 7-ZIP. Yes, it handles RAR files just as well.
Have a safe and Happy New Year!
Sola scriptura! Sola fide! Sola gratia! Solo Christo! Soli Deo Gloria!
Published on December 19, 2009
An interesting study on the length and complexity of passwords. Basically, pick one that’s at least 14 characters long and not found in the dictionary and you should be OK against the bad guys.
- Soli Deo Gloria
Published on November 10, 2009
We wanted to get rid of desktop users with administrator rights on Windows XP. With administrator rights, the user is given full control of the C: drive. Reducing users to a regular or power user would mean they would lose modify access to files/folders they need to write to. For example: Cribware stores its configuration options in C:\windows\cwwin.ini. This is poor programming practice no doubt, but short of reprogramming the program myself my hands were tied. We decided to open parts of the C: drive using a file security GPO, then run a VBScript later on that would move users from the Administrator’s group to Power Users.
Upon creating and implementing the file security GPO, several workstations were throwing errors in the event log:
Event Type: Warning
Event Source: SceCli
Event Category: None
Event ID: 1202
Date: 11/9/2009
Time: 11:53:47 AM
User: N/A
Computer: XXXXXXX
Description:
Security policies were propagated with warning. 0x4b8 : An extended error has occurred.
Drilling into C:\windows\security\winlogon.log, we find this on the problem PCs:
----Configure File Security...
Configure c:\.
Warning 32: The process cannot access the file because it is being used by another process.
Error building security descriptor for c:\pagefile.sys.
Configure c:\program files.
File Security configuration was completed with one or more errors.
The section that was suppose to set security on the INI files in C:\windows was completely missing.
I tried to copy/delete/recreate the GPO database on the workstations in question with no success. That’s when I called in Microsoft PSS to see what the deal was. The support person remoted into all of our DCs and everything at the Active Directory infrastructure level looked fine. He asked me to try the following command on a PC I pulled from the office:
secedit /configure /cfg %windir%\repair\secsetup.inf /db secsetup.sdb /verbose
Of course, this fixed this particular PC, so I went to try it on 5 test computers. Only 1 of the 5 was fixed with this solution.
Going back to the trusty Google, I decided to search for “File Security configuration was completed with one or more errors” instead of “1202″ and “0×4b8″. Up came up this gem of an article.
Essentially, any file or folder that secedit (what GPOs use to make these changes) encounters with a NULL DACL, it just stops with a warning. There are two ways of attacking this: the GUI way and the command line way. The GUI way is right-clicking on a folder, going to Security>Advanced>Change Permissions and then check the box that says “Replace all child object permissions with inheritable permissions from this object”. If you do a “gpupdate /force” and re-check the log event, SCECLI should now complete without error.
The command line way involves a 3rd party utility called FILEACL.
By running fileacl C:\windows /inherit /sub /files, we refresh the ACLs on all files and folders defined at the C:\windows level.
The story continues…at first I couldn’t get the CheckNullDacl.vbs script to work from the link above. When I copied the script from the web page, the “-1″ in the script on line 72 wasn’t really -1, but some weird character representing “-” and cscript would not run the script. After this was fixed, I decided to find out what files and or folders were causing this issue. PC after PC lead to the same file: C:\windows\opla.ini.
Peeking in the file, I found this:
[Watermark]
W0000001=72,45,12632256,0,0,400,0,0,Arial,,CONFIDENTIAL,,,3,2
W0000002=72,45,12632256,0,0,400,0,0,Arial,,COPY,,,3,0
W0000003=72,45,12632256,0,0,400,0,0,Arial,,DRAFT,,,3,0
[TrueType Substitutions OP]
Courier New=57
Wingdings=75
Symbol=76
Times New Roman=77
Arial=81
I Googled this filename, having no idea what this file was. However, I found the text “C9300″ in one of the OPLA.INI files and on Google this was related to an Okidata printer. Ah ha! We have 3 Okidata color printers in the building, but not everyone has it installed on their PC. This would explain why this file would be on certain PCs and not others. I confirmed the Okidata link by running Agent Ransack with a text search of “OPLA.INI” and found it in several DLL files in the Okidata 3037 print drivers. Upon running fileacl C:\windows\opla.ini /inherit /replace, the group policies applied successfully! The shotgun approach isn’t necessary and we only have to touch one file.
It’s unclear why this possible problem is not listed in the Microsoft knowledge base, nor was it one of the solutions hinted at by PSS. I’m sure if I had continued to work with PSS, they might have suggested it down the road.
Local copies of FILEACL and CheckNullDacl.vbs on my web site.
- Soli Deo Gloria
Posts