Friday, December 30, 2011

Death match me vs XP Antispyware 2012

Recently received computer that was previously infected with some strain of XP Antispyware 2012.


Ok, set, fight!


1. Computer was previously infected with the above said virus and previous user had made all sort of attempts to fix it - probably not good things.
2. Avast had been the first sentry on duty and was completely mutilated by virus.
3. Malwarebytes, second sentry on duty - dead as a door nail.
4. Windows Firewall - third sentry also disabled by virus.
5. TCP/IP stack corrupted.
6. Blue Screens.
7. No Window Updates functional.


My turn:
1. Follow Bleeping Computer web site steps: virus-removal of xp-antispyware-2012
2. After I did the above, I was still not satisfied because I could run Malwarebytes in Safe mode, and it found one Trojan, but just did not feel it was good enough.  So I took the drive out of the PC, plugged into my laptop with especial adapter that allows me to connect SATA drives as USB, and proceeded to scan with Malwarebytes, but lo and behold, my Microsoft Security Essentials found 8 viruses just by plugging it in and removed the viruses.  I still finished scanning with Malwarebytes - came clean.  Scanned again with two more scanners.  All clean.
3. So I put the drive back in but even though I felt it was not infected, it was still corrupted.
4. Chkdsk fixed some more files.
5. TCP/IP stack was corrupted, and you could not get the PC on the network.  Also Windows Repair was not working, so I followed these steps:
a. Locate the Nettcpip.inf file in %winroot%\inf, and then open the file in Notepad.
b. Locate the [MS_TCPIP.PrimaryInstall] section.
c. Edit the Characteristics = 0xa0 entry and replace 0xa0 with 0×80.
d. Save the file, and then exit Notepad.
e. In Control Panel, double-click Network Connections, right-click Local Area Connection, and then select Properties.
f. On the General tab, click Install, select Protocol, and then click Add.
g. In the Select Network Protocols window, click Have Disk.
h. In the Copy manufacturer’s files from: text box, type c:\windows\inf, and then click OK.
i. Select Internet Protocol (TCP/IP), and then click OK.
Note This step will return you to the Local Area Connection Properties screen, but now the Uninstall button is available.
j. Select Internet Protocol (TCP/IP), click Uninstall, and then click Yes.
k. Restart
Succesfull uninstallation of TCP/IP will remove numerous keys from the registry including:
HKLM/system/CurrentControlSet/services/tcpip
HKLM/system/CurrentControlSet/services/dhcp
HKLM/system/CurrentControlSet/services/dnscache
HKLM/system/CurrentControlSet/services/ipsec
HKLM/system/CurrentControlSet/services/policyagent
HKLM/system/CurrentControlSet/services/atmarpc
HKLM/system/CurrentControlSet/services/nla
These represent various interconnected and interdependant services.
For good measure you should delete the following keys before reinstalling TCP/IP in step #2:
HKLM/system/CurrentControlSet/services/winsock
HKLM/system/CurrentControlSet/services/winsock2
Step #2
Reinstall of TCP/IP
Following the above substep #3, replace the 0×80 back to 0xa0, this will eliminate the related “unsigned driver” error that was encountered during the uninstallation phase.
Return to “local area connection”> properties > general tab > install > Protocol > TCP/IP
You may receive an “Extended Error” failure upon trying to reinstall the TCP/IP, this is related to the installer sub-system conflicting with the security database status.
To check the integrity of the security database
esentutl /g c:\windows\security\Database\secedit.sdb
There may be a message saying database is out of date
First try the recovery option
esentutl /r c:\windows\security\Database\secedit.sdb
If this don’t work for you, you needthe repair option
esentutl /p c:\windows\security\Database\secedit.sdb
Rerun the /g option to ensure that integrity is good and database is up to date.
Now return to the “local area network setup”
Choose install > protocol > TCP/IP and try again
Reboot.


Please see: Smokey's Security Web Log for a reference
6. Awesome, now I had network access again, but still had some blue screen issues so I had to reboot into safe mode and what I noticed was that Avast was still trying to load, so I uninstalled Avast and rebooted into normal mode.
7. I disabled all add-on toolbars in Explorer, and I also made sure that I looked for all residue Regentries and files left over by the virus these you can find on the clean up instructions of the Bleeping computer step by step.  I did not find reg keys, but did find a bunch of suspicious files lurking in the profile folders.
8. Now the Firewall worked so I disabled all exceptions.
9. Also could not run windows update, so after a couple of failed attempts, this finally worked (error was 0x80070424):
a. turned on the service Background Intelligent Service
b. regsvr32 wuaueng.dll
10. Pulled a bunch of updates from Microsoft - Including service pack 3 even though it was a service pack three version of XP - so a lot was corrupted on it.  Also made sure the video driver was updated also.
11. Re-installed Malwarebytes - ran scan good!
12. I had installed as part of the Windows Updates, Windows Defender - ran scan - clean!


This was a great match which I was not defeated.  I have had many a fight this year with viruses, and so far I am 100% victorious.  So I had to as part of my last Blog Entry of 2011, write something about it. Go to love it :)


Delco


Tuesday, December 27, 2011

Data Backup for normal humans and other lesser beings

You know I like to blog about tech things; especially about "how to go about doing certain tech things;" but sometimes I am willing to just pass on what others have written in the spirit of sharing.  And now, I have passed on a few of the blog entries from Jeremy because he writes really well.  I have his book and I think it is a must for any Windows Administrator.  No, he is not giving me any kickbacks, but he should :)

He recently wrote an article about how to backup your home data which I thought was excellent advise.  I got to admit, that even I as a techie do not do all 8 steps; but I want to thank him for a reminder that I also need to beef up my home backup strategy a bit.  This is at the top of my tech things to do in 2012.

Here is the link.  Pass this on to anyone in your family and friends, not as Spam, but as a gift.  Jeremy recommends you print it out, which, if you think about it, it would probably be more effective as many emails make for easier discarding.

8 Things you need to do to keep your data safe. 

Delco

Wednesday, December 21, 2011

Problems installin Lync Office 365

I have not had this problem but thought I would pass on a possible work around in case anybody runs into it.  Got tip from Jeremy over at gpanswers.com -

http://community.office365.com/en-us/f/166/p/16355/75977.aspx?PageIndex=2

Delco

Friday, November 25, 2011

So people ask me all the time: What laptop should I get?

I don't know how many times I get asked this question - see title.  Jeremy from GPANSWERS has this great article that I can now just send to people to read and I don't even have to do any work.  Cool!

It is funny though, and please read the whole article, that in the end he is in the process of buying a Lenovo Thinkpad which is what I have used now since the 1990's - why do I use a Thinkpad?  Warranty, Warranty, Warranty, and the ability to fix them (I mean broken parts), myself also ..... they have always traditionally made Thinkpads to be field fixable.

Jeremy covers all the questions including, Netbooks and tablets and OS and hardware.  So read it, book mark it, and SPAM it to all your friends and family this season instead of answering all those stupid questions - unless you like doing that sort of thing - I don't, I really don't want people to really know what I know anyway :)

Jeremy's Guide to how to buy a laptop for normal users

Delco

Friday, September 30, 2011

iPad day from hell update

Friday 6 days after first and second iPad 3G form Verizon which totally sucked, we decided to bring it back and exchange it for the AT&T version. First thing I noticed was that registering the account went much smoother and that AT&T did not reject the credit card with auth code that VZ did not like. Also the registration happens quickly. When we got back to mom's house it picked up signal right away. Good sign. One more thing: we had also brought the second iPad to Verizon also and they were not able to do much. We also had brought back the second one to the Apple kiddies and their solution was to reboot the darn thing to get sig nal back. That was like every 15 minutes!!! Well let's see how this one works! deco

Wednesday, September 28, 2011

iPad from hell day continues

You know I have only myself to blame.  I had my mom buy an iPad without doing my own research.  I've seen plenty of people using their iPads and everybody seemed happy.  My mom is on her second iPad with 3g Verizon - nothing but problems.  Drops internet after 15 minutes and the blue shirt apple kids don't know how to fix it.  So much for my preconceived idea that it was a good product - bah humbug!

Apple Support on this problem

Article on the subject

Delco

Saturday, September 24, 2011

My Apple iPad day from Hell!

Just a little set up here.  I have never in my life have owned anything from Apple.  I have touched Apple devices just as a curiosity.  So I finally drank the Kool-aid.  I bought my mom, who is now 78, a refurbished a laptop years ago running Windows XP.  This laptop served her well all these years, and I was able to support her even when she went to Florida via LogmeIn.  But my mom still was using a dial up modem and she was always struggling with certain things.  So when her laptop gave up the ghost she wanted me to recommend another.  After thinking it over I thought maybe an iPad would suite her better because what she does is: Surf the internet, do her Yahoo email, and play games.  She can also get th 3G version, do the 1 Gb and she would be able to take it with her back and forth from Michigan to Florida.  So I told her that we would go shopping on Saturday.

Sat 9:30
I leave home to pick up mom and dad.  Apple store opens at 10:00 am.

10:00
I pick them up.

10:15
We get to the Apple Store - It's packed already.  So much for the recession.  We get lucky though and find a free blue shirt kid.  We spend almost an hour going over the iPad.  My mom is 78, hard of hearing and English is her second language.  She also has never seen one or touched one before, so it is slow go.

11:00
We leave the Apple Store for Best Buy to check out the laptops.

11:10
We get to Best Buy, look at laptop for 5 minutes and mom already wants the iPad so we leave and head back to the Apple Store.

11:30
We are back at the Apple Store and we finally get waited on.  It is more packed than before and I am getting a feeling that there really is no recession.

11:45
We finally get an iPad.  I want them to set up completely for her - register, email, 3g with Verizon.  All is going well, but real slow because my mom can't type on the screen touch keyboard.  We get to the part of entering the CC info, and it repeatedly refuses to take card. This is for the Verizon account.  We know the card is good because we just paid for the iPad.  We try everything.  Now mind you that every time you mess up or it fails you have to retype the password and CC info.  Mom tries, I try, the Apple kids try.  Nothing.  Finally we decide to try a different card - Bingo!  It seems Verizon is real weird with the auth code and does not like certain digits.  Go figure.  We also go through all the little training things from the Apple kids.  I also make sure that they register my mom for one of their iPad classes.  I am thinking this is great.  Apple store is like right around the corner from her house.  And when she goes to Florida, the Apple store there is close to her house there also.  Finally I can off load tech support to someone else :) .

12:45
We leave Apple Store and go out for lunch at restaurant with WiFi.  First thing I noticed was that it would not connect to the WiFi - OK, well not first time I have seen Restaurant Wifi sucked.  So I fall back to the Verizon, it connects and I am surfing.  But, then it drops.  I connect again.  Drops.  I go back to WiFi.  Connects. Drops.  Well, maybe no reception here I thought.  We will try when we get home.  She lives next to Verizon store and the signal is freaking good.

2:45
We get to her house and I try again.  Nothing.  I am getting real good now at typing password.  I reset the Network.  I restart.  I double check everything.  Nothing.

3:15
I finally gave up and called their tech support.  Not to bore you, but they had me do all the things I did.  I even go outside and wave it around :)  Finally the tech guy went one level up: nope.

4:00
After trying everything that any tech guy told me, they make me an appointment back at Apple Store to return the unit.

5:10
I am back at Apple Store.  They are all real surprised that an iPad would not work. Well guys it happens! They exchange it, but then we have to go through the whole setup again.  Verizon is not allowing us to re-enter the same account, so we have to call Verizon at the store.  I gave the phone to the Apple kid.  Finally we get it.  We configure it again.  I made dam sure it worked this time both on the WiFi and 3G before walking out.

7:00
We are back at mom's house.  I unpack it.  Test everything.  I get Free Cell and Angry Birds for my  mom.  I take a picture of the dog and show her how to change the wallpaper.  She seems happy.

7:30
I finally get to go home!  

The moral of the story is:
One bad apple does not spoil the whole bunch!

Well, I can say that I just blew my whole Saturday, and missed most of the Michigan game thanks to iPad.  I hope that this Apple does not bite me back.

Delco 

Sunday, September 11, 2011

Making a multi-boot USB drive


Making Multi-Boot USB Drives

If all you need is one type of bootable USB distro then the Universal USB installer is perfect to make them with (see my previous post), but I thought it would be cool to make a multi-boot USB drive because I was carrying with me: DBAN, Password Reset, Mem Test, Avira, Gparted, Ubuntu, Knoppix CDs and bootable USB drives.  It would be cool if we could just make a multi-boot USB drive.  The cool thing this is that you can and you can do it easier than you think.  The same site that you download the Universal USB Installer has another utility called YUMI .  With YUMI you have a very big list of choices that you can add to your multi-boot USB drive.

The way you use YUMI is identical as the Universal USB installer, except that what it does is create a multi-boot menu that you can choose the different OS or Utilities that you want to run.  It categorizes them for you.  It also has links to the web sites where you can do and download the ISO or ZIP media to create add to your list of boot selections.  As with the Universal USB Installer the ISO name needs to match the name of the distribution or type of install you are installing.  If you have some odd or different ISO or install, you need to choose “other” – but I did not have any success with that.  It installs, but I could not find where to launch it from.

See screen shot of utility below:

It you go to the web site, you will see screen shots also of what the screen looks like after you boot from it.  I have used it now for a few weeks and have had good success.  It has helped me reduce the number of CDs and USB sticks I carry with me.

Delco

God bless the families of those who died 9/11

This is a blog of tech things, but today my eyes are watering watching all the images and listening to the 10 year anniversary of one of the worst days in our country.  God bless the families of those who died, and all those who have died in the wars since.  I remember that day like it was yesterday because I remember the threat of cyber attacks alarmed me at work, and I temporal y shut down our email system.  I remember that from the moment that day that I heard and saw the images, I could not concentrate on my work, and finally just went home.

Since that day 10 years ago technology sure has changed for good and bad.  Technology has been such a tool and ally of our country to hunt down and get the criminals that attacked us; but the bad guys now also are using technology against us.  As part of the technology community, I just wanted to remind all of us, to always be alert and on guard, but also thankful to all those who protect us.

God bless America!

Delco

Monday, July 25, 2011

Making a Avira Bootable from a USB stick.

I like to carry an Avira Rescue CD with me because it is one of the tools I use to clean up infected machines. I like it because:

1. It is based on Linux (most of the machines I clean are Windows so having Linux scan it makes it a good defense).

2. Scanning while not booted to the Operating System that is infected increases the chance of being able to get the virus.

3. It will updated itself if it can recognize the NIC. It works flawlessly on Intel cards - never had it work on an Wireless.

OK. If it updates itself that is cool, but since it can't always, I have download the ISO repeatedly to keep as current as I can a CD with me. This is really not hard, just sometimes inconvenient and I am burning through a lot of CDs.

So I decided to make a USB that boots AVIRA instead of a CD. I am sure that there are multiple ways out there to do this, well, maybe not - I do know of two:

1. I followed the directions found here: Dave's Computer Tips.

2. The other I sort of stitched together myself using a utility I download from the Ubuntu site. In their web site they show you how to create a Live USB version of Ubuntu. You can go there are read it, but the utility you want is at Universal USB Installer. The utility really is for creating a number of bootable USB Linux Distros.

Option 1 I tried and while the process was flawless, my USB drive did not boot. I created it while using Windows 7 Ultimate 64 bit. I did not think this would make a difference, but maybe it did or maybe it was my USB drive. It was a cheap 1 Gig model that I had laying around. From past experience some USB drives just don't work no matter what you do.

So after failing with option 1, I decided to try using the utility I had used before to create bootable Ubuntu USBs. If you run the utility you will notice that it has selections for a large number of different Linux Distributions, and this includes the "other". Which means you just have some version not listed.

So here are the steps:

1. Download Avira rescue CD.
2. Insert your USB drive (Remember the process is going to totally destroy any data on it).
3. Run the Universal USB Installer.
4. For the type of Linux, I chose "Try Unlisted Linux ISO (New SysLinux)
5. Choose the drive letter that belongs to your USB - do not check "show all drives"
6. Point to the downloaded AVIRA Rescue CD ISO.
7. Select Format drive.
8. Go for it.

See a screen shot of the selections mentioned above:



There you go.

Delco

Sunday, June 19, 2011

Using Active Directory as Authentication for ESXi

Finally, with ESXi 4.1 you can use AD to authenticate even if you are not using VCenter as a management source.

The key to use Active Directory Authentication with ESXi is this first step:

In Active Directory you must create a new group called “ESX Admins”. It must spelled exactly like that. Once you do this, then you will be able to add the ESXi server to the Domain using the Configuration, Authentication Services. Then after that, you add the users through the Permissions Tab.

Delco

Tuesday, June 14, 2011

Hey don't always blame the Anti-Virus Software

Once upon a time there was a laptop that ran slow. The story amongst those who dealt with the machine was that it must be the anti-virus software. This is often the case by the way. Anti Virus software is installed. Computer slows down.

When you see the processors pegged, often we look at software or viruses as the cause. Well, in this case not the case. This was an HP Laptop which ran very slow. So slow that it took about 5 minutes to log in, and then another 5 to really settle down and let you do something. Even then, if you looked at Task Manager, both processors were running at more than 80%!!!!

I had uninstalled the AV software. Cleaned 3 viruses. Fixed a host of bad reg entries and disabled all start up processes. Still bad laptop.

After doing a little digging, I found s couple of other people out there complaining abut HP/Compaq laptops gone bad like this when their AC adapters go bad. I unplugged the AC adapter and the processors just dropped to 0!. I found another one from another identical model and it still worked ok. I plugged in the old one, and voila instant slooooooow.

So if you are pulling your hair with slow HP laptops after verifying that there is nothing else wrong, pull the plug!

Delco

Dell Vostro Reboots instead of Shutdowns

Interesting enough, it never seems to amaze me how much nothing changes. Over the years I have run into enough hair pulling experiences with laptops that can fill at least a small volume. Anyway, in this situation I was on a goal to reinstall Windows 7 Professional on three Dell Vostro laptops. As we know if have been doing this for a while, the OEMs often put an OEM partition on their products. These partitions usually can be removed if you reinstall the OS without using their recovery procedure. I have done this many times.

In this case I installed the OS on all three laptops. When I did the first one, I left the OEM partition because at first I did not think to wipe it. After the OS was installed I went back and deleted it with Diskpart. All was OK but for a small un-formatted partition at the beginning of the drive.

When I did the second two, I thought delete it while installing and you will not have to do it later. Well, I don't know why it happened, and I don't know if it is why it happened, but after I was done I noticed that these two never shutdown no matter what: Shutdown button, power switch, or command. They just restarted automatically.

My solution was more of a gut feeling from dealing with these goofy problems. What I did was download the BIOS utility and re-flashed the BIOS. Now the BIOS was the same rev; but it worked.

Why did I think of re-flashing? It came from so many times, sometimes in the dead of night with failing servers and PCs where magically a BIOS or Firmware update fixed the strangest problems and resurrected dead machines. Might not always work, but it has more often than not.

Delco

Saturday, May 21, 2011

Installing VMWare Workstation in Ubuntu 11.x

Download VMware-Workstation-Full-7.1.4-385536.i386.bundle and it should install fine. If you are trying to install previous version, you might be getting error after installing that looks like this:



Directions on installing VMWARE Workstation in Ubuntu here - just change name of file to the new one: VMware-Workstation-Full-7.1.4-385536.i386.bundle

Delco

Saturday, May 14, 2011

Desktop.ini woes and Home Drives

Do a search on Desktop.ini on the internet and you should get a bebby of information. You will also read quite a bit on blogs and forums about troubles with the Desktop.ini. One of the main issues is when an admin sets up user's home drive in Active Directory then does a folder redirection for the Documents folder to point to the home drive. The result is that when you look at the root of the Share that holds the home drive, you will see that all, or most, of the folders will have the same name as My Documents. Why? You see a lot of comments about how this is a "bug" with Microsoft Windows; but in reallity is more of a "feature". If you delete the Desktop.ini file from within then do a "refresh", the folder automatically appears as you would expect with the user's user name.

OK, so you can totally skip reading the rest of this post if you want by just remembering not to redirect the My Documents folder to a share as \\server\sharename\username, instead redirect to \\server\sharename\username\Documents

Now as Paul Harvey use to say, here is the rest of the story:

To understand more about the purpose of the Desktop.ini, see the following links:

1. The Desktop.ini file does not work correctly when you create a custom default profile

2. Customizing Folders with Desktop.ini

3. Fix for Special Folders Reverting to Default Folder Icon in Windows Vista

4. Shell folders are displayed with the standard folder icon in Windows Vista

5. Home folders renames to My Documents

6. When you redirect the Documents folder on a Windows Vista-based or Windows 7-based computer to a network share, the folder name unexpectedly changes back to Documents

The setup would be this:

1. On a file server you have set up a folder called users, then shared it as users$. The intent is to have this folder hold all the user's home folders which you have configured in their account settings as: Home Drive is for example U:



2. Then using Group Policy you have deemed that you are going to re-direct the My Documents folder to the user's Home drive.




Where is the problem? The problem lies in that when a user logs in, the My Documents folder points to their Network Share, and therefore a Desktop.ini is created and put in the root of the home drive and then makes the folder appear with the name of "My Documents" instead of for example jsmith (the user's account name). This is what is deemed a problem or bug; but in reallity I believe it to be how it is intended. The Desktop.ini is used as a descriptor of System Folders such as those specal folders: Music, Pictures, Contacts, Searches, etc., so it is working like it is suppose to.

I can easily duplicate the problem as shown here. I have manually redirected the My Documents folder to a folder shared as my home drive on a server. As you can see, my home folder on the server does not show my username as the other users on my server, but instead is hows as My Documents instead of my username. If I were to delete the Desktop.ini file within, then it would revert to display with my username until the next time when I would have the redirectiont take place.




The way to solve the problem is to set up the users home folder and the folder redirection the right way in the first place.

1. On the Domain Controller you would have the account set up the way I already described above. No need to change anything there.

2. But in Group policy you would have folder redirection set up like this:



So what if you are already having the problem and really don't want to change anything, but the whole thing is really annoying? The one work aroud that I have seen work, is that if you are using a Windows 2008 server, you can set up a File Screen. Point the file screen to the Users folder, and set it to "block" the creation of Desktop.ini. Then create a batch file (or do it manually) that deletes any Desktop.ini currently in there. This will solve your problem.

One final note about this whole folder thing-Make sure you have your folder security set up correctly. If you need a refresh, follow this link.

Delco

Can't post to Blogger with IE9

If you have issues posting to Blogger with IE9, turn on Compatibility View
Delco

Roaming profiles with 32bit and 64bit Windows

I have been using roaming profiles with between my different machines: My Home PC a Windows 7 32 bit machine, my Laptop, a Windows 7 64 bit machine, and a Virtual Machine, a Windows 7 32 bit machine. All works really well except a couple of problems with shortcuts and applications:

1. Google apps. This really was bugging me because Google apps like to install in the Current user mode, and also puts settings different for 32bit vs. 64 bit - program files vs progam files(x86) - What I did was copy the folder in the 64 bit folder also to the x86 - that seem to fix it ( I know it was stupid fix, but it works)

2. Dropbox - this is a little more frustrating, but Dropbox also sets up in the current user mode so I have to set the dropbox folder to a common location like the root of c: and then relink each dropbox session.

I will keep this entry updated as I find problems.

Delco

Thursday, May 12, 2011

Running CCleaner Automatically with Windows UAC turned on

Any security that Windows gives me, I welcome even if sometimes it is annoying. Users are constantly annoyed by anything that is designed for security, and I am no different. The one difference is that I know I rather have a secure system at the cost of a little annoyance.

Recently, I wanted to run CCleaner automatically every time I started my computer and logged in. Even though I have admin rights on my computer, I run with UAC turned on to a level that any application that is going to make a change has to go through the UAC and I have to click OK.

The problem was that every time I ran CCleaner with the "run at start up" setting, it would stop and I would have to give my blessings - OK, not a biggie; but like I said above, we get a little annoyed at having to do things like that and soon I got tired of it.

Instead of turning of UAC, what I did was set it in such a way that it still runs automatically out of my sight at start up and I don't get prompted, but still retain the UAC settings that give me a little added protection from rouge software.

Here are the steps you have to take:

1. Configure CCleaner the way you want it to run and make sure you save your settings to the ini file (Not a tutorial on CCleaner here :) )
2. Do not set it to run at start-up in the program itself.
3. Create a Scheduled Event with the following settings. See Screen Shots:

The Key here is to set it to run with highest privaleges.


Select the Edit tag in this Screen to Edit the Trigger.


Make sure you run it at startup, and set a delay-I like 3 minutes


For CCleaner, make sure you have the /Auto Switch in the run command.


I assume that this is might be a good solution for similar problems.

Delco

Thursday, May 5, 2011

Internet Explorer 9

I have installed Internet Explorer 9 now on almost all the machines I use and have been very satisfied with it. But stop, think: why?

Let me go back a few weeks in the story. As I was vacationing in one of our southern states, I met up with an individual who's career is helping others with their investments - A finance guy. In speaking with him about investments, I asked him: Why is Microsoft Stock stuck in the mid $20's? I mean, they are rich in cash, they have a pretty good cash flow, they have new products that seem pretty solid, and the Vista fiasco has gone the way of ME, AND, Companies are refreshing their technology. They should be booming! He had one simple answer: They are not innovative? Not like Apple, or Google who seem to come up with new exiting things. And what does that have to do with IE 9? What does that have to do with me thinking it is a good browser?

Innovation: Microsoft's new browser has nothing really that new. They borrowed from the successes of Firefox and Chrome. All the features, all the sleekness, and performance where there in the other browsers. They did not really innovate anything new. OK? At another event I was talking to another tech. He said something also that stuck with me: IE9 is Chrome that works. Why did he say that? Because in the past even if some of us just hated IE, we had to keep it around for all those web sites who basically code to IE, and all the Active X stuff out there.

So while I am pleased with IE 9, I know that it was nothing brilliant on MS part.

Anyway, that is my take. If you have a different point of view, please feel free to leave me a comment.

thanks,

Delco

Wednesday, May 4, 2011

Installing Google Chrome for All Users on one Windows PC

If you install Google Chrome, you may or may have not noticed that it installs in the Current User Profile, not for All Users. This may not be an issue if you are the only person using the Windows PC, but if there are multiple people, it is better to install it once for all. Google I believe has a Windows Installer for that purpose, but it might only be for business customers, or I have not found it.

Here is a way to installs it in the All Users Context (This is in Vista or Windows 7). I have not tried in XP.

Go to Google Pack and download the pack. Now two things:

1. If you have Chrome installed already, it will not do it, so you have to uninstall it or get it with a PC that does not have it installed.

2. You are probably going to install an older version than what you have. It seems like Google does not have the latest as part of the Pack. Not to worry, you can upgrade afterwards and it will still carry over to all users.

One more thing: You do not have to download any of the other apps, so you can just un-check them. See screen shot Oops, in there you will see Google Earth, but that is just a mistake on my part :)



3. Go ahead and download it, then install it on PC as you normally would.

4. When you are done, click on the little wrench on the top right, and select About Chrome - You will see it will automatically updated itself. See screen shots:

The original version is 8.0.555.224


Restart Chrome


After restarting, you can see the version has changed now to 11.0.696.0


Afterwards, log into the PC as a different user, go to Programs, then Google Chrome. You will see an Icon there. Once you click on it, it will start with the latest version. It will also create the shortcut on the Desktop for you.



One more thing. If you are using Google Apps (Mail, Calendar), you will not be able to use them until you have Chrome installed again. Also, I saw an error when opening my Google Mail telling me it was created with a different version, but I just follow the prompt and it all worked OK.

Delco

Saturday, April 16, 2011

Hey Windows don't Hi-Jack my Shutdown Button!

The other day my friend was going to shut down his laptop after a meeting and Windows in the course of the meeting, had downloaded a substantial amount of updates that were set to install if he shutdown the laptop. Not wanting to sit there, he hibernated. I could not give him off the top of my head the way to shutdown without installing but later I know that I have dealt with this multiple times.

There was a hack out there to do this, but I have set this for thousands of machines through Group Policy.

Start GPEDIT for local machine or GPMC for domain level. In User Configuration, Administrative Templates, Windows Components select Windows Update. Double-click Do not display “Install Updates and Shut Down” option in Shut Down Windows dialog box in the Settings section of the Group Policy editor.

Select Enable and then click OK to save the changes.

Delco

Thursday, March 17, 2011

Renaming a Windows 2008 Domain Controller

Windows Servers have come a long way. I started working with Windows Servers back in the day of Windows NT 3.x. Back then I would not even dare install it in production. My File and Print were Novell 3 and 4, and then 5 servers and it was not until Windows NT 4.0 that I put one in production. Ah, those were the days. I then had to migrate of the Novell Directory Services to the Microsoft "DOMAIN" - which was nothing more than a bind database.


I have grown up with Windows. I have been a harsh critic and a devout user of their products. Kind of a love hate relationship that developed over time. Today's Windows 8 server certainly makes some things a lot easier. Remember back when you could not rename your domain controller! Yeah, so if you started out with a test Domain Controller called FooFoo, and just because it actually became your production (yes this happened a lot), you were kind of stuck with it unless you installed a new one. Then did the demotion, rename, promotion dance. What a pain in @#%@#$!


Recently, I wanted to rename my two home domain controllers from some fun names that I had given them to a more traditional functional name. So my Batman and CaptainAmerica DCs needed to become HNDC1 and HNDC2 - I did this easily without any hiccup whatsoever.

Here are the steps I took:

  1. NETDOM computername BATMAN.HOMENET.LOCAL /add:HNDC2.HOMENET.LOCAL
  2. Run ADSI Edit.msc
  3. Find Computer (domain Controller), Right Click Properties, and look to see if this was added:

  4. repadmin /replicate captainamerica batman DC=homenet,DC=Local
  5. NETDOM computername BATMAN.HOMENET.LOCAL /makeprimary:HNDC2.HOMENET.LOCAL
  6. Successfully made HNDC2.HOMENET.LOCAL

    the primary name for the computer. The computer must be rebooted for this name

    change to take effect. Until then this computer may not be able to authenticate

    users and other computers, and may not be authenticated by other computers in

    the forest. The specified new name was removed from the list of alternate

    computer names. The primary computer name will be set to the specified new

    name after the reboot.

    The command completed successfully.

  7. Run ADSI Edit.msc again and look for the name to have changed:
  8. Reboot the computer
  9. NETDOM computername HNDC2.HOMENET.LOCAL /remove:BATMAN.HOMENET.LOCAL
  10. Successfully removed BATMAN.HOMENET.LOCAL

    as an alternate name for the computer.

    The command completed successfully.

  11. repadmin /replicate CAPTAINAMERICA.HOMENET.LOCAL HNDC2.HOMENET.LOCAL DC=HOMENET,DC=LOCAL
  12. Sync from HNDC2.HOMENET.LOCAL to CAPTAINAMERICA.HOMENET.LOCAL completed successfully.

    After I did Batman, I went and did CaptainAmerica. If you are interested in further reading, I found a real nice article at this location: http://www.petri.co.il/rename-windows-server-2008-domain-controllers.htm


--
Delco

Friday, March 11, 2011

Windows 7 Service Pack

Installed on Home Premium (Lenovo Net book) and Professional (Older Intel Hardware) 32 bit, in VMWare Virtual Machine on ESXi Windows Professional 32 bit, and on my Laptop a Lenovo Thinkpad 64 bit. So far no issues whatsoever and machines are running great!

Delco

Tuesday, March 8, 2011

The Kindle after a Month of Using

It was about a month ago that my wife and son gave me a Kindle for my birthday. I have wanted one for a long time and certainly even before the iPad took the world by storm. I still opted for the Kindle because it suited me for what I wanted. Well after a month what do I think?

Well, for one, I like it. It does exactly what I wanted it to do with a few things I did not expect. It is not a Tablet. I already mentioned in a previous blog what I liked about it, but just like everything else there are some things that you could say for a lack of a better term, "I don't like".

Now I have the smaller version with the 3G.

One thing that is bothersome is often I hit the forward or backward button while I am reading. This is because the buttons are by design in a convenient place. Now, how can I complain if they are in a convenient place? Well, because I hold it in that spot. I had to train myself to move my hands either a little lower, well, actually my thumbs need to go more on the screen.

The same for the buttons that you use to move cursor. I sometimes hit the back or menu or cancel button.

The Highlighting and Bookmarks and Notes are great, but I do so much of it, that searching through them all so far has not been that useful. I think it will be more useful to copy them over to my computer and store them in my One Note application.

The last thing that is a small bummer is the fact that some of the tables and figures in a technical book I have been reading are quite often unreadable (blurry). I also find that I have to change the orientation quite a bit for tables, and then make the font smaller to get them to fit. This might is more of the fault of the book because I know the screen can show great detail in black and white.

Other than that, I do love my Kindle; but like any love affair, there are, how do you say, "some small spats".

Oh, by the way. This month's edition of Maximum PC declared the Kindle one of the Technical devices that are doomed to extinction because of the "tablet" revolution. Mark their words to see if it indeed comes true.



Delco

Saturday, February 26, 2011

New Features Included in Free Software Update

This is a copy paste from Email I recieved from Amazon this week. They told me that If I had on my wireless, that the update the latest version would happen automatically, and that it would install itself when in "sleep" mode. I monitored every day to see when it would happen, and today Saturday, I notice some of the new features, especifically, the "Real Page Numbers" which was one of the "dislikes" I had about the Kindle - actually the "Book" or "Publication" needs to support this feature.

Real Page Numbers
Many titles in the Kindle Store now include real page numbers, making it easy to reference and cite passages and read alongside someone reading the print book in a book club or class. Page numbers will also be available on our free "Buy Once, Read Everywhere" Kindle apps in the coming months. As with all of Kindle's features, we want you to lose yourself in the author's words, so page numbers and locations are only displayed when you press the Menu button.

Public Notes
This feature lets Kindle users choose to make their book notes and highlights available for others to see. Any Kindle user -- including authors, their fans, book reviewers, professors and passionate readers everywhere -- can opt-in to share their thoughts on book passages and ideas with friends, family members, colleagues, and the greater Kindle community of people who love to read. To review and turn on Public Notes in your own books, view the Public Notes of people you follow, track your reading activities, see Popular Highlights and your annotations, and view your full library of books, go to https://kindle.amazon.com

Before You Go ...
When you reach the end of the book, you can now immediately rate the book, share a message about the book with your social network, get personalized recommendations for what to read next, and see more books by the same author.

New Newspaper and Magazine Layout
A new browsing layout makes it easy to scan newspapers and magazines more quickly.

Delco

Thursday, February 24, 2011

Walking in the mall observations and rants

Blue Screen of Death to all ....

OK, so if you have been doing technology for a while, and especially if you have been working with Microsoft Windows, you know what the BSOD is right? As I did my circumference wandering in one of our nation's famous locations (the mall), I noticed this:

Seems like somebody should reboot the advertising device, I would of, but I could not find anywhere I could enter Ctrl+Alt+Delete.

While I was thinking about blogging, I thought of not...I have also been thinking lately of canceling this blog. I mean, I get a fair amount of visitors. Not outrageous, but I average over 500 or so a week. Yet I hardly ever get much comments or anyone letting me know that they read or even comment positive or negative on what I write, so I am thinking it a waste of digital space ... maybe. Not sure. The other thing is that it get's spammed all the time. You never see it because it is moderated and I delete it all, but I am just getting tired of spammers. Gosh, can you guys get a life? Do you guys know that after over 15 years of doing this, I have never ever click on a spammer's link, or even remotely had a curiosity about what you are spamming me about. Who reads your BS anyway? If you read chain letters or spam emails, my opinion is that you got way too much time on your hands.

Delco

Sunday, February 13, 2011

Kindle

Well I got a Kindle. I got the one with the free 3G and not the DX model which is bigger and of course costs more money. I wanted the smaller one so I can take it with me easily.

What is there to Blog about the Kindle? You can pretty much read all kinds of user comments on the Kindle sites; but I wanted to just highlight some general thoughts and comments about it.

First of all, one of the questions I was asked before was: Why get a Kindle, why not just get an iPAD instead? The iPad has way more capabilities and you can also read books on it. I can't argue with that; but here is my opinion, and it is only my opinion:

The iPad seems to me to me more an ADHD (Attention deficit hyperactivity disorder) Device vs. the Kindle which seems to me more for the person who wants to concentrate more on reading. So far my observation of people using the iPad is that they are jumping from one thing to the other. This is a result of what I called the "multi-tasking" lie. Once upon a time, I used to be able to sit down and read very large volumes from start to finish. I also had a very good ability to concentrate on one task and take it from begining to end. Once I started doing tech support though, I found that I needed to jugle multiple tasks at once - hence the "multi-tasking" scenario. I hate to break this to you, but nobody can do better more than one thing, than if that person was doing one. So, I like the Kindle, because I want to concentrate and not be bothered while I am reading by email alerts, news updates, and a host of other apps begging for my attention.

Here are the things I like about the Kindle:

1. Ink technology is awesome (Way better than Nook).
2. Totally easy to set up, and that includes the Wireless - with the information and even the MAC address right there for you to find.
3. Even though you can transfer your own documents to it, the "convert" feature is totally over the top. I can take a Technical PDFs, and email it to Amazon's convert engine, and they send it to my Kindle in Kindle format keeping all intact. So now I can read it as a native Kindle document.
4. Free 3G --- really, free. It has Internet browser (although I don't recommend that for heavy surfing, just quick lookup or backup).
5. Battery life seems to be real good. I have only charged it once since I got it, and have not had to recharge-4 days now of pretty good use.
6. Annotations, highlights, and clippings all store-able and backed up by Amazon.
7. The ability to share and sync what I am reading across multiple devices. So I can start reading on my Kindle, pick it up later on my laptop at the page I left, then if I have it on my Smart-phone start reading again.

Those are just a quick few thoughts on the Kindle. I think that the other e Readers and tablets will continue to overlap each other, and things are going to mesh. But for right now the Kindle has all comers beat when it comes to the pleasure of "reading'.

thanks,

Delco

Sunday, January 30, 2011

Cisco 1720 Reconfigure

I had the need to reconfigure a Cisco 1720. This router has two Ethernet WICs along with a BRI WIC. Ummm.... it's been a while since I have been in the Cisco IOS so I created a little refresher tutorial for myself as I went and did the work. Maybe you (someone) will find it useful.

A couple of notes: The router's name in all cases was set to JonahHex. I usually back up running-config via TFTP somewhere. You might see output cut and pasted from my Console that does not appear on yours. The version of the Cisco IOS might make a difference on the commands to copy/write/save. I basically wanted to blow the config away and start over. Don't get hung up on a minor difference below since I did this multiple times, so a minor setting might differ from print out to print out.

If you have some insight or correction to make, feel free to post comment. I will publish ASAP.

Have fun!

Delco


Instructions to Reset a Cisco Router Back to Factory Defaults

There are two main methods to return a Cisco router to its original factory defaults. These two methods are described below.

Method 1

This method uses the config-register 0x2102 command in global configuration mode.

1. Check the configuration register on the router by issuing the show version command.

The configuration register setting is displayed in the last line of the show version command output and should be set to 0x2102. If this is not the case, enter the config-register 0x2102 command once in global configuration mode.

In the example below, look the last line

**************** Cisco IOS Version *************************
JonahHex#show ver
Cisco Internetwork Operating System Software
IOS (tm) C1700 Software (C1700-Y-M), Version 12.3(5b), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2004 by cisco Systems, Inc.
Compiled Fri 16-Jan-04 05:16 by kellythw
Image text-base: 0x80008120, data-base: 0x809FA874

ROM: System Bootstrap, Version 12.0(3)T, RELEASE SOFTWARE (fc1)

JonahHex uptime is 3 minutes
System returned to ROM by power-on
System restarted at 20:48:54 est Sun Jan 9 2011
System image file is "flash:c1700-y-mz.123-5b.bin"

cisco 1720 (MPC860T) processor (revision 0x601) with 24576K/8192K bytes of memory.
Processor board ID JAD05300KGG (76996103), with hardware revision 0000
MPC860T processor: part number 0, mask 32
Bridging software.
X.25 software, Version 3.0.0.
Basic Rate ISDN software, Version 1.1.
1 Ethernet/IEEE 802.3 interface(s)
1 FastEthernet/IEEE 802.3 interface(s)
1 ISDN Basic Rate interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102

JonahHex#
***************************************************************
Because the line "Configuration register is 0x2102 it is all set.
If it is no there, then enter the commands below:

JonaHex#configure terminal
JonaHex#(config)#config-register 0x2102
JonaHex#(config)#end
JonaHex#reload

2. If the show version command is issued again, the same line in the command output will have '(will be 0x2102 at next reload)' appended to the current register setting.

3. Erase the current start-up configuration on the router with the write erase command.

JonahHex#write erase
JonaHex#show ver
Erasing the nvram filesystem will remove all configuration files! Continue? [confirm]
Erase of nvram: complete
JonahHex#

4. Reload the router with the reload command. When prompted to save the configuration, DO NOT save.

JonaHex#reload

Proceed with reload? [confirm]

Press RETURN to get started!


Jan 9 20:53:59.795: %PQUICC_ETHER-1-LOSTCARR: Unit 0, lost carrier. Transceiver problem?
Jan 9 20:53:59.803: %LINK-3-UPDOWN: Interface FastEthernet0, changed state to up
Jan 9 20:53:59.803: %LINK-3-UPDOWN: Interface Ethernet0, changed state to up
Jan 9 20:54:00.803: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
Jan 9 20:54:00.803: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to down
Jan 9 20:54:08.815: AUTOINSTALL: FastEthernet0 is assigned 192.168.10.49
Jan 9 20:54:08.819: AUTOINSTALL: Obtain siaddr 192.168.10.4 (as config server)
Jan 9 20:54:08.819: AUTOINSTALL: Obtain default router (opt 3) 192.168.10.1
Jan 9 20:54:16.967: %LINK-5-CHANGED: Interface BRI0, changed state to administratively down
Jan 9 20:54:17.967: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0, changed state to down
Jan 9 20:54:19.123: %LINK-5-CHANGED: Interface Ethernet0, changed state to administratively down
Jan 9 20:54:21.043: %SYS-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS (tm) C1700 Software (C1700-Y-M), Version 12.3(5b), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2004 by cisco Systems, Inc.
Compiled Fri 16-Jan-04 05:16 by kellythw
Jan 9 20:54:21.083: %SNMP-5-COLDSTART: SNMP agent on host Router is undergoing a cold start

************************************************* This ends the reseting of the Cisco router to factory *******************************

Configure the router

5: After you hit Enter and got to the Router> prompt. Type Setup

Router>enable
Router#setup

--- System Configuration Dialog ---
Would you like to enter the initial configuration dialog? [yes/no]:


6. Choosing yes gives you a wizard that gives you enough settings to get the router basic configurations.

At any point you may enter a question mark '?' for help.
Use ctrl-c to abort configuration dialog at any prompt.
Default settings are in square brackets '[]'.


Basic management setup configures only enough connectivity
for management of the system, extended setup will ask you
to configure each interface on the system

Would you like to enter basic management setup? [yes/no]:

7. Enter Y (You should have some basic information for the router, like name of router, IP address for at least one interface, etc., ahead of time

Enter host name [Router]:JonahHex

The enable secret is a password used to protect access to
privileged EXEC and configuration modes. This password, after
entered, becomes encrypted in the configuration.
Enter enable secret:mycisco

The enable password is used when you do not specify an
enable secret password, with some older software versions, and
some boot images.
Enter enable password:mycisco2

The virtual terminal password is used to protect
access to the router over a network interface.
Enter virtual terminal password:mycisco
Configure SNMP Network Management? [no]:y
Community string [public]:public
Current interface summary

Interface IP-Address OK? Method Status Protocol
FastEthernet0 192.168.10.49 YES DHCP up up
Ethernet0 unassigned YES unset administratively down down
BRI0 unassigned YES unset administratively down down
BRI0:1 unassigned YES unset administratively down down
BRI0:2 unassigned YES unset administratively down down

Enter interface name used to connect to the
management network from the above interface summary:FastEthernet0
Configuring interface FastEthernet0:
Use the 100 Base-TX (RJ-45) connector? [yes]:y
Operate in full-duplex mode? [no]:y
Configure IP on this interface? [yes]:y
IP address for this interface [192.168.10.49]:192.168.10.6
Subnet mask for this interface [255.255.255.0] :

Configuring interface FastEthernet0:
Use the 100 Base-TX (RJ-45) connector? [yes]:
Operate in full-duplex mode? [no]:
Configure IP on this interface? [yes]:
IP address for this interface [192.168.10.49]: 192.168.10.6
Subnet mask for this interface [255.255.255.0] :
Class C network is 192.168.10.0, 24 subnet bits; mask is /24

The following configuration command script was created:

hostname JonahHex
enable secret 5 $1$u09L$HuPWT0sRNS.kwIQ8xMyWz0
enable password cisco2
line vty 0 4
password mycisco
snmp-server community mynet
!
no ip routing

!
interface Ethernet0
shutdown
no ip address
!
interface FastEthernet0
no shutdown
media-type 100BaseX
full-duplex
ip address 192.168.10.6 255.255.255.0
!
end


[0] Go to the IOS command prompt without saving this config.
[1] Return back to the setup without saving this config.
[2] Save this configuration to nvram and exit.

Enter your selection [2]:

8. At this point select number 2

Enter your selection [2]:2

Building configuration...
[OK]
Use the enabled mode 'configure' command to modify this configuration.

JonahHex#

8. At this point you can do a:

JonahHex#show run

and a

JonahHex#show start

Both of this config files should be the same.

9. Test your configuration.

JonahHex#reload
Proceed with reload? [confirm]y

The router should reboot and reload.

10.When you see the message Press Enter to get started, press Enter. You will get to the prompt, then type enable, then enter the cosole password you set above mycisco

JonahHex>enable
Password:
JonahHex#

********************************** This ends the part about creating a basic cisco configuration *******************************

At this point I want to make sure any error or console messages are not appearing in the middle of the lines as I am typing.

11. At the # prompt type

JonahHex#config t
JonahHex(config)#line console 0
JonahHex(config-line)#JonahHex(config-line)#loggin sync level all

12. The following only do in a lab router or make sure you change later because it will leave console open forever if you walk away!!!
JonahHex(config-line)#Exec-timeout 0 0
JonahHex(config-line)#exit

13. If I am getting this message: %Error opening tftp://255.255.255.255/cisconet.cfg (Timed out)
JonahHex(config)#no service config

14. Backup my work to the startup-configuration, otherwise if you reboot you will lose all your work.

JonahHex#copy run start
Destination filename [startup-config]?
Building configuration...
[OK]
JonahHex#

15. I am a test crazy guy, so I again reload. If you are sure and don't want to, that is ok.

JonahHex#reload
Proceed with reload? [confirm]y

*********************************** End this part of the configuration ***********************************************************

Get the darn thing to route
16. After reload, and I am again in the router, and I am in privaleged mode by entering enable, and my console password, I want to get this thing to route.
This router has multiple interfaces, but I am only interested in two. FastEthernet0 and Ethernet0.
This is because I am routing IP over ethernet, not a WAN T1 or BRI (Isdn).

At the # type show run
JohanHex#show ver

Look at this part of the config file:

interface Ethernet0
no ip address
no ip route-cache
shutdown
half-duplex
!
interface FastEthernet0
ip address 192.168.10.6 255.255.255.0
no ip route-cache
speed auto
full-duplex

Look at the Ethernet0, there is no ip address and the interface is shutdown.

17. Configure IP address for Ethernet0 interface

JonahHex#config t
Enter configuration commands, one per line. End with CNTL/Z.
JonahHex(config)#int ethernet0
JonahHex(config-if)#ip address 192.168.20.6 255.255.255.0
JonahHex(config-if)#no shutdown
JonahHex(config-if)#exit
JonahHex(config)#exit
JonahHex#show run

Look for the following in the running-config

interface Ethernet0
ip address 192.168.20.6 255.255.255.0
no ip route-cache
half-duplex
!
interface FastEthernet0
ip address 192.168.10.6 255.255.255.0
no ip route-cache
speed auto
full-duplex

Notice now we have an ip address, and the interface is not shudown. If you do not have an ethernet cable in the port, you will get some messages about a possible transiever problem. Putting a loopback takes care of that, but then you get collisions messages. If you don't care about the messages, just ignore them right now.

18. I want to save run to start, and yes test again, you can skip reload if you like.

JonahHex#copy run start
JonahHex#reload

************************************************** End setting up the other Interace *********************************

Finish setting up routing

19. Well let's look at a couple of things. We have two interfaces set up on the router with different subnets 192.168.10.0, and 192.168.20.0.
If I ping each interface from the router, and if I ping one node on each subnet, I get echo back. See below:

JonahHex#
Jan 9 21:10:08.563: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to up
JonahHex#ping 192.168.10.6

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.10.6, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms
JonahHex#ping 192.168.20.6

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.20.6, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/4 ms
JonahHex#ping 192.168.10.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/201/1000 ms
JonahHex#ping 192.168.20.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.20.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/200/1000 ms
JonahHex#

20. If I ping from 192.168.10.0 on some node to 192.168.20.6, I do not get a reply, and I cannot ping beyond it. In my case, this is where my main network is, and the gateway is set for the internet gateway.

21. If I ping from 192.168.20.0 on some node to 192.168.20.6, and 192.168.10.6, I do get a reply, but it will not go past 192.168.10.6
Make sure node on the 20.x network has the gateway set to 192.168.20.6.

22. We have to to tell the router to "route". Notice the show run line below were it says "no ip routing"

memory-size iomem 25
no aaa new-model
ip subnet-zero
no ip routing
!
--More--

23. Tell it to route

JonahHex#config t
JonahHex(config)#ip routing
JonahHex(config)#exit
JonahHex#show run

memory-size iomem 25
no aaa new-model
ip subnet-zero

Notice that the line "no ip routing" is gone

24. Add Gateway to router - this would be the existing gateway you are using now for internet or in cisco speak the gateway of last resort

JohanHex#config t
JonahHex(config)#ip route 0.0.0.0 0.0.0.0 192.68.10.1

25. Now if you do a show run again

JonahHex#show run
Building configuration...

Current configuration : 926 bytes
!
! Last configuration change at 21:26:40 UTC Sun Jan 9 2011
! NVRAM config last updated at 21:26:46 UTC Sun Jan 9 2011
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname JonahHex
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$u09L$HuPWT0sRNS.kwIQ8xMyWz0
enable password mycisco
!
memory-size iomem 25
no aaa new-model
ip subnet-zero
!
!
!
ip cef
!
!
!
!
interface BRI0
no ip address
shutdown
!
interface Ethernet0
ip address 192.168.20.6 255.255.255.0
half-duplex
!
interface FastEthernet0
ip address 192.168.10.6 255.255.255.0
speed auto
full-duplex
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.10.1
no ip http server
!
snmp-server community homenet RO
snmp-server enable traps tty
!
line con 0
exec-timeout 0 0
logging synchronous level all
line aux 0
line vty 0 4
password mycisco
login
!
no scheduler allocate
!
end

JonahHex#

You should be ok. If you need full routing to work, make sure that on the Gateway, you add route to the 192.168.20.0
route 192.168.20.0 255.255.255.0 192.168.10.6
********************** End of finish setting up routing ***************************************

Monday, January 24, 2011

Framework NGEN

Real quick, here is an error that I have seen probably too many times:

The Microsoft .NET Framework NGEN v4.0.3010_x86 service on local computer started and stopped. Some Services stop anutomatically if they have work to do for example, the Performace logs and alert service.

While the statement is true, the way I found to fix this, is to:

1. Uninstall Microsoft .NET Framework 4 Client Profile
2. Uninstall Microsoft .NET Framework 4 Extender
3. Download Microsoft .NET 4 : dotNetFx40_Full_setup
4. Reinstall

Delco

Sunday, January 23, 2011

Bada Bing Bada Boom - Silverlight

You know Mr. Microsoft, you now Bing, and it is not bad search engine; but what is up with Silverlight? It's not that I think it is bad, it's just a pain every time I am on a machine and I want to watch one of your online videos, but it is not enough that I have Flash, Java, QuickTime, and everything else, but now I need Silverlight. Could of you just not used what everybody else uses? I don't know, just asking. Why Silverlight? Somebody tell me why please. Thanks.

Delco

Monday, January 10, 2011

Put Literati on Wifi ( Where is the MAC Address? )

Family member brought the Literati over to my house over the weekend, and me being the techno weirdo that I am, wanted to put it on my Wireless Network. As an added roadblock to my script kiddies neighbors or passerby(s), I usually use MAC filtering, and I noticed some poor fellow out there in the cloud struggling with it also.

Actually, the Literati is quite straight forward where it displays it's MAC address which is nice seeing some devices bury it deep in the bowels of the config, stats or network setups.

1. Select Menu button.
2. About

Should be right there.

If you are looking for this it will be 12 digit Hex code that looks like 00:00:00:00:00:00 - Hex can be any of 16 characters ranging from 0,...9,A,B,C,D,E,F

You will need that to add to the MAC filtering list on your wireless router.

Delco

Saturday, January 8, 2011

Spiceworks Software Scans Not always Accurate

Spiceworks is a great product. Great because it does a good job and it is free from costs; but like all software, and especially software that audits other software, there is sometimes some discrepancies. As you can see in the graphic below, even though Spiceworks correctly identifies that I have two installations of Microsoft Security Essentials, and that the version numbers are correct, it is a little confusing about what the numbers of the versions relate to: Software or Virus Signatures.

I compared the two machines and they were both exactly the same, but Spiceworks used the different numbers to report on the Dashboard.



Delco

Restoring or Moving Spiceworks

This is a straight forward procedure. Spiceworks backs up the data structure and creates a zip file containing all the Spiceworks folders. So it makes it really easy to restore or move the Spiceworks installation.

Follow this link to Spiceworks Community How to.

Delco

Friday, January 7, 2011

Getting WMI to work with Spiceworks and Windows OS(es)

Actually, not just Spiceworks, but any software that needs information from WMI or might need remote administration privileges. If you have better solutions or workarounds, please feel free to comment on this topic.

Windows 7 per Spiceworks Group:

Tried this and did not work although it is what is specified:

netsh advfirewall firewall set rule group="windows management instrumentation (wmi)" new enable=yes
netsh advfirewall firewall set rule group="remote administration" new enable=yes

Then I did this and it worked

1. Check Ping

2. netsh firewall set service remoteadmin enable

3. Create reg and merge:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000005
"ConsentPromptBehaviorUser"=dword:00000003
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000001
"EnableSecureUIAPaths"=dword:00000001
"EnableUIADesktopToggle"=dword:00000000
"EnableVirtualization"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000001
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000
"PromptOnSecureDesktop"=dword:00000000
"DisableCAD"=dword:00000001
"DontDisplayLockedUserId"=dword:00000003
"LocalAccountTokenFilterPolicy"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\UIPI]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=dword:00000001
"CF_BITMAP"=dword:00000002
"CF_OEMTEXT"=dword:00000007
"CF_DIB"=dword:00000008
"CF_PALETTE"=dword:00000009
"CF_UNICODETEXT"=dword:0000000d
"CF_DIBV5"=dword:00000011

Windows XP:

1. turn on icmp
2. added port 135
3. netsh firewall set service remoteadmin enable
4 netsh firewall set service remoteadmin enable subnet

Windows 2008:

Turn on icmp:

Firewall with Advanced Settings
Find: File and Print Sharing (Echo Requests-icmpv4-in) ENABLE THIS

You can also try netsh firewall set icmpsetting 8 (disable)

netsh firewall set service remoteadmin enable

Windows Home Server

Windows XP:

1. turn on icmp
2. netsh firewall set service remoteadmin enable
3. netsh firewall set service remoteadmin enable subnet

Might have to add port 135, I did not at this time

Delco

Tuesday, January 4, 2011

DD-WRT Port Forwarding to wrong IP address

Techbyte:

I had a port forward set up for a particular address. Now I had disabled the port forward months ago. I then created a new port forward for the same port, this case it was 443, but the machine that it hit was the old one. Not only that, even after I deleted all the rules for the old port forwards in addition to the 443 like port 80, still went to the old machine. The new one I added to port 3389 worked. This persisted like I said even though they were deleted and I even rebooted the router.

What I needed to do was set UPNP to clear port forwards on boot. Like a cache. I assume that if I would unplugged it and restarted it would of done the same thing, but it was not at my location.

See Screen shot below (click to see larger image)



Delco

Monday, January 3, 2011

Use Autodialer with Skype

Do you use Skype? Do you have to all a number and all you get is busy, busy, busy- Especially a toll free number?

You know you try to call the IRS or some other Government agency and what do you expect? You expect busy dial tone.

Try this, use Skype, go to the Tools, Extras and "Get Extras" search for Autodialer, or just for Moolight21, install it. You might get a prompt that a program is trying to use Skype. You have to say yes. Now it will sit in your service tray down by the clock.

Once installed, when you call the number, Moonlight will continually autodial until you either connect (Get human), or the number exceeds the times you told it to autodial.

You can configure how many times it tries and how many seconds between tries among other options.

Anyway, this was a cool free way to sit there and try to hit autodial on my land line phone, or struggle with my Blackberry.

Use at your own risk and responsibly :)

Delco