Thursday, November 6, 2014

How to fix "Can't verify who created this file error." when using redirecting folders

I've looked in to how to apply this with Group Policy but for some reason it just ignores the setting.  It seems to have to be done using a registry key.  Here is how I did it.  If there is a better way, please comment in the section below.

First open internet explorer and go in to the internet settings -> security -> local intranet -> sites.  From there enter the server name that you are trying to access that the data is stored on.  Click Ok until your back to the internet explorer window.

Now Open Group Policy Management, create or open a GPO and navigate to User Configuration -> Preferences -> Windows Settings -> Registry

Right click in the space to the right.  Select New Registry Item.  It should be set to update and HKEY_CURRENT_USER.

Now select the ... and your going to navigate to the spot to select what you just entered in to Internet Settings.

It should be like: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\xxxxxx

xxxx will be what ever you entered. Check the value in the bottom window and your window should now say:

Value Name = 1
Value Type = REG_SZ
Value data = (hostname or value you entered)

Save and close.  On host, open a command prompt and do gpupdate /force, log out login and it should be fixed.

Wednesday, August 27, 2014

Microsoft Office 2013 - Excel "Not Responding" Windows 8/8.1

I was having an issue with excel locking up when it was looking up data in another worksheet.  Worked fine in the older version of excel, but recently just upgraded to Windows 8/Office 2013.

Here is what I did to fix it:

Close everything you have open.

Open Windows Explorer, Navigate to C:\Program Files\Microsoft Office 15\root\office15\

Locate a file named osf.dll.  Right click it and select Rename.  Just add .old to the end so it says osf.dll.old.

Opened office and tried the files that were giving me problems.  The problem was fixed!

OS: Windows 8.1
Office: 2013

Source:  Link

**This did not fix the issue.  I ran CCLeaner and it looks like there were over 3GB of files in temp folders.  Will report back if this fixed it.

Thursday, August 21, 2014

Follow My New Business

Normally I don't post anything like this, but I'll make an exception this time.  Anyone that reads/finds this site, I would ask that you go like my new business that I have started.  Things I post won't be as technical here but will still be IT/Security related.  Thanks in advance.

Twitter:  http://www.twitter.com/cybersecureinn
Facebook: http://www.facebook.com/cybersecureinnovations
LinkedIn:  http://www.linkedin.com/company/cyber-secure-innovations

Thursday, August 14, 2014

Internet Explorer https loads Page cannot be displayed on certain pages.

I had an issue where internet explorer wouldn't load certain https sites.  Some worked and some didn't.  I even checked the Local Security Policy for System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing setting.  It was set to disabled.  It was suggested that I check the registry key to see if it was still set.  It was set to 1 and not 0 meaning it was active.  Here is what you can do to fix this.

Type regedit -> Navigate to HKLM\System\CurrentControlSet\Control\Lsa\ -> Locate the setting called FIPSAlgorithmPolicy and see if the value in the () is a 0 or a 1

If it is a (1) double click it and change it to 0.  Click ok and now reboot.  Once back into Windows, if it is still not working reset the zones settings to default and also do a full reset on internet explorer. It is under the advance settings.  You will need to reboot one more time.  At this point IE was back working as it should.

OS: Windows 7

Source:  Link Link

Sunday, August 10, 2014

When Generating Certs for Plex Connect you get WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You need to enter this:

Type at prompt: set OPENSSL_CONF=c:\openssl-win32\bin\openssl.cfg  (if you don't run this line you will get the following error: WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You won't get the error message any more when creating the certs.

 Source:  Link

Sunday, June 22, 2014

Windows 8/Windows 8.1 Showing up as Windows 6.3 in WSUS on Windows Server 2008 R2 Standard

I upgraded two computers and they came with Windows 8 on them.  I updated them to Windows 8.1, but I noticed something odd in Windows WSUS.  It was showing up as Windows 6.3.  I followed all the Microsoft Steps:

Step 1:
An update for Windows Server Update Services 3.0 Service Pack 2 is available (KB2734608)

Step 1a:
Additional note on KB2734608 regarding WSUS, Windows 8 and Windows Server 2012 (Link)

Even after all that, still not showing patches, but also still reporting at Windows 6.3.

Here is how to change the Windows 6.3

Log on to the WSUS server and open notepad.  Paste in the following text:

UPDATE SUSDB.dbo.tbComputerTargetDetail
SET OSDescription = 'Windows 8.1 Pro'
WHERE OSMajorVersion = 6 AND OSMinorVersion = 3 AND OSBuildNumber = 9600

Do file save as Add-W81-to-WSUS.sql and save it to C:\temp

Now run this in an elevated windows command prompt:

sqlcmd -I -i"C:\temp\Add-W81-to-WSUS.sql" -S \\.\pipe\MSSQL$MICROSOFT##SSEE\sql\query

It will say X number of rows affected.  The X should match how many Windows 6.3 machines are showing up in WSUS.

Now just as aheads up... if you aren't getting any Windows 8/8.1 patches double check that you are synchronizing them haha!

Source: Link

UPDATE:  I just noticed that it reverted back.  Will look more in to this.  From past experience you might have to commit the update.

Friday, June 13, 2014

Send to Mail Recipient not showing up when right clicking a file

It worked just fine but was not associated with anything.  After trying to set defaults, this is where things went bad.  I did figure out at least how to bring it back to a working.

Other posts I've read talked about grabbing it from the default profile and copying it over but it still never changed.  To get to the sendto folder click start and in the search box type shell:sendto.

Other posts talked about deleting it and creating your own through note pad by type Mail and saving it as Mail Recipient.MAPIMail.  I tried that also and that didn't work.  No matter what, it looked like something wasn't linked.

I then found this page -> Link which has all the default reg keys.  I downloaded and installed the mapimail reg key.  My icon though still was white file that didn't look right.  I then deleted the extension .MAPIMail. Nothing happened.  I then typed mapimail all lower case and hit enter and the icon switched back to an email looking icon.

Now to set this program to use this feature, go to Start -> type in the search box: Default Programs -> Click it.  Now select Set your default programs.  Select your email program and look for the MAPI section and make sure it is checked.  Click Save and now it should be working again.

I did find one problem.  If you are using AOL Desktop 9.7 there isn't a MAPI box to check.  AOL support on their site says their should be but there still isn't.  I found this page here -> Link that tells you to do the following:
  1. Click the "Settings" button on the toolbar
  2. Click the "A-Z" tab
  3. Click the "AOL as Default" link
  4. Click OK
After doing that, clicking the Mail Recipient context menu would open in AOL.

Tuesday, June 10, 2014

Toshiba Satellite S855-S5378 won't boot from CD/DVD or USB

This is actually because of a BIOS setting.  Start the computer and press F2.

Navigate to Advanced

Go down to System Configuration and press enter

You will see something called Boot Mode.  It is probably set to UEFI Boot.  Select and Press Enter.

Choose CSM Boot.

Press ESC and then Exit with saving changes. You computer should now boot again from the Disc/USB.

When done you must set it back to UEFI or Windows 8 will not boot.

Source: Link

Friday, May 23, 2014

How to Obtain USB Removable Disk Drive Letter Automatically with a Batch Script

Purpose of this script is to determine the drive letter of a USB thumb drive.  Depending on the hardware and drive partitions, every computer you plug a thumb drive into is different.  This will give you the drive letter assuming it is the only removable disk.

for /F "tokens=2 delims==" %%i in ('wmic logicaldisk where "drivetype=2" get name /format:value') do (

    set "usb=%%i"
    call :BREAK
)

:BREAK
echo Your USB Drive is %usb%


NOTE:  The "do" must be on the same line.

Source:  Link Link

Tuesday, May 6, 2014

Sysprep does not remove product key

So I was given a disk by our purchasing group, Windows 7 install disk.  After installing it, I realized that the key was baked in some how. No big deal.  Well when it came to sysprep time, it was a big deal.

Here is the problem.  When trying to sysprep in general, not yet using an unattend file, it never asked for a product key.  I needed it to ask for one because I had some individual keys I had to manually enter.

Here is what I figured out.

First run the command -> slmgr.vbs /dlv

This will give you information about the way it's licensed.

Mine said Microsoft Windows 7 VOLUME_KMSCLIENT channel.  That was odd.  It should say Microsoft Windows 7 Professional.

I then thought this might work. If you were to update it with a product key that is on the computer, it might get rid of the KMS configuration and reset it back to a standard client.

So I did -> cscript slmgr.vbs /ipk <insert product key here> (one time it worked with cscript the other it didn't)

I then reran slmgr.vbs /dlv and now it says Microsoft Windows 7 Professional.

Now it was time to try just sysprep, no unattend file.

I ran c:\windows\system32\sysprep\sysprep /generalize /oobe

It rebooted and went through the sysprep process.  And voila! it now prompted me to enter my key!

Source:  Link

ShareThis