IPv6 – Disabling isatap Teredo and 6to4 in Windows 7

To disable isatap teredo and 6to4 on a Windows 7 workstation, type the following at the prompt. You do of course need Administrative access on the workstation to do this.

If like myself your running dual stack IPv6 via your router or gateway, then there is really no need to have them running.

Thanks for the input guys, I’ve changed the following to set it back to default.

To re-enable isatap teredo nd 6to4, just replace the disabled with type=default.

References:
ISATAP – Wikipedia
6to4 – Wikipedia

Generic host process for Win32 services crashing.

This fixed the problem for me so I thought I would blog it (saves me remembering it) and lets anyone else fix the problem themselves.

To completely solve “Generic Host Process for Win32 Services” problem you should:

1) Scan your PC for the following viruses: CashToolbar Downloader-MY, System1060, CoolWebSearch Svchost32, ADCLICK-AG, ADCLICK-AX, ADUYO-A, AGENT-V, AGOBOT-KL, AUTOTROJ-C.

2) Go to Windows Automatic Updates properties (right-click on My Computer, then click on Properties and switch to Automatic Updates tab).

3) Choose “Turn Off Automatic Updates”, click OK and reboot your PC.

4) Manually update Windows using “Windows Update” shortcut in the start menu.

5) Turn automatic updates on.

6) If your problem is not solved on this step, uninstall old Hewlett-Packard printer and scanner drivers (if any) and download new drivers from the manufactures web site.

7) If your problem is not solved on this step, use the following command to show all svchost.exe instances and associated services or libraries:

tasklist /svc /fi “imagename eq svchost.exe”

Then search for each of services and libraries shown in that list in the Internet to find out whether the entry is malicious or not. In case you find malicious entry, use msconfig.exe utility to disable the appropriate service entry.

This is long but effective way of Generic Host Process or svchosts.exe repair.

Reference:
Generic Host Process Svchost.exe Problem Solution.

GnuPGP Key

First I generated a PGP Key Pair by typing the command
[code lang=”bash”]gpg –gen-key[/code]
You are prompted with the following
[code lang=”bash”]gpg (GnuPG) 1.4.6; Copyright (C) 2006 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.

Please select what kind of key you want:
(1) DSA and Elgamal (default)
(2) DSA (sign only)
(5) RSA (sign only)
Your selection?[/code]
I usually take the defaults when prompted.

I then read the manual provided at the GnuPGP website. Some other resources I found useful are listed below. Next you need to register your Public Key with a reliable key server, I used one that I found in the UK here.

Below is the command I used to register my public key, yours will be almost exactly the same, apart from the public key 6E8A8EB6 which is mine, your of course will be different.
[code lang=”bash”]billy@linux:~$ gpg –fingerprint billy
pub 1024D/6E8A8EB6 2008-03-18
Key fingerprint = 2133 B30D CCF4 1739 5EC6 AEF0 8690 2B09 6E8A 8EB6
uid Billy Dickson
sub 2048g/08E07B36 2008-03-18[/code]
[code lang=”bash”]gpg –keyserver pgp.uk.demon.net –send-key 6E8A8EB6[/code]

Below is a pretty basic bash script that I wrote to backup my public and private keys. I then copied the resulting file to a CD and hid it in my house (somewhere) 🙂
[code lang=”bash”]gpg -a –export-secret-keys 6E8A8EB6 > sec_key.asc; gpg -a –export 6E8A8EB6 >> sec_key.asc[/code]

Howto – Slipstream SP2 into XP

HOWTO – Slipstreaming SP2 into Windows XP and create a bootable CD

Slipstreaming a Service Pack, is the process to integrate the Service Pack into the installation so that with every new installation the Operating System and Service Pack are installed at the same time.

Slipstreaming is usually done on network shares on corporate systems. But with the advent of CD burners, it does actually make some sense for the home user or small business user to do the same.

Microsoft added the ability to Slipstream a Service Pack to Windows 2000 and Windows XP. It not only has the advantage that when you (re)install your OS, you don’t have to apply the Service Pack later, also if you update any Windows component later, you’ll be sure that you get the correct installation files if Windows needs any.

Continue reading

AHhhhh IE 7 and XP (How-to disable automatic delivery of Internet Explorer 7)

I just installed Internet Explorer 7 on my Acer Aspire Laptop 1670, rebooted, now I’m getting the error message “The file or directory c:\$Secure is corrupt and unreadable. Please run the Chkdsk utility.” the problem kept getting worse and worse and I was seriously thinking re-installing from an ghost image of I took of the laptop a few months ago.

Then I though, unistall Internet Explorer 7 and voila, no more error message and my laptop is now working fine. I thought that IE 7 was supposed to be out of Beta now pfffff, I think I’ll wait a few months until they get round to ironing out the bugs before I’ll install IE 7 again! and the lesson I learn’t today was, if it’s not broke don’t fix it.

Googled the problem and found a few links associated with this problem.
http://www.tek-tips.com/viewthread.cfm?qid=1196620&page=1
http://episteme.arstechnica.com/groupee/forums/a/tpc/f/99609816/m/520005714731
http://www.pcbuyerbeware.co.uk/HDDProblems2.htm#ghost10
http://www.eggheadcafe.com/aspnet_answers/windowsservergeneral/Apr2006/post26755432.asp
http://help.lockergnome.com/general/Chkdsk-Volume-Dirty-Help-ftopict30855.html
http://miataru.computing.net/windowsxp/wwwboard/forum/33283.html
http://search.webservertalk.com/message1694839.html

How to Disabling automatic delivery of Internet Explorer 7
Continue reading

How to Troubleshoot Inter-Forest Password Migration with ADMTv2

I was having a bit of trouble migrating users from one forest to another using ADMT2. I kept getting the error message “unable to establish a session with the password session server”, after rebooting the server, still no joy. Then I went searching the Microsoft site for a little while I managed to find the answer here.

Exchange email spam and virus filters

I’m currently looking at Microsoft Exchange e-mail spam and virus filters as part of my study. So I thought I would list them here so that I can look at them in more detail when I’ve got the time. Feel free to check them yourself and let me know what you think about them.

http://www.marshal.com/
http://assp.sourceforge.net/
http://www.vamsoft.com/orf/default.asp
http://www.sunbelt-software.com/iHateSpam.cfm
http://www.mcafee.com/us/smb/products/anti_spam/spamkiller_mail_servers.html

How to install SpamAssasin on Windows

A list of other Commercial Windows Spam and Anti-Virus Programs.

Linux hardware solution http://roaringpenguin.com/anti_spam/appliance.php
Another hardware solution by Barracuda Networks
A hardware solution by Asaro International Security

Microsoft Exchange Intelligent Message Filters
Microsoft Exchange Server Intelligent Message Filter provides server-side message filtering, heuristics-based message analysis, and support for per-message spam confidence level ratings. Find out how you can reduce spam while improving productivity and trimming costs by exploring the resources listed on this page.
Note: The Exchange Intelligent Message Filter Update v1 download has been removed. A new version of this tool (Exchange Intelligent Message Filter Update v2) is available as part of Microsoft Exchange Server 2003 Service Pack 2.

Trend Micro InterScan Messaging Security Suite [trendmicro.com] It runs on windows, and seemingly it has a really good hit rate for SPAM not tried it myself.

Another suggestion was:

You already have more than one computer on your network, so ignore exchange entirely and have another machine accepting mail for it and forwarding it on to exchange after filtering. Exchange will accept conventional email as well as it’s own odd methods.

Spamassassin is very good and can be found as part of very good cross platform packages like MailScanner. A low end machine can do a lot of filtering – and if it does get hammered the users won’t notice because exchange on the other machine will still be accepting mail at full speed and passing it on when it can.

All the alternatives to a different machine are exchange add ons which will impact on the performace of the machine to some extent simply because of what it has to do. When you get a lot of spam this will most likely result in users looking at their email client window for annoyingly long periods of time as it contacts the server for deleivery. This will result in time wasting service calls – so you could go for big hardware and good settings or shift the problem to another system where latency is not so important.