WSUS lists approved vmware system driver for your guest but it doesn’t get installed.
get the latest in-guest-install vmware-tools (zipped) exe from vmwares download page und run it inside the guest.
Category: Microsoft
Windows Server 2022 Evaluation | Activation
Microsofts Windows Server 2022 Evaluation ISO is the basis your installaion was built on. Now you want to end the evaluation ad did buy a correct license. You did go to ACTIVATION, typed that ney key in and got that 0xc004f050? Thats because your key was (ie) issued for Windows Server 2022 Standard and NOT […]
Follina ~ MSDT mitigation via gpo
Policy path: System\Troubleshooting and Diagnostics\Scripted Diagnostics Allow user to access and run troubleshooting wizards System\Problembehandlung und Diagnose\Microsoft Support-Diagnosetool Benutzern den Zugriff auf die empfohlene Problembehandlung für bekannt Probleme erlauben Scope: Machine KUDOS: https://www.pwndefend.com/2022/05/30/office-microsoft-support-diagnostic-tool-msdt-vulnerability-follina/
WSUS | computers updating and contactable, but not reporting.
Check C:\Windows\SoftwareDistribution\EventCache.v2. It should be empty. If its filled to the brim with binaries, delete them all. It’s a WSUS server problem, not a client problem. I did a major wsus cleanup and reindexing, these measures were successful. Check my other wsus blogposts.
Windows | strange DNS resolve problem
Situation: Your machine lives in a corporate environment and uses your corporates own DNS resolver who’s located in your own LAN/IPsubnet. You didn’t define a default gateway in your IPv4 settings for security reasons. Resolving names via nslookup works fine, but windows himself (i.e ping) and third party software (like datev) run into resolve problems […]
Windows 10 | Uninstall progs from registry
Delete them: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{KEY2KEY2KEY2} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\KEYKEYKEY HKCR\Installer\Products\KEYKEYKEY HKLM\SOFTWARE\Wow6432Node\SOMETHING HKLM\SOFTWARE\RegisteredApplications\SOMETHING HKLM\SOFTWARE\Clients\Mail\SOMETHINGifITdidHANDLEmail HKLM\SOFTWARE\WOW6432Node\RegisteredApplications\SOMETHING HKU\.DEFAULT\Software\Clients\Mail\SOMETHINGifITwasAmailCLIENT HKU\S-1-5-18\Software\Clients\Mail\SOMETHINGifITwasAmailCLIENT
Windows | Set default application associations
Export on a proper machine and edit: Then do the GPO thing: Open your Group Policy editor and go to the Computer Configuration\Administrative Templates\Windows Components\File Explorer\Set a default associations configuration file setting.
WSUS OPTIONS | Feature packs
disable this. Feature Packs: Specifies new product functionality that is first distributed outside of a product release and that’s typically included in the next full product release.
Thunderbird | GPO like handling
Thunderbird is checking against C:\Program Files\Mozilla Firefox\distribution\policies.json at start. Some guys collected this for the latest version: https://fossies.org/linux/thunderbird/comm/mail/components/enterprisepolicies/schemas/policies-schema.json Thank you very much! Maybe this stuff is triggerable through the registry.
Windows 10 since 21H1 | Failed access to samba guest shares
You can’t connect to a samba server configured with map to guest = Bad User Don’t try this at home: Re-Enable the guest account fallback Your risky solution: Tune your GPO. Computer Configuration\Administrative Templates\Network\LanMan Workstation\Enable Insecure Guest Logons ATTENTION:I’ve had faced situation when this didn’t do the trick. I had to tune the registy: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters] […]
bytes and bones 
You must be logged in to post a comment.