Archive for the ‘Windows’ Category

Mount Linux file system on Windows operating systems

Sunday, August 3rd, 2008

Since I am dual booting between Ubuntu and Windows Vista on my desktop workstation I am missing my linux volumes on Vista. I have three large 500GB SATA2 disks and one of them is partitioned and formatted with Ext2 linux file system. I have two options to read my linux volumes from windows:

a) Explore2fs which is a simple tool and I don’t need to install any low level system drivers. Explore2fs only operates in Read-Only mode.
b) Ext2IFS which is a pure kernel mode file system driver Ext2fs.sys, which actually extends the Windows NT/2000/XP/Vista (x86/x64) operating system to include the Ext2 file system.

I want to have full read-write mode on my linux volumes and I installed option b.

image 
image

Drive L:\ is now mounted in READ/Write mode from my Windows Vista SP1 x64 operating system.

image

Tags: , , , , , ,
Posted in Windows | No Comments »

Rode X/kruis op je harde schijf Windows Verkenner

Monday, March 10th, 2008

Ben je ook een slachtoffer van een virus/trojan of een adware programma en heb je een rode kruis wanneer je Deze Computer of Windows Verkenner opstart? Waarschijnlijk is je computer heel traag wanneer je verbinding maakt met het internet en allerelei pagina’s gaan open wanneer je Internet Explorer opstart.

clip_image001

Wanneer je binnen Register-Editor (de windows xp configuratie database) de instelling opzoekt dan zie je hetvolgende. Ga naar Start;Uitvoeren en type regedit.exe; en OK.

clip_image002

Ga naar HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\DriveIcons\c\DefaultIcon; deze heeft een REG_SZ waarde van %SystemRoot%\system32\shell32.dll,131. De waarde laat een rode kruis zien binnen de Windows Explorer. Verwijder deze en start de computer opnieuw.

Via een opdracht prompt kun je ook deze waarde verwijderen.

clip_image003

Ga naar Start, Alle Programma’s, Bureau-accessoires en klik Opdracht prompt aan. Type reg delete “HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\DriveIcons\c” en Y.

Het resultaat…

clip_image004

Ga naar google en zoek naar Hitman Pro; download en installeer dit programma om de pc helemaal schoon te maken van virus,hack, trojan en adware. Of via directe link.

clip_image005

Tags: , , , , , , , , ,
Posted in Dutch, Windows | No Comments »

NTP and network protocol analyzer session

Saturday, March 8th, 2008

After I reconfigured my Windows Time Service I download and installed WireShark network protocol analyzer tool. I start capturing all traffic on my physical Ethernet interface for more than 12 hours. I was wondering what kind of traffic was generated by my windows client after I configured the NTP server pointing to time.windows.com. I stopped the capture and ended with a 200MB file.

WireShark is the newest version of the nr1 open-source network protocol analyzer available today. Before it was known by name of Ethereal and still available for download.

Wireshark is the world’s foremost network protocol analyzer, and is the de facto (and often de jure) standard across many industries and educational institutions. Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998.

New Display filter is created with two strings. I don’t want manually go through all those frames and I put my windows machine ip address and the udp port 123 for NTP communication.

image

I saved the filter and applied. The capture run for 12+ hours and 34 frames were captured with the filter search strings.

image

Once every hour the windows time service connected to the ntp server.

Tags: , ,
Posted in Windows | No Comments »

Verify your Windows Time service

Friday, March 7th, 2008

When I verify my time difference between my local system and the time.windows.com NTP server I see I have 11 seconds difference.

Execute the following commands to check your local time service.

  • Open a command prompt
  • Type w32tm /stripchart /computer:time.windows.com /samples:5 /dataonly

image

I trust Microsoft that they are well maintaining their time infrastructure, but still I performed two additional checks to nist.gov servers.

  • w32tm /stripchart /computer:time.nist.gov /samples:5 /dataonly
  • w32tm /stripchart /computer:time-b.nist.gov /samples:5 /dataonly

Now I am manually configuring the Windows Time Service to synchronize my local time with the NTP peer at Microsoft.

  • w32tm /config /manualpeerlist:time.windows.com /syncfromflags:manual /reliable:yes /update

image

Three new events are generated in Windows Vista

The time service is now synchronizing the system time with the time source time.windows.com (ntp.m|0×0|0.0.0.0:123->207.46.232.182:123).

The system time has changed to 3/7/2008 9:51:02 PM from 3/7/2008 9:51:13 PM. (My 11s ;-) )

The system time has changed to 3/7/2008 9:51:02 PM from 3/7/2008 9:51:02 PM.

image

Final stripchart check and yes offset is 00.xxxx. Please consider these steps on your Active Directory PDC domain controller and their time source for your domain. For more information go to this article.

Tags: , , , , , , ,
Posted in Windows | No Comments »