Spyder2k

Run "rsop.msc" in the run dialog on the client machine. Check the Security attributes of the GPO.

Yep, but the man was talking about Windows processes not services.. msmsgs.exe, lsass.exe, svhost.exe, csrss.exe, smss.exe, CCAP.exe are windows processes All services are processes (or part there-of; I believe more than one service can 'reside' in a process), not all processes are services. "lsass.exe, svhost.exe, csrss.exe, smss.exe" are services

I know this isn't the answer you're looking for, sorry, but your best bet is to re-install a slipstreamed sp2. I recommend this because it sounds more like you're have a multitude of minor problems. A reinstall may prove more time-efficient.

Seems it a problem with the "xvidcore.dll", try updating the file from here http://www.xvid.org/downloads.html

As long as port 3389 isn't forwarded (is that a word ) on your router you should be ok. See http://www.microsoft.com/windowsxp/using/n...up_03may16.mspx EDIT: I believe the "Remote Assistance" feature allows simultaneous RDC sessions. I'm not to familiar with the specifics, it's still on my to-do list.

I need some reccomendations on some proxy software. Here's my predicament, I've got ISA 2000 running on a network, Basic Authentication is disabled, enabling it on the firewall is out of the question. But this is required for many 3rd party programs, as they do not support the "Intergrated Authentication" (NTLM) mode. I'm thinking I can probably use a local firewall that supports the Integrated Authentication as well as Basic Authentication. So it receives the 'basic' and passes on the 'integrated' (NTLM Hash) to the ISA. Any Suggestion for a 3rd party proxy that supports this?

You may need to be logged in as a Domain Admin to the domain that the remote computer is on.

umm, ok, thankx I've realised that sometimes you've gotta press the keys serveral times though

I can't quite remember how to block a process altogether, there probably a section of group policy that 'denies access to the following processes' (maybe i'm remembering something from a third party app). But this won't prevent general internet access. What you can probably do specify a 127.0.0.1 (LOCAL) as the proxy in "User Configuration -> Windows Settings -> Internet Explorer Maintenance -> Connection -> Proxy Settings" Then disable the connection tab in "User Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel" This way no programs other than those that allow you to specify or change proxy setting will have internet access. Hope that helps

yeah umm ditto It's pretty good and the improved (not flawless) security features are appreciated as it will have a considerable effect on vast amounts of spyware/trojans affecting uninformed pc users. PS Yes I know nothing's flawless.

Just a tip; WinRAR does support the use of command line parameters.

seems i'll have to try this firefox thing. B) Still using IE

Start -> Run -> gpedit.msc -> Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> "Accounts: Rename administrator account"

You should look into getting a domain controller and putting all those machines on a domain. That way you can run all required scripts and even change some of the client configuration at system startup through group policies.

What about on the subfolders and files when you set the permissions for the drive/folder in the security dialog -> Advanced -> and make sure "Replace permission entries on all child objects with enteries with entries shown here that apply to child objects" is checked. Also when setting the owner, check "Rplace owner on subcontainers and objects"

What about the security attributes, are those set correctly. Also who is the 'owner' of those files. Try taking ownership and applying appropriate write permissions to various groups. EDIT: You can probably get the default drive permissions from one of the drives you did the fresh install from, and apply to all sub-folders and files.

Just one thing additionally, VMware is able to use an existing 'real' drive as a virtual drive so if you do an install from within VMWare onto that drive it may be bootable (haven't tested). The thing is you will need an OS running in order to run VMWare.

You should run a full system scan with proper Anti-Virus Softwaer, as the only way the file got there is if there is an additional copy on your system. I would recommend Kaspersky Anti-Virus.

Open Windows Media Player -> Tools Menu -> Options... -> File Types Tab. From there you can check all the filetypes you want to open with windows medai player. That is of course if you use windows medai player to play your medai files. Or you can do right click the file -> Open With -> Choose Program... -> Select the program to open the filetype with and check the box "Always use the selected program to open this kind of file"

VMware Workstation 4.5 software can do this. It creates a virtual PC environment, so you can have several virtual OS's inside of your 'real' OS. VMware Workstation also allows you to use a mout an ISO as a virtual drive in your virtual OS.

Thanks for the reply, I've been using Nero Burn Rights for awhile now. Although it can restrict CD Burning for Administrators only (Which is generally what I want to do) it only does this for Nero Software.

First things first, WOW, so much info so fast, thanks alot. It's going to take me awhile to go through some of it, as there's so much I wanna do now but thanks

Here's my scenario; I've got a network environment where Office XP is deployed through group policy. When it is deployed everything is installed automatically, except for one thing; it prompts the user for the product key. Is there anyway I can modify the installation so that the product key is built-in to the installation, so the entire installation is automatic.

Is it possible that the CD burning capabilities of a drive can be disabled (not just the built in cd-burning support in explorer). I've had to resort to resort to using the DevCon utility, which is run through a group policy applied script that entirely disables the CD-Writer for selected users. Any suggestion for a better approach or 3rd party application?

Not that I don't like Xp or anything but I was thinking of dual booting Server 2003 and Windows 2003, best of both worlds.