Full Version: Blocked O/s Privileges : 4fd
Today, Sat Mar 5 2005, Punkbuster Server version 1.50 was released.
Also, Punkbuster Client version 1.53 was released.
I get kicked from servers with the message:
"Blocked O/S Privileges : 4fd"
I have no idea what 4fd refers to.
I prefer to run my games as a non-administrator. I advise everyone else to do the same.
The EvenBalance FAQ lists 5 privileges that are required:
http://www.evenbalance.com/index.php?page=faq-q3.php
Debug Programs
Load and unload device drivers
Manage auditing and security log
Modify Firmware environment values
Profile Single Process
I have double checked that these privileges are enabled for this game user account.
I have run spy-ware checkers.
The obvious assumption is that a new privilege is required, one which is not documented.
If anyone has a clue to what this might be, please inform.
Also read http://www.punksbusted.com/forums/index.ph...wtopic=6074&hl=
If it is another privilege level then we don't know it yet, however we have contacted EB about it and are awaiting a response.
If it is another privilege level then we don't know it yet, however we have contacted EB about it and are awaiting a response.
Yes im getting the same error now every time I run quake 3 on the limited account. "Restriction: blocked o/s privileges: 4fd" is getting annoying as I already checked out every other protocol regarding the "Inadequate o/s privileges" error and Im still getting this. And I dont want to have to run q3 under admin everytime I wanna play. 
eheheh... so now we find out who's been running the game with a lesser account. Same here... We can only wait for a reply, and additional info as to what needs to be adjusted permission-wise to settle this. Playing under a full non-restricted administrator account is not an option for me. There are just too many dishonest server operators out there.
Nothing has changed with the Admin aspect of PunkBuster, it still requires the 5 items listed below:
# Debug Programs
# Load and unload device drivers
# Manage auditing and security log
# Modify Firmware environment values
# Profile Single Process
If you have followed the FAQ on EB site, and you still have issues; then there is probably some other software that is blocking it.
Raise a web ticket with Even Balance and quote the 3 digit code you received when kicked.
https://ssl.evenbalance.com/troubleticket/index.php?game=q3a
# Debug Programs
# Load and unload device drivers
# Manage auditing and security log
# Modify Firmware environment values
# Profile Single Process
If you have followed the FAQ on EB site, and you still have issues; then there is probably some other software that is blocking it.
Raise a web ticket with Even Balance and quote the 3 digit code you received when kicked.
https://ssl.evenbalance.com/troubleticket/index.php?game=q3a
QUOTE(Johnnie @ 6 Mar 2005, 12:21 PM)
If you have followed the FAQ on EB site, and you still have issues; then there is probably some other software that is blocking it.
I'm trying to play CoD, but the problem seems to be the same. I have none of the mentioned programs, and also nothing that comes close to doing what these things seem to do. I haven't changed the setup over the past six months, only today I got the new PB version auto-installed. Boom. It breaks.
QUOTE
Raise a web ticket with Even Balance and quote the 3 digit code you received when kicked.
I tried that, telling them that I have none of these programs and all the correct user privileges set, but I got just the canned responses telling me to check for these programs and the privileges. It was quite obvious that they didn't even read what I wrote.
Not alot we can do to help im afraid, its their software and they keep the workings of it a secret for good reasons. I can only suggest to keep submitting updates to your ticket.
QUOTE(cptcalamari @ 6 Mar 2005, 08:23 PM)
I tried that, telling them that I have none of these programs and all the correct user privileges set, but I got just the canned responses telling me to check for these programs and the privileges. It was quite obvious that they didn't even read what I wrote.
try sending another support ticket but this time send them a "hijackthis" log too. load up the game as normal and the normal apps you would use and then run hijackthis. it will list your processes.
example as of now, this my log.
QUOTE
Logfile of HijackThis v1.99.1
Scan saved at 21:08:50, on 06/03/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
F:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\ABIT\ABIT uGuru\uGuru.exe
C:\Program Files\RedLine\Taskbar.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
F:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\ABIT\ABIT uGuru\uGuru_Event_Receiver.exe
F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\Creative\MediaSource\RemoteControl\RcMan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\redline\gameutil.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
G:\Program Files\Valve\Steam\Steam.exe
F:\Program Files\Winamp\winamp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Jonathan\LOCALS~1\Temp\Rar$EX00.984\HijackThis.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.iolfree.ie:8080
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [ABIT uGuru] C:\Program Files\ABIT\ABIT uGuru\uGuru.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [RedLine Taskbar] C:\Program Files\RedLine\Taskbar.exe
O4 - HKLM\..\Run: [InCD] F:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\RunOnce: [GrpConv] grpconv.exe -o
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RcMan.exe
O4 - HKCU\..\Run: [Steam] "g:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: gameutil.exe.lnk = ?
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O16 - DPF: {AE9DCB17-F804-11D2-A44A-0020182C1446} (IntraLaunch.MainControl) - file://E:\SuperCD\IntraLaunch.CAB
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - F:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcDataSrv.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcSandraSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Scan saved at 21:08:50, on 06/03/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
F:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\ABIT\ABIT uGuru\uGuru.exe
C:\Program Files\RedLine\Taskbar.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
F:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\ABIT\ABIT uGuru\uGuru_Event_Receiver.exe
F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\Creative\MediaSource\RemoteControl\RcMan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\redline\gameutil.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
G:\Program Files\Valve\Steam\Steam.exe
F:\Program Files\Winamp\winamp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Jonathan\LOCALS~1\Temp\Rar$EX00.984\HijackThis.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.iolfree.ie:8080
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [ABIT uGuru] C:\Program Files\ABIT\ABIT uGuru\uGuru.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [RedLine Taskbar] C:\Program Files\RedLine\Taskbar.exe
O4 - HKLM\..\Run: [InCD] F:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "F:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\RunOnce: [GrpConv] grpconv.exe -o
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RcMan.exe
O4 - HKCU\..\Run: [Steam] "g:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: gameutil.exe.lnk = ?
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ua_lsp.dll
O16 - DPF: {AE9DCB17-F804-11D2-A44A-0020182C1446} (IntraLaunch.MainControl) - file://E:\SuperCD\IntraLaunch.CAB
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - F:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcDataSrv.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcSandraSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
this is a spyware checker, but DON'T delete everyone thing is shows up. go to a tech forum for advice on what to delete.
but send your log to eb along with any other data you have, they may be able to help you more knowing that stuff your running on your computer.
link: http://www.spywareinfo.com/~merijn/downloads.html
look for "hijackthis" mid-way through.
5 mins later: hehe just deleted a virus
, hooray for active scanning and anti-virus software.
I uninstalled ZoneAlarm and Mcafee AntiVirus, no difference was observed. These do not appear to be related to the problem.
"Blocked O/S Privileges" does mean blocked. I tried running as admin with one of the five privileges disabled. The kick message was something like "Inadequate Permissions" with no trailing number. Completely different error message.
The problem is not a missing privilege, but instead the inability of Punkbuster to verify the existing privileges status when logged on as a non-admin.
I believe that Microsoft has tightened up on the Microsoft Windows LSASS (Local Security Authority Subsystem Service) access, because of security concerns.
http://securityresponse.symantec.com/avcen...tent/10108.html
At this point I see no method of running Punkbuster enabled games in a non-admin account. It will have to be up to Evenbalance to determine if the admin level account is actually needed for cheat prevention.
"Blocked O/S Privileges" does mean blocked. I tried running as admin with one of the five privileges disabled. The kick message was something like "Inadequate Permissions" with no trailing number. Completely different error message.
The problem is not a missing privilege, but instead the inability of Punkbuster to verify the existing privileges status when logged on as a non-admin.
I believe that Microsoft has tightened up on the Microsoft Windows LSASS (Local Security Authority Subsystem Service) access, because of security concerns.
http://securityresponse.symantec.com/avcen...tent/10108.html
At this point I see no method of running Punkbuster enabled games in a non-admin account. It will have to be up to Evenbalance to determine if the admin level account is actually needed for cheat prevention.
Are there any common factors here like Service Pack 2 on Win XP?
Good question Omnix... I'm on SP1. Once SP2 is stabilized if Microsoft is capable of such a thing, I might apply it...
Played under the Admin. account without any problems, but as soon as I go back to my gaming user account with adjusted priviledges, I get the boot.
Played under the Admin. account without any problems, but as soon as I go back to my gaming user account with adjusted priviledges, I get the boot.
Ah, there goes my idea 
Here's the first human(?) reply I received:
The problem is... I'm not running any other software, that might be blocking PB from doing it's job, that was not running before this problem started. No anti-virus or any similar memory resident programs. The support ticket has been updated with this info, and all I can do is wait. This is a deja vue!
CODE
Note #3: Hello,
Please temporarily disable other security type programs you have running such as anti-virus, process guard, SDProtector, etc. to find out which of them is blocking PB's access to resources on your computer. You either need to run PB without the blocking program(s) or play on non-PB servers.
Please temporarily disable other security type programs you have running such as anti-virus, process guard, SDProtector, etc. to find out which of them is blocking PB's access to resources on your computer. You either need to run PB without the blocking program(s) or play on non-PB servers.
The problem is... I'm not running any other software, that might be blocking PB from doing it's job, that was not running before this problem started. No anti-virus or any similar memory resident programs. The support ticket has been updated with this info, and all I can do is wait. This is a deja vue!
i never got this problem ever on any computer i play on. maybe a 56k thing
sp1 works fine for me, so did sp2.
wow this must be really annoying the guys who are having problems .
anyways getting to the point. attach your hijack this log with your support ticket. just copy/paste at the end. maybe if enough people send their processes, EB will find a common denominator.
sp1 works fine for me, so did sp2.
wow this must be really annoying the guys who are having problems
. anyways getting to the point. attach your hijack this log with your support ticket. just copy/paste at the end. maybe if enough people send their processes, EB will find a common denominator.
Yep I wish I could do more to help, I've never had any issues with this.
QUOTE(Veire @ 6 Mar 2005, 07:02 PM)
i never got this problem ever on any computer i play on. maybe a 56k thing
It's not a modem thing in my case Veire. Uh, what's a modem??
QUOTE(Wolf @ 7 Mar 2005, 01:37 AM)
It's not a modem thing in my case Veire. Uh, what's a modem??
QUOTE
A modem (a portmanteau word constructed from modulator and demodulator) is a device that modulates an analog carrier signal (sound), to encode digital information, and that also demodulates such a carrier signal to decode the transmitted information. The goal is to produce a signal that can be transmitted easily and decoded to reproduce the original digital data. Primarily used to communicate via telephone lines, modems can be used over any means of transmitting analog signals, from driven diodes to radio.
And I thought I had no life! 
I have search the server logs for players having this problem
23 players are kicked
19 players connecting from 4 or more diff ISP
[02.03.2005 18:09:34] RESTRICTION: ^1^0^x^a7.^xx...^a7.^x^7 (slot #1) [xxxxxxxxxxxxxxxxxxxxxxxxxxxxx3(VALID) 8x.xx.xx.1xx:27960] Inadequate O/S Privileges
[02.03.2005 18:09:34] Kick Command Issued (RESTRICTION: Inadequate O/S Privileges) for (1) ^1^0^f^a7.^a2...^a7.^F^7
[02.03.2005 18:10:31] RESTRICTION: (slot #1) [?(-) ] Inadequate O/S Privileges
[02.03.2005 18:10:31] Ignored Command to kick player in slot# 1 (RESTRICTION: Inadequate O/S Privileges) ... Missing IP Address
[02.03.2005 18:10:44] New Connection (slot #1) 8x.xx.xx.1xx:27960 [?] ^1^0^x^a7.^xx...^a7.^x^7
23 players are kicked
19 players connecting from 4 or more diff ISP
[02.03.2005 18:09:34] RESTRICTION: ^1^0^x^a7.^xx...^a7.^x^7 (slot #1) [xxxxxxxxxxxxxxxxxxxxxxxxxxxxx3(VALID) 8x.xx.xx.1xx:27960] Inadequate O/S Privileges
[02.03.2005 18:09:34] Kick Command Issued (RESTRICTION: Inadequate O/S Privileges) for (1) ^1^0^f^a7.^a2...^a7.^F^7
[02.03.2005 18:10:31] RESTRICTION: (slot #1) [?(-) ] Inadequate O/S Privileges
[02.03.2005 18:10:31] Ignored Command to kick player in slot# 1 (RESTRICTION: Inadequate O/S Privileges) ... Missing IP Address
[02.03.2005 18:10:44] New Connection (slot #1) 8x.xx.xx.1xx:27960 [?] ^1^0^x^a7.^xx...^a7.^x^7
Well there's always some comfort in finding out I'm not the only one. Does this represent an important percentage of traffic on your server Pingni? Or put another way, would this be considered a normal number of kicks for your server? Are all 23 kicks related to the "inadequate O/S priviledges"?. One of the entries in your sample above has more specific information in the form of "Missing IP address" versus a code (4fd) in my case.
I'm also curious about this:
Would any member currently playing under an admin. account on WinXP Pro SP1, try playing the game under a "user account" with modified priviledges? And give me some feedback on the results?
Note: I can play the game (as admin.) so it's not critical for me anyways, but it won't motivate me to play any other servers than the current one I play now. I guess it does come down to "know the server you're playing on and your admins.".
Thanks in advance for any help some of you may offer!
Wolf
I'm also curious about this:
Would any member currently playing under an admin. account on WinXP Pro SP1, try playing the game under a "user account" with modified priviledges? And give me some feedback on the results?
Note: I can play the game (as admin.) so it's not critical for me anyways, but it won't motivate me to play any other servers than the current one I play now. I guess it does come down to "know the server you're playing on and your admins.".
Thanks in advance for any help some of you may offer!
Wolf
For what it's worth, I'm a BFV player having similar issues using win2k pro.
I get the old (4fd) too. (Whatever in the world that means?)
I set up a group with all the privileges (user rights) that the Administrator has and made myself a member. Additionally, I made sure I belonged to all the groups the Administrator belongs to except "Administrators." (i.e Debuggers)
No go.
Only when I make myself a member of the" Administrators" group does it work. And, of course that defeats any "lesser" account operation.
I haven't gone through all the "user rights" yet. Maybe something that doesn't explicitly have the Aministrator as a member needs to be on. Dunno.
Happy gaming.
I get the old (4fd) too. (Whatever in the world that means?)
I set up a group with all the privileges (user rights) that the Administrator has and made myself a member. Additionally, I made sure I belonged to all the groups the Administrator belongs to except "Administrators." (i.e Debuggers)
No go.
Only when I make myself a member of the" Administrators" group does it work. And, of course that defeats any "lesser" account operation.
I haven't gone through all the "user rights" yet. Maybe something that doesn't explicitly have the Aministrator as a member needs to be on. Dunno.
Happy gaming.
All the 23 kicks related to "inadequate O/S priviledges" from 01.09.2005 until today.
Total kicks on server same period for ignoring cvars and Md5 tool, is 343
And my point adding this log lines was " Missing IP Address" most of them have it in the log.
Total kicks on server same period for ignoring cvars and Md5 tool, is 343
And my point adding this log lines was " Missing IP Address" most of them have it in the log.
QUOTE(pingni @ 7 Mar 2005, 04:13 PM)
And my point adding this log lines was " Missing IP Address" most of them have it in the log.
That looks like a bug in the system to be honest, its already kicked the player and still trying to carry out actions against them. I will let EB know.
Could this have anything to do with something as simple as being pingable? For example, I run in "stealth" mode, if I did not initiate a connection you won't get a reply if you ping my IP addy. On the other hand I did start the game and initiated a connection, which PB uses, so that should not be an issue. Looks like a longshot but I'll give it a try anyways.
@ Pingni
Thanks for the extra info.
@ Johnnie
You might just be able to help after all!
Good stuff.
@ patopoco
Johnnie has confirmed that the current priviledges adjustments as presented by EB, has not changed. You're a brave fellow to experiment in that direction. Keep us updated on your findings man.
@ Pingni
Thanks for the extra info.
@ Johnnie
You might just be able to help after all!
Good stuff.@ patopoco
Johnnie has confirmed that the current priviledges adjustments as presented by EB, has not changed. You're a brave fellow to experiment in that direction. Keep us updated on your findings man.
I've fired an email off to EB with the possible bug, and patopoco's findings.
I doubt the bug has anything to do with the current issue, its obviously a security related issue. I will see if I can replicate it on my PC then I can perhaps troubleshoot it.
I doubt the bug has anything to do with the current issue, its obviously a security related issue. I will see if I can replicate it on my PC then I can perhaps troubleshoot it.
Okay, I turned on every privilege available under user rights. Those granted to Administrator and then some.
No good.
It makes me think the program is checking the UID to see if it "is" the Administrator or not.
Just a guest from a use to be "C" programer.
That would explain why nothing short of being "Admin" would make things okay. It would also explain "that the current priviledges adjustments as presented by EB, has not changed."
Appreciate everyone's looking.
No good.
It makes me think the program is checking the UID to see if it "is" the Administrator or not.
Just a guest from a use to be "C" programer.
That would explain why nothing short of being "Admin" would make things okay. It would also explain "that the current priviledges adjustments as presented by EB, has not changed."
Appreciate everyone's looking.
QUOTE(patopoco @ 7 Mar 2005, 12:42 PM)
It makes me think the program is checking the UID to see if it "is" the Administrator or not.
I certainly hope this is not the case.Any players out there using a lesser account with adjusted priviledges and are NOT having the issues described in this thread?
Please take a moment to respond if this is your case.
patopoco if your well up on O/S I was going to try turn of security auditing and log all failures.
I'll try to replicate soon.
I'll try to replicate soon.
Okay here's the results from the event veiwer after trying as normal user. (Same kick with 4fd.)
Object Access 560
Privilege use 577
Privilege use 577
Object Access 560
Privilege use 577
Privilege use 577
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 3/7/2005
Time: 12:42:46 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
New Handle ID: -
Operation ID: {0,1114237}
Process ID: 220
Primary User Name: BIGMOE$
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0x3E7)
Client User Name: patopoco
Client Domain: BIGMOE
Client Logon ID: (0x0,0xF44E3)
Accesses DELETE
READ_CONTROL
WRITE_DAC
WRITE_OWNER
Connect to service controller
Create a new service
Enumerate services
Lock service database for exclusive access
Query service database lock state
Set last-known-good state of service database
Privileges -
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:42:05 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:42:05 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
New Handle ID: -
Operation ID: {0,1067923}
Process ID: 220
Primary User Name: BIGMOE$
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0x3E7)
Client User Name: patopoco
Client Domain: BIGMOE
Client Logon ID: (0x0,0xF44E3)
Accesses Connect to service controller
Create a new service
Privileges -
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Maybe that'll help.
(Note: All revelant machine data changed to protect the guilty.)
Object Access 560
Privilege use 577
Privilege use 577
Object Access 560
Privilege use 577
Privilege use 577
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 3/7/2005
Time: 12:42:46 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
New Handle ID: -
Operation ID: {0,1114237}
Process ID: 220
Primary User Name: BIGMOE$
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0x3E7)
Client User Name: patopoco
Client Domain: BIGMOE
Client Logon ID: (0x0,0xF44E3)
Accesses DELETE
READ_CONTROL
WRITE_DAC
WRITE_OWNER
Connect to service controller
Create a new service
Enumerate services
Lock service database for exclusive access
Query service database lock state
Set last-known-good state of service database
Privileges -
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:42:05 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:42:05 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
New Handle ID: -
Operation ID: {0,1067923}
Process ID: 220
Primary User Name: BIGMOE$
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0x3E7)
Client User Name: patopoco
Client Domain: BIGMOE
Client Logon ID: (0x0,0xF44E3)
Accesses Connect to service controller
Create a new service
Privileges -
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Event Type: Failure Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 577
Date: 3/7/2005
Time: 12:41:58 PM
User: BIGMOE\patopoco
Computer: BIGMOE
Description:
Privileged Service Called:
Server: Security
Service: -
Primary User Name: patopoco
Primary Domain: BIGMOE
Primary Logon ID: (0x0,0xF44E3)
Client User Name: -
Client Domain: -
Client Logon ID: -
Privileges: SeIncreaseBasePriorityPrivilege
Maybe that'll help.
(Note: All revelant machine data changed to protect the guilty.)
I only get the 560 failure:
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 07/03/2005
Time: 19:02:15
User: TestPC\Test
Computer: TestPC
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
Handle ID: -
Operation ID: {0,11185113}
Process ID: 1320
Image File Name: C:\WINDOWS\SYSTEM32\services.exe
Primary User Name: TestPC$
Primary Domain: TestDomain
Primary Logon ID: (0x0,0x3E7)
Client User Name: Test
Client Domain: TestPC
Client Logon ID: (0x0,0x9B1ACC)
Accesses: DELETE
READ_CONTROL
WRITE_DAC
WRITE_OWNER
Connect to service controller
Create a new service
Enumerate services
Lock service database for exclusive access
Query service database lock state
Set last-known-good state of service database
Privileges: -
Restricted Sid Count: 0
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Failure Audit
Event Source: Security
Event Category: Object Access
Event ID: 560
Date: 07/03/2005
Time: 19:02:15
User: TestPC\Test
Computer: TestPC
Description:
Object Open:
Object Server: SC Manager
Object Type: SC_MANAGER OBJECT
Object Name: ServicesActive
Handle ID: -
Operation ID: {0,11185113}
Process ID: 1320
Image File Name: C:\WINDOWS\SYSTEM32\services.exe
Primary User Name: TestPC$
Primary Domain: TestDomain
Primary Logon ID: (0x0,0x3E7)
Client User Name: Test
Client Domain: TestPC
Client Logon ID: (0x0,0x9B1ACC)
Accesses: DELETE
READ_CONTROL
WRITE_DAC
WRITE_OWNER
Connect to service controller
Create a new service
Enumerate services
Lock service database for exclusive access
Query service database lock state
Set last-known-good state of service database
Privileges: -
Restricted Sid Count: 0
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
I think this must be related at least, for one its trying to logon with the computer account (Primary User Name: TestPC$)
I'll foward onto EB
I'll foward onto EB
Appreciate it Johnnie. 
Sounds like a job for Jimmy Neutron. Hope he's on the payroll.
Sounds like a job for Jimmy Neutron. Hope he's on the payroll.
@Johnnie
If you go into your "Local Security Policy" from the Administrative tools, and then in the left viewer pane, expand "Local Policies" and select "User Rights Assignment" - in the right viewer pane, there's an option called "Increase Scheduling Priority", add your test user to this policy then logoff and login again and see if it goes away.
@Patocopo
Microsoft states that this error is generated when 3 conditions are met, and that SP2 solves this "know problem". The other option if you don't want to install SP2, is to turn off audit policy changes. More info here:
If you go into your "Local Security Policy" from the Administrative tools, and then in the left viewer pane, expand "Local Policies" and select "User Rights Assignment" - in the right viewer pane, there's an option called "Increase Scheduling Priority", add your test user to this policy then logoff and login again and see if it goes away.
@Patocopo
Microsoft states that this error is generated when 3 conditions are met, and that SP2 solves this "know problem". The other option if you don't want to install SP2, is to turn off audit policy changes. More info here:
QUOTE(Wolf @ 7 Mar 2005, 07:30 PM)
@Johnnie
If you go into your "Local Security Policy" from the Administrative tools, and then in the left viewer pane, expand "Local Policies" and select "User Rights Assignment" - in the right viewer pane, there's an option called "Increase Scheduling Priority", add your test user to this policy then logoff and login again and see if it goes away.
Still the same.If you go into your "Local Security Policy" from the Administrative tools, and then in the left viewer pane, expand "Local Policies" and select "User Rights Assignment" - in the right viewer pane, there's an option called "Increase Scheduling Priority", add your test user to this policy then logoff and login again and see if it goes away.
I'm using win2k pro and am all updated and such.
Good info though, Wolf. (Only briefly read it at this point.) I'll continue to investigate and report any other findings of note.
In the mean time, somebody come up with a wonder cure.
Good info though, Wolf. (Only briefly read it at this point.) I'll continue to investigate and report any other findings of note.
In the mean time, somebody come up with a wonder cure.
QUOTE(Johnnie @ 8 Mar 2005, 05:11 AM)
I only get the 560 failure:
SeIncreaseBasePriorityPrivilege can be granted to users in Local Security Settings as "Increase Scheduling Priority" , but this does not solve the basic problem.
PB is accessing the Services Controller Service with more rights asserted than are owned. This results in Event 560. Then something tries 5 times to increase Priority Privilege, resulting in Event 577.
Not sure if it is possible to give users more Service Controller Service rights.
edit: darn, Wolf was too fast...
This means that PB is not able to access IoCreateFile and IoCreateService functions in your computer to install PB's Device Driver
So if(!IoCreateFile == NULL)
{
//Blocked OS Priv
}
So if(!IoCreateFile == NULL)
{
//Blocked OS Priv
}
Due to the complexity of this issue, PunksBusted.com are unable to troubleshoot this issue and you are advised to log a Web Ticket with Even Balance direct, please see here for more details: http://www.punksbusted.com/forums/index.php?showtopic=6198
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.