EMET and Chrome

I own a copy of Malwarebytes Anti-Malware Pro, but found, in this post on Slickdeals.net, mention of software I had not heard of: Enhanced Mitigation Experience Toolkit (EMET) by Microsoft.

EMET is intriguing, because it provides an additional amount of security, including EAF, ASLR, and DEP, for apps that may not have been originally configured to take advantage of those technologies. A good write-up on setting the software up is available from TrustedSec.

Now, I am a complete novice when it comes to these security technologies, but I decided to use EMET and attempt to enable all it has to offer, because being ignorant about security technologies and using their benefits is better than just being ignorant. That said, I’ll continue to the steps I took to use Chrome alongside EMET.

Once EMET is installed and configured, it’s immediately evident that Chrome needs some additional attention (what with its constant crashing and pesky un-usable-ness).

To address that un-usable-ness, and because I have OCD, I decided to find which (if any) exceptions Chrome needs to operate without crashing. Luckily for me, it only took, like, 15 crashes to find the right exceptions. Luckily for you, here are the steps to add the Chrome executable and the right exceptions:

  1. Click, ‘Apps,’ from the toolbar
    • emet_chrome_01_apps
  2. Click, ‘Add Application,’ from the toolbar
    • emet_chrome_02_add_application
  3. Browse to your Chrome executable (mine is in C:\Program Files (x86)\Google\Chrome\Application)
  4. Enable the appropriate options for chrome.exe
    • emet_chrome_03_exceptions
    • DEP, Data Execution Prevention
    • SEHOP, Structured Exception Handler Overwrite Protection
    • NullPage, Null Page pre-allocation
    • HeapSpray, Common heap spray address pre-allocation
    • EAF, Export Address Table Access Filtering
    • BottomUpASLR, Bottom-Up virtual memory randomization
  5. Disable the appropriate options for chrome.exe
    • MandatoryASLR, Enforces Address Space Layout Randomization on loaded binaries
    • LoadLib, Check and prevent LoadLibrary calls against UNC paths
    • MemProt, Special check on memory protection APIs
    • Caller, ROP mitigation that checks if critical function was called and not returned into
    • SimExecFlow, Simulate the execution flow after the return address to detect subsequent ROP gadgets
    • StackPivot, Check if stack pointer was pivotted
  6. Ignore the greyed chrome.exe, if visible
  7. Click, ‘OK,’ at the bottom of the screen
  8. Close (if open) and re-open Chrome
  9. Enjoy!

Black and Decker Corded Electric Lawn Mower MM1800

Last fall, we purchased this Black and Decker lawn mower, shortly after we purchased our home.

I decided on the model because it’s electric, which is cleaner, easier to maintain (no bad gas concerns), and I wouldn’t have to replace a battery that cost as much as the machine within 3-5 years. Also, I have a smaller yard that a cord can cover and they were on sale. So, there’s that.

Since Spring started, I’ve been mowing once a week. While I’ve had no issues with how the mower cuts the lawn, I did notice that the orange lever on the handle was becoming more and more sensitive to where I had it. I couldn’t keep the lever flush against the handlebar anymore, but had to keep it a half inch off.

Annoyed, I decided to take the lever apart (which I’m apt to do). Of course, i had unplugged the mower first and performed the below fully aware that I am responsible (as you are) for my (your) own actions (you’ve been disclaimed).

Luckily, the lever is held into place using a few screws. Don’t worry, the piece is screwed into a specific spot on the handle to avoid slipping down the handlebar.

I noticed that, much like our hands-free soap dispenser, the lever was just a plastic piece used to complete an electric current between two metal pieces and engage the motor. Unlike the soap dispenser, this switch wasn’t broken, but merely a bit out of place.

After I (slightly) adjusted this switch, I screwed the lever housing back together and plugged the unit in.

With a careful pulling up of the lever to the handlebar, I heard the switch move as it should and the motor started.

Successful, I had a beer and mowed the lawn the next day (don’t hate).

Emerson Hands-Free Soap Dispenser Repair

So, we purchased this Emerson hands-free soap dispenser last year at a discount store for like $10.

We decided on buying this model despite already owning a Lysol hands-free dispenser (link), because the Lysol system requires proprietary soap and is half the amount per container versus a bottle of regular hand soap.

Long story short, the Emerson model allows you to use any soap you want, and that’s appealing and frugal. What’s not appealing is that the craftsmanship is a little shoddy in one major way. Allow me to explain:

On the bottom of the unit is a plastic switch which tells the unit that it is on a surface and, thusly, is safe to dispense without making a mess at the wrong time. This switch, when depressed, forces a metal strip inside the unit to engage the pump action; inversely, when the switch is not pressed, the cycle is broken and the motor will not start. Either way, you will see the red LED on if you’re within range of the infrared sensors. And that is the key to diagnosing a broken switch.

When I was trying to figure out why the dispenser stopped dispensing after a couple months, I noticed the LED would still light up, but literally no sound was coming from where the motor would be. I also noticed the switch was stuck and not depressing (heh). I tried to turn the unit off and back on again by holding down the silver button above the dispensing nozzle, but no luck.

So, I opened the thing. You’ll need a small Phillips-head screwdriver to do the same. And, I’m not responsible should you break the product or hurt yourself (how?).

Start from the bottom, removing the battery compartment and the batteries. Of course, it’s easier to do all of this without having soap in the reservoir. You can tip the unit upside down and pour out the soap, making sure you tip with the reservoir side down.

With the battery compartment open and cleared, on the bottom of the base you’ll see 5 plastic nubs which are used to keep the dispenser a bit off the counter/wherever. Pry those off by sliding a flathead screwdriver or something similar right around the edges, until they pop out.

With the Phillips-head screwdriver, remove the screws from the five holes. There will also be a silver screw near the switch that needs to be removed.

Once all 6 screws are removed, carefully remove the base (it’ll slide off), because there are very thin wires inside that connect the batteries and switch to the motor, sensors, etc.

Now that the unit is open, you can see where the switch is basically just a piece of plastic next to a bent piece of metal. If your switch was like mine (completely snapped), you’ll notice that moving the switch does not move the metal piece at all. Also, if your pump (when working) squirts barely any soap, the reservoir tube is visible (surrounded by a spring) and may need some attention (at your own discretion).

To remedy the faulty switch, you have some options: 1. Flip the switch over and force the metal piece to always be in contact (like I did), 2. Tape or otherwise permanently keep the metal pieces in contact, or 3. Fix/replace the switch (but the same thing may happen again).

The reason I chose option 1 is simple: you can turn the dispenser off by holding the manual button down, thereby negating a need for the switch when moving or refilling it. You can make your own choice. Be careful, though, because you may now have the switch mechanism just floating around in the base and need to plug the hole where the switch was to prevent water coming in & rusting parts.

After having solved the issue, you can put the base back on, ensuring you don’t pinch the wires (I gently stuffed ’em into a hollow side of the top). If the base doesn’t become flush with the top, you’re probably pinching a wire or the switch mechanism is in the way and needs repositioned.

If you have any questions, just ask and I’ll do my best to help. Planned obsolescence is a pain, but can be avoided if you try.

iWin Games Manager and AdminWorker.exe

So, you use iWin Games (Cake Mania, Diner Dash, etc.) and your Games Manager crashes upon startup? More than likely, the error you receive is that C:Program FilesiWin GamesAdminWorker.exe cannot be found. This is how to reinstall Games Manager (without losing your games or purchases) and why that occurred.

Some anti-virus applications show iWin Games (AdminWorker.exe, GLauncher.exe, etc.) as a virus (or Trojan, specifically). When you see the warning from your anti-virus about a suspicious file, odds are that you’re just going to Quarantine or Delete the “threat.” The problem is, as stated, integral parts of iWin Games show as viruses, so you may have just quarantined or deleted a file that’s needed to play your games.

The Remedy:

If you quarantined the file, you can go into your antivirus and remove the file from quarantine. I’d also suggest showing the file as safe with your antivirus.

If you deleted the file, simply uninstall iWin Games (not a specific game, but the program labelled, “iWin Games”). Follow this guide to uninstall without removing your games, preferences, or purchases: How can I reinstall the iWin Games Manager? If the link does not work (iWin may have disabled hotlinking to articles), then you can visit the support page and search for, “reinstall.”  http://support.iwin.com/ics/support/default.asp?deptID=5419

I strongly suggest that, if your antivirus again detects c:Program FilesiWin GamesAdminWorker.exe or another iWin program as a virus/Trojan, to mark the file as safe to avoid this in the future.  More information:  http://support.iwin.com/ics/support/KBAnswer.asp?questionID=31

Why I Love GoDaddy.com and LastPass.com

So, today I received a call that my GoDaddy account had auto-renewed and charged my bank account. “Great…,” I thought, as I had switched vpoet.net’s registrar & host last January.

On the phone with GoDaddy and their rep, Ryan, I was able to have my account’s auto-renew cancelled (which I had neglected to do last year, ##@$!) as well as the charges reversed (pending). I’m just so thankful to have them call– I don’t think any other hosting site would for a simple auto-renew.

That’s why I love GoDaddy, and why I may switch back to them once my current hosting expires. However, as Ryan understood, my loyalty is to my wallet and not a provider (though service like today’s may trump a couple bucks). By the way, the reason why I switched from GoDaddy to my current host was due to a special pricing on hosting, not GoDaddy’s service or raunchy commercials.

Now, why do I love LastPass? Well, it automatically saves generated passwords for sites, meaning if I forget to save a site after changing its password, LastPass is there with the randomly-generated one I may have used. Totally damn excellent. Also, they have a ‘View Deleted Sites,’ option in the case that I accidentally delete a wanted site. Perfect!