Database Search

match allmatch any Look in all areasLook in current areas Check all datesPrevious dayPrevious 3 daysPrevious weekPrevious fortnightPrevious monthPrevious 2 monthsPrevious 3 monthsPrevious half-yearPrevious year

TechHome

	Backups
	Ctrl Alt Del Issues
	Determine Platform - OS
	Get EXE Name
	Get Machine Name - Workstation
	Icons
	Reboot Issues
	Recycle Bin
	Resource Lock
	System Information
	User Profiles

• !Windows Commandline Tricks
• A Word or Phrase in the file search Not Working on XP
• Access to Hardware MP3 Player Device
• Admin Test
• AskYesNo with TimeOut
• Associate Extension to Run Winbatch File
• Autohide Taskbar Code
• Automate FireFox
• Automatically Answer a Dialog Box
• Automatically Clear Pause after EXE Launches
• Base64 encodeing a file
• Block New Program Installs
• BMP Color Change
• Brute Force Way to Convert an int64 that WinBatch Can Handle
• Calculate Text width and height
• Can WinBatch Associate Files
• Capture Control Break
• Change Cursor to Hourglass
• Change Cursor
• Change Explorer Favorites Location
• Change Ip Address
• Change Proportional to Fixed Fonts in Itembox
• Change Share Path
• Changing Default CDROM Drive
• Changing the Windows language
• Check for Multiple Instances of an Application
• Check If a File Is Locked
• Check if a Server is Available
• Check if Application is Installed
• Check if Application is Responsive
• Check if Computer is Locked or Idle
• Check If Extender Is Already Loaded
• Check if Program is Installed
• Check If Someone Is Logged In
• Check If Third Party Menu Item Is Checkmarked
• Check Systems for the MSBlaster Virus
• Check the Grayed-NonGrayed State of Buttons in Pull Down Menus
• Check Which Patches Are Installed
• Clipboard Input Blocked
• Close Child Windows
• Combining WB Scripts
• Command Line Stdin Stdout
• Communicate with a Third-Party Applications Windows-dialogs
• Compress Directory Attribute
• Configure a Workstation to Run HealthStar
• Control Compatibility Mode
• Controlling Citrix Web Client Using WinBatch
• Convert Hex to Ascii
• Convert Image to TIFF
• Convert Temperatures
• Convert TIF to JPG
• Convert Unicode to Big Endian Format File
• Convert Unicode to Big Endian
• Copy Protecting WinBatch Applications
• Create a PDF File
• Create a Shortcut to DUN
• Create a Template WBT file
• Create a Zero K file
• Create Editbox to Accept Formatted Data
• Create Hard Link
• Create Junction Points
• Create Single Byte Arrays and Structures
• Create Startup or Shutdown Script Policies
• Delete a Large Number of Files
• Delete Internet Cookies
• Detect Interact with Desktop
• Detect System Startup Complete
• Detect Version of Java
• Detecting a Locked Workstation
• Detecting Dual Monitors
• Determine Color Range
• Determine Current CD ROM WB is Running On
• Determine IE version installed
• Determine If Menu Bar Has Been Clicked
• Determine if RAS Connection
• Determine Process Start Time
• Determining If a Machine is a Domain Controller
• Disable a Device
• Disable CD Autorun
• Disable Device
• Disable Enable Network Card
• Display Graphical Directory Tree in a Message
• Displaying JPG Files Using Windows Viewer
• Displaying Text Messages on the Console
• DNS Suffix
• Easily Parse Log Files
• Easter finder
• Email HTML Form Data
• Enable or Disable Network Connections
• Enable or Disable Wireless Connection
• Enumerate Devices
• Even or Odd
• Excel Version
• Executing EXE on Remote Computer
• Exit if PC is Idle
• File Size On Disk
• File System Notification on Change
• Financial calculations
• Force Extender Dll Updates
• Format a disk on Windows 2000 or Windows XP
• FTPS Protocol
• Get Current Power Scheme
• Get Current Process ID
• Get Current User Remotely
• Get Data From Memory Address,txt
• Get Default Internet Connection
• Get Highlighted text from Any Window
• Get IE Cache history
• Get Info from a Pair of Directories
• Get Length of MPEG File
• Get line Count and Append if Necessary
• Get Menu String
• Get Microsoft Office Version
• Get Network Address Using IP Address and Subnet mask
• Get Persistent Drive Mappings
• Get Pixel Color
• Get Preferred Language
• Get Process Information from running WinBatch Scripts
• Get ProcessID Thread
• Get Program Files Directory
• Get Remote IP Addresses and Usernames to a List
• Get Unique Records in a List
• Get Version of Internet Explorer
• Get WinBatch Process Environment Block
• Get Windows API Documentation
• Getting WinBatch to Wait - Pause
• GINA Winlogon Desktop and Winbatch
• Grab System Information from MSINFO32
• Handle Errors Including UDFs
• Handling Asynchronous Notifications
• Hibernate
• Hide all the Icons on the Desktop
• Holding down a Key
• How To Call Windows API Functions
• How To Check if a File Handle is Closed
• How to clear event logs
• How to Count Items and Delimiters in a List and Extract Items
• How to Encrypt a Line of Text - Simple Explanation
• How to FTP
• How to Get Encrypted Attribute from a Directory
• How to Locate Functions In Helpfiles
• How to Locate functions in the help files
• How to push Microsoft hotfixes
• How To Read Large File in Multiple Parts
• How to Recurively Copy Files
• How to Retrieve Data from a Database File
• How to Set the AskDirectory Dialog Box Size
• HTML Form Submitted to Winbatch Script
• HTTP Authentication
• Icon Extractor
• Image Comparison
• Increment Through the Alphabet
• Inf Install
• Install a font
• Install AD Printer
• Install File and Print Sharing
• International Date Settings
• Internet Explorer Cache History Retrieval
• Internet time monitor
• Interprogram Communication
• ISO CD Image File
• Issues Interacting with FileMaker Pro
• Kill Predecessor
• Killing 16 bit apps in NT
• Last time ScanDisk and Defrag Performed
• Launch a program on the System Tray
• Launch a WBT File using Explorer SendTo
• Launch Script from SendTo
• Launch the file properties dialog for a file
• Launch WinBatch from Internet Explorer Context Menu
• Limit User Access to Computer
• List all Hotkeys
• List Applications Installed on Remote Machines
• List DVD Drives
• List Installed Modems
• Listing Files from within Zip Files
• Lock NT Server
• Loop Forever until SHIFT Key Pressed
• Lotus Notes - DllCall to change password
• Make a Multiline Input Box
• Make a Thumbdrive Read-Only
• Make Directory Listings
• Make Task Bar Blink
• Make WinBatch Delete Itself
• Making Bitmap files via GDI calls
• Manipulate screen or file data
• Map Ports to Services
• Microsoft Service Pack Checker
• MIME Utility for Email Messages
• Modify Internet Explorer Automatic Detect Setting
• Modify Local Group Policy
• Monitor for Windows Shutdown or Logoff
• Mouse Drag and Highlight - Display Image
• Msi Get File Version
• OCR Support
• Open File Search from StartMenu
• Open MultiUser Files on a Network
• Parse HTML
• Pass Memory Variables to VB
• Passing Parameters from Javascript
• Print Formatted Image Files
• Pushing Elevated WinBatch Scripts to Users
• Query Excel Status Bar Txt
• Random Alpha Numeric Number
• Read Hardware Video BIOS
• Read Quote in INI File
• Read Statusbar Text from Browser
• Recursive directory name search
• Reduce Shape Point List
• Refresh Policy
• Regular Expression Question
• Release LAN IP Settings
• Remove HTML Tags
• Rename a Username without Admin Rights
• Reset IE Settings
• Resize and Place Dialog boxes with 2nd wbt
• Retain Quotation Marks in WB Command Lines
• Run Explorer in a Different Security Context
• Run from Current Location - Webpage
• Run PowerShell Command
• Run WinBatch From Webpage
• RunWithLogon Return to Local User Account
• Save Screen to a BMP File
• Script Minimized When Launched from Lotus Notes Email
• Script Windows Component Install
• Scripting the Group Policy Management Console
• Search for Folder Existence
• Send Control Break to a Window
• Server Connectivity
• Set Disk Volume Name
• Set Modified Date for a Directory
• Set USB Drives To Read Only
• Set Volume
• Show Desktop
• Sorting START menu Alphabetically
• Specify a Script to Run on Startup Shutdown Logon Logoff
• Start Program Only at Windows Shutdown
• Store Image in WBT Script
• Strip out Variable from WBERRORHANDLER Line
• Switch with a Variable Name
• Test
• Thoughts on Writing Faster Code
• Track an Incoming Fax
• Transferring info between WB and other programs
• Translate ANSI Sequences
• Traversing Network Neighborhood using AskFileName
• Turn File Sharing Off on Win95
• Uninstalling Software
• Unlock Workstation Trick
• Use Contents of One AskItemList Box within Another
• Use Global Varaible to tell Errorhandler to Ignore Specific Errors
• Using MS System Agent to Run a WBT File
• Validate WIL Variable Name
• Validating Password
• Various Ways to Download a File
• Verify Calling Parent Process
• Wait until no Input
• WAN IP Address
• Web Scraping
• Winbatch Findstr Equivalent
• Working with RAR Files
• Write to USB Port

Can't find the information you are looking for here? Then leave a message over on our WinBatch Tech Support Forum.

GINA Winlogon Desktop and Winbatch

 Keywords: GINA Winlogon Desktop IntControl 84 Winbatch 

---

Question:

Looking over the web boards I have found a few discussions dealing with the xxGINA.dll files and the WinLogon Desktop. However none of them seem to address my question.

It is well documented that Winbatch operates in the Application Desktop and the Windows lock screen (via CTRL+ALT+DEL or WINDOWS+L) operates in the Winlogon Desktop by having xxGINA.dll listen for the CTRL+ALT+DEL SAS event. Which is then passed to WinLogon with the current state of the Application Desktop.

Because of the Winlogon being a separate desktop from the Application desktop, is there any possible way to reference the window handles of the Winlogon desktop from the Application desktop? or is this a 'hard' boundary that Winbatch cannot pass through?

It is my understanding that Microsoft explicitly did not develop an API for interacting with this, probably for obvious reasons.

Second Question, if Winbatch cannot see the Winlogon desktop, would it be possible to have Winbatch trigger pass SAS events to either xxGINA.dll or Winlogon?

Answer:

As of Vista & newer, the GINA DLLs are obsolete and are no longer part of the O.S., so keep this in mind when looking at any solution that involves the installation of a custom-written GINA DLL. Products like PC Anywhere used to use a secondary GINA DLL to provide support for sending the SAS event.

There are a couple of issues associated with accessing the Winlogon desktop, the content of that desktop and interacting with application windows on that desktop. I'll cover the ones that come to mind as being most important.

WinXP w/FUS disabled and Win2K & older w/o Terminal Services installed in application server mode only support a single user session on the system, which is session #0 and is traditionally known as the "console" session.

On WinXP w/FUS disabled and Win2K servers w/Terminal Services installed in application server mode, session #0 is still the console session, but other non-zero user sessions may exist.

On Win2K3, Vista & newer, non-zero user sessions may exist, but session #0 is reserved for native NT services. On Vista & newer, even the physical console has a non-zero session #.

In each user session, there may be one or more "window stations", with the default window station being named "winsta0" in each user session. A window station has its own set of permissions applied to it.

Each desktop exists as a child of a window station. By default, the "winsta0" window station in each user session has both a "Default" desktop and a "Winlogon" desktop. Each desktop has its own set of permissions applied to it.

Each process running on the system has a primary access-token associated with it, which provides the identity of the user whom the process runs as. That access-token specifies the user session to which the process belongs, and thus dictates which window stations the process can attach to. When the CreateProcess() function is called to create a process, it can accept a pointer to a STARTUPINFO structure that can contain the name of a window station & desktop for the process to be associated with.

The first time that the main thread in a process makes a function call into the USER32 or GDI32 subsystems, the process is bound to a window station. The choice of window station will be the one specified when the process was created, or the default window station "winsta0". Once a process has been bound to a window station, all of the threads that can ever exist in that process will also be bound to the same window station.

Each thread in a process can be associated with a single desktop, and the thread will be bound to a desktop the first time that it creates a window or creates a window hook. The choice of desktop will be the one specified when the process was created, or the default default "Desktop". The thread will remain bound to the desktop for as long as it has any open window handles or any open window hooks. If the thread owns no open handles to objects on a desktop, the thread may switch which desktop it is bound to.

What does all this mean?

In a nutshell, WinBatch scripts run as processes. Unless the process that executes the WinBatch script is created via some low-level code that can call CreateProcess() directly, it will inherit the default window station & desktop of "winsta0\Default". This tech support database article [W17024 ] demonstrates calling CreateProcess() via the usage of binary buffers and the DllCall() function in WinBatch.

Once you've created process that has been told to attach to the "Winlogon" desktop, you need to understand that the process may still not be able to interact with that desktop.

There are only 2 ways to work around such a limitation... either escalate your privileges by creating the process with a privileged access-token or alter the permissions on the window station & desktop to be more permissive. There are, in fact, limits on the size of the permissions list for a window station & desktop, so you can't add an arbitrary # of additional permissions w/o rendering your window station & desktop inaccessible due to corrupted security settings. The wntAccess*() method in the Win32 Network extender are capable of get/set operations for the permissions on window stations & desktops, so it is possible that sufficiently privileged script could grant permissions for less privileged processes to access the "Winlogon" desktop, but doing so would introduce all sorts of additional security concerns.

The escalation solution is where you see native NT services getting involved. Prior to Vista, that method of escalation would work reliably since a native NT service could be configured to run as "Local System" and thus have the same privileges as the O.S. itself and all services would run in session #0, which was guaranteed to be the console session. However, as of Vista, services no longer have access to the interactive desktop, are confined to session #0 and the console is no longer associated with session #0. In effect, this escalation method has been made unusable on Vista & newer.

---

Article ID:   W17931

Filename:   GINA Winlogon Desktop and Winbatch .txt

File Created: 2014:07:18:09:51:38

Last Updated: 2014:07:18:09:51:38