Windows 10 not Booting Up after Joining to the Domain

We have encountered a strange problem where after joining a Windows 10 PC to the domain, it won’t boot up.  It was stuck on a black screen where you can see the circle revolving. You will feel like it’s going to boot up but eventually, it won’t and the circle will keep on revolving. We figured that the PC won’t boot up in Safe Mode or even after disconnecting the network cable.After Resetting the OS multiple times, changing the Hardware, OS installation disk and even the Hardware Vendor, all we will see is the rotating dots for Windows logo after it has been joined to the domain. After applying different permutations and combinations, we have narrowed it down to the Default Domain Policy. How did we find out it’s the Default Domain Policy: We moved the PC to a Test OU and applied Block Inheritance, however, the issue persisted. So we ended up moving the user as well to the Test OU, so there are no policies applied to the user or the computer. And voila, the issue is resolved. Moving the user and the PC back and forth and applying the GPO one by one, narrowed it down to the Default Domain Policy. We did try to isolate the issue to specific settings in the Default Domain Policy, however, it was too time to consume. So the solution: Rebuild the Default Domain Policy from the scratch via dcgpofix command and the issue is resolved. How to rebuild the Default Domain Policy via dcgpofix ?Open the administrative command prompt and type the following command and hit Enter. Dcgpofix /ignoreschema...

Disable Windows Script Host via Group Policy Object

Windows Script Host or WSH, is a Microsoft technology that provides scripting abilities like batch files, but includes many more features. Such Scripts can be run directly from the desktop by double-clicking a script file, or from a command prompt. It can be run from either the protected-mode Windows-based host wscript.exe, or the real-mode command shell-based host cscript.exe.Several “HTML malware” have been reported to use WSH objects as a result of which, those who do not require this feature, tend to disable it. But disabling WSH, will prevent users from running any scripts, including VBScript and JScript scripts, that rely on this technology – and some software may require this feature to be enabled. Windows applications and processes may be automated using a script in Windows Script Host. Viruses and malware could be written to exploit this ability.VBS scripts are used by malware authors either to cause disruption in an environment or to run a process that will download more advanced malware. The ILOVEYOU VBS malware caused a huge amount of damage back in the early 2000’s. Nowadays most VBS scripts causing more irritation like hiding folders, moving files etc. We can disable them completely by disabling the Windows Script Host engine which is what. VBS files use to run. This can be very much useful for securing your environment against Cryptolocker and Ransomware. Please follow the steps below in order to strengthen your environment by disabling the Windows Script Host via Group Policy Object:A. Create a new GPO on the Domain Controller and name it as: SecureEnvironment Open Group Policy Management Console.Expand the forest.Click on the domain.Right click on the Group...

Disable Macros for all Office Apps via Group Policy Management Console

Office Macros are basically small bits of code written in Visual Basic (VBA), that allow you to carry out select repetitive tasks. They are useful by themselves, but many a times malware writers misuse this functionality to introduce malware into your computer system. A Macro virus is a virus that takes advantage of Macros that run in Microsoft Office applications such as the Microsoft Word, PowerPoint or Excel. Cyber criminals send you a macro-infested payload or a file which will later on download a malicious script, via email and use a subject line that interests or provokes you into opening the document. When you open the document, a macro runs to execute whatever the task the criminal wants. It’s time to secure Microsoft Office. Please follow the steps below in order to strengthen your environment by disabling Macros for all Office Apps via Group Policy Management Console.   Create a new GPO on the Domain Controller and name it as: SecureEnvironment Open Group Policy Management Console. Expand the forest. Click on the domain. Right click on the Group Policy Objects and then click on New. Enter its name, here I am using SecureEnvironment. Download all the ADM Template (X86) files for the required version of Office from Microsoft official website. Extract the downloaded files to a convenient folder accessible from the Server. Go to extracted folder location and then ADMX. For e.g.: C:\ADMTemplates\ADMX Copy the required office apps .admx files and the language folder. e.g.: For Excel and English you need to copy en-us folder and excel.admx file. Go to the following location i.e. <Domain.Local>\Sysvol\<Domain.local>\Policies and create a new folder naming PolicyDefinitions. Copy all...

System Restore Error- Access is denied- (0x8007005)

Follow me Recently a client came to me with an issue related to restore point. Everytime he tried to create a restore point he gets an error message saying Access is denied (0x8007005). So if you are also facing the same error, here is a step by step solution to deal with it. First and foremost is to check the Anti- Viruses, if you have some antivirus like Norton or Symantec then try disabling it and try to create a restore point again. Still not able to create a restore point, check if Volume shadow copy service is running or not and also if its status is Automatic or not. What service was disabled? The service should be running and its status should stay Automatic. Still cannot create restore point. Luckily there is another thing that worked for few users, try turning off system protection and then turning it back on. It’s simple, just go to My Computer -> system properties -> on the right do you see “system protection”, click on it -> in the protection settings, select the C: and click configure (just below that box). A new dialog box will open in front of you, select the radio button saying “disable system protection” and select OK. OK again. Let’s try to create a restore point again, still giving an error. No problem lets move to the next step. Clean Booting, it has been noticed by many people that sometimes Clean booting does help. for clean booting, Go the the command prompt, type msconfig. A new dialog box will open in front of you. Go to startups tab, uncheck all...

Soonr: Creating backup of various PC folders using Soonr Agent

Soonr Workplace is the leading online file sharing and collaboration service that empowers business teams to be more productive and do business faster through secure access to any type of business content, anywhere, using any device. Soonr Workplace is an all-in-one solution for: Synchronising files between devices Project Collaboration Continuous background file backup Remote File Access In addition to Soonr’s core functionality as a file sync and collaboration service, Soonr can be used to backup data on your computer, thereby ensuring that it is safe from loss. Should your machine break or get stolen, you will always have the backups available to restore your data. Unlike the core sync aspect, backups are not shared. Step 1: Go to the System Tray, Right click the Soonr Workplace icon   in the system tray. Step 2: Click on Settings>Backup Settings Step 3: Select the folder to be backed up and check whether you have sufficient quota to backup your selections. Step 4: Validate the Folder name and Path Step 5: Process of back up will start and you can check it in the System Tray. Step 6: You will be able to check the progress of Backup once  you will right click the Soonr Workplace icon   in the system tray, and then click on Progress. Step 7: Backup will be completed depending on the file size. Step 8: To see the Backed up files, Sign In to your Soonr web portal. https://vip.soonr.com. User name is your email address and password you should know Step 9: Click on the Devices and then click on the device you created backup on. Step 11: You will be able to...