Using FSRM on Windows File Server to Prevent Ransomware

Posted on November 8, 2016 · Posted in Windows Server 2012 R2
StartRansomwareBlockSmb.cmd

In this article, we’ll consider the methods of using File Server Resource Manager (FSRM) features on a file server running Windows Server 2012 R2 to detect and block ransomware. In particular, we’ll tell how to install FSRM service on the file server, configure file screening, and in the case ransomware.. read more

How to Run SysPrep on Upgraded Windows

Posted on November 3, 2016 · Posted in Windows 10
Sysprep was not able to validate your Windows installation

I have faced a strange error when trying to run SysPrep on the installed system, which is going to be used to create a reference image to deploy Windows 10 using System Center Configuration Manager 2012 R2. After starting SysPrep, the following error appears:

Auditing Windows Server: Common mistakes and how to avoid them

Posted on November 2, 2016 · Posted in Windows Server 2012
gpo audit policies: object access

Maintaining a consistent and comprehensive auditing strategy for the Windows Server is an important part of any organization’s security plan. IT administrators have several choices at their disposal when it comes to auditing Windows Server; they can either deploy third-party solutions or make use of native methods. Whichever method you.. read more

How to Run File Explorer Elevated

Posted on October 25, 2016 · Posted in Windows Server 2012 R2
elevated explorer.exe in task manager

When working with Windows File Explorer on the server as local administrator, you often have to open system directories, user profiles or edit protected system files. When trying to open such directory/file in Windows Explorer in the current context, the UAC warning appears prompting to grant access and elevate privileges.

Granting Remote Access on SCManager to Non-admin Users

Posted on October 21, 2016 · Posted in Windows Server 2012 R2
sc query on remote computer

Let’s consider the peculiarities of granting remote access permission to enumerate the list of services running on a remote server to domain users without rights of local administrators. In fact, the task comes down to providing remote connection to the Service Control Manager (SCManager).

How to Downgrade Windows 10 and Rollback to Windows 7 or 8.1

Posted on October 19, 2016 · Posted in Windows 10
hidden folders Windows.old and $WINDOWS.~BT

After the installation of Windows 10 over the installed system (in case of upgrade from Windows 7 or Windows 8.1), a user can rollback to the previous OS version if the new OS is unstable or simply don’t like. In this article we’ll show how to roll back the installation.. read more

Enable Remote Access to Admin Shares in WorkGroup

Posted on October 17, 2016 · Posted in Windows 10
Windows 10: Admin Shares Don't Work in WorkGroup

I have come across a problem that I wasn’t able to connect to default $Admin  shares on a computer running Windows 10 remotely from the account being a member of the Local Administrators group. At the same time, I could access them without any troubles using  built-in local Administrator account.. read more

How to Convert SID to Username and Vice Versa

Posted on October 14, 2016 · Posted in Active Directory
whoami /user

In Windows environment, each domain and local user, a group or other security objects are assigned a unique identifier — Security Identifier or SID. It is an SID, but not the user name, that is used to control access to different resources: network shares, registry keys, file system objects, etc… read more

How to Change Default Permissions for New GPOs

Posted on October 12, 2016 · Posted in Active Directory, Group Policies
new gpo permission

Getting back to the problems related to the break of GPO processing after the installation of the updates from MS16-072 (KB3163622) security bulletin, I’d like to tell about another important thing. As you remember, in order to make GPO Security Filtering work correctly after you install this update on clients,.. read more

How to Rebuild Corrupted Icon Cache in Windows 10

Posted on October 10, 2016 · Posted in Windows 10
broken icon cache in Windows 10

When icons of different applications and file types are displayed in Windows Explorer, instead of addressing the original files with icons, the system gets copies of the icon images from special files containing icon cache. Due to the fact that the system doesn’t need to load original icon files, the.. read more