Windows 11 Tricks

2024/04/19 Leave a comment

Below are some tricks I’ve run across to help Tweak Windows 11 to work the way you want it to (Like Win10 that is :)).

  1. Inital Setup of Windows 11 – the OOBE – (out of box experience) doesn’t provide you an option to setup the machine using local account & password. MS is forcing only to login with a Hotmail, outlook or msn account – this not ideal especially if you need to join your computer to a domain first. But there is an alternative to doing this:
    • Turn on pc and wait for Windows 11 to show the OOBE – out of box experience – At any time DO NOT connect to your wireless first.
      • If you do connect to internet, then best to do the following to disable the wi-fi adapter before continuing:
      • Click SHIFT + F10 key
      • at command prompt type: netsh int show int – will bring up list of network adapters. If connected is set by “Wi-Fi” or Ethernet, then use next command to disable it temporarily: Netsh int set int “Wi-Fi” disable (or “Ethernet” disable)
      • Follow next step to get the option to setup a local account.
    • Once at OOBE setup screen Do NOT click next; instead, hit the “Shift + F10 Key”.. this will open a command prompt window – black window.
    • At the prompt type:  OOBE\BYPASSNRO – then hit enter.  The computer will reboot automatically. 
    • After reboot, you can follow prompts along until you get to the “connect to wireless” page – Again Do not connect to any wifi at home/office. Instead click on: “I don’t have Internet” link at the bottom left of screen. Click NEXT.
    • On Next Screen, Click on the “Limited Setup or Continue with Limited Setup”.
    • From there it’ll ask you who is using the computer – just type: admin then set password
    • From there it’ll go through the paces to get you to a desktop where you can then connect to the internet and download the syncro tool so I can connect further.
      • Note if you disable either wi-fi or ethernet adapter from netsh command above, then open administrator command prompt and type: netsh int set int “Wi-Fi” enabled 
  3. Right-Click Menu Shortened list of options – Microsoft probably thought this was a good idea but in reality it’s more of a pain because the pictures are hard to remember what is what and you almost always need to click on the option to see more options :(.
    • Found after installing 7zip application that the right-click menu would hang every time you tried to use it. Reason is because 7zip adds to the menu and as a result Windows 11 Explorer hangs (one of the many reasons it hangs). The only way to fix the hang is remove 7zip and then perform the following command in Admin cmd prompt (or W11 Terminal).
    • Type/paste this in the command prompt:
      • reg.exe add “HKCU\Software\Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32” /f /ve
      • Afterwards the right-click menu looks like windows 10 again.
      • Can now re-install 7zip application and it will show the new options in the menu.
  4. OneDrive (either version hangs) – This hang contributes to the Win11 Explorer shell hanging too – so best way to fix this is to run the onedrive.exe with /reset:
    • C:\users\%userprofile%\appdata\local\microsoft\OneDrive\onedrive.exe /reset
    • the OneDrive System tray icons will disappear while they reset to default settings. Then you can reopen by searching in Start menu.
    • Another option discovered is to go to the Settings/Apps and remove the Windows 11 installed OneDrive version and then re-install the O365 OneDrive software.
  5. Library System folder has gone missing or been permanently deleted somehow – this could be in 10 or 11 – but recent troubles with OneDrive and OD4B caused Documents folder to disappear and thus had to recreate it. Found commands below to fix this problem – create in batch file:
    • @echo off
    • taskkill /f /im explorer.exe
    • timeout /t 2 /nobreak >nul
    • if not exist “%UserProfile%\Documents” mkdir “%UserProfile%\Documents”
    • reg add “HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders” /v “Personal” /t REG_SZ /d “C:\Users\%USERNAME%\Documents” /f
    • reg add “HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders” /v “{f42ee2d3-909f-4907-8871-4c22fc0bf756}” /t REG_EXPAND_SZ /d %%USERPROFILE%%”\Documents” /f
    • reg add “HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders” /v “Personal” /t REG_EXPAND_SZ /d %%USERPROFILE%%”\Documents” /f
    • attrib +r -s -h “%USERPROFILE%\Documents” /S /D
    • timeout /t 1 /nobreak >nul
    • start explorer.exe

Thats all for now! Will update as come across more items.

Categories: Consulting, Windows 11 Tags:

Win10 BSOD – DRIVER VERIFIER DETECTED VIOLATION

2024/04/27 Leave a comment

Everyone’s heart stops when this happens… Blue Screen of Death errors have stuck with us. Often they are caused by a driver failure or hardware faults.

Driver Verified Detection Violoation is brought on by a defective or outdated driver, an error in RAM and third by Driver Verifier running for no reason which causes “misfitted detections of drivers” causing the BSOD.

Recently I received this very same BSOD and immediately looked up ways to repair instead of rebuilding the OS again :(.

Search Results suggested to fix by checking out the RAM – doing a memory test (often found from OEM BIOS tools). Second is to run a virus scan – however if the OS doesn’t stay running between BSODs this won’t be an option.

Best option is to Get the Operating back to normal and stable! To do this you’ll need to boot int Safe Mode ( or Safe Mode with Networking) – Way to get there is to get into recovery boot and choose Troubleshoot:

Next – Advanced Options:

Next – Startup Settings

Next click Restart:

Next Screen will give you many options to boot pick either of the Safe Mode options and system will then reboot into Safe Mode or SM with networking – latter may give you options to run sfc /scannow and the DISM online mode health checks.

Once logged back into PC in Safe Mode.

Open Administrative Command prompt or Powershell

Type this to stop Verifier from running: C:\>Verifier /reset [OR: Verifier /bootmode resetonbootfailure]

It will prompt you to reboot and doing so will result in system booting properly back into Windows Operating System without further BSODs.

Now you can run Windows Updates and driver updates.

Also, recommend running from administrative cmd or psh prompt:

SFC /scannow;

DISM /Online /Cleanup-Image /CheckHealth

DISM /Online /Cleanup-Image /ScanHealth

DISM /Online /Cleanup-Image /RestoreHealth

Next is to run Verifier and check all existing drivers for any issues. Click “Windows” Key + ‘R’. In Open line type Verifier.

Click on first option to Create Standard Settings:

Click Next and choose first option: Automatically select unsigned Drivers”. Click, Next (it’ll show screen of any unsigned drivers.. Click Finish and it’ll prompt to reboot computer.

That should be it and your system should be fine moving forward.

Categories: Windows 10 Update Tags: ,

Link in Outlook email failed to open

2024/04/19 Leave a comment

Any link clicked on from within Outlook email app would fail with following errors

Somehow the file associations with any browser are now broken.

Figured this might be something to do with Outlook’s Advanced setting that sets as shown below

If you use Chrome or Firefox as your default browser, be sure to change above setting to Default Browser vs Microsoft Edge.

In the case of above errors, though the user had Edge as default browser so that wasn’t the problem.

Next looked at all the default app associations, File type associations, Protocol and finally by application and made sure everything was set to MSEDGE. Still received the errors.

Searched all over the web for a possible solution and while there were many suggesting the repair windows commands: sfc /scannow and the DISM /Online /Cleanup-Image /RestoreHealth but these didn’t resolve it either.

Checked registry locations under HKCR\ – checked many file extensions and matched to another working system and all checked out.

Finally found this link to a potential resolution that resolved the issue!

Copied the registry file and imported onto broken computer. Without a restart was able to resolve the problem- Yah!

Below is dump of the registry file you can download from the site above. 

Windows Registry Editor Version 5.00
[-HKEY_CLASSES_ROOT\MSEdgeHTM]
[-HKEY_CURRENT_USER\Software\Classes\MSEdgeHTM]

[HKEY_CLASSES_ROOT\MSEdgeHTM]
@="Microsoft Edge HTML Document"
"AppUserModelId"="MSEdge"

[HKEY_CLASSES_ROOT\MSEdgeHTM\Application]
"AppUserModelId"="MSEdge"
"ApplicationIcon"="C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe,0"
"ApplicationName"="Microsoft Edge"
"ApplicationDescription"="Browse the web"
"ApplicationCompany"="Microsoft Corporation"

[HKEY_CLASSES_ROOT\MSEdgeHTM\DefaultIcon]
@="C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe,0"

[HKEY_CLASSES_ROOT\MSEdgeHTM\shell\open\command]
@="\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" --single-argument %1"

[HKEY_CLASSES_ROOT\MSEdgeHTM\shell\runas]
"ProgrammaticAccessOnly"=""

[HKEY_CLASSES_ROOT\MSEdgeHTM\shell\runas\command]
@="\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" --do-not-de-elevate --single-argument %1"

[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]

[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]

Running above completely resolve the issue of clicking any links within email and have it open browser to the link.

Hope this helps! Till next time.

Categories: Consulting

Adobe (Pro) Fill&Sign Fails with Unknown Error

2024/04/19 Leave a comment

Issue is Adobe Acrobat Pro – opening a PDF file – User could fill out but other people could not sign the document (PDF) within Adobe.  

Error message when trying to sign the document after filling out the form: Fill & Sign – ‘The operation failed because Adobe Acrobat encountered an unknown error.’  – Yep that’s helpful – NOT!

Found link to help resolve this problem – not easily found however:

Link: https://community.adobe.com/t5/acrobat-reader-discussions/fill-sign-the-operation-failed-because-adobe-acrobat-encountered-an-unknown-error/td-p/9189189/page/2

Followed steps  below to resolve:

  1. Click on the “Protect” tool in Adobe Acrobat Pro DC.
  2. Then at top of the application, click: “Remove Hidden Information”. 
  3. Click on the “Remove” button that shows up on the left side of the screen and you can watch as it removes “Metadata, Bookmarks, Comments and markups and Overlapping objects”. 
  4. Once this hidden info is removed click on “Close”. 

Afterwards user is able to click on the “Fill & Sign” button and add signature.

Categories: Consulting, Windows 11 Tags:

Recyle Bin Corrupted from Folder Redirection Cached files & Restoring Files from Cache Store

2024/02/16 Leave a comment

Recent issue with client started with pop-ups about Recycle Bin corruption message: Recycle Bin “\\servername\folder redirection\<username>\Documents” is corrupted, would you like to repair – Options Yes or No – neither of which get rid of the issue.

Searched to find solutions and tried these things:

  1. delete $Recycle.Bin folder on Drive(s) on PC> rd /q /s $Recycle.Bin. Reboot computer afterwards – Windows rebuilds the folder on drive(s).
  2. Change Locations of the redirected folders for the user – right-click on each folder, properties… Then click on Location Tab. Options here – if server still there and functional – change to move to local system: c:\users\<username>\Documents for example. If Server is not available (like server crashed and burned) then click “Restore Default” button. Click on Okay and then it may ask to try and move from old location – Click NO. Documents folder under users account may be empty if changed from out of commission server. This is okay, we’ll get files back in a bit.
  3. Tried running System file checker repair: SFC /Scannow – while this almost always finds things to repair, it doesn’t solve recycle bin issue.

After all above options didn’t work, finally came down to the following to make the Recycle Bin message stop and then recover/restore “offline cached redirected files” from the workstation.

  1. Opened Control Panel
  2. Open Sync Center
  3. Click on “Manage Offline Files”
  4. New Window opens – Click on topmost button: “Disable Offline Files”; Reboot computer.
  5. This method will stop the recycle bin corrupted errors for good.

Now to restore the cached Folder Redirection files for the user(s).

  1. Download and extract file to C:\windows folder PSEXEC.exe from this website.
  2. open Administrator command prompt on computer.
  3. Now we’re going to open another command prompt as the System account:
  4. type psexec.exe -i -s cmd.exe (-i > interactive, -s > as system account)
  5. This opens another Admin command prompt as the NT Authority\System account.
  6. This account has full access to the folder redirected folders under C:\windows\csc.
  7. With the System command prompt change directory to:
    • cd “C:\Windows\CSC\v2.0.6\namespace\<servername>\Folder Redirection”
  8. Type “dir” and return – will show you list of user names/profiles.
  9. type cd <username> ; from here run another dir and it’ll show list of folders (for example: Desktop, Documents, Music, & Videos).
  10. Now we’re going to copy all these files to another more accessible location and then later user can decide if they want to keep the files:
    • from <username> in above path type: Xcopy Documents\*.* /s /d /y c:\temp\<username>\Documents\*.*. Repeat for each folder listed under <username>.
    • When all done check to make sure you have all the files.
    • From there type cd.. & return
    • Now to delete the users profile folder: rd /q /s <username> – this will remove the cached folder for the user and any “recycle bin corruption” will disappear because there is no longer a redirected cached folder for the user.

Note: I did use a program called TreeSizeFree.exe to see/determine where large files were located – can also use this to compare folder sizes after performing the copy above.

Good luck and comment with any questions or updates!

Cheers

Categories: Consulting, Folder Redirection, Recycle Bin Corrupted, Windows Server Essentials

Datto RMM doesn’t remove Bitdefender from Antivirus Product list after it’s uninstalled.

2024/01/20 Leave a comment

Ran into an issue where after removing/uninstalling Bitdefender from the Bitdefender GravityZone console and or by uninstalling from “programs and features” app, it still showed up in the Antivirus Product list on the device in the RMM console :(. See picture below.

I figured maybe this just might take a while to remove – nope… waited hours and pushed audits of the devices in question – no luck. 

The only thing that would clear this out was by uninstalling the Datto AEM Agent, Deleted from console and then re-installing… well this is unreasonable from a MSP usability stand point. 

Went digging further at Kaseya’s support page regarding the Antivirus Detection configurations and then the Antivirus status Override file which could be changed/deleted to clear out the bad record. From there I found that the current Antivirus Product was stored in the Antivirus.json file located here: C:\Programdata\CentraStage\AEMAgent. 

Deleting the file – after Bitdefender is uninstalled, returned the Antivirus Product back to just Windows Defender Antivirus

I created a script in the RMM to uninstall Bitdefender, delete some registry keys and then delete the json file to clear/reset the RMM to report the correct Antivirus Product left running on the System.

Batch Script includes:

BEST_uninstallTool.exe /bruteForce /noWait
reg delete hkcu\software\bitdefender /f
reg delete hklm\software\bitdefender /f
reg delete hku.default\software\Bitdefender /f

del C:\ProgramData\CentraStage\AEMAgent\DataLog\aemagent.log
del C:\ProgramData\CentraStage\AEMAgent\antivirus.json

After running this the Antivirus Product for the device shows Windows Defender Antivirus

Hope this helps MSPs using Datto RMM and needing to clear out the Antivirus that’s no longer installed on the computers.

Cheers!

Categories: Consulting, Datto RMM, Remote Monitoring

Windows 10 KB5034441 Security Update Fails With 0x80070643 Errors

2024/01/13 Leave a comment

Another snafu by Microsoft causing windows update errors on Windows 10 machines – DOH!

This error happens to any Windows 10 machines where the Recovery partition is too small to perform the install. 

Found a youtube video how to fix but had to make the recovery partition >1GB in order to apply the patch properly. 

On Windows 10 system that has this problem open an Admin command prompt first.

Type following commands on PC:

  1. reagentc /info

2. reagentc /disable - Should reply with REAGENTC.EXE: operation successful

3. diskpart

4. List disk – should show disk 0 (typically).

5. Select disk 0

6. List Part (short for partition)

7. Select partition of the primary OS – could be 2,3,4… in case of picture below: sel part 2

8. Now time to shrink partition 2 (Primary OS) by 550mb – reason, the patch requires at least 1GB to install propery. Type: Shrink desired=550 minimum=550

Wait till this completes with: Diskpart successfully shrunk the volume by: 550 MB

Now select Recovery partition: Select part 3 (from picture above).

9. Delete recovery partition: delete partition override

10. need to check to see if Disk is GPT or MBR type: List disk

11. If GPT column has a * under it, the disk is formatted GPT, if it does not, then it’s MBR.

12. For MBR disks type the following:

  • Create part primary id=27
  • format quick fs=ntfs label=”Recovery”
  • exit – exit diskpart
  • reagentc /enable

13. If disk is GPT, type following to create Recovery partition:

  • create partition primary id=de94bba4-06d1-4d40-a16a-bfd50179d6ac
  • gpt attributes =0x8000000000000001
  • format quick fs=ntfs label=”Recovery”
  • exit – exit diskpart
  • reagentc /enable

Now you can run Windows update and the patch will install onto the PC.

Note, after reboot might get “No boot disk found” error message. Shutdown and reboot again and it should recover. I still can’t believe MSFT messed the updates again!!

After reading post from “AskWoody” about this issue, I tried their blockpatch tools – Namely the WUSHOWHIDE.DIAGCAB from Microsoft – running this tool, click Advanced -Uncheck box to fix automatically. Then click on Hide option to Hide the patch you want to hide from Windows system. In this case the KB5034441. If you run it again with same steps – click on “Show Hidden” to show that the above patch is hidden and won’t be installed. 

While this was indeed great to read about, there had to be a way to block the patch via script – namely Powershell. Below are commands I found in link above to run from powershell command shell:

  • Set-ExecutionPolicy Unrestricted -Force (Found that below will work without setting Exec policy).
  • Install-Module -name PSWindowsUpdate -Force
  • Hide-WindowsUpdate -KBArticleID KB5034441 -AcceptAll

The output below indicates the KB is Hidden by the ‘H’ in Status Column:
ComputerName Status   KB  Size Title
<PCNAME>   D–H– KB5034441 23MB 2024-01 Security Update for Windows 10 Version 22H2 for x64-based Systems

Cheers! Comments Welcome!

Categories: Consulting, Windows 10 Update

Outlook 365 Error: We Can’t connect you, HTTP 404

2023/12/12 Leave a comment

Client had issue where outlook refused to open because of the error below:

We can’t connect you.
Looks like we can’t connect to one our our services right now. Please try again later, or contact your helpdesk if the issue persists.
 
HTTP 404
login.microsoftonline.com

Office Outlook 365, Windows 10 machine. 

User could access their O365 mailbox via website (outlook.office365.com) but application would not open.

Found this reference site that explained what didn’t work: https://answers.microsoft.com/en-us/outlook_com/forum/all/fix-error-connecting-outlook-to-m365-http-404/bef8d6c5-a5c4-498b-ac72-bc81defb8256

I recalled I had something like this to force MFA for outlook, and just added two more items from above link to get outlook to open/work properly. 

Windows Registry Editor Version 5.00
    
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
    
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
    
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001
    
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
"SchUseStrongCrypto"=dword:00000001

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\AutoDiscover]
"ExcludeHttpsRootDomain"=dword:00000001
"PreferLocalXML"=dword:00000000
"ExcludeHttpRedirect"=dword:00000000
"ExcludeHttpsAutodiscoverDomain"=dword:00000001
"ExcludeScpLookup"=dword:00000001
"ExcludeSrvRecord"=dword:00000001
"ExcludeExplicitO365Endpoint"=dword:00000001

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Identity]
"EnableADAL"=dword:00000001
"Version"=dword:00000001
"DisableADALatopWAMOverride"=dword:00000001
"DisableAADWAM"=dword:00000001

[HKEY_CURRENT_USER\Software\Microsoft\Exchange]
"AlwaysUseMSOAuthForAutoDiscover"=dword:00000001

Update: 2/10/2024 - Received another error while trying to Activate Office 365 on new PC. Error code 80090034 - Your computer's Trusted Platform Module has malfunctioned. This is similar to the other article with error 80090016 - where you open Device Manager and uninstall the TPM 2.0 and reboot. 
This didn't work for the 80090034. Instead had to add another registry item to the above registry file: 


[HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Protect\Providers\df9d8cd0-1501-11d1-8c7a-00c04fc297eb]

"ProtectionPolicy"=dword:00000001



The section in bold made outlook work again but everything else is good to add as well when dealing with outlook, modern auth and autodiscover issues. 

Cheers!
Categories: MS Office Solutions, Office 365 Tags: , , ,

This Site can’t provide a secure connection

2023/11/28 Leave a comment

This happened to a client recently who had just signed up with Comcast Business account for their new office. After getting everything all set up, tried accessing several websites and found some worked while others did not with the error message “ERR_SSL_PROTOCOL_ERROR” in the picture below:

Tried restarting the comcast modem – no change; power cycling modem – no change.

Contacted Comcast (ISP) to speak with a Technician, found out that Comcast Business accounts are automatically enabling their Secure Firewall service that blocks certain sites and causes this error. Doh!!

Apparently to get this service disabled, the Comcast Technician has to do it from there end. There is nothing in the Firewall config of the comcast modem to disable it by the customer.

Cheers!

Categories: Active Directory Tags: , ,

Office 365 – Something went wrong [1200]

2023/11/28 Leave a comment

This is a different error message from Microsoft after an apparent corruption in the logged in user’s profile.

Prior to this received the TPM Error code 80090016 – See this blog post for correcting this one: https://jvhconsulting.com/2022/10/20/error-code-80090016-tpm-has-malfunctioned/

Searching the web for answers found a few links to do the following:

  1. https://www.thewindowsclub.com/microsoft-sign-in-error-1200-something-went-wrong – lists a number of things to do
    • clear browser cache – doesn’t do anything but lose all the browsing history and important things
    • Delete Credentials folder – from users profile\appdata\local\microsoft\Credentials – While I didn’t try this, don’t think it would help.
    • Perform a Clean boot – use msconfig.exe to set next startup to be clean boot – nothing in startup items.
    • Open Credential Manager from Control Panel and clear out the web credentials for office – didn’t work.
    • Delete the Identity Key in registry here: HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
      • this didn’t work either.
  2. The Solution from a few searched sites, is to go to Settings – Accounts – Access Work or School selectionon the right side, click on each of the accounts and choose Disconnect. I believe this is the answer to this error code. Thereafter you can open Outlook, sign in again to each of the email accounts and it should work fine from there.

Cheers!

Categories: Active Directory Tags: ,