From 89b1dafd41ae7aa9bbfcc8d2dfe1b2f6f5fab680 Mon Sep 17 00:00:00 2001
From: sandude-ms <robsmi_ms@hotmail.com>
Date: Wed, 27 Jan 2021 09:21:23 -0500
Subject: [PATCH 1/5] Added OneDrive issue to Readme

---
 README.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/README.md b/README.md
index 520d71c..44e6da5 100644
--- a/README.md
+++ b/README.md
@@ -132,6 +132,18 @@ There have been several reports of problems with the Start Menu after applying t
 2. Re-run the optimization toolset, with the appropriate '-WindowsVersion' parameter (e.g. 2004).
 > **[NOTE]** Not only will this repair the Start Menu in some cases, there are a few settings that are specific to the specific build that may not have been previously applied. 
 
+# OneDrive local policy setting prevents automatic OneDrive sign-in (01/27/2021)
+
+There is a default setting for OneDrive set in this tool, with these details:  
+`Computer Configuration\Administrative Templates\Windows Components\OneDrive`  
+`"Prevent OneDrive from generating network traffic until the user signs in to OneDrive"`  
+Default state: Not Configured  
+Optimization tool state: Enabled  
+
+There was another issue related to this setting also reported recently.  Some of the Office apps would "hang" for several or more seconds, until OneDrive sync was complete.  This could be related to this setting.  _Therefore, we are going to revert this setting, in this tool, to the default state of `"not configured"`_.
+
+This particular policy setting is actually a preference.  You can confirm this by noting the "down arrow" overlay on the setting icon.  A good way to revert the setting would be to change the setting back to default with group policy.  If you had to do this for each user, the process could be more involved.
+
 # Note on reinstalling Appx Packages
 If you find that you have removed and appx package and now need it back, the easiest way is to either open up the Microsoft Store app and search for the application, or open up the AppxPackages.json file, search for the application, and follow the link provided in the URL section.  In order to install this though, you might need to re-enable the **InstallService** "Microsoft Store install service" or you might get an error when trying to reinstall.
 

From 5c7af0c014a80db562ca3986613f4f9568ab1902 Mon Sep 17 00:00:00 2001
From: sandude-ms <robsmi_ms@hotmail.com>
Date: Wed, 27 Jan 2021 09:27:17 -0500
Subject: [PATCH 2/5] Updated OneDrive setting in LGPO settings

---
 2009/LGPO/Bkupinfo.xml                        |   2 +-
 .../microsoft/windows nt/Audit/audit.csv      |  64 ++++++++++++++++++
 .../microsoft/windows nt/SecEdit/GptTmpl.inf  | Bin 0 -> 16356 bytes
 3 files changed, 65 insertions(+), 1 deletion(-)
 create mode 100644 2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv
 create mode 100644 2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf

diff --git a/2009/LGPO/Bkupinfo.xml b/2009/LGPO/Bkupinfo.xml
index bf6c22f..296c201 100644
--- a/2009/LGPO/Bkupinfo.xml
+++ b/2009/LGPO/Bkupinfo.xml
@@ -1 +1 @@
-<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{FACCA114-6E57-4027-AB08-D891F66A4A24}]]></GPOGuid><GPODomain><![CDATA[contoso.test]]></GPODomain><GPODomainGuid><![CDATA[{8d345ac4-636f-4d69-8650-335cb5d903a9}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.contoso.test]]></GPODomainController><BackupTime><![CDATA[2020-08-14T15:06:07]]></BackupTime><ID><![CDATA[{07BDCD6A-3F72-473C-82B9-67BB69DBE54D}]]></ID><Comment><![CDATA[Backup GPO created by LGPO.exe]]></Comment><GPODisplayName><![CDATA[Local Policy Export]]></GPODisplayName></BackupInst>
\ No newline at end of file
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{FACCA114-6E57-4027-AB08-D891F66A4A24}]]></GPOGuid><GPODomain><![CDATA[contoso.test]]></GPODomain><GPODomainGuid><![CDATA[{8d345ac4-636f-4d69-8650-335cb5d903a9}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.contoso.test]]></GPODomainController><BackupTime><![CDATA[2021-01-27T14:00:47]]></BackupTime><ID><![CDATA[{07BDCD6A-3F72-473C-82B9-67BB69DBE54D}]]></ID><Comment><![CDATA[Backup GPO created by LGPO.exe]]></Comment><GPODisplayName><![CDATA[Local Policy Export]]></GPODisplayName></BackupInst>
\ No newline at end of file
diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv b/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv
new file mode 100644
index 0000000..c04a8ef
--- /dev/null
+++ b/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv	
@@ -0,0 +1,64 @@
+Machine Name,Policy Target,Subcategory,Subcategory GUID,Inclusion Setting,Exclusion Setting,Setting Value
+WIN-52UM0A3F81E,System,IPsec Driver,{0CCE9213-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,System Integrity,{0CCE9212-69AE-11D9-BED3-505054503030},Success and Failure,,3
+WIN-52UM0A3F81E,System,Security System Extension,{0CCE9211-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Security State Change,{0CCE9210-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Other System Events,{0CCE9214-69AE-11D9-BED3-505054503030},Success and Failure,,3
+WIN-52UM0A3F81E,System,Group Membership,{0CCE9249-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,User / Device Claims,{0CCE9247-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Network Policy Server,{0CCE9243-69AE-11D9-BED3-505054503030},Success and Failure,,3
+WIN-52UM0A3F81E,System,Other Logon/Logoff Events,{0CCE921C-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Special Logon,{0CCE921B-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,IPsec Extended Mode,{0CCE921A-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,IPsec Quick Mode,{0CCE9219-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,IPsec Main Mode,{0CCE9218-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Account Lockout,{0CCE9217-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Logoff,{0CCE9216-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Logon,{0CCE9215-69AE-11D9-BED3-505054503030},Success and Failure,,3
+WIN-52UM0A3F81E,System,Handle Manipulation,{0CCE9223-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Central Policy Staging,{0CCE9246-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Removable Storage,{0CCE9245-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Detailed File Share,{0CCE9244-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Other Object Access Events,{0CCE9227-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Filtering Platform Connection,{0CCE9226-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Filtering Platform Packet Drop,{0CCE9225-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,File Share,{0CCE9224-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Application Generated,{0CCE9222-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Certification Services,{0CCE9221-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,SAM,{0CCE9220-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Kernel Object,{0CCE921F-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Registry,{0CCE921E-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,File System,{0CCE921D-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Other Privilege Use Events,{0CCE922A-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Non Sensitive Privilege Use,{0CCE9229-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Sensitive Privilege Use,{0CCE9228-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,RPC Events,{0CCE922E-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Token Right Adjusted Events,{0CCE924A-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Process Creation,{0CCE922B-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Process Termination,{0CCE922C-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Plug and Play Events,{0CCE9248-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,DPAPI Activity,{0CCE922D-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Other Policy Change Events,{0CCE9234-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Authentication Policy Change,{0CCE9230-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Audit Policy Change,{0CCE922F-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Filtering Platform Policy Change,{0CCE9233-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Authorization Policy Change,{0CCE9231-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,MPSSVC Rule-Level Policy Change,{0CCE9232-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Other Account Management Events,{0CCE923A-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Application Group Management,{0CCE9239-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Distribution Group Management,{0CCE9238-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Security Group Management,{0CCE9237-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Computer Account Management,{0CCE9236-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,User Account Management,{0CCE9235-69AE-11D9-BED3-505054503030},Success,,1
+WIN-52UM0A3F81E,System,Directory Service Replication,{0CCE923D-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Directory Service Access,{0CCE923B-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Detailed Directory Service Replication,{0CCE923E-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Directory Service Changes,{0CCE923C-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Other Account Logon Events,{0CCE9241-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Kerberos Service Ticket Operations,{0CCE9240-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Credential Validation,{0CCE923F-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,System,Kerberos Authentication Service,{0CCE9242-69AE-11D9-BED3-505054503030},No Auditing,,0
+WIN-52UM0A3F81E,,Option:CrashOnAuditFail,,Disabled,,0
+WIN-52UM0A3F81E,,Option:FullPrivilegeAuditing,,Disabled,,0
+WIN-52UM0A3F81E,,Option:AuditBaseObjects,,Disabled,,0
+WIN-52UM0A3F81E,,Option:AuditBaseDirectories,,Disabled,,0
diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000000000000000000000000000000000000..c3f743404031443d1d8515620adc734a145653d9
GIT binary patch
literal 16356
zcmdU$TTdHF7RT#(rTq>lny1x7B5}-29(Z6O7qr}F!Z6a}(THF$-hg3kvkCLzXZQcB
z(?wM`-F9QQ4J(AfUAO-^b?#OD-#?GtFK*!a?$lkot~+zTxxc!<6rQcSJGG2_%dz{U
zZzDI>lPkC4HZ=0ow~n&0yPAy|uiUME58R1*kK9+yKhz2vuBYBBZe72te#Tw(_*Sd`
z8}~XJF=>Sz%|Fm8V|S5Tr-)=zh_2j?yHtPHAB!%-^~$eO?Eg`Hpc^{w#D%{5qd>`y
z+D_dUecr0y-$hr~vC6IRjB{9i*2sVBd0%s#ImY$$J8*~k+!XE;Pr=y(?xlQtuf9Xi
z`!N38ox5K(8u~w~^;YfgMB7caPC9x|y}oKUy5fOx6WWGa*(lu8e^=^bV_r<?`NDI{
z=KG*Ek(9A3j*l(Yf7A2*L@OR@#5av7@;gPlBYtn_XW+SXCuC4Jx?cqjT#NI!qBR}&
zP9sj-XTMgY)nqomFSh4t|A@G(zsc^g`1>E>xBcDF`dx8zoM}S*p6W~-G0I_$y~BPE
zlG&^J?u)vA3BjpWO?5HlLY(<P{O${J-*W^_{6$<0yKFS2y|2{|+i;hY%JRAMTtchi
zeNo%f*@xP*U^@=I?4dnKW3PfUTV4*L#i@fNax?9H?9joURx`Or_m714GLvAlgS+DC
zrgUjrlJ?GZwEDGlY%I+|a?kVxYj>*uuQiXgb)<vP(AD>^db*;qhw8bhnTLK9(sHEH
zL$&tRYv5--(^KTP<B?&Hkt}QtHe}%E$5w%Y{bn|^T39^#UdpPzao^wD)#r+R>?yjE
z79%6wCqiwzbSd7N?PZ5f#8>QRH?hehkJfDXx_c%5zR>5YKJk>xlaPmaqX)o;Lkap5
z<^5@-;UUhVWsg4TPP&375ig+ihPeIYoc$zDVju7`Xx6^;a-8XEkbx#8V48I}5Dv4%
zeW4k78xW%~Mw^8&PlT1X*oG+N%*PYheBy=Z1)Jve@@O!hHO!=?)tI!*OTm_SJd!+H
zys;@>Z#8b)=EsPnjD-xWM87BUFgyCh4+hSL=&flBGB5fxKHC-@V8&<T7l)z=A8N6X
z`BlSjv0W3Ex=H*y;`T-+AI}qEj5CN6w}lo<PF^*7*0>ET(lC-gB%itQnN?3721$9&
zQhg-7918QTmuqrNIQ~4PnYgp(aqfx7pd^|nihAfRn~Rp_)xmPqAq!o1KPbX$Dzcjw
zYwF4OW$#jr%**$4vvfpIF+R=5PtE2i^YZwU>>2eM%hv`zd&9<29~dt%nw}RoF+Z4z
z`H8u!F+U&gVi|T{xUp(yNi<3XOZ}0$T2GYGPKJvOf1JI37%NZD(aEV#l-UzSurG#X
z+an@c>Z^^&n~c39)JTTa+05!$|1>(8meuB?_p~x#u{^anVtzD!oM8fqJ?%&?i8Kw1
z)tsm|j?_D?2u<T%Qz$lti`6f*`oQzYFum7PYE6@OuqhPz_<KwIqryOD2|lv=W%0vm
zeAI4;w$Bth4Wy^kmXPt0I8>};E{8+!h2%gowIM82J*<LsAwET|xsy~qg(OFB5i76D
z;>xY~aVZ`YtD~`68R`?Q3H7z6<akFiOI4oio&0Pd3tz0ESf*zDsj}});n|hM9I58@
zyQ*FtU(MW6-3zOVW>J^0x`Rb0hN<mZZq5CuXlm8H)!1-yQ>;lY10%SGSvB=3F%l)i
zxsRExT+Z%M$FdqX@j0giPh)$g<G?QMPRT6il^4@-JZZ=4JM}%{k>J~@gbaj&&y~y~
z(0j#uVx-8j9IL@axw5#RtC`{ov~FcK#pYk^j+<;-)N~-6H=-()eK1;e7H`<oH~au~
z<FESOmDT?yx{;BX=X1hgRdKYP+?o6+J<lq}vGw8?%WS&xh^&|92ct&jPwD2A`bIxi
zL5=yet+bdEo$?HFUg@28hnKUjNJ`Kz``@I07P$%g7_}~*pW4|Cv)0+eec4_rSW%Nf
zRd=-M&EwAWq9s`5DtTnH@HnrrmjAGW=GC{go7l&1jp!wHmZ6Vs$nh>qc4J;0nY=>h
zzQ%1-lh^f@Kv~CEr_V(*v1Y8arzo)8(K;<sW)A!=oO_G-c_!)~>ZSPvPRs^b)nsut
zkQ+r-6J5!CwcRuzd;f>04PSMsZ)C$%BuDy=B=eU~qHAtKglh1jVrcj@3GJ@h;TgGN
zo)&K3m>rFGWw77esCX~zRI)cjMX`QmF-Evs)pWc)jUMys*be-<?a{92!-6b6`kBP(
zPtv^4xyXfhh_iu!6MHnN{`*+V1h4WDV;WtCR{9W&at>~HuHar;X}Zo%>rTCHA=&UY
zaI@;PeEDeKNnXS0XUyiqU5b6x(9Z8sH)9(D4`X!jSPrL{nJv9n^RO1#tZvPZe$RW8
zOG$NVWkT#vwX6CxWBKwy1{iNW{{L~in86mgZ#Up<CxUh^R?h7P)vw-ve375wG(1?d
zDw~o@{DCZ<RY-}N%5GsUN8;zDqpmD9<>jk1cNRLHpH^)7Jc%;~`!B8W5kujhdh$?q
z`*6{czNgj3lGAukuiRJWtN-*#@13W&suwNObrDlpnRfHtu(m4ibk1+Z>!K~nsh!j9
zOAgQmi=8;xU7U{1iquZcxL-(aaJTRnq%O|Dw`je%Jz=;12SOUo&7Pj4Arh*G^f;@5
zQY$4(u{+>D>swFMjir}%yPDaISN3*DdUrMUwp-hOla#%bY}xOs<SagE>uF0T3@=?<
z_n(o$s<w7zTRW3mFmaN~sXDi@t%j4Qgm+h}R;XS*T_Nl;oC$Yl&Lx@CSAzo&seh$2
zmLk=!OZqj*rL+c2%t5|79Y1?jhBie;%)~y}sVxzWy$J)isMjD<^;RmIbxWf^Yj1mV
z%z-T=YX?~||DGLLJZ-EuM;Ra4^}s)THSZ>1ok#loNmPURq$cH6^A{zpjLXHf!|ep4
zESx;ok@#ua{Z<sC6M<^(zw_o*dh$|_pJjA_dn_(qWHl|STh+E{8rHA^wxEiOZRv8L
z1ucjb1Sqq26(%G2vA~fKvr%8Lstk3ny0Zn$O;}dwNi*!(_a(JHWHeZ4?#2wf9U?}Z
zeQri_qF|N=-$(2atWJDqY4#OT^!e2uKW9;nZ1-D|u$Di0Z>t7i=kPD(Bj4)(R@SmA
zUuhD%mi2j~zi)JIzb1`ZQyb%6>+cVm4gdN|PdLwSsTZSDYqR0wZHo$x3bG;Un!MHc
zMLR#JxhGY2CujxMms}SsGK(iDax6%A>Y?Yi>UCB*6o=r<zD{6?_^A3_NZw|NI|6so
zdx4LarZ5Y+3DrD&?vXgn-KF{-K5!J95oSz%=He|<TT&ZV-WGDs!r?9!B19BJae7*0
zS0#&8yIW=@*Y1&|5zPnj^jeV!nNz)eY8Fe;Lx(DoSvxHC<85f<`Js4=y!_L1ysnm(
zQCKERDIc+=SK?!MLyFr|c4Ml}{+7*7glKt-NeaA(Ckx>nnR%qDxax7?eNfAfIHk(p
kg<aQMhu<kK=8aU|FZv+M@m=;NBKn0iGYTo^JvB7of1a8^Bme*a

literal 0
HcmV?d00001


From d190600d0df3dc846dbb0d1232c0cc764ba516b4 Mon Sep 17 00:00:00 2001
From: sandude-ms <robsmi_ms@hotmail.com>
Date: Wed, 27 Jan 2021 09:42:31 -0500
Subject: [PATCH 3/5] Deleted Secedit from LGPO backup

---
 .../microsoft/windows nt/SecEdit/GptTmpl.inf    | Bin 16356 -> 0 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf

diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
deleted file mode 100644
index c3f743404031443d1d8515620adc734a145653d9..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 16356
zcmdU$TTdHF7RT#(rTq>lny1x7B5}-29(Z6O7qr}F!Z6a}(THF$-hg3kvkCLzXZQcB
z(?wM`-F9QQ4J(AfUAO-^b?#OD-#?GtFK*!a?$lkot~+zTxxc!<6rQcSJGG2_%dz{U
zZzDI>lPkC4HZ=0ow~n&0yPAy|uiUME58R1*kK9+yKhz2vuBYBBZe72te#Tw(_*Sd`
z8}~XJF=>Sz%|Fm8V|S5Tr-)=zh_2j?yHtPHAB!%-^~$eO?Eg`Hpc^{w#D%{5qd>`y
z+D_dUecr0y-$hr~vC6IRjB{9i*2sVBd0%s#ImY$$J8*~k+!XE;Pr=y(?xlQtuf9Xi
z`!N38ox5K(8u~w~^;YfgMB7caPC9x|y}oKUy5fOx6WWGa*(lu8e^=^bV_r<?`NDI{
z=KG*Ek(9A3j*l(Yf7A2*L@OR@#5av7@;gPlBYtn_XW+SXCuC4Jx?cqjT#NI!qBR}&
zP9sj-XTMgY)nqomFSh4t|A@G(zsc^g`1>E>xBcDF`dx8zoM}S*p6W~-G0I_$y~BPE
zlG&^J?u)vA3BjpWO?5HlLY(<P{O${J-*W^_{6$<0yKFS2y|2{|+i;hY%JRAMTtchi
zeNo%f*@xP*U^@=I?4dnKW3PfUTV4*L#i@fNax?9H?9joURx`Or_m714GLvAlgS+DC
zrgUjrlJ?GZwEDGlY%I+|a?kVxYj>*uuQiXgb)<vP(AD>^db*;qhw8bhnTLK9(sHEH
zL$&tRYv5--(^KTP<B?&Hkt}QtHe}%E$5w%Y{bn|^T39^#UdpPzao^wD)#r+R>?yjE
z79%6wCqiwzbSd7N?PZ5f#8>QRH?hehkJfDXx_c%5zR>5YKJk>xlaPmaqX)o;Lkap5
z<^5@-;UUhVWsg4TPP&375ig+ihPeIYoc$zDVju7`Xx6^;a-8XEkbx#8V48I}5Dv4%
zeW4k78xW%~Mw^8&PlT1X*oG+N%*PYheBy=Z1)Jve@@O!hHO!=?)tI!*OTm_SJd!+H
zys;@>Z#8b)=EsPnjD-xWM87BUFgyCh4+hSL=&flBGB5fxKHC-@V8&<T7l)z=A8N6X
z`BlSjv0W3Ex=H*y;`T-+AI}qEj5CN6w}lo<PF^*7*0>ET(lC-gB%itQnN?3721$9&
zQhg-7918QTmuqrNIQ~4PnYgp(aqfx7pd^|nihAfRn~Rp_)xmPqAq!o1KPbX$Dzcjw
zYwF4OW$#jr%**$4vvfpIF+R=5PtE2i^YZwU>>2eM%hv`zd&9<29~dt%nw}RoF+Z4z
z`H8u!F+U&gVi|T{xUp(yNi<3XOZ}0$T2GYGPKJvOf1JI37%NZD(aEV#l-UzSurG#X
z+an@c>Z^^&n~c39)JTTa+05!$|1>(8meuB?_p~x#u{^anVtzD!oM8fqJ?%&?i8Kw1
z)tsm|j?_D?2u<T%Qz$lti`6f*`oQzYFum7PYE6@OuqhPz_<KwIqryOD2|lv=W%0vm
zeAI4;w$Bth4Wy^kmXPt0I8>};E{8+!h2%gowIM82J*<LsAwET|xsy~qg(OFB5i76D
z;>xY~aVZ`YtD~`68R`?Q3H7z6<akFiOI4oio&0Pd3tz0ESf*zDsj}});n|hM9I58@
zyQ*FtU(MW6-3zOVW>J^0x`Rb0hN<mZZq5CuXlm8H)!1-yQ>;lY10%SGSvB=3F%l)i
zxsRExT+Z%M$FdqX@j0giPh)$g<G?QMPRT6il^4@-JZZ=4JM}%{k>J~@gbaj&&y~y~
z(0j#uVx-8j9IL@axw5#RtC`{ov~FcK#pYk^j+<;-)N~-6H=-()eK1;e7H`<oH~au~
z<FESOmDT?yx{;BX=X1hgRdKYP+?o6+J<lq}vGw8?%WS&xh^&|92ct&jPwD2A`bIxi
zL5=yet+bdEo$?HFUg@28hnKUjNJ`Kz``@I07P$%g7_}~*pW4|Cv)0+eec4_rSW%Nf
zRd=-M&EwAWq9s`5DtTnH@HnrrmjAGW=GC{go7l&1jp!wHmZ6Vs$nh>qc4J;0nY=>h
zzQ%1-lh^f@Kv~CEr_V(*v1Y8arzo)8(K;<sW)A!=oO_G-c_!)~>ZSPvPRs^b)nsut
zkQ+r-6J5!CwcRuzd;f>04PSMsZ)C$%BuDy=B=eU~qHAtKglh1jVrcj@3GJ@h;TgGN
zo)&K3m>rFGWw77esCX~zRI)cjMX`QmF-Evs)pWc)jUMys*be-<?a{92!-6b6`kBP(
zPtv^4xyXfhh_iu!6MHnN{`*+V1h4WDV;WtCR{9W&at>~HuHar;X}Zo%>rTCHA=&UY
zaI@;PeEDeKNnXS0XUyiqU5b6x(9Z8sH)9(D4`X!jSPrL{nJv9n^RO1#tZvPZe$RW8
zOG$NVWkT#vwX6CxWBKwy1{iNW{{L~in86mgZ#Up<CxUh^R?h7P)vw-ve375wG(1?d
zDw~o@{DCZ<RY-}N%5GsUN8;zDqpmD9<>jk1cNRLHpH^)7Jc%;~`!B8W5kujhdh$?q
z`*6{czNgj3lGAukuiRJWtN-*#@13W&suwNObrDlpnRfHtu(m4ibk1+Z>!K~nsh!j9
zOAgQmi=8;xU7U{1iquZcxL-(aaJTRnq%O|Dw`je%Jz=;12SOUo&7Pj4Arh*G^f;@5
zQY$4(u{+>D>swFMjir}%yPDaISN3*DdUrMUwp-hOla#%bY}xOs<SagE>uF0T3@=?<
z_n(o$s<w7zTRW3mFmaN~sXDi@t%j4Qgm+h}R;XS*T_Nl;oC$Yl&Lx@CSAzo&seh$2
zmLk=!OZqj*rL+c2%t5|79Y1?jhBie;%)~y}sVxzWy$J)isMjD<^;RmIbxWf^Yj1mV
z%z-T=YX?~||DGLLJZ-EuM;Ra4^}s)THSZ>1ok#loNmPURq$cH6^A{zpjLXHf!|ep4
zESx;ok@#ua{Z<sC6M<^(zw_o*dh$|_pJjA_dn_(qWHl|STh+E{8rHA^wxEiOZRv8L
z1ucjb1Sqq26(%G2vA~fKvr%8Lstk3ny0Zn$O;}dwNi*!(_a(JHWHeZ4?#2wf9U?}Z
zeQri_qF|N=-$(2atWJDqY4#OT^!e2uKW9;nZ1-D|u$Di0Z>t7i=kPD(Bj4)(R@SmA
zUuhD%mi2j~zi)JIzb1`ZQyb%6>+cVm4gdN|PdLwSsTZSDYqR0wZHo$x3bG;Un!MHc
zMLR#JxhGY2CujxMms}SsGK(iDax6%A>Y?Yi>UCB*6o=r<zD{6?_^A3_NZw|NI|6so
zdx4LarZ5Y+3DrD&?vXgn-KF{-K5!J95oSz%=He|<TT&ZV-WGDs!r?9!B19BJae7*0
zS0#&8yIW=@*Y1&|5zPnj^jeV!nNz)eY8Fe;Lx(DoSvxHC<85f<`Js4=y!_L1ysnm(
zQCKERDIc+=SK?!MLyFr|c4Ml}{+7*7glKt-NeaA(Ckx>nnR%qDxax7?eNfAfIHk(p
kg<aQMhu<kK=8aU|FZv+M@m=;NBKn0iGYTo^JvB7of1a8^Bme*a


From f1797e71b82e12daddda1ee91ef30cef867ce9bc Mon Sep 17 00:00:00 2001
From: sandude-ms <robsmi_ms@hotmail.com>
Date: Wed, 27 Jan 2021 10:08:51 -0500
Subject: [PATCH 4/5] Deleted "extra" LGPO files

---
 .../Machine/lgpo_parsed_machine_settings.txt  | Bin 34458 -> 0 bytes
 .../microsoft/windows nt/Audit/audit.csv      |  64 ------------------
 .../GPO/User/lgpo_parsed_user_settings.txt    | Bin 5050 -> 0 bytes
 3 files changed, 64 deletions(-)
 delete mode 100644 2009/LGPO/DomainSysvol/GPO/Machine/lgpo_parsed_machine_settings.txt
 delete mode 100644 2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv
 delete mode 100644 2009/LGPO/DomainSysvol/GPO/User/lgpo_parsed_user_settings.txt

diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/lgpo_parsed_machine_settings.txt b/2009/LGPO/DomainSysvol/GPO/Machine/lgpo_parsed_machine_settings.txt
deleted file mode 100644
index 061d02df2c5be2d44fbcb551bec1742cc7286ad5..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 34458
zcmeI5X;WLv5r)s_ROLVL2XL`?f!t3ZuuTPwE|M>m6jd%QEDj)uB#cQae?7_jOl$7U
zIY$y0a~7piD#76_Qup-sc2CdnpMU?7EG5e|di^o^Ljq0BWGgvJTFGAWDfytk8_7*_
zo!lmO$v8PphVG8TWM9`C$zKxxR7-c=>1t2+EG1{j*W^k^f70<%@=C9hWGz|I>$Q&d
z^|{UDP)9rNvpc$bpl^IgM#(pwxzZJX$3fE3XI{8FPIZ2$Pd(RPBT+Nd6R$)WPe2Fn
zEVZ0#>AT)1?c~^TwyRG$&?oft{Ea^6M%0dV?oc$GilU*eebW(7Hr@B}*Fg7t((iF{
zuP27dr9N*c+RhxWy~&-Q^?8g@OP_JBXZG~wb9VIIhZ@x#jmYW?(0VWGuia?%MESkG
zjS+|bK;N~f8|Z!RC_2#-H~O3V&K(6?PNFw%#0Ku!o}S*)SYGMQdp*?`&AS?_EC(wu
zz`?Pjx9`4bBpw=0dyp<8{hOnCq<f(GM5Bw0k=a*W;r<<QHr5+?L-DDujVJd*Z(hQ?
z;)k*DPaaBh##1F!2mW@G@1hS$Febx^#Jp_KRmKB}xAps0V^T*cP2=K|csdr{U0Dg7
zeG~n7jXVc0VJSbWXR|oKvdtfw)uB!3F5fqnzsgFZ&b-9hgvUd##*zoT{6jW2l;tcE
zKTY|PuCtHPByyZDEH5D*wH58qG4HpJ#AQCZtR-*sLR!3^9}SDL8&CakD)n`?5`5N`
zi=x*$YUv2ijLp~8HpUamKuaBG5ok|eFQV$ces*+B{D7mT-b3L7B937PyfWUJxC(CQ
z>3$z$>*=izL~U1;5*x>|mxhy%`DvsCH;>)((pc?hEy-{(JX||@?n-uEn(xKuP|_Vc
zX`YL_fh0W8StRIXmDSHW;G4Gi`7R2Hqn2AhWk8?%;$a}XcBkL)hxU2oHVgB`lKW8}
z^9VDKAWuZ!NH3!Zbd808UC}o~t|!9xuaxI_ZQIg4P)`o=QSU2po0Z3pdcCL7y6e8v
z&@|M6=nY5aIg9VT*Ihe~N3Ufji%W4{4&`X|K%VJ97Q7>>Jwi-t$h^CX*My+A<~PYB
zu}d@o%oN++k$A9t6)i^R$)~xKd}b^UY_{+ey)H&qUXmL=>vCpZ7E7i$Ud-bgGG9^-
zJ1>_?XCc^@Sqk~@uZr_qIjt|ow=iz=={`{v1H{o+O~ov<Cu;F5R6?+hI5y-ld-Zgi
z2icZ=^rR!_qMND_woa78pSCmxSkK)QZ&M}xSnI8H;X<PgYO3>Se-MpSMQ${nX-^a)
z2c9*?g|nZjgT<aWoB%fMi#KH9wf;m^wX}D&nvrQ5c<;01)_3D@DzAk6(7kdZ*;8zq
zd!ENx%SDlnEam6x4M8(}g)NT~ObU<rC@QvJ#Z%ToeCCHduzak@s;sewRcGTd-D%qh
zDBE&wYL&!u>f%KEJQr0(HY(d;^xHb_y2>=3;DhtF_oCahrIq|u)o8N7dnYU8^|X3H
zF}l)}U3U}(zR1gFGZ?dGqj(^Sp|xsyO-I0SP`%_l6rKsxv7`$2SEt|1FhFU&Xb)pO
zEf#+fwLUJ_je0PUuTYF#c7Q)h*Z!N*aL_o_i#yq9S4YFzVk4VlIung!@o_PkNuss{
zF7i2BU6CEpH;Y2Or%zwQ3Sv*cR+$yIgzNpRR*ZpSzs|T@o(4t*ZBQcvp(C%GNd&Ws
zOw3hv@v9|WKiA99kYx$XLt-Ch#Z~A~9!2<hxRYdC<9H)1Hc}M&Dk}vO_)I2Lf{00e
z-jW&SfM{c6XI^36Cl)WI=kglMg<KVhneF$ZF>329^PK3R&3$Jrsu<my$5o6rg2c?D
z5f{nr@M-m;)ab*evF9whYl?2HC`)rOm~P(arYjSl<&U5#jI+(6nthngj9nMQCsBW|
zs*<6<>D-jBE1n)A8@Z|B|Ln~6w7bAm*0WH&4L5~>snb%)11X;fHw^Uxa}dvN-4WHj
zK+{d?N>*=*8R<NozPj8}wCXucF+Td@#89b4fhxu@Pg`E^|14jJ#uEd|^BGiciS>r&
z=>tkz9ny^bb6L_gs;q)(-x(v7d~L57??k3&)llofv13MPte4pU-8k!-@z@kvWj<t6
zk$l-<?lX0JE$h9i*QSm(^;*;MvShrWS?X2QJ-Yh2rr#@izn=KFhLb_~hCSIDNcels
zCl_T~<o6fypf@h7BiF|tSeIG4HbAezynCPD_w}?aJGK~~y)!dqRj|C~q@x9~4@?mw
zsl1mcMz^S5q2=DzLtKlmFk5RiznI2ytkCj=^z2@GHWxY?@(+8;3d;8qX<C?_>`&^V
z*e3Io#3-zX`eI%eK$j1by3n1Z5j4(b6XHlwj1J^ExD_2ikEeAoz>mjnMCEE}1xr$m
zW=6v(*_Te!M+qk*{q8xh$h`59?&|AqUlWSQx0q~r`uIMV<}dOSBXLJ&JaAG1KZA{~
zggejVFE4bJJ3RO3+<~6j*R?%)bt;Z0li6{zopf(8=kndUK`-akreB&@%P5Ix!884@
za=0Td2h!hq@wY9VX-gmSo@-lLXZ;r!(nD+y&9nQ8j<{Jpn@y$1mYzcM$8kJa42r=R
z^y%`mdWz#X>qnS*PISOVI7?$OC^4%C$d#&j|98)bO-+knRM%N^u<vx3h!AqgvbFc=
zRHykh961ud)T4&3Gr{KV$?wa;kZGD8UqxV8eSS|PSHq}SBqM{4=hA0=LRRz2K~0bM
z#obK$I9sw2GCJQ!(sg!oSzwpv^I|vgh%q;x^B{D=S`E4y^W9ZDy2?7Dds&gMEBUM;
zD-SYI&hhpr)30md+)H5(==WV~OF}>(La-ke(sAFOu0h84XYYP5>jEWF)eEb8vYeHr
zX@M^=V91QEZW3~K?*Zbf1#yH-o?a6w8z5)8I{k{P;Y1HXUe*;v27au}>Zqc)6U*f}
z{Ia5r%IvkP5L(Xw{&A6|M-}w%l8?<Zk#iEkuuk6r>EqkIbRBLNTZ+t(+qx_GYm3im
ztF6kizhEm^ldqM=2m&g{@?_y^I!ex~qm;$Pac2J2uWOst`4MNzRnf?bB62~?=NV%<
zYAmCVkzUyd&d;aj=ZE~2mSQ7XoA*2AAY)I5r!ZYX4RZtd5PI{f%QL2R3WN1*M$NDw
z)c`2;$i8fO`<m@Xjh2rnz6KUY+p^{e(%yxY+Z~q^?5GFI;&!N?<gdk+U5++>6n&r&
z);U<*BKz9aU-?-+LosQr_T$gTJeK3VK1yfF%dF>*+O8pvSU+anQ?@=s2dhnQ-EZq1
zqMCz;O=n&3u&eWaT}ocV%h8}T67=4RUWo6ip@Z?MMfj=@YXzrwiT>z1&FAG()2XH7
zhHMI?FbkzNTvZK^jBLOdNTj-21)PAUhx$z}WP4MDy$cM1F6Gwx;??2wP|qERUv{oI
zt_XwEZyQ$<Ks>B|K;KzI#A?30t!AI9CV$9M@if|}@m98vc^>8I$d>&Kq5_?P*5_MQ
zWfZUD^AX>7nXQJHoMPN>Px-o0R-4N4qG`%~2Jl&Sz?>4hl+cAm{@BmdKGHj{VAbeY
zTzi<+!&Me%<i@PIW~UnOF9Qmq!sD+K9c<-OHBzvuQixShQHL07bosq@tlEs%_p52~
z=MNe?>S?xGjOaim!n`Y<)J8PMJm`h3;H9!?@zlDb^8IDyAhkn9rEQJ)G+Hg!XJ+F;
zcd&*Ld$5(p%u8l9rW}fyb0JDmXP`2YugIFGyp(jp9trePhfYMB32wOA;1d_GksUQ$
zx{27)i2Y$W8bzPM-&eW|L=vBWmHbU(V-jRcimdEDkNd+(CEM1Dj3(V?vvF)$lEk|b
z!RQy=R!xs?puWbIQ4IbnT=AKZJ(1PFa=a_`$FKt!);|sRd2HzW6QGq$e%8}jUdoXG
z)L=nqLfExpNn>xe1v1BfVIv2^tx#!4v5(HuUXC2FZt}Fg^oEK^-)S{AKF~N*nZOsD
zF2&ULoiD?aGxK7yTYL`a`XQ$H9>HDB?(V8uY@Qwdiu6k6X{qs%A3aqP)ZwPfE3R0S
zr%lAR`5a_1cf2#4)xcs+`_;`-&>@DMT}vw&9kAl8ZicdWjnQfv|HWt}jcU{Pg$!!V
zd4=LN>}P29ePccjBI&;5khS}Aye_B_d}w%t`ZG9&Zhz<ranI`1m#OsterEaVk)GMI
zG%3_>pgq=pW>LwdvNq%E3qgabr?nw%xXo!pHFTwCC#GRpn+KTH1Ck%#va~v_3seD+
zKRV&NbU;h&g1{A@O%X4=eb$BcJk7rPg58ar2hY=52Yq3Fkcb1S>j_hny`^_LIn>C*
zjqTP|jR$OtE}PH9KQx@>d2D|w`o{8k9sSPElK6@deMHPXhw4U*7|PN2w&-pO6E}s9
zza?*lwX7!;#2n+ww$m20{6>2V_=<tW9?L`17H_i($fZccb}Y2KC(8e+^)DNup4Bh!
zMCqAU$Gp{wn77g!*3P`u*%cja=;w;YoO2zw-sYWF(7crtktDOw|8i0U2_iw0&W)`9
zyZ(-`Hn!!ZU)2ms;2usl#oem-+|ZaTt2b>&F_@#*;&@9OuySZeJU4W-s^9P2-77lc
zzJ|tO`~Tc$qCayAk7+`+IZM!ib?M`oq~Dd^qutA*{Iy=J6nm{J9sR@tdXh9&!F~>X
z9dGK6uDgx}y<1Qncv<e#*1b47fc#dS)Hn5$)q<=KT$e_m1FRP09A0o;vR;->ymOwQ
ztE=le&%U>P{a#Ej__EwDst#bqNOMinU6Exk>$oR5_ni*VXGnBp?dYcS1H=s0j&}6g
z)DxyBiy8^x>5Vuc>d`5TpWD=kym8#0>FT<UHpDa0lA{gXhaUtNfEnm+UR3U}=Z<*U
z5dR!4>n9$-V!)}+p6VP@X2mc*fwAgObY;cq0rxMa{l6^ti)#PO`QX*N(&lxi?d!5`
zll*I)#VerqXS(i>@DQNqH@bgSM_gS@9e7#pe^v)Vb*P+dE}%iO74`)n()XRM;}uvb
zj@8qB`%Xt4UFk~d_=N662N=Pg-r&MF3#tYDKN-+3`y{N0Z+K?c1oRzj%-Fy^xEL(F
zq2sQ`iE%;u@rhhrOdEJv?tj(>%ALbWcN;Cac?#d(pRP+&m!SWc3XQEMimNZ>RKcE0
z?UuCF_EYnf)ocZ<ZuBz?<K@6g7OOw{dSqN_s-F~&Tov*{brQOx@E#YgFWAougxP<q
zrdmDhm3#<Y7T@*%z+UO+l`5`wJl5}VbQakaUn!%?=(|Jmc9E{$9ZOpFpM|{4vien4
zJeyB-z6KxbndzAElBK^M_K~g@TkqAWw8JXGbn(%L<vRqZLUN49qN|U&DLPH8lPJq!
zJtQ=rL-xBkb5(xkQT&>W{G3ERc$u$laGKu3B=%(M&cds<^7+!h8{exI%<MURXSYuG
zPSrEB?Wm9W0ax*YqjI^5J8=2t17{C53+?%v-iwu{e^Dq8>lGff7Kk}^R*gb^%ugL8
z!8%`d;LYx15KF8cwjEQ%NX9#%(B)$55%Ed%xn?W;aaQ-X1{UzNakrjJI>q{$GaE>I
z*l{~A4=Tgutf@((->gjNGQJai#04ZmfAUaA@qMGoOe8qIEx*NTE#zqkjC{{>z7_Gb
ztiLvDB`rFuuxIPSPV<$u?<yi-Op(#!?Ry^OPuH_L_^hC1^LVoP?nTiu_OScxG(FDU
z(^kaHrtP2O_ZP@&T$$22()_f2f4+0?Zc0y6S=PYVur7wZVA&Uk&Q#(r9q8<KidX7r
zw8QRna6!D7zIWZMPsomaIo*iILVM-#w^)1Ll{qf;-yg4<(E!ubZ7)6kUzkNeDk<Px
ztE12tMDE90DppKDIURyS`HaW<8)JWmx3=t_o)gyV74=_3Lry`a#L9^LPSV*GMN6Wm
z?Ytn|g2dqRH^(R4Vst~oFTT&OINR5G)-bTIk^L|CfaCbqUDxeTr(gOx{2{C97)3h#
zeD^uHoX)>1J(2a9WyFN1jX^fDE={_J;U@f#70wbz#>$!C(EbYsGPj+bz_YfGM>Tt7
zcwYCEEwtQd`|R2zZ|BJ*kT5vbuiA+7Bcx=~ENYKZPv`6v_@*hbrL`t|YQ!0I8T!L$
zU25$S@@Dm&udqO2=$KFEMf0AC=`RDXvF5ffz3fbM_d$Q#3em7fM!F8>u@Ng$z#4cq
zlSjE)GMn<WR^ze4|4^yELzm10ZSkWPYw@A%k{s<^*YS-0o~Ms&=ylKT`e?OIzwVE!
zI$k^*H<08fT{)93r)Lo8sv&x<>$>e^({Nni@20O-3l-8|6h)h|ha>T~r{_PosCuXv
W)%<-u*pB8@_;&7HuF(scc>fpmKmWl1

diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv b/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv
deleted file mode 100644
index c04a8ef..0000000
--- a/2009/LGPO/DomainSysvol/GPO/Machine/microsoft/windows nt/Audit/audit.csv	
+++ /dev/null
@@ -1,64 +0,0 @@
-Machine Name,Policy Target,Subcategory,Subcategory GUID,Inclusion Setting,Exclusion Setting,Setting Value
-WIN-52UM0A3F81E,System,IPsec Driver,{0CCE9213-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,System Integrity,{0CCE9212-69AE-11D9-BED3-505054503030},Success and Failure,,3
-WIN-52UM0A3F81E,System,Security System Extension,{0CCE9211-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Security State Change,{0CCE9210-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Other System Events,{0CCE9214-69AE-11D9-BED3-505054503030},Success and Failure,,3
-WIN-52UM0A3F81E,System,Group Membership,{0CCE9249-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,User / Device Claims,{0CCE9247-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Network Policy Server,{0CCE9243-69AE-11D9-BED3-505054503030},Success and Failure,,3
-WIN-52UM0A3F81E,System,Other Logon/Logoff Events,{0CCE921C-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Special Logon,{0CCE921B-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,IPsec Extended Mode,{0CCE921A-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,IPsec Quick Mode,{0CCE9219-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,IPsec Main Mode,{0CCE9218-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Account Lockout,{0CCE9217-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Logoff,{0CCE9216-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Logon,{0CCE9215-69AE-11D9-BED3-505054503030},Success and Failure,,3
-WIN-52UM0A3F81E,System,Handle Manipulation,{0CCE9223-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Central Policy Staging,{0CCE9246-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Removable Storage,{0CCE9245-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Detailed File Share,{0CCE9244-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Other Object Access Events,{0CCE9227-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Filtering Platform Connection,{0CCE9226-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Filtering Platform Packet Drop,{0CCE9225-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,File Share,{0CCE9224-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Application Generated,{0CCE9222-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Certification Services,{0CCE9221-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,SAM,{0CCE9220-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Kernel Object,{0CCE921F-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Registry,{0CCE921E-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,File System,{0CCE921D-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Other Privilege Use Events,{0CCE922A-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Non Sensitive Privilege Use,{0CCE9229-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Sensitive Privilege Use,{0CCE9228-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,RPC Events,{0CCE922E-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Token Right Adjusted Events,{0CCE924A-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Process Creation,{0CCE922B-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Process Termination,{0CCE922C-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Plug and Play Events,{0CCE9248-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,DPAPI Activity,{0CCE922D-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Other Policy Change Events,{0CCE9234-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Authentication Policy Change,{0CCE9230-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Audit Policy Change,{0CCE922F-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Filtering Platform Policy Change,{0CCE9233-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Authorization Policy Change,{0CCE9231-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,MPSSVC Rule-Level Policy Change,{0CCE9232-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Other Account Management Events,{0CCE923A-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Application Group Management,{0CCE9239-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Distribution Group Management,{0CCE9238-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Security Group Management,{0CCE9237-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Computer Account Management,{0CCE9236-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,User Account Management,{0CCE9235-69AE-11D9-BED3-505054503030},Success,,1
-WIN-52UM0A3F81E,System,Directory Service Replication,{0CCE923D-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Directory Service Access,{0CCE923B-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Detailed Directory Service Replication,{0CCE923E-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Directory Service Changes,{0CCE923C-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Other Account Logon Events,{0CCE9241-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Kerberos Service Ticket Operations,{0CCE9240-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Credential Validation,{0CCE923F-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,System,Kerberos Authentication Service,{0CCE9242-69AE-11D9-BED3-505054503030},No Auditing,,0
-WIN-52UM0A3F81E,,Option:CrashOnAuditFail,,Disabled,,0
-WIN-52UM0A3F81E,,Option:FullPrivilegeAuditing,,Disabled,,0
-WIN-52UM0A3F81E,,Option:AuditBaseObjects,,Disabled,,0
-WIN-52UM0A3F81E,,Option:AuditBaseDirectories,,Disabled,,0
diff --git a/2009/LGPO/DomainSysvol/GPO/User/lgpo_parsed_user_settings.txt b/2009/LGPO/DomainSysvol/GPO/User/lgpo_parsed_user_settings.txt
deleted file mode 100644
index aabc2cf125078033ea02e99868b19b27c8a6ad3f..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 5050
zcmdUz-A>y;5QXQuQr{sjP()FC(_R4yEfSCvhgOw*<2oip7$-{XLi+G+zq5-)90P?C
zNFvLT_s8pVc4p4Z=Fjhs*047#biKA$CQKdMwqpxy-;V4P?Ohw%g^jGR+!7nR8ErdY
zeAm8P`BuQJg3*{c4Lh}gr96G$xnUbzp>5eF*E^mLShr(so|<m$h}jumoZ7^G(vvb$
z&N!h@Uk$kv>oao#jxlpLz@)iCpnD#t`h@C~`Ii>C_d`2mg_!3d>-e$IzPa!BXkXGB
zvXYqSdl~P3b>E*bXGl8)xxT7Z28?Ka%dWtZ(yw>M4$Tp*V_Mn|ts<r|vyW)!_L<hu
zdTwTu@3)!TWVha~Fq;76+Qrz;u)R2mYv%Z<9nhokoIMujVy)Q8R`Q4x4@}^4!&QE?
zE;f=Ke0&tdtoOVKi+JB%CnjCIOdNi|NcxZxm67wkWNrMa>vSX|x=*<Rlw%)l&0uo@
zm(nVeHR2QDUFX<DaV~|^EgsVQc!twcJ*}>>x9PSNUpgc;PhDP$XeT^}6@|Ll>xeO7
zt6Ij}M{3sP?JHL7@SLE}VzoFsJ&aX78!59CpegzKxE2rJquuX2UrXk4S>SSH4r|Rg
zgUh^Swp>rS)@+_vUp;>=o`W<i2B8=x<kB*;jIe>Sz0`Q*{OoQPn@eZWbXX%|Lv@eT
zYXJTpp5$}l6cz<G=rbyX_KN)U*k8Oo=9zf)^|ej!y4F#wsQQuR#791x!&&b}aLllm
zXBpF{_={?u_t;wJxtUhuuI_VtFclNkhT=RQNiW6c{@Szv+1Z`C>`_a#yWCRqoQyPb
z)oWG3m#gemTl~8se{R-oJo<ngi^+Zgzw!Wi|8jglQ6>b+O^VAYx$lIGCp2I1Petbx
zys9%4mvxly-C0cix*v9O`oH*Vp@Gu85?@ta4sDN-E_hYjor5-Gb{+4_Aiez*H|vY4
zLVW!;uwU0`1L93q$YG!}^0JiSzEkK02z6d-a(i7?RlV#ibQj_su%%o&BWHNXtnO~(
zPdcG#zkPL3o^w`d->Y7JbC#K4fgR2R+4cVbm(Fv};iw8$_0M>v{HMxe_EfwB;;Tp3
dG`Ii1)aD<94tmu>30myXhEsr5{C`Y3^cRZ_Z7=`;


From ade1b42b10a32619f6a5dfca9e3917b8eb9f1255 Mon Sep 17 00:00:00 2001
From: sandude-ms <robsmi_ms@hotmail.com>
Date: Wed, 27 Jan 2021 10:25:23 -0500
Subject: [PATCH 5/5] Replace all 2009 LGPO files

---
 2009/LGPO/Bkupinfo.xml                        |   2 +-
 .../DomainSysvol/GPO/Machine/registry.pol     | Bin 30292 -> 30142 bytes
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/2009/LGPO/Bkupinfo.xml b/2009/LGPO/Bkupinfo.xml
index 296c201..5d7e6a1 100644
--- a/2009/LGPO/Bkupinfo.xml
+++ b/2009/LGPO/Bkupinfo.xml
@@ -1 +1 @@
-<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{FACCA114-6E57-4027-AB08-D891F66A4A24}]]></GPOGuid><GPODomain><![CDATA[contoso.test]]></GPODomain><GPODomainGuid><![CDATA[{8d345ac4-636f-4d69-8650-335cb5d903a9}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.contoso.test]]></GPODomainController><BackupTime><![CDATA[2021-01-27T14:00:47]]></BackupTime><ID><![CDATA[{07BDCD6A-3F72-473C-82B9-67BB69DBE54D}]]></ID><Comment><![CDATA[Backup GPO created by LGPO.exe]]></Comment><GPODisplayName><![CDATA[Local Policy Export]]></GPODisplayName></BackupInst>
\ No newline at end of file
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{FACCA114-6E57-4027-AB08-D891F66A4A24}]]></GPOGuid><GPODomain><![CDATA[contoso.test]]></GPODomain><GPODomainGuid><![CDATA[{8d345ac4-636f-4d69-8650-335cb5d903a9}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.contoso.test]]></GPODomainController><BackupTime><![CDATA[2021-01-27T15:18:32]]></BackupTime><ID><![CDATA[{07BDCD6A-3F72-473C-82B9-67BB69DBE54D}]]></ID><Comment><![CDATA[Backup GPO created by LGPO.exe]]></Comment><GPODisplayName><![CDATA[Local Policy Export]]></GPODisplayName></BackupInst>
\ No newline at end of file
diff --git a/2009/LGPO/DomainSysvol/GPO/Machine/registry.pol b/2009/LGPO/DomainSysvol/GPO/Machine/registry.pol
index 0603868997731edc55e24a5033fbee49583f292c..178e13d898e31eb7a7866197c710458e67172df0 100644
GIT binary patch
delta 12
UcmccehH>9(#t8-+kM)%T04**CrT_o{

delta 78
zcmdn@n(@jT#t8<B{tS5xsSGX*MGTn?Wk41KgEd0{ke3SP<uQ~@cDI!khlqqS6a&SJ
V7=nRn(}DUtCp)q^ZZzmC1ppv*6LJ6m