AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of meduzi
meduzi
Flag for United Kingdom of Great Britain and Northern Ireland asked on

Block .scr file execution

How do I stop .scr files from being run on a SBS 2011 server?

A client has terminal services running, so files run on the actual server. I believe that this may be done via GPO. Ideally, I would like a step by step please.


Many thanks.
SBSWindows Server 2008Microsoft Server OSVulnerabilitiesSecurity
Avatar of undefined
Last Comment
McKnife
8/22/2022 - Mon
John
Normally these are Screen saver files. Do they cause you a problem?  Or perhaps turn Screen Saver off (black monitor instead).
meduzi
ASKER
Hi John.

No, these .scr files are scripts, the type that often installs Crytolocker etc. I know how to block them via Exchange, but I simply want to stop these running completely.
John
If that is the case on your server, then top grade antivirus should stop Cryptolocker from installing.
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
meduzi
ASKER
In many cases, they do, but often, not, and we also have Cryptoprevent.

Anyway, I simply need to know the GPO method for blocking .scr file execution please.
ASKER CERTIFIED SOLUTION
McKnife
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
John
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
David Atkin
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
McKnife
Software restriction policies ("SRP") can indeed be used to block .scr files.
Applocker, the successor of SRP, cannot do this, MS has seen no need (no danger?) to block those.
younghv
I've requested that this question be closed as follows:

Accepted answer: 250 points for McKnife's comment #a40985962
Assisted answer: 250 points for thinkpads_user's comment #a40985963

for the following reason:

This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
McKnife
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent