The startup mode of cloudbase init is \Cloudbase init has hidden dangers

Suggest cloudbase-init The startup mode of is changed to “ Local system accounts ”, Now find .\cloudbase-init The startup mode of exists explorer.exe Abnormal probability

Abnormal phenomenon ：

explorer loop crash（explorer loop crash, In a flash ,appplication.evtx There are multiple appplication error journal ）

perhaps

explorer No icon on solid background , Need to send Ctrl Alt Del Call up the task manager to run explorer To pull up the Explorer

It is recommended to adjust the image when making it cloudbase-init Start mode of , Several considerations for creating images ：

If the original machine is useful userdata, Do not perform cleanup cloudbase-init The registry , as a result of , If a message is passed when the machine is created userdata, and userdata There is code for writing operations in the code , So you deleted cloudbase-init The registry of causes initialization to be marked as 0, The next time I turn on cloudbase-init You will think that the machine has not been initialized , It's a new machine , It will automatically trigger the re execution userdata Code in , The severity assumption , Suppose there is an operation to format the data disk in the code , Don't you want to be cool

1、 uninstall winagent（ If there is one , No, please skip ） sc.exe stop winagent 2>$null 1>$null sc.exe config winagent start= disabled 2>$null 1>$null sc.exe delete winagent 2>$null 1>$null schtasks.exe /delete /tn "WinAgentKeepAlive" /F 2>$null 1>$null 2、 Turn off cloud monitoring 、 Cloud security services stop-service BaradAgentSvc 2>$null 1>$null stop-service StargateSvc 2>$null 1>$null stop-service YDLive 2>$null 1>$null stop-service YDService 2>$null 1>$null 3、 Enable group policy password complexity （ Cannot be disabled , It has to be Enabled ）

4、 Set up cloudbase-init For the local system account 、 Clean up local users and groups cloudbase-init user

services.msc （ Change the startup mode in the service list to “ Local system account ”）

lusrmgr.msc （ Delete cloudbase-init account number ）

sysdm.cpl（ Delete cloudbase-init Home directory , After deleting the user name, it will be displayed as “ Unknown ”）

5、 Turn off cloud monitoring 、 Cloud security services , Clean up old logs

stop-service BaradAgentSvc 2>$null 1>$null

stop-service StargateSvc 2>$null 1>$null

stop-service YDLive 2>$null 1>$null

stop-service YDService 2>$null 1>$null

del "C:\Program Files\Cloudbase Solutions\Cloudbase-Init\log\cloudbase-init.log" 2>$null 1>$null

del "C:\Program Files\QCloud\Logs\*" 2>$null 1>$null

del "C:\Program Files\QCloud\Monitor\Barad\logs\*" 2>$null 1>$null

del "C:\Program Files\QCloud\Stargate\logs\*" 2>$null 1>$null

del "C:\Program Files\QCloud\YunJing\log\*" 2>$null 1>$null

6、disable network location wizard

In order to avoid the right side of the newly purchased machine network location wizard, It can be executed 2 Sentence command

reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\Profiles" /f 2>&1 > $null

reg add "HKLM\SYSTEM\CurrentControlSet\Control\Network\NewNetworkWindowOff" /f

7、 Clean up the system log

wevtutil el | Foreach-Object {wevtutil cl "$_" 2>$null}

wevtutil cl security 2>$null

wevtutil cl system 2>$null