diff --git a/AdminGroups.csv b/AdminGroups.csv
new file mode 100644
index 0000000..6b06897
--- /dev/null
+++ b/AdminGroups.csv
@@ -0,0 +1,21 @@
+Name,samAccountName,GroupCategory,GroupScope,DisplayName,OU,Description,Membership
+Tier 0 PAW Users,Tier0PAWUsers,Security,Global,Tier 0 PAW Users,"OU=Groups,OU=Tier0,OU=Admin",Members of this group are permitted to log onto Tier0 Privileged Access Workstations using normal accounts,
+Tier 0 PAW Maintenance,Tier0PAWMaint,Security,Global,Tier 0 PAW Maintenance,"OU=Groups,OU=Tier0,OU=Admin",Members of this group maintain and support Tier0 Privileged Access Workstations,
+Tier 0 Replication Maintenance,Tier0ReplicationMaintenance,Security,Global,Tier 0 Replication Maintenance,"OU=Groups,OU=Tier0,OU=Admin",Members of this group are Tier 0 Replication Maintenance,
+Tier 0 Servers,Tier0Servers,Security,Global,Tier 0 Servers,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 servers,
+Tier 0 Sync Servers,Tier0SyncServers,Security,Global,Tier 0 Sync Servers,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 synchronisation servers,
+Tier 0 Physical Access,Tier0PhysicalAccess,Security,Global,Tier 0 PhysicalAccess,"OU=Groups,OU=Tier0,OU=Admin",Group that contain users allowed to access physical domain controller,
+Tier 0 Physical DC,Tier0PhysicalDC,Security,Global,Tier 0 PhysicalDC,"OU=Groups,OU=Tier0,OU=Admin",Group that contain physical domain controller computer object,
+Tier 0 Service Accounts,Tier0serviceaccounts,Security,Global,Tier 0 Service Accounts,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 svc accouts,
+Tier 0 PAW Computers,Tier0PAWComputers,Security,Global,Tier 0 PAW Computers,"OU=Groups,OU=Tier0,OU=Admin",Group with members of the tier 0 devices servers and domaincontrollers,
+Tier 1 Admins,tier1admins,Security,Global,Tier 1 Admins,"OU=Groups,OU=Tier1,OU=Admin",Members of this group are Tier 1 Administrators,
+Tier 1 Server Maintenance,Tier1ServerMaintenance,Security,Global,Tier 1 Server Maintenance,"OU=Groups,OU=Tier1,OU=Admin",Members of this group perform Tier 1 Server Maintenance,
+Tier 1 PAW Users,Tier1PAWUsers,Security,Global,Tier 1 PAW Users,"OU=Groups,OU=Tier1,OU=Admin",Members of this group are permitted to log onto Tier1 Privileged Access Workstations using normal accounts,
+Tier 1 PAW Computers,Tier1PAWComputers,Security,Global,Tier 1 PAW Computers,"OU=Groups,OU=Tier1,OU=Admin",Group with members of the Tier 1 devices and servers,
+Tier 1 PAW Maintenance,Tier1PAWMaint,Security,Global,Tier1 PAW Maintenance,"OU=Groups,OU=Tier1,OU=Admin",Members of this group maintain and support Tier0 Privileged Access Workstations,
+Tier 1 Servers,Tier1Servers,Security,Global,Tier 1 Servers,"OU=Groups,OU=Tier1,OU=Admin",Group that contain all Tier 1 servers,
+Tier 1 Service Accounts,Tier1serviceaccounts,Security,Global,Tier 1serviceaccounts,"OU=Groups,OU=Tier1,OU=Admin",Group that contain all Tier 1 svc accouts,
+Tier 2 Admins,tier2admins,Security,Global,Tier 2 Admins,"OU=Groups,OU=Tier2,OU=Admin",Members of this group are Tier 2 Administrators,
+Tier 2 Service Desk Operators,Tier2ServiceDeskOperators,Security,Global,Tier 2 Service Desk Operators,"OU=Groups,OU=Tier2,OU=Admin",Members of this group are Service Desk Operators,
+Tier 2 Workstation Maintenance,Tier2WorkstationMaintenance,Security,Global,Tier 2 Workstation Maintenance,"OU=Groups,OU=Tier2,OU=Admin",Members of this group perform Workstation Maintenance,
+Tier 2 Service Accounts,Tier2serviceaccounts,Security,Global,Tier 2 Service Accounts,"OU=Groups,OU=Tier2,OU=Admin",Group that contain all Tier 2 svc accouts,
diff --git a/Create-Group.ps1 b/Create-Group.ps1
new file mode 100644
index 0000000..94afb01
--- /dev/null
+++ b/Create-Group.ps1
@@ -0,0 +1,40 @@
+<#
+    .Example
+    $csv = Read-Host -Prompt "Please provide full path to Groups csv file"
+    .\Create-Group.ps1 -CSVfile $csv -Verbose
+    PS C:\Tools> $csv = Read-Host -Prompt "Please provide full path to Groups csv file"
+    Please provide full path to Groups csv file: c:\tools\groups.csv
+    PS C:\Tools> .\Create-Group.ps1 -CSVfile $csv -Verbose
+    VERBOSE: Creating new Group 'Tier0ReplicationMaintenance' under 'OU=Groups,OU=Tier0,OU=Admin,DC=azureblog,DC=pl'
+    VERBOSE: Creating new Group 'Tier1ServerMaintenance' under 'OU=Groups,OU=Tier1,OU=Admin,DC=azureblog,DC=pl'
+    VERBOSE: Creating new Group 'ServiceDeskOperators' under 'OU=Groups,OU=Tier2,OU=Admin,DC=azureblog,DC=pl'
+    VERBOSE: Creating new Group 'WorkstationMaintenance' under 'OU=Groups,OU=Tier2,OU=Admin,DC=azureblog,DC=pl'
+    VERBOSE: Group 'tier1admins'already exists.
+    VERBOSE: Group 'tier2admins'already exists.
+#>
+
+[CmdletBinding()]
+param(
+    [string] $CSVfile
+)
+$dNC = (Get-ADRootDSE).defaultNamingContext
+$groups = Import-Csv $CSVfile
+foreach ($group in $groups) {
+    $groupName = $group.Name
+    $groupOUPrefix = $group.OU
+    $destOU = $group.OU + "," + $dNC
+    $groupDN = "CN=" + $groupName + "," + $destOU
+    $checkForGroup = Get-ADGroup -filter 'Name -eq $groupName' -ErrorAction SilentlyContinue
+    If ($checkForGroup.count -eq 0 ) {
+        Write-Verbose "Creating new Group '$($Group.samAccountName)' under '$destOU'"
+        New-ADGroup -Name $Group.Name -SamAccountName $Group.samAccountName -GroupCategory $Group.GroupCategory -GroupScope $Group.GroupScope -DisplayName $Group.DisplayName -Path $destOU -Description $Group.Description
+        If ($Group.Membership -ne "") {
+            Write-Verbose "Adding Group Membership '$($Group.Membership)' for group '$($Group.samAccountName)'"
+            Add-ADPrincipalGroupMembership -Identity $Group.samAccountName -MemberOf $Group.Membership
+        }
+        $error.Clear()
+    } 
+    Else {
+        Write-Verbose "Group '$($Group.samAccountName)'already exists."
+    }
+}
diff --git a/Create-User.ps1 b/Create-User.ps1
new file mode 100644
index 0000000..d13a76f
--- /dev/null
+++ b/Create-User.ps1
@@ -0,0 +1,40 @@
+<#
+    .Example
+    $csv = Read-Host -Prompt "Please provide full path to Groups csv file"
+    .\Create-User.ps1 -CSVfile $csv -Password zaq12WSXcde3 -Verbose
+
+#>
+
+[CmdletBinding()]
+param(
+    [Parameter(Mandatory=$True)][string] $CSVfile,
+    [Parameter(Mandatory=$True)][string] $Password
+)
+$DNSRoot = (Get-ADDomain).DNSRoot
+$DSN = (Get-ADDomain).DistinguishedName
+$users = Import-Csv $CSVfile
+foreach ($user in $users) {
+    $name = $user.name
+    $samAccountName = $user.samAccountName
+    $UserPrincipalName = $samAccountName + '@' + $DNSRoot
+    $parentOU = $user.ParentOU + ',' + $DSN
+    $groupMembership = $user.GroupMembership
+    $enabled = [bool]$user.enabled
+    $checkForUser = [bool]( Get-ADUSer -Filter {SamAccountname -eq $samaccountname})
+    If ($checkForUser -eq $false) {
+        Write-Verbose "Creating new user '$samAccountName' under '$parentOU'"
+        New-ADUser -Name $name -Path $ParentOU -SamAccountName $samAccountName -UserPrincipalName $UserPrincipalName -AccountPassword (ConvertTo-SecureString $password -AsPlainText -Force) -ChangePasswordAtLogon $false -Enabled $enabled -EmailAddress $UserPrincipalName
+        start-sleep -Seconds 5
+        if ($groupMembership -ne "") {
+            $groupMembership = ($user.GroupMembership) -split ','
+            foreach ($group in $groupMembership){
+                Write-Verbose "Adding User '$samAccountName' to Group '$group'"
+                Add-ADGroupMember -Identity $group -Members $samAccountName
+            }
+        }
+        $error.Clear()
+    } 
+    Else {
+        Write-Verbose "User '$samAccountName' already exists."
+    }
+}
diff --git a/GPO Backup/manifest.xml b/GPO Backup/manifest.xml
new file mode 100644
index 0000000..dbff4bc
--- /dev/null
+++ b/GPO Backup/manifest.xml	
@@ -0,0 +1 @@
+<Backups xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest" xmlns:mfst="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest" mfst:version="1.0"><BackupInst><GPOGuid><![CDATA[{57494173-6721-4C0F-A2CB-BE6083AD5991}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:20]]></BackupTime><ID><![CDATA[{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier2 Restrict Workstation Logon]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{9269F0B1-AA82-46BD-A6BA-8E675B616336}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:16]]></BackupTime><ID><![CDATA[{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 Restrict Server Logon]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:12]]></BackupTime><ID><![CDATA[{B9E332A3-0175-460E-8816-57E2C77551E3}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User PAC]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:08]]></BackupTime><ID><![CDATA[{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{4CC70DA5-BB28-4651-8394-F719F99FD7B9}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:04]]></BackupTime><ID><![CDATA[{7C6FC4CB-65C0-4A96-936D-9A62801368CE}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - Computer]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:59]]></BackupTime><ID><![CDATA[{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 Restrict Server Logon]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{4375EFBD-38B3-4E79-91BE-197A34B8B892}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:54]]></BackupTime><ID><![CDATA[{4C7033E4-5408-452F-8EA8-820089B6DC10}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User PAC]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{28C9499C-9866-481D-94C2-BCBD9E99C135}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:49]]></BackupTime><ID><![CDATA[{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:45]]></BackupTime><ID><![CDATA[{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:37]]></BackupTime><ID><![CDATA[{F596D010-C445-4AC5-BCCF-6E7A2503CE78}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:31]]></BackupTime><ID><![CDATA[{70E9154D-9966-41C1-8A4E-CC12DE13690A}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Restrict Quarantine Logon]]></GPODisplayName></BackupInst><BackupInst><GPOGuid><![CDATA[{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:22]]></BackupTime><ID><![CDATA[{1EF41186-1E2A-4F8E-A60C-41DC5627A442}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Do Not Display Logon Information]]></GPODisplayName></BackupInst></Backups>
\ No newline at end of file
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/Backup.xml b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/Backup.xml
new file mode 100644
index 0000000..75f1138
--- /dev/null
+++ b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[393222]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml
new file mode 100644
index 0000000..bc79d6b
--- /dev/null
+++ b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml	
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-23 18:51:34" uid="{96B7D7C0-A660-4851-8C1E-6B6CC858531D}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-03 15:15:33" uid="{360BD30A-D2C3-486E-BA52-EE9142B89A76}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-23 18:55:35" uid="{9305EF9F-7D6D-4D42-9040-90A170FCFFD0}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/><Member name="AZUREBLOG\Tier0 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3101"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
+</Groups>
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..82ed125
Binary files /dev/null and b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/registry.pol b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/registry.pol
new file mode 100644
index 0000000..23a3474
Binary files /dev/null and b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/registry.pol differ
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/bkupInfo.xml b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/bkupInfo.xml
new file mode 100644
index 0000000..747494c
--- /dev/null
+++ b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:45]]></BackupTime><ID><![CDATA[{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/gpreport.xml b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/gpreport.xml
new file mode 100644
index 0000000..ee8b30c
Binary files /dev/null and b/GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/gpreport.xml differ
diff --git a/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/Backup.xml b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/Backup.xml
new file mode 100644
index 0000000..dfdd988
--- /dev/null
+++ b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Do Not Display Logon Information]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..16d1675
Binary files /dev/null and b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/bkupInfo.xml b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/bkupInfo.xml
new file mode 100644
index 0000000..6baa160
--- /dev/null
+++ b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:22]]></BackupTime><ID><![CDATA[{1EF41186-1E2A-4F8E-A60C-41DC5627A442}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Do Not Display Logon Information]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/gpreport.xml b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/gpreport.xml
new file mode 100644
index 0000000..79fc954
Binary files /dev/null and b/GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/gpreport.xml differ
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/Backup.xml b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/Backup.xml
new file mode 100644
index 0000000..ffd3ff2
--- /dev/null
+++ b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/Backup.xml	
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - User]]></DisplayName><Options><![CDATA[2]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            <FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Applications" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Applications" bkp:Location="DomainSysvol\GPO\Machine\Applications"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml
new file mode 100644
index 0000000..b6a9ae3
--- /dev/null
+++ b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml	
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="utf-8"?>
+<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyEnable" status="ProxyEnable" image="6" changed="2020-05-03 14:15:57" uid="{B2EA82FA-1969-41A7-8AC3-4CFCF18AE633}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyEnable" type="REG_SZ" value="1"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2603" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+	<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyServer" status="ProxyServer" image="6" changed="2020-05-03 14:15:45" uid="{EFD6E1D2-70E6-43E9-B8A0-8FA7993FE076}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyServer" type="REG_SZ" value="127.0.0.1:80"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2603" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+</RegistrySettings>
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/comment.cmtx b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/comment.cmtx
new file mode 100644
index 0000000..1e4e4d5
--- /dev/null
+++ b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/comment.cmtx	
@@ -0,0 +1,12 @@
+<?xml version='1.0' encoding='utf-8'?>
+<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
+  <policyNamespaces>
+    <using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
+  </policyNamespaces>
+  <comments>
+    <admTemplate></admTemplate>
+  </comments>
+  <resources minRequiredRevision="1.0">
+    <stringTable></stringTable>
+  </resources>
+</policyComments>
\ No newline at end of file
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/registry.pol b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/registry.pol
new file mode 100644
index 0000000..aac722b
Binary files /dev/null and b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/registry.pol differ
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/bkupInfo.xml b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/bkupInfo.xml
new file mode 100644
index 0000000..787dedc
--- /dev/null
+++ b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:08]]></BackupTime><ID><![CDATA[{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/gpreport.xml b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/gpreport.xml
new file mode 100644
index 0000000..8bece5d
Binary files /dev/null and b/GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/gpreport.xml differ
diff --git a/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/Backup.xml b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/Backup.xml
new file mode 100644
index 0000000..1f745f1
--- /dev/null
+++ b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Account Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Backup Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Cryptographic Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Print Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Server Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-516]]></Sid><SamAccountName><![CDATA[Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-518]]></Sid><SamAccountName><![CDATA[Schema Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Schema Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-520]]></Sid><SamAccountName><![CDATA[Group Policy Creator Owners]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Group Policy Creator Owners@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-521]]></Sid><SamAccountName><![CDATA[Read-only Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Read-only Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2101]]></Sid><SamAccountName><![CDATA[Tier0ReplicationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0ReplicationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2103]]></Sid><SamAccountName><![CDATA[Tier2ServiceDeskOperators]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2ServiceDeskOperators@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2104]]></Sid><SamAccountName><![CDATA[Tier2WorkstationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2WorkstationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2105]]></Sid><SamAccountName><![CDATA[tier1admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier1admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2106]]></Sid><SamAccountName><![CDATA[tier2admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier2admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{9269F0B1-AA82-46BD-A6BA-8E675B616336}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 Restrict Server Logon]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[393222]]></UserVersionNumber><MachineVersionNumber><![CDATA[917518]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{9269F0B1-AA82-46BD-A6BA-8E675B616336}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..b6cd4f3
Binary files /dev/null and b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/bkupInfo.xml b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/bkupInfo.xml
new file mode 100644
index 0000000..08d9fd0
--- /dev/null
+++ b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{9269F0B1-AA82-46BD-A6BA-8E675B616336}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:16]]></BackupTime><ID><![CDATA[{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 Restrict Server Logon]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/gpreport.xml b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/gpreport.xml
new file mode 100644
index 0000000..81e9f33
Binary files /dev/null and b/GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/gpreport.xml differ
diff --git a/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/Backup.xml b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/Backup.xml
new file mode 100644
index 0000000..2beee2d
--- /dev/null
+++ b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Account Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Backup Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Cryptographic Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Print Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Server Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2102]]></Sid><SamAccountName><![CDATA[Tier1ServerMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1ServerMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2103]]></Sid><SamAccountName><![CDATA[Tier2ServiceDeskOperators]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2ServiceDeskOperators@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2104]]></Sid><SamAccountName><![CDATA[Tier2WorkstationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2WorkstationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2105]]></Sid><SamAccountName><![CDATA[tier1admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier1admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2106]]></Sid><SamAccountName><![CDATA[tier2admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier2admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 Restrict Server Logon]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[65537]]></UserVersionNumber><MachineVersionNumber><![CDATA[524296]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..e33d660
Binary files /dev/null and b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/bkupInfo.xml b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/bkupInfo.xml
new file mode 100644
index 0000000..4e44849
--- /dev/null
+++ b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:59]]></BackupTime><ID><![CDATA[{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 Restrict Server Logon]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/gpreport.xml b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/gpreport.xml
new file mode 100644
index 0000000..7138a9b
Binary files /dev/null and b/GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/gpreport.xml differ
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/Backup.xml b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/Backup.xml
new file mode 100644
index 0000000..cba43d1
--- /dev/null
+++ b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/Backup.xml	
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{4375EFBD-38B3-4E79-91BE-197A34B8B892}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - User PAC]]></DisplayName><Options><![CDATA[0]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            <FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml
new file mode 100644
index 0000000..c2a952a
--- /dev/null
+++ b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml	
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="utf-8"?>
+<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="AutoConfigURL" status="AutoConfigURL" image="6" changed="2020-05-23 17:19:42" uid="{C9B7F6A8-F9F9-4529-84A2-820A6C4EF291}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="1" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="AutoConfigURL" type="REG_SZ" value="file://azureblog.pl/SYSVOL/azureblog.pl/scripts/proxy.pac"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-3101" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+</RegistrySettings>
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/comment.cmtx b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/comment.cmtx
new file mode 100644
index 0000000..1e4e4d5
--- /dev/null
+++ b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/comment.cmtx	
@@ -0,0 +1,12 @@
+<?xml version='1.0' encoding='utf-8'?>
+<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
+  <policyNamespaces>
+    <using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
+  </policyNamespaces>
+  <comments>
+    <admTemplate></admTemplate>
+  </comments>
+  <resources minRequiredRevision="1.0">
+    <stringTable></stringTable>
+  </resources>
+</policyComments>
\ No newline at end of file
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/registry.pol b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/registry.pol
new file mode 100644
index 0000000..3fbffbe
Binary files /dev/null and b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/registry.pol differ
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/bkupInfo.xml b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/bkupInfo.xml
new file mode 100644
index 0000000..476a862
--- /dev/null
+++ b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{4375EFBD-38B3-4E79-91BE-197A34B8B892}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:54]]></BackupTime><ID><![CDATA[{4C7033E4-5408-452F-8EA8-820089B6DC10}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User PAC]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/gpreport.xml b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/gpreport.xml
new file mode 100644
index 0000000..1e3af19
Binary files /dev/null and b/GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/gpreport.xml differ
diff --git a/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/Backup.xml b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/Backup.xml
new file mode 100644
index 0000000..f49b271
--- /dev/null
+++ b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Account Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Backup Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Cryptographic Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Print Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Server Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-516]]></Sid><SamAccountName><![CDATA[Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-518]]></Sid><SamAccountName><![CDATA[Schema Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Schema Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-520]]></Sid><SamAccountName><![CDATA[Group Policy Creator Owners]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Group Policy Creator Owners@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-521]]></Sid><SamAccountName><![CDATA[Read-only Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Read-only Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2101]]></Sid><SamAccountName><![CDATA[Tier0ReplicationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0ReplicationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2102]]></Sid><SamAccountName><![CDATA[Tier1ServerMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1ServerMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2103]]></Sid><SamAccountName><![CDATA[Tier2ServiceDeskOperators]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2ServiceDeskOperators@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2104]]></Sid><SamAccountName><![CDATA[Tier2WorkstationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2WorkstationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2105]]></Sid><SamAccountName><![CDATA[tier1admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier1admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{57494173-6721-4C0F-A2CB-BE6083AD5991}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier2 Restrict Workstation Logon]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[720907]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{57494173-6721-4C0F-A2CB-BE6083AD5991}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..b4039bf
Binary files /dev/null and b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/bkupInfo.xml b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/bkupInfo.xml
new file mode 100644
index 0000000..ee95c84
--- /dev/null
+++ b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{57494173-6721-4C0F-A2CB-BE6083AD5991}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:20]]></BackupTime><ID><![CDATA[{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier2 Restrict Workstation Logon]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/gpreport.xml b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/gpreport.xml
new file mode 100644
index 0000000..b8aafde
Binary files /dev/null and b/GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/gpreport.xml differ
diff --git a/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/Backup.xml b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/Backup.xml
new file mode 100644
index 0000000..e474b43
--- /dev/null
+++ b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Account Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Backup Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Cryptographic Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Print Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid/><SamAccountName><![CDATA[Server Operators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-516]]></Sid><SamAccountName><![CDATA[Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-518]]></Sid><SamAccountName><![CDATA[Schema Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Schema Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-520]]></Sid><SamAccountName><![CDATA[Group Policy Creator Owners]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Group Policy Creator Owners@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-521]]></Sid><SamAccountName><![CDATA[Read-only Domain Controllers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Read-only Domain Controllers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2101]]></Sid><SamAccountName><![CDATA[Tier0ReplicationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0ReplicationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2102]]></Sid><SamAccountName><![CDATA[Tier1ServerMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1ServerMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2103]]></Sid><SamAccountName><![CDATA[Tier2ServiceDeskOperators]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2ServiceDeskOperators@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2104]]></Sid><SamAccountName><![CDATA[Tier2WorkstationMaintenance]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier2WorkstationMaintenance@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2105]]></Sid><SamAccountName><![CDATA[tier1admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier1admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-2106]]></Sid><SamAccountName><![CDATA[tier2admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[tier2admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Restrict Quarantine Logon]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Applications" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\Applications" bkp:Location="DomainSysvol\GPO\Machine\Applications"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..8817311
Binary files /dev/null and b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/bkupInfo.xml b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/bkupInfo.xml
new file mode 100644
index 0000000..a95383d
--- /dev/null
+++ b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:31]]></BackupTime><ID><![CDATA[{70E9154D-9966-41C1-8A4E-CC12DE13690A}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Restrict Quarantine Logon]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/gpreport.xml b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/gpreport.xml
new file mode 100644
index 0000000..7a027ff
Binary files /dev/null and b/GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/gpreport.xml differ
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/Backup.xml b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/Backup.xml
new file mode 100644
index 0000000..07d5c42
--- /dev/null
+++ b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{4CC70DA5-BB28-4651-8394-F719F99FD7B9}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Applications" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Applications" bkp:Location="DomainSysvol\GPO\Machine\Applications"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml
new file mode 100644
index 0000000..a95052f
--- /dev/null
+++ b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml	
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-03 10:24:35" uid="{69D13DA4-35EF-4306-B21B-8945B0B074FB}" userContext="0" removePolicy="0"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier1 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2604"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-02 19:52:40" uid="{641914FE-D604-44BE-9D86-937EE0A21B0C}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-03 17:55:32" uid="{6AD9FE21-6AEE-441D-9BDF-1B5CD8632002}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier1 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2604"/><Member name="AZUREBLOG\Tier1 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2603"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
+</Groups>
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..4094b1e
Binary files /dev/null and b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/registry.pol b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/registry.pol
new file mode 100644
index 0000000..5a00da1
Binary files /dev/null and b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/registry.pol differ
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/bkupInfo.xml b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/bkupInfo.xml
new file mode 100644
index 0000000..d5abec5
--- /dev/null
+++ b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{4CC70DA5-BB28-4651-8394-F719F99FD7B9}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:04]]></BackupTime><ID><![CDATA[{7C6FC4CB-65C0-4A96-936D-9A62801368CE}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - Computer]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/gpreport.xml b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/gpreport.xml
new file mode 100644
index 0000000..da85589
Binary files /dev/null and b/GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/gpreport.xml differ
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/Backup.xml b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/Backup.xml
new file mode 100644
index 0000000..21344a9
--- /dev/null
+++ b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/Backup.xml	
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - User PAC]]></DisplayName><Options><![CDATA[0]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            <FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml
new file mode 100644
index 0000000..f9fb30f
--- /dev/null
+++ b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml	
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="utf-8"?>
+<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="AutoConfigURL" status="AutoConfigURL" image="6" changed="2020-05-23 17:22:16" uid="{D3FABB9E-0DA8-41F7-A3EB-28B129A99E0C}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="1" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="AutoConfigURL" type="REG_SZ" value="file://azureblog.pl/SYSVOL/azureblog.pl/scripts/proxy.pac"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-3103" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+</RegistrySettings>
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/comment.cmtx b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/comment.cmtx
new file mode 100644
index 0000000..1e4e4d5
--- /dev/null
+++ b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/comment.cmtx	
@@ -0,0 +1,12 @@
+<?xml version='1.0' encoding='utf-8'?>
+<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
+  <policyNamespaces>
+    <using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
+  </policyNamespaces>
+  <comments>
+    <admTemplate></admTemplate>
+  </comments>
+  <resources minRequiredRevision="1.0">
+    <stringTable></stringTable>
+  </resources>
+</policyComments>
\ No newline at end of file
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/registry.pol b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/registry.pol
new file mode 100644
index 0000000..3fbffbe
Binary files /dev/null and b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/registry.pol differ
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/bkupInfo.xml b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/bkupInfo.xml
new file mode 100644
index 0000000..6b86b24
--- /dev/null
+++ b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:12]]></BackupTime><ID><![CDATA[{B9E332A3-0175-460E-8816-57E2C77551E3}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User PAC]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/gpreport.xml b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/gpreport.xml
new file mode 100644
index 0000000..597bde4
Binary files /dev/null and b/GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/gpreport.xml differ
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/Backup.xml b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/Backup.xml
new file mode 100644
index 0000000..5863abf
--- /dev/null
+++ b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/Backup.xml	
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{28C9499C-9866-481D-94C2-BCBD9E99C135}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - User]]></DisplayName><Options><![CDATA[2]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            
+            <FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml
new file mode 100644
index 0000000..dc57b5f
--- /dev/null
+++ b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml	
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="utf-8"?>
+<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyEnable" status="ProxyEnable" image="6" changed="2020-05-03 09:38:46" uid="{99494A1E-EBB1-4A93-9037-1C0C43661B39}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyEnable" type="REG_SZ" value="1"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2601" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+	<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyServer" status="ProxyServer" image="6" changed="2020-05-03 09:38:29" uid="{B553DABF-BECC-41E6-ADDA-AC6DFA3BAD78}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyServer" type="REG_SZ" value="127.0.0.1:80"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2601" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
+</RegistrySettings>
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/comment.cmtx b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/comment.cmtx
new file mode 100644
index 0000000..1e4e4d5
--- /dev/null
+++ b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/comment.cmtx	
@@ -0,0 +1,12 @@
+<?xml version='1.0' encoding='utf-8'?>
+<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
+  <policyNamespaces>
+    <using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
+  </policyNamespaces>
+  <comments>
+    <admTemplate></admTemplate>
+  </comments>
+  <resources minRequiredRevision="1.0">
+    <stringTable></stringTable>
+  </resources>
+</policyComments>
\ No newline at end of file
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/registry.pol b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/registry.pol
new file mode 100644
index 0000000..aac722b
Binary files /dev/null and b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/registry.pol differ
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/bkupInfo.xml b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/bkupInfo.xml
new file mode 100644
index 0000000..32b2e16
--- /dev/null
+++ b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{28C9499C-9866-481D-94C2-BCBD9E99C135}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:49]]></BackupTime><ID><![CDATA[{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/gpreport.xml b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/gpreport.xml
new file mode 100644
index 0000000..2dc00da
Binary files /dev/null and b/GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/gpreport.xml differ
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/Backup.xml b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/Backup.xml
new file mode 100644
index 0000000..75f1138
--- /dev/null
+++ b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/Backup.xml	
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation.  All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
+    <GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[393222]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings> 
+        <GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
+            
+            <FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Adm\*.*"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+        <GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
+            <FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
+        </GroupPolicyExtension>
+        
+        
+        
+        
+    <GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
+</GroupPolicyBackupScheme>
\ No newline at end of file
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml
new file mode 100644
index 0000000..bc79d6b
--- /dev/null
+++ b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml	
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-23 18:51:34" uid="{96B7D7C0-A660-4851-8C1E-6B6CC858531D}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-03 15:15:33" uid="{360BD30A-D2C3-486E-BA52-EE9142B89A76}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-23 18:55:35" uid="{9305EF9F-7D6D-4D42-9040-90A170FCFFD0}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/><Member name="AZUREBLOG\Tier0 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3101"/></Members></Properties></Group>
+	<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
+</Groups>
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf
new file mode 100644
index 0000000..82ed125
Binary files /dev/null and b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf differ
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/registry.pol b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/registry.pol
new file mode 100644
index 0000000..23a3474
Binary files /dev/null and b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/registry.pol differ
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/bkupInfo.xml b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/bkupInfo.xml
new file mode 100644
index 0000000..e28ff5d
--- /dev/null
+++ b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/bkupInfo.xml	
@@ -0,0 +1 @@
+<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:37]]></BackupTime><ID><![CDATA[{F596D010-C445-4AC5-BCCF-6E7A2503CE78}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst>
diff --git a/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/gpreport.xml b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/gpreport.xml
new file mode 100644
index 0000000..32e8b91
Binary files /dev/null and b/GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/gpreport.xml differ
diff --git a/Import-GPO.ps1 b/Import-GPO.ps1
new file mode 100644
index 0000000..f3ed6ef
--- /dev/null
+++ b/Import-GPO.ps1
@@ -0,0 +1,34 @@
+<#
+    .Example
+    $BackupPath = Read-Host -Prompt "Please provide full path to GPO backups"
+    .\Import-GPO.ps1 -BackupPath $BackupPath -Verbose
+
+#>
+
+[CmdletBinding()]
+param(
+    [Parameter(Mandatory = $True)][string] $BackupPath,
+    [string] $GPOMigrationTable
+)
+
+$backupList = Get-ChildItem -Path $BackupPath -Exclude "manifest.xml"
+Set-Location $BackupPath
+$location = Get-Location
+foreach ($item in $backupList){
+    $backupID = $null
+    $xmlFilePath = $null
+    $gpoName = $null
+    $backupID = $item.name -replace "{","" -replace "}",""
+    $xmlFilePath = ".\$($item.name)\gpreport.xml"
+    [xml]$xmlFile = Get-Content -Path $xmlFilePath
+    $gpoName = $xmlFile.GPO.Name
+    Write-Verbose "Importing new GPO '$gpoName' with GUID '$backupID'"
+    Write-Verbose "Please remember to update proper groups in GPO settings"
+    if ($GPOMigrationTable -eq $null) {
+        Import-GPO -BackupId $backupID -TargetName $gpoName -Path $BackupPath -CreateIfNeeded
+    }
+    else {
+        Import-GPO -BackupId $backupID -TargetName $gpoName -Path $BackupPath -MigrationTable $GPOMigrationTable -CreateIfNeeded
+    }    
+    Set-Location $location
+}
diff --git a/Link-GpoToOU.ps1 b/Link-GpoToOU.ps1
new file mode 100644
index 0000000..f710fa5
--- /dev/null
+++ b/Link-GpoToOU.ps1
@@ -0,0 +1,31 @@
+<#
+    .EXAMPLE
+    $GpoLinks = @(
+        $(New-Object PSObject -Property @{ Name = "POLICYNAME" ; OU = "OUPATH"; Order = 1; LinkEnabled = 'YES'}),
+    )
+    .\Link-GpoToOU.ps1 -GpoLinks $GpoLinks -Verbose
+#>
+
+
+[CmdletBinding()]
+param(
+    [Parameter(Mandatory = $True)][PSObject] $GpoLinks
+)
+Import-Module ActiveDirectory
+$DC = (Get-ADDomain).DistinguishedName
+
+$GpoLinks | foreach-Object {
+    $name = $_.Name
+    $OU = $_.ou
+    $order = $_.Order
+    $LinkEnabled = $_.LinkEnabled
+    if ($OU -eq "") {
+        
+        $ouPath = $DC
+    }
+    else {
+        $ouPath = "$OU,$DC"
+    }
+    Write-Verbose "Linking GPO '$name' into OU '$ouPath'"
+    New-GPLink -Name $name -Target $ouPath -LinkEnabled $LinkEnabled -Order $order
+}
diff --git a/PAW_steps.ps1 b/PAW_steps.ps1
new file mode 100644
index 0000000..4733d7b
--- /dev/null
+++ b/PAW_steps.ps1
@@ -0,0 +1,76 @@
+Throw "this is not a robust file" 
+$location = Get-Location
+Set-Location C:\Tools\PAW
+
+#Region create Groups 
+$csv = Read-Host -Prompt "Please provide full path to Admin Groups csv file"
+.\Create-Group.ps1 -CSVfile $csv -Verbose
+$csv = Read-Host -Prompt "Please provide full path to Standard Groups csv file"
+.\Create-Group.ps1 -CSVfile $csv -Verbose
+#endRegion
+
+#Region create Users
+$csv = Read-Host -Prompt "Please provide full path to Users csv file"
+.\Create-User.ps1 -CSVfile $csv -password zaq12WSXcde3 -Verbose
+#endRegion
+
+#region import GPO
+    Throw "Please update migration table file"
+    $BackupPath = Read-Host -Prompt "Please provide full path to GPO backups"
+    $GPOMigrationTable = Read-Host -Prompt "Please provide full path to GPO Migration Table"
+    .\Import-GPO.ps1 -BackupPath $BackupPath -GPOMigrationTable $GPOMigrationTable -Verbose
+    Set-Location C:\Tools\PAW
+    Write-Host "!!!!!!!!!!!!!!!! Please copy proxy.pac file to the Sysvol\Scripts\" -ForegroundColor Green
+#endregion
+
+#region Link gpo
+    $GpoLinks = @(
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Tier0 Servers,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier2,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Tier 1 Servers"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Workstations"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Restrict Quarantine Logon" ; OU = "OU=Quarantine"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier0 Restrict Server Logon" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),   
+        $(New-Object PSObject -Property @{ Name = "Tier0 Restrict Server Logon" ; OU = "OU=Tier0 Servers,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier1 Restrict Server Logon" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier1 Restrict Server Logon" ; OU = "OU=Tier 1 Servers"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier2 Restrict Workstation Logon" ; OU = "OU=Devices,OU=Tier2,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier2 Restrict Workstation Logon" ; OU = "OU=Workstations"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - Computer" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - User" ; OU = "OU=Accounts,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'No'}),
+        $(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - User PAC" ; OU = "OU=Accounts,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - Computer" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
+        $(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - User" ; OU = "OU=Accounts,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'NO'})
+        $(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - User PAC" ; OU = "OU=Accounts,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'})
+    )
+    .\Link-GpoToOU.ps1 -GpoLinks $GpoLinks -Verbose
+dsa.msc
+gpmc.msc
+#endregion
+
+#region Setup Computer Objects 
+    Get-ADComputer -Identity W10 | Move-ADObject -TargetPath "OU=Quarantine,DC=Azureblog,DC=pl"
+    Get-ADComputer -Identity SRV01 | Move-ADObject -TargetPath "OU=Devices,OU=Tier0,OU=Admin,DC=Azureblog,DC=pl"
+    Get-ADCOmputer -Identity W10
+    Get-ADComputer -Identity SRV01
+#endregion
+
+#region Tier0PAWUser on SRV01
+    whoami /groups
+    net user testuser zaq12WSX /add
+    [System.Net.WebProxy]::GetDefaultProxy() | select address
+#endregion
+
+#region Tier0PAWMAintenancer on SRV01
+    whoami /groups
+    net user testuser zaq12WSX /add
+    net user testuser
+    net user testuser /del
+    [System.Net.WebProxy]::GetDefaultProxy() | select address
+#endregion
+
+Set-Location $location
+
+
diff --git a/StandardGroups.csv b/StandardGroups.csv
new file mode 100644
index 0000000..6941cda
--- /dev/null
+++ b/StandardGroups.csv
@@ -0,0 +1,5 @@
+Name,samAccountName,GroupCategory,GroupScope,DisplayName,OU,Description,Membership
+Test Group 1,testgroup1,Security,Global,Test Group 1,"ou=Security Groups,OU=Groups",Group with random members,
+Test Group 2,testgroup2,Security,Global,Test Group 2,"ou=Security Groups,OU=Groups",Group with random members,
+Test Group 3,testgroup3,Security,Global,Test Group 3,"ou=Security Groups,OU=Groups",Group with random members,
+Test Group 4,testgroup4,Security,Global,Test Group 4,"ou=Security Groups,OU=Groups",Group with random members,
diff --git a/Users.csv b/Users.csv
new file mode 100644
index 0000000..10bab25
--- /dev/null
+++ b/Users.csv
@@ -0,0 +1,28 @@
+Name,samAccountName,ParentOU,GroupMembership,Enabled
+Robert Przybylski,robert.przybylski,"OU=Accounts,OU=Tier0,OU=Admin","Domain Admins",True
+Tier0 PAW Maintenancer,tier0pawmaintenancer,"OU=Accounts,OU=Tier0,OU=Admin",Tier0PAWMaint,True
+Tier1 PAW Maintenancer,tier1pawmaintenancer,"OU=Accounts,OU=Tier1,OU=Admin",Tier1PAWMaint,True
+Tier0 PAW User,tier0pawuser,"OU=Accounts,OU=Tier0,OU=Admin","Tier0PAWUsers,Domain Admins",True
+Tier1 PAW User,tier1pawuser,"OU=Accounts,OU=Tier1,OU=Admin","Tier1PAWUsers,Tier1ServerMaintenance",True
+Tier2 SD User,tier2sduser,"OU=Accounts,OU=Tier2,OU=Admin","Tier2ServiceDeskOperators",True
+Tier2 WM User,tier2wmuser,"OU=Accounts,OU=Tier2,OU=Admin","Tier2WorkstationMaintenance",True
+Bruce Banner,brucebanner,"ou=Enabled Users,ou=User Accounts","testGroup1",True
+Iron Man,ironman,"OU=Accounts,OU=Tier2,OU=Admin","Tier2ServiceDeskOperators,Tier2WorkstationMaintenance,Tier2Admins",True
+Capitan America,capitanamerica,"ou=Enabled Users,ou=User Accounts","testGroup3",True
+Spider Man,spiderman,"ou=Disabled Users,ou=User Accounts","testGroup4",False
+Black Widow,blackwidow,"ou=Enabled Users,ou=User Accounts","testGroup1,DNSAdmins",True
+Thor,thor,"ou=Disabled Users,ou=User Accounts","testGroup2",False
+BlackPanter,blackpanter,"ou=Enabled Users,ou=User Accounts","testGroup3",True
+Clint Barton,clintbarton,"ou=Disabled Users,ou=User Accounts","testGroup4",False
+Im Groot,imgroot,"ou=Enabled Users,ou=User Accounts","testGroup1",True
+Doctor Strange,doctorstrange,"ou=Disabled Users,ou=User Accounts","testGroup2",False
+Star Lord,starlord,"OU=Accounts,OU=Tier1,OU=Admin","Tier1PAWUsers,Tier1ServerMaintenance,Tier1Admins",True
+Vision,vision,"ou=Disabled Users,ou=User Accounts","testGroup4",False
+Loki,loki,"ou=Enabled Users,ou=User Accounts","testGroup1",True
+Bucky Barnes,buckybarnes,"ou=Disabled Users,ou=User Accounts","testGroup2",False
+Rocket Raccoon,rocketraccoon,"ou=Enabled Users,ou=User Accounts","testGroup3",True
+Nick Fury,nickfurry,"ou=Disabled Users,ou=User Accounts","testGroup4",False
+Drax,drax,"ou=Enabled Users,ou=User Accounts","testGroup1",True
+Sam Wilson,samwilson,"ou=Disabled Users,ou=User Accounts","testGroup2",False
+Justin Case,justincase,"ou=Enabled Users,ou=User Accounts","testGroup3,Tier0PhysicalAccess",True
+Replication Service,svc_replicator,"OU=Service Accounts,OU=Tier0,OU=Admin","Tier0ReplicationMaintenance",True
diff --git a/gpo_backup.migtable b/gpo_backup.migtable
new file mode 100644
index 0000000..62670ea
--- /dev/null
+++ b/gpo_backup.migtable
@@ -0,0 +1,113 @@
+<?xml version="1.0" encoding="utf-16"?>
+<MigrationTable xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/MigrationTable">
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier0ReplicationMaintenance@azureblog.pl</Source>
+    <Destination>Tier0ReplicationMaintenance@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Domain Admins@azureblog.pl</Source>
+    <Destination>Domain Admins@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Administrators</Source>
+    <Destination>Administrators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Domain Controllers@azureblog.pl</Source>
+    <Destination>Domain Controllers@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>UniversalGroup</Type>
+    <Source>Enterprise Admins@azureblog.pl</Source>
+    <Destination>Enterprise Admins@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier0PAWUsers@azureblog.pl</Source>
+    <Destination>Tier0PAWUsers@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Group Policy Creator Owners@azureblog.pl</Source>
+    <Destination>Group Policy Creator Owners@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier1PAWUsers@azureblog.pl</Source>
+    <Destination>Tier1PAWUsers@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>tier2admins@azureblog.pl</Source>
+    <Destination>tier2admins@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Backup Operators</Source>
+    <Destination>Backup Operators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Read-only Domain Controllers@azureblog.pl</Source>
+    <Destination>Read-only Domain Controllers@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier1PAWMaint@azureblog.pl</Source>
+    <Destination>Tier1PAWMaint@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier2ServiceDeskOperators@azureblog.pl</Source>
+    <Destination>Tier2ServiceDeskOperators@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier1ServerMaintenance@azureblog.pl</Source>
+    <Destination>Tier1ServerMaintenance@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier2WorkstationMaintenance@azureblog.pl</Source>
+    <Destination>Tier2WorkstationMaintenance@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Server Operators</Source>
+    <Destination>Server Operators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Account Operators</Source>
+    <Destination>Account Operators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Print Operators</Source>
+    <Destination>Print Operators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>Tier0PAWMaint@azureblog.pl</Source>
+    <Destination>Tier0PAWMaint@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>GlobalGroup</Type>
+    <Source>tier1admins@azureblog.pl</Source>
+    <Destination>tier1admins@azureblog.pl</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>Unknown</Type>
+    <Source>Cryptographic Operators</Source>
+    <Destination>Cryptographic Operators</Destination>
+  </Mapping>
+  <Mapping>
+    <Type>UniversalGroup</Type>
+    <Source>Schema Admins@azureblog.pl</Source>
+    <Destination>Schema Admins@azureblog.pl</Destination>
+  </Mapping>
+</MigrationTable>
diff --git a/proxy.pac b/proxy.pac
new file mode 100644
index 0000000..7660af1
--- /dev/null
+++ b/proxy.pac
@@ -0,0 +1,52 @@
+function FindProxyForURL(url, host) {
+ 
+if (shExpMatch(host, "*.aspnetcdn.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.aadrm.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.appex.bing.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.appex-rf.msn.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.assets-yammer.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.azure.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.azurecomcdn.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.cloudappsecurity.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.c.bing.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.gfx.ms")) { return "DIRECT"; }
+if (shExpMatch(host, "*.live.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.live.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.lync.com")) { return "DIRECT"; }
+if (shExpMatch(host, "maodatafeedsservice.cloudapp.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoft.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoftonline.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoftonline-p.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoftonline-p.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoftonlineimages.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.microsoftonlinesupport.net")) { return "DIRECT"; }
+if (shExpMatch(host, "ms.tific.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.msecnd.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.msedge.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.msft.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.msocdn.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.onenote.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.outlook.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.office365.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.office.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.office.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.onmicrosoft.com")) { return "DIRECT"; }
+if (shExpMatch(host, "partnerservices.getmicrosoftkey.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.passport.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.phonefactor.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.s-microsoft.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.s-msn.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.sharepoint.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.sharepointonline.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.s-msn.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.symcb.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.yammer.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.yammerusercontent.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.verisign.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.windows.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.windows.net")) { return "DIRECT"; }
+if (shExpMatch(host, "*.windowsazure.com")) { return "DIRECT"; }
+if (shExpMatch(host, "*.windowsupdate.com")) { return "DIRECT"; }
+ 
+return "PROXY 127.0.0.2:8080";
+}
\ No newline at end of file