SHOW:
|
|
- or go back to the newest paste.
| 1 | - | @echo off &title must-have privacy policies for windows |
| 1 | + | @echo off &title must-have privacy policies for windows 10 |
| 2 | - | :: based on MANAGE CONNECTIONS FROM WINDOWS OPERATING SYSTEM COMPONENTS TO MICROSOFT SERVICES as of 2022.02.09 |
| 2 | + | :: based on MANAGE CONNECTIONS FROM WINDOWS 10 OPERATING SYSTEM COMPONENTS TO MICROSOFT SERVICES as of 2019.09.16 |
| 3 | ||
| 4 | - | :: ask for elevation |
| 4 | + | :: ask for elevation passing args and preventing loop |
| 5 | - | fltmc>nul || (set _=/d/x/r start "%~n0" "%~f0" %*& powershell -nop -c start -verb runas cmd $env:_ & exit /b) |
| 5 | + | set "args="%~f0" %*" & reg query HKU\S-1-5-19>nul 2>nul || if "%_%" neq "y" ( |
| 6 | powershell -c "$Env:_='y';$ErrorActionPreference=0;start cmd -Arg \"/c call $Env:args\" -verb runas" & exit) | |
| 7 | ||
| 8 | - | reg load HKU\New "%SystemDrive%\Users\Default\NTUSER.DAT" >nul && set "HKU=1" || set "HKU=" |
| 8 | + | |
| 9 | reg load HKU\New "C:\Users\Default\NTUSER.DAT" >nul && set "HKU=1" || set "HKU=" | |
| 10 | - | :: show commands on screen |
| 10 | + | |
| 11 | - | set ----------=@echo/^&^<nul set /p @=& prompt $H & color 1f & echo on |
| 11 | + | :: main |
| 12 | set @=@echo/^&^<nul set/p @=&prompt $H& color 1e& echo on | |
| 13 | - | :: to remove a policy, uncomment the reg delete entry below it |
| 13 | + | |
| 14 | - | @echo ignore any ERROR: text, it is shown for output consistency |
| 14 | + | rem TO DISABLE A POLICY, UNCOMMENT THE REG DELETE ENTRY BELOW IT |
| 15 | ||
| 16 | - | %----------% 0. Telemetry - Security level [0] is only supported on Education and Enterprise [best editions privacy-wise] |
| 16 | + | %@% 0. Telemetry - Security level is only supported on Education and Enterprise [best editions privacy-wise] |
| 17 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /f /v AllowTelemetry /d 0 /t reg_dword | |
| 18 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /f /v AllowTelemetry | |
| 19 | ||
| 20 | - | %----------% 1. Automatic Root Certificates Update [delete recommended] |
| 20 | + | %@% 1. Automatic Root Certificates Update [delete recommended] |
| 21 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\AuthRoot" /f /v DisableRootAutoUpdate /d 1 /t reg_dword | |
| 22 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\SystemCertificates\AuthRoot" /f /v DisableRootAutoUpdate | |
| 23 | ||
| 24 | - | %----------% 2. Cortana and Search |
| 24 | + | %@% 2. Cortana and Search |
| 25 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v AllowCortana /d 0 /t reg_dword | |
| 26 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v AllowCortana | |
| 27 | ||
| 28 | - | %----------% Search and Cortana to use location |
| 28 | + | %@% - Search and Cortana to use location |
| 29 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v AllowSearchToUseLocation /d 0 /t reg_dword | |
| 30 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v AllowSearchToUseLocation | |
| 31 | ||
| 32 | - | %----------% Web search |
| 32 | + | %@% - Web search |
| 33 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v DisableWebSearch /d 1 /t reg_dword | |
| 34 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v DisableWebSearch | |
| 35 | ||
| 36 | - | %----------% Search the web or display web results in Search |
| 36 | + | %@% - Search the web or display web results in Search |
| 37 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v ConnectedSearchUseWeb /d 0 /t reg_dword | |
| 38 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /f /v ConnectedSearchUseWeb | |
| 39 | ||
| 40 | - | %----------% Outbound Cortana traffic |
| 40 | + | %@% - Outbound Cortana traffic |
| 41 | - | @set "rule=v2.25|Action=Block|Active=TRUE|Dir=Out|Protocol=6|App=%systemroot%" |
| 41 | + | reg add "HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\FirewallRules" /f /v {0DE40C8E-C126-4A27-9371-A27DAB1039F7} /d "v2.25|Action=Block|Active=TRUE|Dir=Out|Protocol=6|App=%windir%\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\searchUI.exe|Name=Block outbound Cortana|"
|
| 42 | - | @set "rule=%rule%\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\searchUI.exe|Name=Block outbound Cortana|" |
| 42 | + | |
| 43 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\FirewallRules" /f /v {0DE40C8E-C126-4A27-9371-A27DAB1039F7} /d "%rule%"
|
| 43 | + | |
| 44 | %@% 3. Set the time automatically [delete recommended] | |
| 45 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\W32time\TimeProviders\NtpClient" /f /v Enabled /d 0 /t reg_dword | |
| 46 | - | %----------% 3. Set the time automatically |
| 46 | + | |
| 47 | ||
| 48 | %@% 4. Device metadata retrieval | |
| 49 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Device Metadata" /f /v PreventDeviceMetadataFromNetwork /d 1 /t reg_dword | |
| 50 | - | %----------% 4. Device metadata retrieval |
| 50 | + | |
| 51 | ||
| 52 | %@% 5. Find My Device | |
| 53 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\FindMyDevice" /f /v AllowFindMyDevice /d 0 /t reg_dword | |
| 54 | - | %----------% 5. Find My Device |
| 54 | + | reg delete "HKLM\SOFTWARE\Policies\Microsoft\FindMyDevice" /f /v AllowFindMyDevice |
| 55 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\FindMyDevice" /f /v AllowFindMyDevice /d 0 /t reg_dword |
| 55 | + | |
| 56 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\FindMyDevice" /f /v AllowFindMyDevice |
| 56 | + | %@% 6. Font streaming |
| 57 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableFontProviders /d 0 /t reg_dword | |
| 58 | - | %----------% 6. Font streaming |
| 58 | + | |
| 59 | ||
| 60 | %@% 7. Insider Preview builds - all such builds force Telemetry to FULL !!! | |
| 61 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\PreviewBuilds" /f /v AllowBuildPreview /d 0 /t reg_dword | |
| 62 | - | %----------% 7. Insider Preview builds - all such builds force Telemetry to FULL !!! |
| 62 | + | |
| 63 | ||
| 64 | %@% 8. Internet Explorer | |
| 65 | ||
| 66 | - | %----------% 8. Internet Explorer |
| 66 | + | %@% - First run wizard |
| 67 | reg add "HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\Main" /f /v DisableFirstRunCustomize /d 1 /t reg_dword | |
| 68 | - | %----------% First run wizard |
| 68 | + | |
| 69 | ||
| 70 | if defined HKU reg add "HKU\New\SOFTWARE\Policies\Microsoft\Internet Explorer\Main" /f /v DisableFirstRunCustomize /d 1 /t reg_dword | |
| 71 | ::if defined HKU reg delete "HKU\New\SOFTWARE\Policies\Microsoft\Internet Explorer\Main" /f /v DisableFirstRunCustomize | |
| 72 | - | %----------% First run wizard [new users] |
| 72 | + | |
| 73 | - | reg add "HKU\New\SOFTWARE\Policies\Microsoft\Internet Explorer\Main" /f /v DisableFirstRunCustomize /d 1 /t reg_dword |
| 73 | + | %@% - Online Tips |
| 74 | - | ::reg delete "HKU\New\SOFTWARE\Policies\Microsoft\Internet Explorer\Main" /f /v DisableFirstRunCustomize |
| 74 | + | |
| 75 | ::reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /f /v AllowOnlineTips | |
| 76 | - | %----------% Online Tips |
| 76 | + | |
| 77 | %@% - Browser geolocation | |
| 78 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Geolocation" /f /v PolicyDisableGeolocation /d 1 /t reg_dword | |
| 79 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Geolocation" /f /v PolicyDisableGeolocation | |
| 80 | - | %----------% Browser geolocation |
| 80 | + | |
| 81 | %@% - SmartScreen filter [delete recommended] | |
| 82 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\PhishingFilter" /f /v EnabledV9 /d 0 /t reg_dword | |
| 83 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\PhishingFilter" /f /v EnabledV9 | |
| 84 | - | %----------% SmartScreen filter |
| 84 | + | |
| 85 | %@% - Flip ahead with page prediction feature | |
| 86 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\FlipAhead" /f /v Enabled /d 0 /t reg_dword | |
| 87 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\FlipAhead" /f /v Enabled | |
| 88 | - | %----------% Flip ahead with page prediction feature |
| 88 | + | |
| 89 | %@% - Background synchronization for feeds and Web Slices | |
| 90 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds" /f /v BackgroundSyncStatus /d 0 /t reg_dword | |
| 91 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds" /f /v BackgroundSyncStatus | |
| 92 | - | %----------% Background synchronization for feeds and Web Slices |
| 92 | + | |
| 93 | %@% 8.1 ActiveX control blocking [delete recommended] | |
| 94 | ::reg add "HKCU\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList /d 0 /t reg_dword | |
| 95 | reg delete "HKCU\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList | |
| 96 | - | %----------% 8.1 ActiveX control blocking |
| 96 | + | |
| 97 | - | reg add "HKCU\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList /d 0 /t reg_dword |
| 97 | + | ::if defined HKU reg add "HKU\New\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList /d 0 /t reg_dword |
| 98 | - | ::reg delete "HKCU\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList |
| 98 | + | if defined HKU reg delete "HKU\New\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList |
| 99 | ||
| 100 | - | %----------% 8.1 ActiveX control blocking [new users] |
| 100 | + | %@% 9. License Manager [3 recommended] |
| 101 | - | reg add "HKU\New\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList /d 0 /t reg_dword |
| 101 | + | |
| 102 | - | ::reg delete "HKU\New\Software\Microsoft\Internet Explorer\VersionManager" /f /v DownloadVersionList |
| 102 | + | |
| 103 | ||
| 104 | - | %----------% 9. License Manager [3 recommended] |
| 104 | + | %@% 10. Live Tiles |
| 105 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications" /f /v NoCloudApplicationNotification /d 1 /t reg_dword | |
| 106 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications" /f /v NoCloudApplicationNotification | |
| 107 | ||
| 108 | - | %----------% 10. Live Tiles |
| 108 | + | %@% 11. Mail synchronization [delete recommended] |
| 109 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Mail" /f /v ManualLaunchAllowed /d 0 /t reg_dword | |
| 110 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows Mail" /f /v ManualLaunchAllowed | |
| 111 | ||
| 112 | - | %----------% 11. Mail synchronization [delete recommended] |
| 112 | + | %@% 12. Microsoft Account Sign-In Assistant [3 recommended] |
| 113 | ::reg add "HKLM\System\CurrentControlSet\Services\wlidsvc" /f /v Start /d 4 /t reg_dword | |
| 114 | reg add "HKLM\System\CurrentControlSet\Services\wlidsvc" /f /v Start /d 3 /t reg_dword | |
| 115 | ||
| 116 | - | %----------% 12. Microsoft Account Sign-In Assistant [3 recommended] |
| 116 | + | %@% 13. Microsoft Edge |
| 117 | ||
| 118 | %@% - First run ad | |
| 119 | reg add "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /f /v PreventFirstRunPage /d 1 /t reg_dword | |
| 120 | - | %----------% 13. Microsoft Edge |
| 120 | + | |
| 121 | ||
| 122 | - | %----------% First run ad |
| 122 | + | %@% - Live Tile telemetry |
| 123 | reg add "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /f /v PreventLiveTileDataCollection /d 1 /t reg_dword | |
| 124 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /f /v PreventLiveTileDataCollection | |
| 125 | ||
| 126 | - | %----------% First run ad [new] |
| 126 | + | %@% - Adobe Flash |
| 127 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Edge" /f /v HideFirstRunExperience /d 1 /t reg_dword |
| 127 | + | |
| 128 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Edge" /f /v HideFirstRunExperience |
| 128 | + | |
| 129 | ||
| 130 | - | %----------% Live Tile telemetry |
| 130 | + | %@% - Windows Defender SmartScreen Filter [delete recommended] |
| 131 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter" /f /v EnabledV9 /d 0 /t reg_dword | |
| 132 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter" /f /v EnabledV9 | |
| 133 | ||
| 134 | - | %----------% Adobe Flash |
| 134 | + | %@% - Pre-launch at Windows startup, when the system is idle, and each time Microsoft Edge is closed |
| 135 | reg add "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /f /v AllowPrelaunch /d 0 /t reg_dword | |
| 136 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /f /v AllowPrelaunch | |
| 137 | ||
| 138 | - | %----------% Windows Defender SmartScreen Filter |
| 138 | + | %@% - Load the Start and New Tab page at Windows startup and each time Microsoft Edge is closed |
| 139 | reg add "HKCU\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading /d 0 /t reg_dword | |
| 140 | ::reg delete "HKCU\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading | |
| 141 | ||
| 142 | - | %----------% Windows Defender SmartScreen Filter [new] |
| 142 | + | if defined HKU reg add "HKU\New\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading /d 0 /t reg_dword |
| 143 | - | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Edge" /f /v SmartScreenEnabled /d 0 /t reg_dword |
| 143 | + | ::if defined HKU reg delete "HKU\New\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading |
| 144 | - | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Edge" /f /v SmartScreenEnabled |
| 144 | + | |
| 145 | %@% 14. Network Connection Status Indicator | |
| 146 | - | %----------% Pre-launch at Windows startup, when the system is idle, and each time Microsoft Edge is closed |
| 146 | + | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /f /v NoActiveProbe /d 1 /t reg_dword |
| 147 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /f /v NoActiveProbe | |
| 148 | ||
| 149 | %@% 15. Offline maps | |
| 150 | - | %----------% Load the Start and New Tab page at Windows startup and each time Microsoft Edge is closed |
| 150 | + | |
| 151 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Maps" /f /v AutoDownloadAndUpdateMapData | |
| 152 | ||
| 153 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Maps" /f /v AllowUntriggeredNetworkTrafficOnSettingsPage /d 0 /t reg_dword | |
| 154 | - | %----------% Load the Start and New Tab page at Windows startup and each time Microsoft Edge is closed [new users] |
| 154 | + | |
| 155 | - | reg add "HKU\New\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading /d 0 /t reg_dword |
| 155 | + | |
| 156 | - | ::reg delete "HKU\New\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /f /v AllowTabPreloading |
| 156 | + | %@% 16. OneDrive |
| 157 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\OneDrive" /f /v DisableFileSyncNGSC /d 1 /t reg_dword | |
| 158 | - | %----------% Update Default |
| 158 | + | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\OneDrive" /f /v DisableFileSyncNGSC |
| 159 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v UpdateDefault /d 0 /t reg_dword |
| 159 | + | |
| 160 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v UpdateDefault |
| 160 | + | |
| 161 | ::reg delete "HKLM\SOFTWARE\Microsoft\OneDrive" /f /v PreventNetworkTrafficPreUserSignIn | |
| 162 | - | %----------% Auto Update Check Period Minutes |
| 162 | + | |
| 163 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v AutoUpdateCheckPeriodMinutes /d 0 /t reg_dword |
| 163 | + | %@% 17. Preinstalled apps - try Education Edition |
| 164 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v AutoUpdateCheckPeriodMinutes |
| 164 | + | |
| 165 | %@% 18.1 Settings - Privacy - General | |
| 166 | - | %----------% Experimentation and Configuration Service |
| 166 | + | |
| 167 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v ExperimentationAndConfigurationServiceControl /d 0 /t reg_dword |
| 167 | + | %@% - Let apps use advertising ID to make ads more interesting to you based on your app usage |
| 168 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Edge\EdgeUpdate" /f /v ExperimentationAndConfigurationServiceControl |
| 168 | + | |
| 169 | ::reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo" /f /v Enabled | |
| 170 | - | %----------% 14. Network Connection Status Indicator |
| 170 | + | |
| 171 | - | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /f /v NoActiveProbe /d 1 /t reg_dword |
| 171 | + | |
| 172 | - | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /f /v NoActiveProbe |
| 172 | + | |
| 173 | ||
| 174 | - | %----------% 15. Offline maps |
| 174 | + | %@% - Let websites provide locally relevant content by accessing my language list |
| 175 | reg add "HKCU\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut /d 1 /t reg_dword | |
| 176 | ::reg delete "HKCU\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut | |
| 177 | ||
| 178 | - | %----------% Untriggered traffic |
| 178 | + | if defined HKU reg add "HKU\New\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut /d 1 /t reg_dword |
| 179 | ::if defined HKU reg delete "HKU\New\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut | |
| 180 | ||
| 181 | %@% - Let Windows track app launches to improve Start and search results | |
| 182 | - | %----------% 16. OneDrive |
| 182 | + | ::reg add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs /d 0 /t reg_dword |
| 183 | - | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\OneDrive" /f /v DisableFileSyncNGSC /d 1 /t reg_dword |
| 183 | + | reg delete "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs |
| 184 | - | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\OneDrive" /f /v DisableFileSyncNGSC |
| 184 | + | |
| 185 | ::if defined HKU reg add "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs /d 0 /t reg_dword | |
| 186 | - | %----------% Pre sign-in traffic |
| 186 | + | if defined HKU reg delete "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs |
| 187 | ||
| 188 | %@% - SmartScreen Filter to check web content (URLs) that Microsoft Store apps use [delete recommended] | |
| 189 | ::reg add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost" /f /v EnableWebContentEvaluation /d 0 /t reg_dword | |
| 190 | - | %----------% 17. Preinstalled apps - try Education Edition |
| 190 | + | |
| 191 | ||
| 192 | - | %----------% 18.1 Settings - Privacy - General |
| 192 | + | ::if defined HKU reg add "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost" /f /v EnableWebContentEvaluation /d 0 /t reg_dword |
| 193 | if defined HKU reg delete "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost" /f /v EnableWebContentEvaluation | |
| 194 | - | %----------% Let apps use advertising ID to make ads more interesting to you based on your app usage |
| 194 | + | |
| 195 | %@% - Let apps on my other devices open apps and continue experiences on this device | |
| 196 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableCdp /d 0 /t reg_dword | |
| 197 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableCdp | |
| 198 | - | %----------% AdvertisingInfo Disabled By Group Policy |
| 198 | + | |
| 199 | %@% 18.2 Settings - Privacy - Location | |
| 200 | ||
| 201 | %@% - Location for this device | |
| 202 | - | %----------% Let websites provide locally relevant content by accessing my language list |
| 202 | + | |
| 203 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessLocation | |
| 204 | ||
| 205 | %@% - Location | |
| 206 | - | %----------% Let websites provide locally relevant content by accessing my language list [new users] |
| 206 | + | |
| 207 | - | reg add "HKU\New\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut /d 1 /t reg_dword |
| 207 | + | |
| 208 | - | ::reg delete "HKU\New\Control Panel\International\User Profile" /f /v HttpAcceptLanguageOptOut |
| 208 | + | |
| 209 | %@% 18.3 Settings - Privacy - Camera [delete recommended] | |
| 210 | - | %----------% Let Windows track app launches to improve Start and search results |
| 210 | + | |
| 211 | - | reg add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs /d 0 /t reg_dword |
| 211 | + | |
| 212 | - | ::reg delete "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs |
| 212 | + | |
| 213 | %@% 18.4 Settings - Privacy - Microphone [delete recommended] | |
| 214 | - | %----------% Let Windows track app launches to improve Start and search results [new users] |
| 214 | + | |
| 215 | - | reg add "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs /d 0 /t reg_dword |
| 215 | + | |
| 216 | - | ::reg delete "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /f /v Start_TrackProgs |
| 216 | + | |
| 217 | %@% 18.5 Settings - Privacy - Notifications | |
| 218 | - | %----------% SmartScreen Filter to check web content (URLs) that Microsoft Store apps use |
| 218 | + | |
| 219 | %@% - Let apps access my notifications [delete recommended] | |
| 220 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessNotifications /d 2 /t reg_dword | |
| 221 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessNotifications | |
| 222 | - | %----------% SmartScreen Filter to check web content (URLs) that Microsoft Store apps use [new users] |
| 222 | + | |
| 223 | - | ::reg add "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost" /f /v EnableWebContentEvaluation /d 0 /t reg_dword |
| 223 | + | %@% 18.6 Settings - Privacy - Speech |
| 224 | - | reg delete "HKU\New\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost" /f /v EnableWebContentEvaluation |
| 224 | + | |
| 225 | ::reg delete "HKCU\Software\Microsoft\Speech_OneCore\Settings\OnlineSpeechPrivacy" /f /v HasAccepted | |
| 226 | - | %----------% Let apps on my other devices open apps and continue experiences on this device |
| 226 | + | |
| 227 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableCdp /d 0 /t reg_dword |
| 227 | + | if defined HKU reg add "HKU\New\Software\Microsoft\Speech_OneCore\Settings\OnlineSpeechPrivacy" /f /v HasAccepted /d 0 /t reg_dword |
| 228 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableCdp |
| 228 | + | ::if defined HKU reg delete "HKU\New\Software\Microsoft\Speech_OneCore\Settings\OnlineSpeechPrivacy" /f /v HasAccepted |
| 229 | ||
| 230 | - | %----------% 18.2 Settings - Privacy - Location |
| 230 | + | |
| 231 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Speech" /f /v AllowSpeechModelUpdate | |
| 232 | - | %----------% Location for this device |
| 232 | + | |
| 233 | %@% 18.7 Settings - Privacy - Account info [delete recommended] | |
| 234 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessAccountInfo /d 2 /t reg_dword | |
| 235 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessAccountInfo | |
| 236 | - | %----------% Location |
| 236 | + | |
| 237 | %@% 18.8 Settings - Privacy - Contacts [delete recommended] | |
| 238 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessContacts /d 2 /t reg_dword | |
| 239 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessContacts | |
| 240 | - | %----------% 18.3 Settings - Privacy - Camera |
| 240 | + | |
| 241 | %@% 18.9 Settings - Privacy - Calendar [delete recommended] | |
| 242 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessCalendar /d 2 /t reg_dword | |
| 243 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessCalendar | |
| 244 | - | %----------% 18.4 Settings - Privacy - Microphone |
| 244 | + | |
| 245 | %@% 18.10 Settings - Privacy - Call history [delete recommended] | |
| 246 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessCallHistory /d 2 /t reg_dword | |
| 247 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessCallHistory | |
| 248 | - | %----------% 18.5 Settings - Privacy - Notifications |
| 248 | + | |
| 249 | %@% 18.11 Settings - Privacy - Email [delete recommended] | |
| 250 | - | %----------% Let apps access my notifications |
| 250 | + | |
| 251 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessEmail | |
| 252 | ||
| 253 | %@% 18.12 Settings - Privacy - Messaging [delete recommended] | |
| 254 | - | %----------% 18.6 Settings - Privacy - Speech |
| 254 | + | |
| 255 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessMessaging | |
| 256 | ||
| 257 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Messaging" /f /v AllowMessageSync /d 0 /t reg_dword | |
| 258 | - | %----------% Online Speech Privacy Accepted [new users] |
| 258 | + | |
| 259 | - | reg add "HKU\New\Software\Microsoft\Speech_OneCore\Settings\OnlineSpeechPrivacy" /f /v HasAccepted /d 0 /t reg_dword |
| 259 | + | |
| 260 | - | ::reg delete "HKU\New\Software\Microsoft\Speech_OneCore\Settings\OnlineSpeechPrivacy" /f /v HasAccepted |
| 260 | + | %@% 18.13 Settings - Privacy - Phone calls [delete recommended] |
| 261 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessPhone /d 2 /t reg_dword | |
| 262 | - | %----------% Allow Speech Model Update |
| 262 | + | |
| 263 | ||
| 264 | %@% 18.14 Settings - Privacy - Radios [delete recommended] | |
| 265 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessRadios /d 2 /t reg_dword | |
| 266 | - | %----------% 18.7 Settings - Privacy - Account info |
| 266 | + | |
| 267 | ||
| 268 | %@% 18.15 Settings - Privacy - Other devices [delete recommended] | |
| 269 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsSyncWithDevices /d 2 /t reg_dword | |
| 270 | - | %----------% 18.8 Settings - Privacy - Contacts |
| 270 | + | |
| 271 | ||
| 272 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessTrustedDevices /d 2 /t reg_dword | |
| 273 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessTrustedDevices | |
| 274 | - | %----------% 18.9 Settings - Privacy - Calendar |
| 274 | + | |
| 275 | %@% 18.16 Settings - Privacy - Feedback and diagnostics | |
| 276 | ||
| 277 | %@% - Ask for feedback | |
| 278 | - | %----------% 18.10 Settings - Privacy - Call history |
| 278 | + | |
| 279 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /f /v DoNotShowFeedbackNotifications | |
| 280 | ||
| 281 | reg add "HKCU\Software\Microsoft\Siuf\Rules" /f /v PeriodInNanoSeconds /d 0 /t reg_dword | |
| 282 | - | %----------% 18.11 Settings - Privacy - Email |
| 282 | + | |
| 283 | ||
| 284 | if defined HKU reg add "HKU\New\Software\Microsoft\Siuf\Rules" /f /v PeriodInNanoSeconds /d 0 /t reg_dword | |
| 285 | ::if defined HKU reg delete "HKU\New\Software\Microsoft\Siuf\Rules" /f /v PeriodInNanoSeconds | |
| 286 | - | %----------% 18.12 Settings - Privacy - Messaging |
| 286 | + | |
| 287 | reg add "HKCU\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod /d 0 /t reg_dword | |
| 288 | ::reg delete "HKCU\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod | |
| 289 | ||
| 290 | - | %----------% Message sync |
| 290 | + | if defined HKU reg add "HKU\New\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod /d 0 /t reg_dword |
| 291 | ::if defined HKU reg delete "HKU\New\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod | |
| 292 | ||
| 293 | %@% - Tailored experiences with relevant tips and recommendations by using your diagnostics data | |
| 294 | - | %----------% 18.13 Settings - Privacy - Phone calls |
| 294 | + | |
| 295 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableWindowsConsumerFeatures | |
| 296 | ||
| 297 | reg add "HKCU\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableTailoredExperiencesWithDiagnosticData /d 1 /t reg_dword | |
| 298 | - | %----------% 18.14 Settings - Privacy - Radios |
| 298 | + | |
| 299 | ||
| 300 | if defined HKU reg add "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableTailoredExperiencesWithDiagnosticData /d 1 /t reg_dword | |
| 301 | ::if defined HKU reg delete "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableTailoredExperiencesWithDiagnosticData | |
| 302 | - | %----------% 18.15 Settings - Privacy - Other devices |
| 302 | + | |
| 303 | %@% 18.17 Background apps [delete recommended] | |
| 304 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsRunInBackground /d 2 /t reg_dword | |
| 305 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsRunInBackground | |
| 306 | - | %----------% Let Apps Access Trusted Devices |
| 306 | + | |
| 307 | %@% 18.18 Motion [delete recommended] | |
| 308 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessMotion /d 2 /t reg_dword | |
| 309 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessMotion | |
| 310 | - | %----------% 18.16 Settings - Privacy - Feedback and diagnostics |
| 310 | + | |
| 311 | %@% 18.19 Tasks [delete recommended] | |
| 312 | - | %----------% Ask for feedback |
| 312 | + | |
| 313 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsAccessTasks | |
| 314 | ||
| 315 | %@% 18.20 App Diagnostics [delete recommended] | |
| 316 | - | %----------% Period In NanoSeconds |
| 316 | + | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsGetDiagnosticInfo /d 2 /t reg_dword |
| 317 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsGetDiagnosticInfo | |
| 318 | ||
| 319 | %@% 18.21 Inking and Typing | |
| 320 | - | %----------% Period In NanoSeconds [new users] |
| 320 | + | reg add "HKLM\SOFTWARE\Policies\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection /d 1 /t reg_dword |
| 321 | - | reg add "HKU\New\Software\Microsoft\Siuf\Rules" /f /v PeriodInNanoSeconds /d 0 /t reg_dword |
| 321 | + | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection |
| 322 | - | ::reg delete "HKU\New\Software\Microsoft\Siuf\Rules" /f /v PeriodInNanoSeconds |
| 322 | + | |
| 323 | %@% 18.22 Activity History | |
| 324 | - | %----------% Number Of SIUF In Period |
| 324 | + | |
| 325 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableActivityFeed | |
| 326 | ||
| 327 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v PublishUserActivities /d 2 /t reg_dword | |
| 328 | - | %----------% Number Of SIUF In Period [new users] |
| 328 | + | |
| 329 | - | reg add "HKU\New\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod /d 0 /t reg_dword |
| 329 | + | |
| 330 | - | ::reg delete "HKU\New\Software\Microsoft\Siuf\Rules" /f /v NumberOfSIUFInPeriod |
| 330 | + | |
| 331 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v UploadUserActivities | |
| 332 | - | %----------% Tailored experiences with relevant tips and recommendations by using your diagnostics data |
| 332 | + | |
| 333 | %@% 18.23 Voice Activation | |
| 334 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoice /d 2 /t reg_dword | |
| 335 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoice | |
| 336 | - | %----------% Disable Tailored Experiences With Diagnostic Data |
| 336 | + | |
| 337 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoiceAboveLock /d 2 /t reg_dword | |
| 338 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoiceAboveLock | |
| 339 | ||
| 340 | - | %----------% Disable Tailored Experiences With Diagnostic Data [new users] |
| 340 | + | %@% 19. Software Protection Platform [delete recommended] |
| 341 | - | reg add "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableTailoredExperiencesWithDiagnosticData /d 1 /t reg_dword |
| 341 | + | |
| 342 | - | ::reg delete "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableTailoredExperiencesWithDiagnosticData |
| 342 | + | |
| 343 | ||
| 344 | - | %----------% 18.17 Background apps |
| 344 | + | %@% 20. Storage health |
| 345 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\StorageHealth" /f /v AllowDiskHealthModelUpdates /d 0 /t reg_dword | |
| 346 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\StorageHealth" /f /v AllowDiskHealthModelUpdates | |
| 347 | ||
| 348 | - | %----------% 18.18 Motion |
| 348 | + | %@% 21. Sync your settings |
| 349 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\SettingSync" /f /v DisableSettingSync /d 2 /t reg_dword | |
| 350 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\SettingSync" /f /v DisableSettingSync | |
| 351 | ||
| 352 | - | %----------% 18.19 Tasks |
| 352 | + | |
| 353 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\SettingSync" /f /v DisableSettingSyncUserOverride | |
| 354 | ||
| 355 | ::reg add "HKCU\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled /d 0 /t reg_dword | |
| 356 | - | %----------% 18.20 App Diagnostics |
| 356 | + | reg delete "HKCU\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled |
| 357 | - | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsGetDiagnosticInfo /d 2 /t reg_dword |
| 357 | + | |
| 358 | - | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsGetDiagnosticInfo |
| 358 | + | ::if defined HKU reg add "HKU\New\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled /d 0 /t reg_dword |
| 359 | if defined HKU reg delete "HKU\New\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled | |
| 360 | - | %----------% 18.21 Inking and Typing |
| 360 | + | |
| 361 | - | reg add "HKCU\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitInkCollection /d 1 /t reg_dword |
| 361 | + | %@% 22. Teredo [delete recommended] |
| 362 | - | ::reg delete "HKCU\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitInkCollection |
| 362 | + | |
| 363 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\TCPIP\v6Transition" /f /v Teredo_State | |
| 364 | - | %----------% Restrict Implicit Ink Collection [new users] |
| 364 | + | |
| 365 | - | reg add "HKU\New\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitInkCollection /d 1 /t reg_dword |
| 365 | + | %@% 23. Wi-Fi Sense |
| 366 | - | ::reg delete "HKU\New\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitInkCollection |
| 366 | + | |
| 367 | ::reg delete "HKLM\SOFTWARE\Microsoft\WcmSvc\wifinetworkmanager\config" /f /v AutoConnectAllowedOEM | |
| 368 | - | %----------% Restrict Implicit Text Collection |
| 368 | + | |
| 369 | - | reg add "HKCU\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection /d 1 /t reg_dword |
| 369 | + | %@% 24. Windows Defender |
| 370 | - | ::reg delete "HKCU\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection |
| 370 | + | |
| 371 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet" /f /v SubmitSamplesConsent | |
| 372 | - | %----------% Restrict Implicit Text Collection [new users] |
| 372 | + | |
| 373 | - | reg add "HKU\New\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection /d 1 /t reg_dword |
| 373 | + | |
| 374 | - | ::reg delete "HKU\New\Software\Microsoft\InputPersonalization" /f /v RestrictImplicitTextCollection |
| 374 | + | |
| 375 | ||
| 376 | - | %----------% 18.22 Activity History |
| 376 | + | |
| 377 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting" /f /v DisableEnhancedNotifications | |
| 378 | ||
| 379 | %@% - Could trade a bit of privacy for more security against unclassified software by enabling SpyNet advanced membership | |
| 380 | - | %----------% Publish User Activities |
| 380 | + | |
| 381 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet" /f /v SpyNetReporting | |
| 382 | ||
| 383 | %@% 24.1 Windows Defender SmartScreen | |
| 384 | - | %----------% Upload User Activities |
| 384 | + | |
| 385 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableSmartScreen | |
| 386 | ||
| 387 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\SmartScreen" /f /v ConfigureAppInstallControlEnabled /d 1 /t reg_dword | |
| 388 | - | %----------% 18.23 Voice Activation |
| 388 | + | |
| 389 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoice /d 2 /t reg_dword |
| 389 | + | |
| 390 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoice |
| 390 | + | |
| 391 | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\SmartScreen" /f /v ConfigureAppInstallControl | |
| 392 | - | %----------% Let Apps Activate With Voice AboveLock |
| 392 | + | |
| 393 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoiceAboveLock /d 2 /t reg_dword |
| 393 | + | %@% 25. Windows Spotlight |
| 394 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /f /v LetAppsActivateWithVoiceAboveLock |
| 394 | + | |
| 395 | reg delete "HKCU\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableWindowsSpotlightFeatures | |
| 396 | - | %----------% 19. Software Protection Platform |
| 396 | + | |
| 397 | ::if defined HKU reg add "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableWindowsSpotlightFeatures /d 1 /t reg_dword | |
| 398 | if defined HKU reg delete "HKU\New\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableWindowsSpotlightFeatures | |
| 399 | ||
| 400 | - | %----------% 20. Storage health |
| 400 | + | |
| 401 | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Personalization" /f /v NoLockScreen | |
| 402 | ||
| 403 | %@% - Alternatively can set static Lock Screen | |
| 404 | - | %----------% 21. Sync your settings |
| 404 | + | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Personalization" /f /v LockScreenImage /d "%SystemRoot%\web\screen\lockscreen.jpg" |
| 405 | - | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\SettingSync" /f /v DisableSettingSync /d 2 /t reg_dword |
| 405 | + | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Personalization" /f /v LockScreenImage |
| 406 | - | ::reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\SettingSync" /f /v DisableSettingSync |
| 406 | + | |
| 407 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Personalization" /f /v LockScreenOverlaysDisabled /d 1 /t reg_dword | |
| 408 | - | %----------% Disable Setting Sync User Override |
| 408 | + | reg delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Personalization" /f /v LockScreenOverlaysDisabled |
| 409 | ||
| 410 | %@% - Windows tips | |
| 411 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableSoftLanding /d 1 /t reg_dword | |
| 412 | - | %----------% Cloud Service Sync Enabled |
| 412 | + | |
| 413 | - | reg add "HKCU\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled /d 0 /t reg_dword |
| 413 | + | |
| 414 | - | ::reg delete "HKCU\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled |
| 414 | + | %@% - Install bloat from Store |
| 415 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\CloudContent" /f /v DisableWindowsConsumerFeatures /d 1 /t reg_dword | |
| 416 | - | %----------% Cloud Service Sync Enabled [new users] |
| 416 | + | |
| 417 | - | reg add "HKU\New\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled /d 0 /t reg_dword |
| 417 | + | |
| 418 | - | ::reg delete "HKU\New\SOFTWARE\Microsoft\Messaging" /f /v CloudServiceSyncEnabled |
| 418 | + | %@% 26. Microsoft Store AutoDownload |
| 419 | reg add "HKLM\SOFTWARE\Policies\Microsoft\WindowsStore" /f /v AutoDownload /d 2 /t reg_dword | |
| 420 | - | %----------% 22. Teredo [XBox] |
| 420 | + | |
| 421 | ||
| 422 | %@% 27. Apps for websites [delete recommended] | |
| 423 | ::reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\System" /f /v EnableAppUriHandlers /d 0 /t reg_dword | |
| 424 | - | %----------% 23. Wi-Fi Sense |
| 424 | + | |
| 425 | ||
| 426 | %@% 28. Windows Update Delivery Optimization | |
| 427 | reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization" /f /v DODownloadMode /d 100 /t reg_dword | |
| 428 | - | %----------% 24. Windows Defender |
| 428 | + | |
| 429 | ||
| 430 | %@% 29. Windows Update AutoDownload [delete recommended] | |
| 431 | ::reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsStore\WindowsUpdate" /f /v AutoDownload /d 5 /t reg_dword | |
| 432 | - | %----------% Submit Samples Consent |
| 432 | + | reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsStore\WindowsUpdate" /f /v AutoDownload |
| 433 | ||
| 434 | :: HKCU entries will also be propagated to new users | |
| 435 | reg unload HKU\New >nul | |
| 436 | - | %----------% Disable Enhanced Notifications |
| 436 | + | |
| 437 | rem done! | |
| 438 | pause | |
| 439 | :: AveYo: more effectively could run this script via setupcomplete.cmd during windows 10 setup |
