SHARE
TWEET

Windows Tweaks

TairikuOkami Jul 20th, 2015 (edited) 78,091 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. rem USE AT OWN RISK AS IS WITHOUT WARRANTY OF ANY KIND !!!!!
  2.  
  3.  
  4. rem The latest cumulative update - https://support.microsoft.com/en-us/help/4529964/windows-10-update-history
  5. rem CU 18363.657 - http://download.windowsupdate.com/d/msdownload/update/software/secu/2020/02/windows10.0-kb4532693-x64_e22f60a077a0ec5896266a18cc3daf26bfc29e16.msu
  6. rem DISM /Online /Add-Package /PackagePath:Z:\Desktop\Windows10.0-KB4532693-x64_PSFX.cab
  7.  
  8. rem The latest servicing stack update (recommended to install before CU) - https://docs.microsoft.com/en-us/windows/deployment/update/servicing-stack-updates
  9. rem SSU 18363.628 - http://download.windowsupdate.com/d/msdownload/update/software/secu/2020/02/windows10.0-kb4538674-x64_d181b6a4a516b43bc58cbc15347b83219dccee86.msu
  10. rem DISM /Online /Add-Package /PackagePath:Z:\Desktop\Windows10.0-KB4538674-x64.cab
  11.  
  12. rem Before making any changes, it is preferable to create a registry backup!
  13. rem https://support.microsoft.com/en-us/help/322756/how-to-back-up-and-restore-the-registry-in-windows
  14. rem https://www.tweaking.com/content/page/registry_backup.html
  15.  
  16. rem Or even better, create a system image!
  17. rem https://www.aomeitech.com/ab/standard.html
  18. rem https://www.easeus.com/backup-software/tb-free.html
  19. rem https://www.macrium.com/reflectfree
  20.  
  21. rem Disabling network services (Dhcp/NlaSvc/netprofm/nsi/RmSvc) will prevent you from managing network settings via Settings!
  22. rem Windows Defender Firewall is set to block all inbound/outbound except allowed apps, which have to be added first!
  23.  
  24. rem "ValidateAdminCodeSignatures" will prevent exe without a digital signature to run as admin: "A referral was returned from the server."
  25. rem reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "ValidateAdminCodeSignatures" /t REG_DWORD /d "0" /f
  26.  
  27.  
  28. rem ________________________________________________________________________________________
  29.  
  30.  
  31. rem Basic informations
  32. rem Software recommendations
  33.  
  34. rem Remove various folders, startup entries and policies
  35. rem Restore essential startup entries
  36.  
  37. rem Software Setup
  38. rem Windows Setup plus Manual Config
  39.  
  40. rem Windows Drivers
  41. rem Windows Defender Security Center
  42. rem Windows Logging
  43. rem Windows Error Reporting
  44. rem Windows Explorer
  45. rem Windows OneDrive
  46. rem Windows Optimizations
  47. rem Windows Policies
  48. rem Windows Scheduled Tasks
  49. rem Windows Services
  50. rem Windows Settings
  51. rem Windows Shell
  52. rem Windows Store
  53. rem Windows Waypoint
  54.  
  55.  
  56. rem ================================= Basic informations ===================================
  57.  
  58.  
  59. rem SeDebugPrivilege/SeTcbPrivilege - https://youtu.be/hZKLEw-Our4 - Self-elevation to System (even on SUA) used by ransomware (NotPetya/WannaCry)
  60. rem https://docs.microsoft.com/en-us/windows/device-security/security-policy-settings/act-as-part-of-the-operating-system
  61.  
  62. rem https://docs.microsoft.com/en-us/windows/deployment/update/waas-overview
  63. rem https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-configuration-service-provider
  64. rem https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-security-baselines
  65.  
  66. rem Adblock Detection - https://www.detectadblock.com / https://blockads.fivefilters.org
  67. rem Browser Leaks - https://browserleaks.com / CanvasFingerprint / WebRTC
  68. rem Browser Tracking Test - https://panopticlick.eff.org
  69. rem Privacy Info - https://github.com/CHEF-KOCH/Online-Privacy-Test-Resource-List/tree/f4f9176ae8ea44c0f77ece204ee4435e892c0a29
  70. rem Privacy Tools - https://www.ghacks.net/2015/08/14/comparison-of-windows-10-privacy-tools
  71. rem Privacy Tools - https://www.privacytools.io
  72. rem Privacy Webpage Scan - https://webbkoll.dataskydd.net
  73. rem SSL/TLS Test - https://www.ssllabs.com/ssltest
  74.  
  75. rem AV Comparison
  76. rem https://checklab.pl/en/publications
  77. rem https://www.av-comparatives.org/latest-tests
  78. rem https://www.av-test.org/en/antivirus/home-windows/windows-10
  79. rem https://www.mrg-effitas.com/test-library
  80. rem https://www.pcmag.com/roundup/267984/the-best-free-antivirus-protection
  81.  
  82. rem AVs/SSL Filtering - https://adguard.com/en/blog/everything-about-https-filtering.html - https://badssl.com
  83. rem AV is as vulnerable as any other software, but since it uses SYSTEM rights, it is more dangerous - https://cybellum.com/doubleagent-taking-full-control-antivirus
  84. rem Disable webfiltering, replacing certificates - https://www.eff.org/deeplinks/2015/02/dear-software-vendors-please-stop-trying-intercept-your-customers-encrypted
  85. rem WD being vulnerable all the time - http://news.softpedia.com/news/microsoft-releases-silent-fix-for-windows-defender-remote-code-execution-flaw-516095.shtml
  86. rem https://www.bleepingcomputer.com/news/security/smartservice-and-s5mark-acts-like-an-adware-bodyguard-by-blocking-antivirus-software/
  87. rem http://blog.emsisoft.com/2015/01/17/has-the-antivirus-industry-gone-mad
  88. rem http://www.makeuseof.com/tag/antivirus-tracking-youd-surprised-sends
  89. rem https://www.av-test.org/en/news/news-single-view/data-protection-or-virus-protection
  90.  
  91. rem DNS Benchmark / Namebench - https://code.google.com/archive/p/namebench/downloads
  92. rem DNS Hijack / https://sockpuppet.org/blog/2015/01/15/against-dnssec / https://recdnsfp.github.io
  93. rem DNS Encryption (setup DNS server as 127.0.0.1) - https://simplednscrypt.org
  94. rem DNS Fix / DNS-Lock - https://www.sordum.org/9432/dns-lock-v1-4/
  95. rem DNS List - https://wiki.ipfire.org/dns/public-servers
  96.  
  97. rem Family Filtering (adult/proxy/search)
  98. rem CleanBrowsing - https://cleanbrowsing.org/ip-address
  99. rem DNS Family - https://dnsforfamily.com/#DNS_Servers
  100. rem Enforce Safe Search (=Adult Filter) - https://chrome.google.com/webstore/detail/enforce-safe-search-adult/fiopkogmohpinncfhneadmpkcikmgkgc
  101. rem NextDNS - https://www.nextdns.io
  102. rem OpenDNS - https://www.opendns.com/setupguide/#familyshield
  103. rem UltraDNS - https://www.home.neustar/dns-services/ultra-recursive-dns#free
  104.  
  105. rem VPN Comparison / Anonymity
  106. rem https://arstechnica.com/tech-policy/2017/03/senate-votes-to-let-isps-sell-your-web-browsing-history-to-advertisers
  107. rem https://thatoneprivacysite.net/simple-vpn-comparison-chart
  108. rem https://vpntesting.info
  109. rem https://www.msgsafe.io
  110.  
  111. rem Windows Hardening
  112. rem https://hard-configurator.com
  113. rem https://www.novirusthanks.org/products/syshardener
  114.  
  115. rem Windows Repair Toolbox - https://windows-repair-toolbox.com
  116. rem Windows 10 Drivers - https://www.catalog.update.microsoft.com/Home.aspx
  117. rem Windows 10 Forums - https://www.tenforums.com/general-support/58375-newly-added-tutorials.html
  118. rem Windows 10 Policies - https://getadmx.com/?Category=Windows_10_2016
  119. rem Windows 10 Support - https://technet.microsoft.com/en-us/windows/support-windows-10.aspx
  120.  
  121. rem Windows ISO
  122. rem https://genuineisoverifier.weebly.com
  123. rem https://msdn.rg-adguard.net
  124. rem https://tb.rg-adguard.net
  125. rem https://uup.rg-adguard.net
  126. rem https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool
  127.  
  128. rem Check ISO Windows versions and build version
  129. rem dism /Get-WimInfo /WimFile:F:\sources\install.wim
  130. rem dism /Get-WimInfo /WimFile:F:\sources\install.wim /index:1
  131. rem dism /Get-WimInfo /WimFile:F:\sources\install.esd /index:1
  132.  
  133. rem https://www.tenforums.com/tutorials/3109-shell-commands-list-windows-10-a.html
  134. rem https://www.tenforums.com/tutorials/3123-clsid-key-guid-shortcuts-list-windows-10-a.html
  135. rem https://www.tenforums.com/tutorials/3234-environment-variables-windows-10-a.html
  136. rem https://www.tenforums.com/tutorials/77458-rundll32-commands-list-windows-10-a.html
  137. rem https://www.tenforums.com/tutorials/78108-app-commands-list-windows-10-a.html
  138. rem https://www.tenforums.com/tutorials/78214-settings-pages-list-uri-shortcuts-windows-10-a.html
  139.  
  140.  
  141. rem =============================== Software recommendations ===============================
  142.  
  143.  
  144. rem AntiVirus software
  145. rem Adaware (MT) - https://www.adaware.com/antivirus
  146. rem Adaware Silent - App Managment - Enable Gaming Mode / Disable ThreatWork Alliance
  147. rem Kaspersky Security Cloud (RU) - https://www.kaspersky.com/downloads/thank-you/try-free-cloud-antivirus
  148. rem Kaspersky Security Cloud Setup - Accept Kaspersky Security Network and Decline Data Processing / Recommended - uncheck All
  149. rem Kaspersky Security Cloud Setup - Uninstall Kaspersky Secure Connection (trial VPN)
  150. rem Kaspersky Security Cloud Setup -  Settings - Additional - Notifications - uncheck News Notifications and Promotional Materials
  151. rem Kaspersky Security Cloud Performance - Settings - Protection - Turn Off All, but File Anti-Virus
  152. rem Kaspersky Security Cloud Performance - Settings - Additional - uncheck Inject script into web traffic / Do not scan encrypted connections
  153. rem Symantec Noscript (disable WSH when run as admin) - http://www.symantec.com/avcenter/noscript.exe
  154.  
  155. rem AntiVirus software (Cloud only)
  156. rem Immunet (US) - http://www.immunet.com/index
  157. rem Panda (ES) (it has to be updated manually to the latest version) - https://www.pandasecurity.com/usa/homeusers/solutions/free-antivirus
  158. rem Panda Setup - Uncheck Install Panda Safe Web
  159. rem Panda Performance - Settings - General - Disable Panda news / Antivirus - Block files for 10 seconds/Disable show warning/Process Monitor - Disable both
  160.  
  161. rem AntiVirus software - additional protection (can be run alongisde of realtime AV)
  162. rem Immunet - http://www.immunet.com/index
  163. rem OSArmor - https://www.novirusthanks.org/products/osarmor
  164. rem SecureAPlus Freemium (SG) - https://www.secureaplus.com/download - https://www.secureaplus.com/download/free-extension
  165. rem VoodooShield (US) - https://voodooshield.com
  166.  
  167. rem Browser Extensions useful against (99% malware comes via an email or a browser)
  168. rem Adult Content (Chrome/Firefox) - http://www.cloudacl.com/antiporn
  169. rem CDN (Chrome/Firefox/Opera) - https://decentraleyes.org
  170. rem Coinhive, Malware and Popups (Chrome/Firefox/Opera) - https://add0n.com/popup-blocker.html
  171. rem Cookie Warnings (Chrome/Firefox/Opera) - https://www.i-dont-care-about-cookies.eu
  172. rem Filter Lists - https://filterlists.com - https://energized.pro
  173. rem Malware (Chrome/Firefox/Opera) - https://www.bitdefender.com/solutions/trafficlight.html
  174. rem Malware (Chrome/Firefox) - https://www.malwarebytes.com/browserguard
  175. rem Phishing (Chrome/Firefox/Opera) - https://toolbar.netcraft.com
  176. rem Punycode Domains (Chrome/Firefox/Opera) - https://github.com/AykutCevik/IDN-Safe
  177. rem Tracking (Chrome/Firefox/Opera) - https://www.eff.org/privacybadger
  178. rem (Install Chrome Extensions in Opera) - https://addons.opera.com/en/extensions/details/install-chrome-extensions
  179.  
  180. rem Cleanup software
  181. rem Driver Store Explorer - https://github.com/lostindark/DriverStoreExplorer/releases
  182. rem Geek Uninstaller - https://geekuninstaller.com
  183. rem Wise Disk Cleaner - http://www.wisecleaner.com/wise-disk-cleaner.html
  184. rem Wise Registry Cleaner - http://www.wisecleaner.com/wise-registry-cleaner.html
  185.  
  186. rem Firewall software
  187. rem FortKnox Firewall (SK) - http://fortknox-firewall.com
  188. rem Zone Alarm Firewall (IL) - http://www.zonealarm.com/software/free-firewall
  189.  
  190. rem Firewall software using Windows Firewall
  191. rem Glasswire (US) - https://www.glasswire.com
  192. rem Windows 10 Firewall Control (US) - http://www.sphinx-soft.com/Vista/order.html
  193.  
  194. rem Sandbox software
  195. rem 360 Total Security Essential (CN) - https://www.360totalsecurity.com/en/features/360-total-security-essential
  196. rem Shade Sandbox (US) - http://www.shadesandbox.com
  197. rem Sandboxie (US) - https://www.sandboxie.com
  198.  
  199. rem Security cleanup software (portable on-demand scanners)
  200. rem Antivirus Rescue Disks - https://www.techradar.com/in/best/best-antivirus-rescue-disk
  201. rem AdwCleaner (US) - https://www.malwarebytes.com/adwcleaner/
  202. rem Dr.Web CureIt (RU) - https://free.drweb.com/download+cureit+free
  203. rem Emsisoft Emergency Kit (NZ) - https://www.emsisoft.com/en/home/emergencykit
  204. rem Kaspersky TDSSKiller (RU) - https://usa.kaspersky.com/downloads/tdsskiller
  205. rem Kaspersky Virus Removal Tool (RU) - https://www.kaspersky.com/downloads/thank-you/free-virus-removal-tool
  206. rem MWAV (IN) - https://escanav.com/en/mwav-tools/download-free-antivirus-toolkit.asp
  207. rem RKill (BleepingComputer) - https://www.bleepingcomputer.com/download/rkill/
  208.  
  209. rem Security cleanup software (online/updatable on-demand scanners)
  210. rem ESET Online Scanner (SK) - https://www.eset.com/us/home/online-scanner
  211. rem F-Secure Online Scanner (US) - https://www.f-secure.com/en/home/free-tools/online-scanner
  212. rem HitmanPro (UK) - https://www.softpedia.com/get/Internet/Popup-Ad-Spyware-Blockers/Hitman-Pro.shtml
  213. rem Norton Power Eraser (US) - https://us.norton.com/support/tools/npe.html
  214. rem Panda Cloud Cleaner (ES) - https://www.pandasecurity.com/en-us/homeusers/solutions/cloud-cleaner
  215. rem Trend Micro HouseCall (US) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
  216.  
  217. rem Software
  218. rem Application Updates / Patch My PC - https://patchmypc.net
  219. rem Bandwidth Meter / NetTraffic - https://www.venea.net/web/nettraffic
  220. rem Bootable USB / Universal USB Installer - https://www.pendrivelinux.com/universal-usb-installer-easy-as-1-2-3
  221. rem Bootloader / EasyBCD - https://www.softpedia.com/get/System/OS-Enhancements/EasyBCD.shtml
  222. rem Bootloader / EasyUEFI - https://www.softpedia.com/get/System/Boot-Manager-Disk/EasyUEFI.shtml
  223. rem Browser / Yandex.Browser - https://browser.yandex.com/security
  224. rem Calc / Old Calculator - https://winaero.com/download.php?view.1795
  225. rem Compact/Compress Files / Compact GUI - https://github.com/ImminentFate/CompactGUI
  226. rem Computer Management / NirLauncher - http://launcher.nirsoft.net
  227. rem CPU Info / CPU-Z - https://www.cpuid.com/softwares/cpu-z.html
  228. rem CPU Test / Prime95 - https://www.mersenne.org/download
  229. rem Data Recovery / DMDE Free Edition - https://dmde.com/download.html - https://www.techradar.com/how-to/computing/how-to-recover-lost-or-deleted-files-1307921/2
  230. rem Data Recovery / EaseUS Data Recovery Wizard - https://www.easeus.com/datarecoverywizard/free-data-recovery-software.htm
  231. rem Directx 9.0 Runtimes / DirectX Redistributable June 2010 - http://www.softpedia.com/get/System/OS-Enhancements/DirectX-9.0c-Redistributable.shtml
  232. rem Disc to MKV / MakeMKV Beta - http://www.makemkv.com/download / Key - https://www.makemkv.com/forum2/viewtopic.php?f=5&t=1053
  233. rem Disk Info / CrystalDiskInfo - https://crystalmark.info/en/software/crystaldiskinfo
  234. rem Disk Scan / HDDScan - http://hddscan.com
  235. rem Disk Space Usage / WizTree - https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive
  236. rem Disk Speed Test / CCSIO Benchmark - https://ccsiobench.com
  237. rem Disk Surface Test / Macrorit Disk Scanner - https://macrorit.com/disk-surface-test/disk-surface-test.html
  238. rem Driver Updates / Driver Easy - https://www.drivereasy.com
  239. rem eMail Client / POP Peeper - https://www.esumsoft.com/products/pop-peeper
  240. rem File Archiver / 7-zip - https://www.7-zip.org
  241. rem GPU Info / GPU-Z - https://www.techpowerup.com/gpuz
  242. rem GPU Test / Furmark - https://geeks3d.com/furmark
  243. rem Hardware Information / HWiNFO - https://www.hwinfo.com/download.php
  244. rem Hardware Monitor / HWMonitor - https://www.cpuid.com/softwares/hwmonitor.html
  245. rem Image Viewer / XnView - https://www.xnview.com/en/xnview/#downloads
  246. rem Media Player / PotPlayer - https://daumpotplayer.com
  247. rem Network Optimization / TCP Optimizer - https://www.speedguide.net/downloads.php
  248. rem Network Settings Manager / NetSetMan - https://www.netsetman.com/en/freeware
  249. rem Office Suite / FreeOffice - https://www.freeoffice.com/en/freeoffice
  250. rem Paint / Classic Paint - https://winaero.com/blog/download-classic-paint-windows-10
  251. rem Partition Manager / Macrorit Partition Expert - https://macrorit.com/partition-magic-manager/free-edition.html
  252. rem Password Manager (Offline) / KeePass Professional Edition - https://keepass.info/download.html
  253. rem Password Manager (Online) / Bitwarden - https://bitwarden.com
  254. rem PDF Editor / FreePDF - https://www.getfreepdf.com
  255. rem PDF Viewer / Sumatra PDF - https://www.sumatrapdfreader.org/free-pdf-reader.html
  256. rem Performance / DPC Latency Checker - https://www.thesycon.de/eng/latency_check.shtml
  257. rem Performance / LatencyMon - http://www.resplendence.com/latencymon
  258. rem Performance / Process Lasso - https://bitsum.com
  259. rem Performance / Windows System Timer Tool - https://vvvv.org/contribution/windows-system-timer-tool
  260. rem Permissions / Reset permissions/Take Ownership - http://lallouslab.net/2013/08/26/resetting-ntfs-files-permission-in-windows-graphical-utility/
  261. rem Process Monitor / Process Monitor - https://technet.microsoft.com/en-us/sysinternals/processmonitor.aspx
  262. rem Radio / Odio - https://www.odio.io
  263. rem RAM Fix / Intelligent standby list cleaner (+Timer Resolution) - https://www.wagnardsoft.com/content/intelligent-standby-list-cleaner-v1000-released
  264. rem RAM Free / Mem Reduct - https://www.henrypp.org/product/memreduct
  265. rem RAM Disk / AMD Radeon RAMDisk (4GB) - http://www.radeonramdisk.com/software_downloads.php
  266. rem RAM Disk / ImDisk Toolkit (Unlimited/Unsigned) - https://sourceforge.net/projects/imdisk-toolkit
  267. rem RAM Info / RAMExpert - http://www.kcsoftwares.com/?ramexpert
  268. rem RAM Test / Memtest (run one process per each 2GB) - https://hcidesign.com/memtest
  269. rem Remote Support / TeamViewer - https://www.teamviewer.com/en/download/windows
  270. rem Remove Locked File/Folder / LockHunter - https://lockhunter.com
  271. rem Screen Recorder / FlashBack Express - https://www.flashbackrecorder.com/express
  272. rem Search / UltraSearch - https://www.jam-software.com/ultrasearch
  273. rem Startup Manager / Autoruns - https://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
  274. rem System Imaging / AOMEI Backupper Standard - https://www.aomeitech.com/ab/standard.html
  275. rem System Restore / Reboot Restore Rx - https://horizondatasys.com/reboot-restore-rx-freeware
  276. rem System Restore / RollBack Rx Home Edition - https://horizondatasys.com/rollback-rx-time-machine/rollback-rx-home
  277. rem Task Manager / Process Hacker - https://wj32.org/processhacker/nightly.php
  278. rem Undervolting / ThrottleStop - https://www.techpowerup.com/download/techpowerup-throttlestop
  279. rem Uninstaller / Revo Uninstaller - https://www.revouninstaller.com/products/revo-uninstaller-free
  280. rem Visual C++ / AIO Repack - https://pastebin.com/raw/46rfrtBv
  281. rem Visual C++ / Latest Visual C++ Downloads - https://support.microsoft.com/en-au/help/2977003/the-latest-supported-visual-c-downloads
  282. rem Wallpaper - Live / Wallpaper Engine - https://store.steampowered.com/app/431960
  283. rem Windows Explorer Tabs / Clover - http://en.ejie.me
  284. rem Windows Tweaks / Ultimate Windows Tweaker - https://www.thewindowsclub.com/ultimate-windows-tweaker-4-windows-10
  285. rem Windows Tweaks / Winaero Tweaker - https://winaero.com/comment.php?comment.news.1836
  286. rem Windows Updates / Windows Update Manager - https://github.com/DavidXanatos/wumgr/releases
  287. rem Windows Updates Email Alerts / Microsoft Technical Security Notifications - https://www.microsoft.com/en-us/msrc/technical-security-notifications
  288.  
  289.  
  290. rem ============= Remove various files, folders, startup entries and policies ==============
  291.  
  292.  
  293. rem Take ownership of Desktop
  294. takeown /s %computername% /u %username% /f "%SystemDrive%\Users\Public\Desktop" /r /d y
  295. icacls "%SystemDrive%\Users\Public\Desktop" /grant:r %username%:(OI)(CI)F /t /l /q /c
  296. takeown /s %computername% /u %username% /f "%USERPROFILE%\Desktop" /r /d y
  297. icacls "%USERPROFILE%\Desktop" /grant:r %username%:(OI)(CI)F /t /l /q /c
  298.  
  299. rem Remove user account
  300. net user defaultuser0 /delete
  301.  
  302. rem Remove random files/folders - https://github.com/MoscaDotTo/Winapp2/blob/master/Winapp3/Winapp3.ini
  303. del "%AppData%\Microsoft\Windows\Recent\*" /s /f /q
  304. del "%WINDIR%\System32\sru\*" /s /f /q
  305. rd "%SystemDrive%\AMD" /s /q
  306. rd "%SystemDrive%\PerfLogs" /s /q
  307. rd "%SystemDrive%\Recovery" /s /q
  308. rd "%ProgramData%\Microsoft\Diagnosis" /s /q
  309. rd "%ProgramData%\Microsoft\Search" /s /q
  310. rd "%ProgramData%\Microsoft\Windows Security Health" /s /q
  311. rd "%AppData%\ArtifexMundi\SparkPromo" /s /q
  312. rd "%LocalAppData%\MicrosoftEdge" /s /q
  313. rd "%LocalAppData%\Microsoft\Internet Explorer" /s /q
  314. rd "%LocalAppData%\Microsoft\Windows\AppCache" /s /q
  315. rd "%LocalAppData%\Microsoft\Windows\History" /s /q
  316. rd "%LocalAppData%\Microsoft\Windows\IECompatCache" /s /q
  317. rd "%LocalAppData%\Microsoft\Windows\IECompatUaCache" /s /q
  318. rd "%LocalAppData%\Microsoft\Windows\INetCache" /s /q
  319. rd "%LocalAppData%\Microsoft\Windows\INetCookies" /s /q
  320. rd "%LocalAppData%\Microsoft\Windows\WebCache" /s /q
  321. rd "%LocalAppData%\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB" /s /q
  322. rd "C:\Users\Mikai\3D Objects" /s /q
  323. rem rd "C:\Users\Mikai\Documents" /s /q
  324. rd "C:\Users\Mikai\Favorites" /s /q
  325. rd "C:\Users\Mikai\Links" /s /q
  326. rd "C:\Users\Mikai\Music" /s /q
  327. rd "C:\Users\Mikai\Searches" /s /q
  328.  
  329. rem Remove/Rebuild Font Cache
  330. del "%WinDir%\ServiceProfiles\LocalService\AppData\Local\FontCache\*FontCache*"/s /f /q
  331. del "%WinDir%\System32\FNTCACHE.DAT" /s /f /q
  332.  
  333. rem Remove Windows Powershell (to restore run "sfc /scannow")
  334. rem http://www.malwaretech.com/2017/02/lets-unpack-dridex-loader.html
  335. rem https://blog.netspi.com/15-ways-to-bypass-the-powershell-execution-policy
  336. rem https://www.mrg-effitas.com/current-state-of-malicious-powershell-script-blocking
  337. rem https://enigma0x3.net/2016/08/15/fileless-uac-bypass-using-eventvwr-exe-and-registry-hijacking
  338. taskkill /im PowerShell.exe /f
  339. taskkill /im PowerShell_ISE.exe /f
  340. takeown /s %computername% /u %username% /f "%ProgramFiles%\WindowsPowerShell"
  341. icacls "%ProgramFiles%\WindowsPowerShell" /grant:r %username%:(OI)(CI)F /t /l /q /c
  342. rd "%ProgramFiles%\WindowsPowerShell" /s /q
  343. takeown /s %computername% /u %username% /f "%ProgramFiles(x86)%\WindowsPowerShell"
  344. icacls "%ProgramFiles(x86)%\WindowsPowerShell" /grant:r %username%:(OI)(CI)F /t /l /q /c
  345. rd "%ProgramFiles(x86)%\WindowsPowerShell" /s /q
  346. takeown /s %computername% /u %username% /f "%WinDir%\System32\WindowsPowerShell"
  347. icacls "%WinDir%\System32\WindowsPowerShell" /grant:r %username%:(OI)(CI)F /t /l /q /c
  348. rd "%WinDir%\System32\WindowsPowerShell" /s /q
  349. takeown /s %computername% /u %username% /f "%WinDir%\SysWOW64\WindowsPowerShell"
  350. icacls "%WinDir%\SysWOW64\WindowsPowerShell" /grant:r %username%:(OI)(CI)F /t /l /q /c
  351. rd "%WinDir%\SysWOW64\WindowsPowerShell" /s /q
  352.  
  353. rem Remove Startup Folders
  354. takeown /s %computername% /u %username% /f "%ProgramData%\Microsoft\Windows\Start Menu\Programs\Startup"
  355. icacls "%ProgramData%\Microsoft\Windows\Start Menu\Programs\Startup" /grant:r %username%:(OI)(CI)F /t /l /q /c
  356. del "%ProgramData%\Microsoft\Windows\Start Menu\Programs\Startup\*" /s /f /q
  357. del "%AppData%\Microsoft\Windows\Start Menu\Programs\Startup\*" /s /f /q
  358.  
  359. rem Remove random reg keys (Startup/Privacy/Policies/Malware related)
  360. reg delete "HKCU\Software\Classes\ms-settings\shell\open" /f
  361. reg delete "HKCU\Software\Microsoft\Command Processor" /v "AutoRun" /f
  362. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\AdvertisingInfo" /f
  363. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU" /f
  364. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved" /f
  365. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\TypedPaths" /f
  366. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\WordWheelQuery" /f
  367. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\PackagedAppXDebug" /f
  368. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies" /f
  369. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /f
  370. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce" /f
  371. reg delete "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows" /v "Load" /f
  372. reg delete "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Shell" /f
  373. reg delete "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell" /f
  374. reg delete "HKCU\Software\Policies" /f
  375. reg delete "HKLM\Software\Microsoft\Command Processor" /v "AutoRun" /f
  376. reg delete "HKLM\Software\Microsoft\Policies" /f
  377. reg delete "HKLM\Software\Microsoft\Tracing" /f
  378. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\AppModelUnlock" /f
  379. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" /f
  380. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler" /f
  381. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" /f
  382. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved" /f
  383. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies" /f
  384. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Run" /f
  385. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce" /f
  386. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx" /f
  387. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad" /f
  388. reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsStore\WindowsUpdate" /f
  389. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Font Drivers" /f
  390. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options" /f
  391. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Terminal Server" /f
  392. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows" /v "AppInit_DLLs" /f
  393. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Shell" /f
  394. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Userinit" /f
  395. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "VMApplet" /f
  396. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AlternateShells" /f
  397. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell" /f
  398. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman" /f
  399. reg delete "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit" /f
  400. reg delete "HKLM\Software\Policies" /f
  401. reg delete "HKLM\Software\WOW6432Node\Microsoft\Policies" /f
  402. reg delete "HKLM\Software\WOW6432Node\Microsoft\Tracing" /f
  403. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" /f
  404. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" /f
  405. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce" /f
  406. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnceEx" /f
  407. reg delete "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies" /f
  408. reg delete "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsStore\WindowsUpdate" /f
  409. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options" /f
  410. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows" /v "AppInit_DLLs" /f
  411. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Shell" /f
  412. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Userinit" /f
  413. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "VMApplet" /f
  414. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\AlternateShells" /f
  415. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell" /f
  416. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman" /f
  417. reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit" /f
  418. reg delete "HKLM\Software\WOW6432Node\Policies" /f
  419. reg delete "HKLM\System\CurrentControlSet\Control\Keyboard Layout" /v "Scancode Map" /f
  420. reg delete "HKLM\System\CurrentControlSet\Control\SafeBoot" /v "AlternateShell" /f
  421. reg delete "HKLM\System\CurrentControlSet\Control\SecurePipeServers\winreg" /f
  422. reg delete "HKLM\System\CurrentControlSet\Control\Session Manager" /v "BootExecute" /f
  423. reg delete "HKLM\System\CurrentControlSet\Control\Session Manager" /v "Execute" /f
  424. reg delete "HKLM\System\CurrentControlSet\Control\Session Manager" /v "SETUPEXECUTE" /f
  425. reg delete "HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd" /v "StartupPrograms" /f
  426.  
  427.  
  428. rem =========================== Restore essential startup entries ==========================
  429.  
  430.  
  431. rem Run bcdedit command to check for the current status / Yes = True / No = False
  432. rem https://msdn.microsoft.com/en-us/library/windows/hardware/ff542202(v=vs.85).aspx
  433. bcdedit /deletevalue {current} safeboot
  434. bcdedit /deletevalue {current} safebootalternateshell
  435. bcdedit /deletevalue {current} removememory
  436. bcdedit /deletevalue {current} truncatememory
  437. bcdedit /deletevalue {current} useplatformclock
  438. bcdedit /deletevalue {default} safeboot
  439. bcdedit /deletevalue {default} safebootalternateshell
  440. bcdedit /deletevalue {default} removememory
  441. bcdedit /deletevalue {default} truncatememory
  442. bcdedit /deletevalue {default} useplatformclock
  443. bcdedit /set {bootmgr} displaybootmenu no
  444. bcdedit /set {current} advancedoptions false
  445. bcdedit /set {current} bootems no
  446. bcdedit /set {current} bootmenupolicy legacy
  447. bcdedit /set {current} bootstatuspolicy IgnoreAllFailures
  448. bcdedit /set {current} disabledynamictick yes
  449. bcdedit /set {current} recoveryenabled no
  450. bcdedit /set {default} advancedoptions false
  451. bcdedit /set {default} bootems no
  452. bcdedit /set {default} bootmenupolicy legacy
  453. bcdedit /set {default} bootstatuspolicy IgnoreAllFailures
  454. bcdedit /set {default} disabledynamictick yes
  455. bcdedit /set {default} recoveryenabled no
  456.  
  457. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "7 Taskbar Tweaker" /t REG_SZ /d "\"%AppData%\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe\" -hidewnd" /f
  458. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "POP Peeper" /t REG_SZ /d "\"%ProgramFiles% (x86)\POP Peeper\poppeeper.exe\" -min" /f
  459. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Run" /v "EvtMgr6" /t REG_SZ /d "%ProgramFiles%\Logitech\SetPointP\SetPoint.exe" /f
  460. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Shell" /t REG_SZ /d "explorer.exe" /f
  461. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Userinit" /t REG_SZ /d "C:\Windows\System32\userinit.exe," /f
  462. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "Shell" /t REG_SZ /d "explorer.exe" /f
  463. reg add "HKLM\System\CurrentControlSet\Control\Session Manager" /v "BootExecute" /t REG_MULTI_SZ /d "autocheck autochk *" /f
  464. reg add "HKLM\System\CurrentControlSet\Control\Session Manager" /v "SETUPEXECUTE" /t REG_MULTI_SZ /d "" /f
  465.  
  466.  
  467. rem =================================== Software Setup =====================================
  468.  
  469.  
  470. rem 7-zip
  471. reg add "HKCU\Software\7-Zip\Compression" /v "Archiver" /t "REG_SZ" /d "7z" /f
  472. reg add "HKCU\Software\7-Zip\Compression" /v "Level" /t "REG_DWORD" /d "9" /f
  473. reg add "HKCU\Software\7-Zip\Compression\Options\7z" /v "Level" /t "REG_DWORD" /d "9" /f
  474. reg add "HKCU\Software\7-Zip\Options" /v "CascadedMenu" /t "REG_DWORD" /d "1" /f
  475. reg add "HKCU\Software\7-Zip\Options" /v "ContextMenu" /t "REG_DWORD" /d "262" /f
  476.  
  477. rem 7+ Taskbar Tweaker
  478. reg add "HKCU\Software\7 Taskbar Tweaker" /v "hidetray" /t "REG_DWORD" /d "1" /f
  479. reg add "HKCU\Software\7 Taskbar Tweaker" /v "updcheck" /t "REG_DWORD" /d "0" /f
  480. reg add "HKCU\Software\7 Taskbar Tweaker" /v "updcheckauto" /t "REG_DWORD" /d "0" /f
  481. reg add "HKCU\Software\7 Taskbar Tweaker\OptionsEx" /v "w10_large_icons" /t "REG_DWORD" /d "1" /f
  482.  
  483. rem Logitech Setpoint
  484. taskkill /im LogiAppBroker.exe /f
  485. taskkill /im LogitechUpdate.exe /f
  486. taskkill /im LULnchr.exe /f
  487. taskkill /im KHALMNPR.exe /f
  488. taskkill /im Setpoint.exe /f
  489. del "%ProgramFiles%\Logitech\SetPointP\LogiAppBroker.exe" /s /f /q
  490. del "%ProgramFiles%\Logitech\SetPointP\msvcp110.dll" /s /f /q
  491. rd "%ProgramFiles%\Common Files\LogiShrd\sp6\LU1" /s /q
  492. rd "%ProgramFiles%\Common Files\LogiShrd\Unifying\LU" /s /q
  493.  
  494. rem Notepad
  495. reg add "HKCU\Software\Microsoft\Notepad" /v "iWindowPosDX" /t REG_DWORD /d "1934" /f
  496. reg add "HKCU\Software\Microsoft\Notepad" /v "iWindowPosDY" /t REG_DWORD /d "651" /f
  497. reg add "HKCU\Software\Microsoft\Notepad" /v "iWindowPosX" /t REG_DWORD /d "4294967289" /f
  498. reg add "HKCU\Software\Microsoft\Notepad" /v "iWindowPosY" /t REG_DWORD /d "436" /f
  499.  
  500. rem Regedit
  501. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit" /v "View" /t REG_BINARY /d "2c0000000000000001000000fffffffffffffffffffffffffffffffff8ffffff0000000086070000ee0100002f01000027010000780000002502000003000000" /f
  502.  
  503. rem TruckersMP
  504. rem takeown /s %computername% /u %username% /f "%ProgramData%\TruckersMP" /r /d y
  505. takeown /f "%ProgramData%\TruckersMP" /a
  506. reg add "HKLM\Software\TruckersMP" /v "InstallDir" /t REG_SZ /d "D:\TruckersMP Launcher" /f
  507. reg add "HKLM\Software\TruckersMP" /v "InstallLocationETS2" /t REG_SZ /d "D:\Steam\steamapps\common\Euro Truck Simulator 2" /f
  508.  
  509. rem XnView
  510. reg add "HKCU\Software\XnView" /v "UseRegistry" /t "REG_DWORD" /d "1" /f
  511. reg add "HKCU\Software\XnView\Browser" /v "ShowToolTips" /t "REG_DWORD" /d "0" /f
  512. reg add "HKCU\Software\XnView\Browser" /v "StartupDirectory" /t "REG_SZ" /d "Z:\Desktop" /f
  513. reg add "HKCU\Software\XnView\Browser" /v "StartupIn" /t "REG_DWORD" /d "2" /f
  514. reg add "HKCU\Software\XnView\Capture" /v "Delay" /t "REG_DWORD" /d "2" /f
  515. reg add "HKCU\Software\XnView\Capture" /v "Directory" /t "REG_SZ" /d "Z:\Desktop" /f
  516. reg add "HKCU\Software\XnView\Capture" /v "HotKey" /t "REG_DWORD" /d "9" /f
  517. reg add "HKCU\Software\XnView\Capture" /v "IncludeCursor" /t "REG_DWORD" /d "0" /f
  518. reg add "HKCU\Software\XnView\Capture" /v "Method" /t "REG_DWORD" /d "0" /f
  519. reg add "HKCU\Software\XnView\Capture" /v "Multiple" /t "REG_DWORD" /d "1" /f
  520. reg add "HKCU\Software\XnView\Capture" /v "SaveIntoFile" /t "REG_DWORD" /d "1" /f
  521. reg add "HKCU\Software\XnView\Start" /v "MaximizeXnviewAtStartup" /t "REG_DWORD" /d "1" /f
  522. reg add "HKCU\Software\XnView\Start" /v "OnlyOneInstance" /t "REG_DWORD" /d "1" /f
  523. reg add "HKCU\Software\XnView\Start" /v "PathSave" /t "REG_SZ" /d "Z:\Desktop" /f
  524. reg add "HKCU\Software\XnView\Start" /v "SavePosition" /t "REG_DWORD" /d "0" /f
  525. reg add "HKCU\Software\XnView\Start" /v "ShowSaveDlg" /t "REG_DWORD" /d "0" /f
  526.  
  527.  
  528. rem =========================== Windows Setup plus Manual Config ===========================
  529.  
  530.  
  531. rem Windows Setup 1 (Basics plus Manual software install) - https://pastebin.com/CKQed9ZX
  532. rem Windows Setup 2 (Install drivers/software plus Manual Config) - https://pastebin.com/Lxe09qsU
  533. rem Disable Windows Defender - https://pastebin.com/kYCVzZPz (run twice to disable WD services, but disable tamper protection first)
  534.  
  535.  
  536. rem ==================================== Windows Drivers ===================================
  537.  
  538.  
  539. rem It is not possible to uninstall network adapters since 1803
  540. rem https://social.technet.microsoft.com/Forums/en-US/38e53f34-a607-4368-9d9b-7acba1d32b80/cannot-uninstall-protocols-such-as-client-for-microsoft-networks
  541.  
  542. rem AF-UNIX socket provider / Default - 1
  543. reg add "HKLM\System\CurrentControlSet\Services\afunix" /v "Start" /t REG_DWORD /d "4" /f
  544.  
  545. rem Background Activity Moderator Driver / Default - 1
  546. reg add "HKLM\System\CurrentControlSet\Services\bam" /v "Start" /t REG_DWORD /d "4" /f
  547.  
  548. rem CD-ROM Driver / Default - 1
  549. reg add "HKLM\System\CurrentControlSet\Services\cdrom" /v "Start" /t REG_DWORD /d "4" /f
  550.  
  551. rem Link-Layer Topology Discovery Responder / Default - 2
  552. reg add "HKLM\System\CurrentControlSet\Services\rspndr" /v "Start" /t REG_DWORD /d "4" /f
  553.  
  554. rem Link-Layer Topology Discovery Mapper I/O Driver / Default - 2
  555. reg add "HKLM\System\CurrentControlSet\Services\lltdio" /v "Start" /t REG_DWORD /d "4" /f
  556.  
  557. rem Microsoft LLDP Protocol Driver / Default - 2
  558. reg add "HKLM\System\CurrentControlSet\Services\MsLldp" /v "Start" /t REG_DWORD /d "4" /f
  559.  
  560. rem Microsoft Hyper-V Virtualization Infrastructure Driver / Default - 3
  561. reg add "HKLM\System\CurrentControlSet\Services\Vid" /v "Start" /t REG_DWORD /d "4" /f
  562.  
  563. rem Microsoft Virtual Network Adapter Enumerator / Default - 3
  564. reg add "HKLM\System\CurrentControlSet\Services\NdisVirtualBus" /v "Start" /t REG_DWORD /d "4" /f
  565.  
  566. rem NativeWifi Miniport Driver / Default - 3
  567. reg add "HKLM\System\CurrentControlSet\Services\NativeWifiP" /v "Start" /t REG_DWORD /d "4" /f
  568.  
  569. rem QoS for storage I/O traffic / Default - 2
  570. reg add "HKLM\System\CurrentControlSet\Services\storqosflt" /v "Start" /t REG_DWORD /d "4" /f
  571.  
  572. rem QoS Multimeda Class Scheduler / Default - 2
  573. reg add "HKLM\System\CurrentControlSet\Services\MMCSS" /v "Start" /t REG_DWORD /d "4" /f
  574.  
  575. rem QoS Packet Scheduler / Default - 1
  576. reg add "HKLM\System\CurrentControlSet\Services\Psched" /v "Start" /t REG_DWORD /d "4" /f
  577.  
  578. rem Named pipe service trigger provider / Default - 1
  579. rem https://msdn.microsoft.com/en-us/library/windows/desktop/aa365590(v=vs.85).aspx
  580. reg add "HKLM\System\CurrentControlSet\Services\npsvctrig" /v "Start" /t REG_DWORD /d "4" /f
  581.  
  582. rem NetBIOS Interface / Default - 1
  583. reg add "HKLM\System\CurrentControlSet\Services\NetBIOS" /v "Start" /t REG_DWORD /d "4" /f
  584.  
  585. rem NetBIOS over TCP/IP / Default - 1
  586. reg add "HKLM\System\CurrentControlSet\Services\NetBT" /v "Start" /t REG_DWORD /d "4" /f
  587.  
  588. rem Remote Access IP ARP Driver / Default - 2
  589. reg add "HKLM\System\CurrentControlSet\Services\wanarp" /v "Start" /t REG_DWORD /d "4" /f
  590.  
  591. rem Remote Desktop Device Redirector Bus Driver / Default - 3
  592. reg add "HKLM\System\CurrentControlSet\Services\rdpbus" /v "Start" /t REG_DWORD /d "4" /f
  593.  
  594. rem System Guard Runtime Monitor Agent Driver / Default - 0
  595. rem https://www.reddit.com/r/PUBATTLEGROUNDS/comments/8jgz6g/disabling_control_flow_guard_in_windows_defender
  596. reg add "HKLM\System\CurrentControlSet\Services\SgrmAgent" /v "Start" /t REG_DWORD /d "4" /f
  597.  
  598. rem Storage Spaces Driver / Default - 0
  599. reg add "HKLM\System\CurrentControlSet\Services\spaceport" /v "Start" /t REG_DWORD /d "4" /f
  600.  
  601. rem The framework for network mini-redirectors / Default - 1
  602. rem https://docs.microsoft.com/en-us/windows-hardware/drivers/ifs/the-redirected-drive-buffering-subsystem
  603. reg add "HKLM\System\CurrentControlSet\Services\rdbss" /v "Start" /t REG_DWORD /d "4" /f
  604.  
  605. rem Virtual WiFi Filter Driver / Default - 1
  606. reg add "HKLM\System\CurrentControlSet\Services\vwififlt" /v "Start" /t REG_DWORD /d "4" /f
  607.  
  608.  
  609. rem =========================== Windows Defender Security Center ===========================
  610.  
  611.  
  612. rem ________________________________________________________________________________________
  613. rem https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0290
  614.  
  615. rem Windows Defender Security Center service
  616. reg add "HKLM\System\CurrentControlSet\Services\SecurityHealthService" /v "Start" /t REG_DWORD /d "4" /f
  617.  
  618.  
  619. rem =========================== Windows Defender Security Centre ===========================
  620. rem -------------------------------- App & browser control ---------------------------------
  621.  
  622. rem Off - Disable Windows SmartScreen / On - Enable Windows SmartScreen
  623. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "SmartScreenEnabled" /t REG_SZ /d "Off" /f
  624.  
  625. rem 0 - Disable SmartScreen Filter in Microsoft Edge / 1 - Enable
  626. reg add "HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\PhishingFilter" /v "EnabledV9" /t REG_DWORD /d "0" /f
  627.  
  628. rem 0 - Disable Windows SmartScreen for Windows Store Apps / 1 - Enable
  629. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\AppHost" /v "EnableWebContentEvaluation" /t "REG_DWORD" /d "0" /f
  630.  
  631. rem ________________________________________________________________________________________
  632. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "EnableSmartScreen" /t "REG_DWORD" /d "0" /f
  633. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SmartScreen" /v "ConfigureAppInstallControl" /t REG_SZ /d "Anywhere" /f
  634. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SmartScreen" /v "ConfigureAppInstallControlEnabled" /t "REG_DWORD" /d "0" /f
  635.  
  636. rem Remove Smartscreen (to restore run "sfc /scannow")
  637. takeown /s %computername% /u %username% /f "%WinDir%\System32\smartscreen.exe"
  638. icacls "%WinDir%\System32\smartscreen.exe" /grant:r %username%:F
  639. taskkill /im smartscreen.exe /f
  640. del "%WinDir%\System32\smartscreen.exe" /s /f /q
  641.  
  642.  
  643. rem =========================== Windows Defender Security Center ===========================
  644. rem ----------------------------- Device performance & health ------------------------------
  645.  
  646. rem ________________________________________________________________________________________
  647. rem Specifies how the System responds when a user tries to install device driver files that are not digitally signed / 00 - Ignore / 01 - Warn / 02 - Block
  648. reg add "HKLM\Software\Microsoft\Driver Signing" /v "Policy" /t REG_BINARY /d "01" /f
  649.  
  650. rem Prevent device metadata retrieval from the Internet / Do not automatically download manufacturers’ apps and custom icons available for your devices
  651. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Device Metadata" /v "PreventDeviceMetadataFromNetwork" /t REG_DWORD /d "1" /f
  652. sc config DsmSvc start= disabled
  653.  
  654. rem Do you want Windows to download driver Software / 0 - Never / 1 - Allways / 2 - Install driver Software, if it is not found on my computer
  655. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\DriverSearching" /v "SearchOrderConfig" /t REG_DWORD /d "0" /f
  656.  
  657. rem Specify search order for device driver source locations
  658. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\DriverSearching" /v "DontSearchWindowsUpdate" /t REG_DWORD /d "1" /f
  659. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\DriverSearching" /v "DriverUpdateWizardWuSearchEnabled" /t REG_DWORD /d "0" /f
  660.  
  661. rem 1 - Disable driver updates in Windows Update
  662. reg add "HKLM\Software\Microsoft\PolicyManager\current\device\Update" /v "ExcludeWUDriversInQualityUpdate" /t REG_DWORD /d "1" /f
  663. reg add "HKLM\Software\Microsoft\PolicyManager\default\device\Update" /v "ExcludeWUDriversInQualityUpdate" /t REG_DWORD /d "1" /f
  664. reg add "HKLM\Software\Microsoft\WindowsUpdate\UX\Settings" /v "ExcludeWUDriversInQualityUpdate" /t REG_DWORD /d "1" /f
  665. reg add "HKLM\Software\Policies\Microsoft\Windows\WindowsUpdate" /v "ExcludeWUDriversInQualityUpdate" /t REG_DWORD /d "1" /f
  666.  
  667. rem Avoid the driver signing enforcement for EV cert / SHA256 Microsoft Windows signed drivers which is further enforced via Secure Boot
  668. rem reg add "HKLM\System\ControlSet001\Control\CI\Policy" /v "UpgradedSystem" /t REG_DWORD /d "1" /f
  669.  
  670.  
  671. rem =========================== Windows Defender Security Center ===========================
  672. rem ------------------------------------ Family Options ------------------------------------
  673.  
  674. rem ________________________________________________________________________________________
  675. schtasks /Change /TN "Microsoft\Windows\Shell\FamilySafetyMonitor" /Disable
  676. schtasks /Change /TN "Microsoft\Windows\Shell\FamilySafetyRefreshTask" /Disable
  677.  
  678.  
  679. rem =========================== Windows Defender Security Center ===========================
  680. rem ---------------------------- Firewall & network protection -----------------------------
  681.  
  682. rem Enable Windows Firewall / AllProfiles / CurrentProfile / DomainProfile / PrivateProfile / PublicProfile
  683. rem https://technet.microsoft.com/en-us/library/cc771920(v=ws.10).aspx
  684. netsh advfirewall set allprofiles state on
  685.  
  686. rem Block all inbound network traffic and all outbound except allowed apps
  687. netsh advfirewall set DomainProfile firewallpolicy blockinboundalways,blockoutbound
  688. netsh advfirewall set PrivateProfile firewallpolicy blockinboundalways,blockoutbound
  689. netsh advfirewall set PublicProfile firewallpolicy blockinboundalways,blockoutbound
  690.  
  691. rem Remove All Windows Firewall Rules
  692. netsh advfirewall firewall delete rule name=all
  693. rem reg delete "HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /f
  694.  
  695. rem Windows Firewall Rules
  696. rem netsh advfirewall firewall add rule name="telemetry_watson.telemetry.microsoft.com" dir=out action=block remoteip=65.55.252.43,65.52.108.29 enable=yes
  697. netsh advfirewall firewall add rule name="COD MW2 DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
  698. netsh advfirewall firewall add rule name="COD MW2 TCP" dir=out action=allow protocol=TCP remoteport=27015 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
  699. netsh advfirewall firewall add rule name="COD MW2 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe"
  700. netsh advfirewall firewall add rule name="COD MW3 DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
  701. netsh advfirewall firewall add rule name="COD MW3 TCP" dir=out action=allow protocol=TCP remoteport=3074 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
  702. netsh advfirewall firewall add rule name="COD MW3 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="D:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe"
  703. netsh advfirewall firewall add rule name="Discord DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%LOCALAPPDATA%\Discord\app-0.0.305\Discord.exe"
  704. netsh advfirewall firewall add rule name="Discord TCP" dir=out action=allow protocol=TCP remoteport=443 program="%LOCALAPPDATA%\Discord\app-0.0.305\Discord.exe"
  705. netsh advfirewall firewall add rule name="Discord UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="%LOCALAPPDATA%\Discord\app-0.0.305\Discord.exe"
  706. netsh advfirewall firewall add rule name="Discord Update DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%LOCALAPPDATA%\Discord\Update.exe"
  707. netsh advfirewall firewall add rule name="Discord Update TCP" dir=out action=allow protocol=TCP remoteport=443 program="%LOCALAPPDATA%\Discord\Update.exe"
  708. netsh advfirewall firewall add rule name="DriverEasy DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
  709. netsh advfirewall firewall add rule name="DriverEasy TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%ProgramFiles%\Easeware\DriverEasy\DriverEasy.exe"
  710. netsh advfirewall firewall add rule name="ETS2 DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe"
  711. netsh advfirewall firewall add rule name="ETS2 TCP" dir=out action=allow protocol=TCP remoteport=80,443,4455 program="D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe"
  712. netsh advfirewall firewall add rule name="ETS2 UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe"
  713. netsh advfirewall firewall add rule name="ETS2 MP DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\TruckersMP Launcher\Launcher.exe"
  714. netsh advfirewall firewall add rule name="ETS2 MP TCP" dir=out action=allow protocol=TCP remoteip=104.16.0.0-104.31.255.255 remoteport=80 program="D:\TruckersMP Launcher\Launcher.exe"
  715. netsh advfirewall firewall add rule name="ETS2 MP UDP" dir=out action=allow protocol=UDP remoteip=0.0.0.0 remoteport=1025-65535 program="D:\TruckersMP Launcher\Launcher.exe"
  716. netsh advfirewall firewall add rule name="Hitman DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\steamapps\common\HITMAN2\Retail\HITMAN2.exe"
  717. netsh advfirewall firewall add rule name="Hitman TCP" dir=out action=allow protocol=TCP remoteport=443 program="D:\Steam\steamapps\common\HITMAN2\Retail\HITMAN2.exe"
  718. netsh advfirewall firewall add rule name="IP Info DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\NirLauncher\NirSoft\ipnetinfo.exe"
  719. netsh advfirewall firewall add rule name="IP Info TCP" dir=out action=allow protocol=TCP remoteport=43 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\NirLauncher\NirSoft\ipnetinfo.exe"
  720. netsh advfirewall firewall add rule name="OBS DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%ProgramFiles%\obs-studio\bin\64bit\obs64.exe"
  721. netsh advfirewall firewall add rule name="OBS TCP" dir=out action=allow protocol=TCP remoteport=443,1935 program="%ProgramFiles%\obs-studio\bin\64bit\obs64.exe"
  722. netsh advfirewall firewall add rule name="OBS Browser DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%ProgramFiles%\obs-studio\bin\64bit\obs-browser-page.exe"
  723. netsh advfirewall firewall add rule name="OBS Browser TCP" dir=out action=allow protocol=TCP remoteport=443,1935 program="%ProgramFiles%\obs-studio\bin\64bit\obs-browser-page.exe"
  724. netsh advfirewall firewall add rule name="Odio DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\Odio\odio.exe"
  725. netsh advfirewall firewall add rule name="Odio TCP" dir=out action=allow protocol=TCP remoteport=80,443,1025-65535 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\Odio\odio.exe"
  726. netsh advfirewall firewall add rule name="Odio UDP" dir=out action=allow protocol=UDP remoteport=5355 remoteip=224.0.0.252 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\Odio\odio.exe"
  727. netsh advfirewall firewall add rule name="PatchMyPC DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\PatchMyPc\PatchMyPC.exe"
  728. netsh advfirewall firewall add rule name="PatchMyPC TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\PatchMyPc\PatchMyPC.exe"
  729. netsh advfirewall firewall add rule name="POP Peeper DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
  730. netsh advfirewall firewall add rule name="POP Peeper IMAP Azet.sk" dir=out action=allow protocol=TCP remoteip=91.235.52.0-91.235.55.255 remoteport=587,993 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
  731. netsh advfirewall firewall add rule name="POP Peeper IMAP Mail.ru" dir=out action=allow protocol=TCP remoteip=94.100.176.0-94.100.183.255,217.69.136.0-217.69.141.255 remoteport=143,587 program="%ProgramFiles(x86)%\POP Peeper\POPPeeper.exe"
  732. netsh advfirewall firewall add rule name="Process Hacker DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%ProgramFiles%\Process Hacker\ProcessHacker.exe"
  733. netsh advfirewall firewall add rule name="Process Hacker VT TCP" dir=out action=allow protocol=TCP remoteip=74.125.34.46 remoteport=443 program="%ProgramFiles%\Process Hacker\ProcessHacker.exe"
  734. rem netsh advfirewall firewall add rule name="Square Enix DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe"
  735. rem netsh advfirewall firewall add rule name="Square Enix TCP" dir=out action=allow protocol=TCP remoteport=80,443,4455 program="D:\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe"
  736. rem netsh advfirewall firewall add rule name="Svchost DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="%WINDIR%\System32\svchost.exe"
  737. rem netsh advfirewall firewall add rule name="Svchost TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="%WINDIR%\System32\svchost.exe"
  738. netsh advfirewall firewall add rule name="Steam DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\Steam.exe"
  739. netsh advfirewall firewall add rule name="Steam TCP" dir=out action=allow protocol=TCP remoteport=80,443,27015-27030,27050 program="D:\Steam\Steam.exe"
  740. netsh advfirewall firewall add rule name="Steam UDP" dir=out action=allow protocol=UDP remoteport=1025-65535 program="D:\Steam\Steam.exe"
  741. netsh advfirewall firewall add rule name="Steam Web DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe"
  742. netsh advfirewall firewall add rule name="Steam Web TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe"
  743. netsh advfirewall firewall add rule name="TOR Firefox TCP" dir=out action=allow protocol=TCP remoteip=127.0.0.1 remoteport=1025-65535 program="Z:\Desktop\Tor Browser\Browser\firefox.exe"
  744. netsh advfirewall firewall add rule name="TOR TCP" dir=out action=allow protocol=TCP remoteport=443,1025-65535 program="Z:\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe"
  745. netsh advfirewall firewall add rule name="Update Time DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
  746. netsh advfirewall firewall add rule name="Update Time UDP" dir=out action=allow protocol=UDP remoteport=123 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Downloads\Custom Tools\Added Custom Tools\UpdateTime.exe"
  747. netsh advfirewall firewall add rule name="WRT DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
  748. netsh advfirewall firewall add rule name="WRT TCP" dir=out action=allow protocol=TCP remoteport=80,443 program="D:\Software\Temp\Soft\Windows Repair Toolbox\Windows_Repair_Toolbox.exe"
  749. rem netsh advfirewall firewall add rule name="Yandex DNS" dir=out action=allow protocol=UDP remoteip=156.154.70.2,156.154.71.2 remoteport=53 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  750. netsh advfirewall firewall add rule name="Yandex DNS TCP" dir=out action=allow protocol=TCP remoteip=185.228.168.9,185.228.169.9 remoteport=8443 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  751. netsh advfirewall firewall add rule name="Yandex DNS UDP" dir=out action=allow protocol=UDP remoteip=77.88.8.78,185.228.168.9,185.228.169.9 remoteport=8443,15353 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  752. netsh advfirewall firewall add rule name="Yandex HTTP" dir=out action=allow protocol=TCP remoteport=80 remoteip=62.163.42.125,91.235.52.77,104.18.57.123,104.24.97.199,195.28.64.101,213.157.175.248 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  753. netsh advfirewall firewall add rule name="Yandex HTTPS" dir=out action=allow protocol=TCP remoteport=443 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  754. netsh advfirewall firewall add rule name="Yandex Sync" dir=out action=allow protocol=TCP remoteip=213.180.193.0-213.180.193.255 remoteport=443,5222 program="Z:\Yandex\YandexBrowser\Application\browser.exe"
  755.  
  756.  
  757. rem =========================== Windows Defender Security Center ===========================
  758. rem ------------------------------ Virus & threat protection -------------------------------
  759.  
  760. rem ________________________________________________________________________________________
  761. rem https://technet.microsoft.com/en-us/itpro/powershell/windows/defender/set-mppreference
  762. reg delete "HKLM\Software\Policies\Microsoft\Windows Defender" /f
  763. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableBehaviorMonitoring" /t REG_DWORD /d "1" /f
  764. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableIOAVProtection" /t REG_DWORD /d "1" /f
  765. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableOnAccessProtection" /t REG_DWORD /d "1" /f
  766. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableRealtimeMonitoring" /t REG_DWORD /d "1" /f
  767. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableScanOnRealtimeEnable" /t REG_DWORD /d "1" /f
  768. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\Reporting" /v "DisableEnhancedNotifications" /t REG_DWORD /d "1" /f
  769. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "DisableBlockAtFirstSeen" /t REG_DWORD /d "1" /f
  770. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SpynetReporting" /t REG_DWORD /d "0" /f
  771. reg add "HKLM\Software\Policies\Microsoft\Windows Defender\SpyNet" /v "SubmitSamplesConsent" /t REG_DWORD /d "2" /f
  772.  
  773. rem Disable WD services (not really working since 1903, keeping it for reference)
  774. reg add "HKLM\System\CurrentControlSet\Services\WdBoot" /v "Start" /t REG_DWORD /d "4" /f
  775. reg add "HKLM\System\CurrentControlSet\Services\WdFilter" /v "Start" /t REG_DWORD /d "4" /f
  776. reg add "HKLM\System\CurrentControlSet\Services\WdNisDrv" /v "Start" /t REG_DWORD /d "4" /f
  777. reg add "HKLM\System\CurrentControlSet\Services\WdNisSvc" /v "Start" /t REG_DWORD /d "4" /f
  778. reg add "HKLM\System\CurrentControlSet\Services\WinDefend" /v "Start" /t REG_DWORD /d "4" /f
  779.  
  780. rem Disable Logging
  781. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderApiLogger" /v "Start" /t REG_DWORD /d "0" /f
  782. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DefenderAuditLogger" /v "Start" /t REG_DWORD /d "0" /f
  783.  
  784. rem Disable Tasks
  785. schtasks /Change /TN "Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh" /Disable
  786. schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" /Disable
  787. schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Cleanup" /Disable
  788. schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" /Disable
  789. schtasks /Change /TN "Microsoft\Windows\Windows Defender\Windows Defender Verification" /Disable
  790.  
  791. rem Remove context menu
  792. reg delete "HKCR\*\shellex\ContextMenuHandlers\EPP" /f
  793. reg delete "HKCR\Directory\shellex\ContextMenuHandlers\EPP" /f
  794. reg delete "HKCR\Drive\shellex\ContextMenuHandlers\EPP" /f
  795.  
  796.  
  797. rem =========================== Windows Defender Security Center ===========================
  798. rem ------------------------------ Virus & threat protection -------------------------------
  799. rem .......................... Virus & threat protection settings ..........................
  800.  
  801. rem 1 - Disable Real-time protection
  802. reg add "HKLM\Software\Policies\Microsoft\Windows Defender" /v "DisableAntiSpyware" /t REG_DWORD /d "1" /f
  803. reg add "HKLM\Software\Policies\Microsoft\Windows Defender" /v "DisableAntiVirus" /t REG_DWORD /d "1" /f
  804.  
  805.  
  806. rem =================================== Windows Logging ====================================
  807.  
  808.  
  809. rem https://blogs.technet.microsoft.com/askperf/2009/10/04/windows-7-windows-server-2008-r2-unified-background-process-manager-ubpm
  810. rem https://msdn.microsoft.com/en-us/library/windows/desktop/aa363687(v=vs.85).aspx
  811. rem https://technet.microsoft.com/en-us/library/cc722404(v=ws.11).aspx
  812. rem DiagLog is required by Diagnostic Policy Service (Troubleshooting)
  813. rem EventLog-System/EventLog-Application are required by Windows Events Log Service
  814. rem perfmon
  815.  
  816. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\AppModel" /v "Start" /t REG_DWORD /d "0" /f
  817. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\AutoLogger-Diagtrack-Listener" /v "Start" /t REG_DWORD /d "0" /f
  818. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\Cellcore" /v "Start" /t REG_DWORD /d "0" /f
  819. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\Circular Kernel Context Logger" /v "Start" /t REG_DWORD /d "0" /f
  820. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\CShellCircular" /v "Start" /t REG_DWORD /d "0" /f
  821. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\CloudExperienceHostOobe" /v "Start" /t REG_DWORD /d "0" /f
  822. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\EventLog-Application" /v "Start" /t REG_DWORD /d "0" /f
  823. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\EventLog-Security" /v "Start" /t REG_DWORD /d "1" /f
  824. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\EventLog-System" /v "Start" /t REG_DWORD /d "0" /f
  825. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\DiagLog" /v "Start" /t REG_DWORD /d "0" /f
  826. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\FaceRecoTel" /v "Start" /t REG_DWORD /d "0" /f
  827. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\FaceUnlock" /v "Start" /t REG_DWORD /d "0" /f
  828. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\LwtNetLog" /v "Start" /t REG_DWORD /d "0" /f
  829. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\Microsoft-Windows-Rdp-Graphics-RdpIdd-Trace" /v "Start" /t REG_DWORD /d "0" /f
  830. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\NtfsLog" /v "Start" /t REG_DWORD /d "0" /f
  831. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\ReadyBoot" /v "Start" /t REG_DWORD /d "0" /f
  832. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\TileStore" /v "Start" /t REG_DWORD /d "0" /f
  833. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\Tpm" /v "Start" /t REG_DWORD /d "0" /f
  834. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\UBPM" /v "Start" /t REG_DWORD /d "0" /f
  835. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\WdiContextLog" /v "Start" /t REG_DWORD /d "0" /f
  836. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\WiFiDriverIHVSession" /v "Start" /t REG_DWORD /d "0" /f
  837. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\WiFiSession" /v "Start" /t REG_DWORD /d "0" /f
  838. reg add "HKLM\System\CurrentControlSet\Control\WMI\Autologger\WinPhoneCritical" /v "Start" /t REG_DWORD /d "0" /f
  839.  
  840.  
  841. rem ================================ Windows Error Reporting ===============================
  842.  
  843.  
  844. rem https://docs.microsoft.com/en-us/windows/desktop/wer/wer-settings
  845.  
  846. rem Disable Microsoft Support Diagnostic Tool MSDT
  847. reg add "HKLM\Software\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy" /v "DisableQueryRemoteServer" /t REG_DWORD /d "0" /f
  848. reg add "HKLM\Software\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy" /v "EnableQueryRemoteServer" /t REG_DWORD /d "0" /f
  849.  
  850. rem Disable System Debugger (Dr. Watson)
  851. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\AeDebug" /v "Auto" /t REG_SZ /d "0" /f
  852.  
  853. rem 1 - Disable Windows Error Reporting (WER)
  854. reg add "HKLM\Software\Microsoft\PCHealth\ErrorReporting" /v "DoReport" /t REG_DWORD /d "0" /f
  855. reg add "HKLM\Software\Microsoft\PCHealth\ErrorReporting" /v "ShowUI" /t REG_DWORD /d "0" /f
  856. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting" /v "Disabled" /t REG_DWORD /d "1" /f
  857. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting" /v "Disabled" /t REG_DWORD /d "1" /f
  858. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Error Reporting" /v "Disabled" /t REG_DWORD /d "1" /f
  859.  
  860. rem DefaultConsent / 1 - Always ask (default) / 2 - Parameters only / 3 - Parameters and safe data / 4 - All data
  861. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting\Consent" /v "DefaultConsent" /t REG_DWORD /d "0" /f
  862. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting\Consent" /v "DefaultOverrideBehavior" /t REG_DWORD /d "1" /f
  863. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting\Consent" /v "DefaultConsent" /t REG_DWORD /d "0" /f
  864. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting\Consent" /v "DefaultOverrideBehavior" /t REG_DWORD /d "1" /f
  865.  
  866. rem 1 - Disable WER sending second-level data
  867. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting" /v "DontSendAdditionalData" /t REG_DWORD /d "1" /f
  868. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting" /v "DontSendAdditionalData" /t REG_DWORD /d "1" /f
  869.  
  870. rem 1 - Disable WER crash dialogs, popups
  871. reg add "HKLM\Software\Microsoft\PCHealth\ErrorReporting" /v "ShowUI" /t REG_DWORD /d "0" /f
  872. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting" /v "DontShowUI" /t REG_DWORD /d "1" /f
  873. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting" /v "DontShowUI" /t REG_DWORD /d "1" /f
  874.  
  875. rem 1 - Disable WER logging
  876. reg add "HKCU\Software\Microsoft\Windows\Windows Error Reporting" /v "LoggingDisabled" /t REG_DWORD /d "1" /f
  877. reg add "HKLM\Software\Microsoft\Windows\Windows Error Reporting" /v "LoggingDisabled" /t REG_DWORD /d "1" /f
  878.  
  879. schtasks /Change /TN "Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate" /Disable
  880. schtasks /Change /TN "Microsoft\Windows\Windows Error Reporting\QueueReporting" /Disable
  881.  
  882. rem Windows Error Reporting Service
  883. sc config WerSvc start= disabled
  884.  
  885. rem Remove Windows Errror Reporting (to restore run "sfc /scannow")
  886. takeown /s %computername% /u %username% /f "%WinDir%\System32\WerFault.exe"
  887. icacls "%WinDir%\System32\WerFault.exe" /grant:r %username%:F
  888. taskkill /im WerFault.exe /f
  889. del "%WinDir%\System32\WerFault.exe" /s /f /q
  890.  
  891. takeown /s %computername% /u %username% /f "%WinDir%\SysWOW64\WerFault.exe"
  892. icacls "%WinDir%\SysWOW64\WerFault.exe" /grant:r %username%:F
  893. taskkill /im WerFault.exe /f
  894. del "%WinDir%\SysWOW64\WerFault.exe" /s /f /q
  895.  
  896. takeown /s %computername% /u %username% /f "%WinDir%\System32\WerFaultSecure.exe"
  897. icacls "%WinDir%\System32\WerFaultSecure.exe" /grant:r %username%:F
  898. taskkill /im WerFaultSecure.exe /f
  899. del "%WinDir%\System32\WerFaultSecure.exe" /s /f /q
  900.  
  901. takeown /s %computername% /u %username% /f "%WinDir%\SysWOW64\WerFaultSecure.exe"
  902. icacls "%WinDir%\SysWOW64\WerFaultSecure.exe" /grant:r %username%:F
  903. taskkill /im WerFaultSecure.exe /f
  904. del "%WinDir%\SysWOW64\WerFaultSecure.exe" /s /f /q
  905.  
  906. takeown /s %computername% /u %username% /f "%WinDir%\System32\wermgr.exe"
  907. icacls "%WinDir%\System32\wermgr.exe" /grant:r %username%:F
  908. taskkill /im wermgr.exe /f
  909. del "%WinDir%\System32\wermgr.exe" /s /f /q
  910.  
  911. takeown /s %computername% /u %username% /f "%WinDir%\SysWOW64\wermgr.exe"
  912. icacls "%WinDir%\SysWOW64\wermgr.exe" /grant:r %username%:F
  913. taskkill /im wermgr.exe /f
  914. del "%WinDir%\SysWOW64\wermgr.exe" /s /f /q
  915.  
  916.  
  917. rem =================================== Windows Explorer ===================================
  918. rem --------------------------------------- Options ----------------------------------------
  919. rem ....................................... General ........................................
  920.  
  921. rem 2 - Open File Explorer to Quick access / 1 - Open File Explorer to This PC / 3 - Open File Explorer to Downloads
  922. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "LaunchTo" /t REG_DWORD /d "3" /f
  923.  
  924. rem Single-click to open an item (point to select)
  925. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "ShellState" /t REG_BINARY /d "2400000017a8000000000000000000000000000001000000130000000000000073000000" /f
  926.  
  927. rem 2 - Underline icon titles consistent with my browser / 3 - Underline icon titles only when I point at them
  928. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "IconUnderline" /t REG_DWORD /d "2" /f
  929.  
  930. rem 1 - Show recently used folders in Quick Access
  931. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "ShowRecent" /t REG_DWORD /d "0" /f
  932.  
  933. rem 1 - Show frequently folders in Quick Access
  934. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "ShowFrequent" /t REG_DWORD /d "0" /f
  935.  
  936.  
  937. rem =================================== Windows Explorer ===================================
  938. rem --------------------------------------- Options ----------------------------------------
  939. rem ........................................ View .........................................
  940.  
  941. rem Open Explorer - Choose the desired View - View - Options - View - Apply to Folders - OK - Close Explorer ASAP
  942. rem reg delete "HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags" /f
  943. rem reg delete "HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU" /f
  944. rem reg delete "HKCU\Software\Classes\Wow6432Node\Local Settings\Software\Microsoft\Windows\Shell\Bags" /f
  945. rem reg delete "HKCU\Software\Classes\Wow6432Node\Local Settings\Software\Microsoft\Windows\Shell\BagMRU" /f
  946. rem reg delete "HKCU\Software\Microsoft\Windows\Shell\Bags" /f
  947. rem reg delete "HKCU\Software\Microsoft\Windows\Shell\BagMRU" /f
  948. rem reg delete "HKCU\Software\Microsoft\Windows\ShellNoRoam\Bags" /f
  949. rem reg delete "HKCU\Software\Microsoft\Windows\ShellNoRoam\BagMRU" /f
  950. reg add "HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\AllFolders\Shell" /v "FolderType" /t REG_SZ /d "NotSpecified" /f
  951. rem taskkill /im explorer.exe /f & explorer.exe
  952.  
  953.  
  954. rem ________________________________________________________________________________________
  955. rem Remove Network from Navigation Panel
  956. rem Take Ownership of the Registry key - https://www.youtube.com/watch?v=M1l5ifYKefg
  957. reg add "HKCR\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\ShellFolder" /v "Attributes" /t REG_DWORD /d "2962489444" /f
  958.  
  959. rem 1 - Hide Quick access from This PC / 0 - Show
  960. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "HubMode" /t REG_DWORD /d "1" /f
  961.  
  962. rem Show/Hide - 3D Objects from This PC
  963. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  964. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{31C0DD25-9439-4F12-BF41-7FF4EDA38722}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  965.  
  966. rem Show/Hide - Desktop from This PC
  967. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  968. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  969.  
  970. rem Show/Hide - Documents from This PC
  971. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  972. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{f42ee2d3-909f-4907-8871-4c22fc0bf756}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  973.  
  974. rem Show/Hide - Downloads from This PC
  975. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  976. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{7d83ee9b-2244-4e70-b1f5-5393042af1e4}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  977.  
  978. rem Show/Hide - Movies/Videos from This PC
  979. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  980. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{35286a68-3c57-41a1-bbb1-0eae73d76c95}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  981.  
  982. rem Show/Hide - Music from This PC
  983. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  984. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{a0c69a99-21c8-4671-8703-7934162fcf1d}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Hide" /f
  985.  
  986. rem Show/Hide - Pictures from This PC
  987. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  988. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{0ddd015d-b06c-45d5-8c4c-f59713854639}\PropertyBag" /v "ThisPCPolicy" /t REG_SZ /d "Show" /f
  989.  
  990. rem Remove Desktop folder from This PC
  991. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}" /f
  992. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}" /f
  993.  
  994. rem Remove Documents folder from This PC
  995. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{d3162b92-9365-467a-956b-92703aca08af}" /f
  996. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{d3162b92-9365-467a-956b-92703aca08af}" /f
  997.  
  998. rem Remove Downloads folder from This PC
  999. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{088e3905-0323-4b02-9826-5d99428e115f}" /f
  1000. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{088e3905-0323-4b02-9826-5d99428e115f}" /f
  1001.  
  1002. rem Remove Movies folder from This PC
  1003. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a}" /f
  1004. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a}" /f
  1005.  
  1006. rem Remove Music folder from This PC on
  1007. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{3dfdf296-dbec-4fb4-81d1-6a3438bcf4de}" /f
  1008. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{3dfdf296-dbec-4fb4-81d1-6a3438bcf4de}" /f
  1009.  
  1010. rem Remove Pictures folder from This PC
  1011. rem reg delete "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{24ad3ad4-a569-4530-98e1-ab02f9417aa8}" /f
  1012. rem reg delete "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{24ad3ad4-a569-4530-98e1-ab02f9417aa8}" /f
  1013.  
  1014.  
  1015. rem =================================== Windows Explorer ===================================
  1016. rem --------------------------------------- Options ----------------------------------------
  1017. rem .................................. Advanced Settings ...................................
  1018.  
  1019. rem 1 - Show hidden files, folders and drives
  1020. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "Hidden" /t REG_DWORD /d "1" /f
  1021.  
  1022. rem 0 - Show extensions for known file types
  1023. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "HideFileExt" /t REG_DWORD /d "0" /f
  1024.  
  1025. rem 0 - Hide protected operating system files
  1026. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowSuperHidden" /t REG_DWORD /d "1" /f
  1027.  
  1028. rem 1 - Launch folder windows in a separate process
  1029. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "SeparateProcess" /t REG_DWORD /d "1" /f
  1030.  
  1031. rem 1 - Show Sync Provider Notifications in Windows Explorer (ADs)
  1032. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowSyncProviderNotifications" /t REG_DWORD /d "0" /f
  1033.  
  1034. rem 1 - Use Sharing Wizard
  1035. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "SharingWizardOn" /t REG_DWORD /d "0" /f
  1036.  
  1037. rem Navigation pane - 1 - Expand to open folder
  1038. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "NavPaneExpandToCurrentFolder" /t REG_DWORD /d "0" /f
  1039.  
  1040. rem ________________________________________________________________________________________
  1041. rem 0 - All of the components of Windows Explorer run a single process / 1 - All instances of Windows Explorer run in one process and the Desktop and Taskbar run in a separate process
  1042. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "DesktopProcess" /t REG_DWORD /d "1" /f
  1043.  
  1044. rem Yes - Use Inline AutoComplete in File Explorer and Run Dialog / No
  1045. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoComplete" /v "Append Completion" /t REG_SZ /d "No" /f
  1046.  
  1047. rem 0 - Do this for all current items checkbox / 1 - Disabled
  1048. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" /v "ConfirmationCheckBoxDoForAll" /t REG_DWORD /d "0" /f
  1049.  
  1050. rem 1 - Always show more details in copy dialog
  1051. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" /v "EnthusiastMode" /t REG_DWORD /d "0" /f
  1052.  
  1053. rem 1 - Display confirmation dialog when deleting files
  1054. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "ConfirmFileDelete" /t REG_DWORD /d "1" /f
  1055.  
  1056. rem 1075839525 - Auto arrange icons and Align icons to grid on Desktop / 1075839520 / 1075839521 / 1075839524
  1057. reg add "HKCU\Software\Microsoft\Windows\Shell\Bags\1\Desktop" /v "FFlags" /t REG_DWORD /d "1075839525" /f
  1058.  
  1059. rem 1 - Disable Look for an app in the Store (How do you want to open this file)
  1060. reg add "HKLM\Software\Policies\Microsoft\Windows\Explorer" /v "NoUseStoreOpenWith" /t REG_DWORD /d "1" /f
  1061.  
  1062.  
  1063. rem ================================== Windows OneDrive ====================================
  1064.  
  1065.  
  1066. rem Remove OneDrive
  1067. taskkill /F /IM onedrive.exe
  1068. rem "%SYSTEMROOT%\System32\OneDriveSetup.exe" /uninstall
  1069. rem "%SYSTEMROOT%\SysWOW64\OneDriveSetup.exe" /uninstall
  1070. rd "%LOCALAPPDATA%\Microsoft\OneDrive" /Q /S
  1071. rd "%PROGRAMDATA%\Microsoft OneDrive" /Q /S
  1072. rd "%USERPROFILE%\OneDrive" /Q /S
  1073.  
  1074. rem 0 - Remove from Windows Explorer
  1075. reg add "HKCR\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" /v "System.IsPinnedToNameSpaceTree" /t REG_DWORD /d "0" /f
  1076. reg add "HKCR\Wow6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" /v "System.IsPinnedToNameSpaceTree" /t REG_DWORD /d "0" /f
  1077. reg add "HKCU\Software\Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" /v "System.IsPinnedToNameSpaceTree" /t REG_DWORD /d "0" /f
  1078. reg add "HKCU\Software\Classes\Wow6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" /v "System.IsPinnedToNameSpaceTree" /t REG_DWORD /d "0" /f
  1079.  
  1080. rem Hide One Drive Icon on Desktop
  1081. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{018D5C66-4533-4307-9B53-224DE2ED1FE6}" /t REG_DWORD /d "1" /f
  1082.  
  1083. rem Disable network traffic pre user sign-in
  1084. reg add "HKLM\Software\Policies\Microsoft\OneDrive" /v "PreventNetworkTrafficPreUserSignIn" /t REG_DWORD /d "1" /f
  1085.  
  1086. rem 1 - Disable sync files to One Drive
  1087. reg add "HKCU\Software\Microsoft\OneDrive" /v "DisablePersonalSync" /t REG_DWORD /d "1" /f
  1088. reg add "HKLM\Software\Policies\Microsoft\Windows\OneDrive" /v "DisableFileSync" /t REG_DWORD /d "1" /f
  1089. reg add "HKLM\Software\Policies\Microsoft\Windows\OneDrive" /v "DisableFileSyncNGSC" /t REG_DWORD /d "1" /f
  1090. reg add "HKLM\Software\Wow6432Node\Policies\Microsoft\Windows\Onedrive" /v "DisableFileSyncNGSC" /t REG_DWORD /d "1" /f
  1091.  
  1092. rem 1 - Disable saving Libraries to OneDrive
  1093. reg add "HKLM\Software\Policies\Microsoft\Windows\OneDrive" /v "DisableLibrariesDefaultSaveToOneDrive" /t REG_DWORD /d "1" /f
  1094. reg add "HKLM\Software\Wow6432Node\Policies\Microsoft\Windows\Onedrive" /v "DisableLibrariesDefaultSaveToOneDrive" /t REG_DWORD /d "1" /f
  1095.  
  1096. rem 1 - Disable Sync over metered network
  1097. reg add "HKLM\Software\Policies\Microsoft\Windows\OneDrive" /v "DisableMeteredNetworkFileSync" /t REG_DWORD /d "1" /f
  1098. reg add "HKLM\Software\Wow6432Node\Policies\Microsoft\Windows\Onedrive" /v "DisableMeteredNetworkFileSync" /t REG_DWORD /d "1" /f
  1099.  
  1100. rem Remove Startup entry
  1101. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "OneDrive" /f
  1102.  
  1103. rem Disable Service
  1104. sc config OneSyncSvc start= disabled
  1105. sc config OneSyncSvc_Session1 start= disabled
  1106.  
  1107. rem Disable Task
  1108. schtasks /Change /TN "OneDrive Standalone Update Task v2" /Disable
  1109.  
  1110.  
  1111. rem ================================ Windows Optimizations =================================
  1112.  
  1113.  
  1114. rem https://msdn.microsoft.com/en-us/library/ee377058(v=bts.10).aspx
  1115. rem https://channel9.msdn.com/Blogs/Seth-Juarez/Memory-Compression-in-Windows-10-RTM
  1116. rem https://blogs.technet.microsoft.com/markrussinovich/2008/07/21/pushing-the-limits-of-windows-physical-memory/
  1117.  
  1118. rem Determines whether user processes end automatically when the user either logs off or shuts down / 1 - Processes end automatically
  1119. reg add "HKCU\Control Panel\Desktop" /v "AutoEndTasks" /t REG_SZ /d "0" /f
  1120.  
  1121. rem Specifies the number of times the taskbar button flashes to notify the user that the system has activated a background window
  1122. rem If the time elapsed since the last user input exceeds the value of the ForegroundLockTimeout entry, the window will automatically be brought to the foreground
  1123. reg add "HKCU\Control Panel\Desktop" /v "ForegroundFlashCount" /t REG_SZ /d "0" /f
  1124.  
  1125. rem ForegroundLockTimeout specifies the time in milliseconds, following user input, during which the system keeps applications from moving into the foreground / 0 - Disabled / 200000 - Default
  1126. reg add "HKCU\Control Panel\Desktop" /v "ForegroundLockTimeout" /t REG_DWORD /d "0" /f
  1127.  
  1128. rem Specifies in milliseconds how long the System waits for user processes to end after the user clicks the End Task command button in Task Manager
  1129. reg add "HKCU\Control Panel\Desktop" /v "HungAppTimeout" /t REG_SZ /d "5000" /f
  1130.  
  1131. rem Determines how long the System waits for user processes to end after the user attempts to log off or to shut down
  1132. reg add "HKCU\Control Panel\Desktop" /v "WaitToKillAppTimeout" /t REG_SZ /d "5000" /f
  1133.  
  1134. rem Determines in milliseconds how long the System waits for services to stop after notifying the service that the System is shutting down
  1135. reg add "HKLM\System\CurrentControlSet\Control" /v "WaitToKillServiceTimeout" /t REG_SZ /d "5000" /f
  1136.  
  1137. rem Determines in milliseconds the interval from the time the cursor is pointed at a menu until the menu items are displayed
  1138. reg add "HKCU\Control Panel\Desktop" /v "MenuShowDelay" /t REG_SZ /d "0" /f
  1139.  
  1140. rem Remove Windows Mouse Acceleration Curve
  1141. reg delete "HKCU\Control Panel\Mouse" /v "SmoothMouseXCurve" /f
  1142. reg delete "HKCU\Control Panel\Mouse" /v "SmoothMouseYCurve" /f
  1143.  
  1144. rem Mouse Hover Time in milliseconds before Pop-up Display
  1145. reg add "HKCU\Control Panel\Mouse" /v "MouseHoverTime" /t REG_SZ /d "0" /f
  1146.  
  1147. rem How long in milliseconds you want to have for a startup delay time for desktop apps that run at startup to load
  1148. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Serialize" /v "StartupDelayInMSec" /t REG_DWORD /d "0" /f
  1149.  
  1150. rem n - Disable Background disk defragmentation / y - Enable How long in milliseconds you want to have for a startup delay time for desktop apps that run at startup to load
  1151. reg add "HKLM\Software\Microsoft\Dfrg\BootOptimizeFunction" /v "Enable" /t REG_SZ /d "n" /f
  1152.  
  1153. rem 0 - Disable Background auto-layout / Disable Optimize Hard Disk when idle
  1154. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OptimalLayout" /v "EnableAutoLayout" /t REG_DWORD /d "0" /f
  1155.  
  1156. rem Disable Automatic Maintenance / Scheduled System Maintenance
  1157. reg add "HKLM\Software\Microsoft\Windows\ScheduledDiagnostics" /v "EnabledExecution" /t REG_DWORD /d "0" /f
  1158. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\Maintenance" /v "MaintenanceDisabled" /t REG_DWORD /d "1" /f
  1159. reg add "HKLM\Software\Policies\Microsoft\Windows\ScheduledDiagnostics" /v "EnabledExecution" /t REG_DWORD /d "0" /f
  1160.  
  1161. rem 0 - Enables 8dot3 name creation for all volumes on the system / 1 - Disables 8dot3 name creation for all volumes on the system / 2 - Sets 8dot3 name creation on a per volume basis / 3 - Disables 8dot3 name creation for all volumes except the system volume
  1162. rem fsutil 8dot3name scan c:\
  1163. fsutil behavior set disable8dot3 1
  1164.  
  1165. rem 1 - Disable the Encrypting File System (EFS)
  1166. fsutil behavior set disableencryption 1
  1167.  
  1168. rem 1 - When listing directories, NTFS does not update the last-access timestamp, and it does not record time stamp updates in the NTFS log
  1169. fsutil behavior set disablelastaccess 1
  1170.  
  1171. rem 5 - 5 secs / Delay Chkdsk startup time at OS Boot
  1172. reg add "HKLM\System\CurrentControlSet\Control\Session Manager" /v "AutoChkTimeout" /t REG_DWORD /d "5" /f
  1173.  
  1174. rem 0 - Establishes a standard size file-system cache of approximately 8 MB / 1 - Establishes a large system cache working set that can expand to physical memory, minus 4 MB, if needed
  1175. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Memory Management" /v "LargeSystemCache" /t REG_DWORD /d "1" /f
  1176.  
  1177. rem 0 - Drivers and the kernel can be paged to disk as needed / 1 - Drivers and the kernel must remain in physical memory
  1178. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Memory Management" /v "DisablePagingExecutive" /t REG_DWORD /d "1" /f
  1179.  
  1180. rem 0 - Disable Prefetch / 1 - Enable Prefetch when the application starts / 2 - Enable Prefetch when the device starts up / 3 - Enable Prefetch when the application or device starts up
  1181. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters" /v "EnablePrefetcher" /t REG_DWORD /d "0" /f
  1182.  
  1183. rem 0 - Disable SuperFetch / 1 - Enable SuperFetch when the application starts up / 2 - Enable SuperFetch when the device starts up / 3 - Enable SuperFetch when the application or device starts up
  1184. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters" /v "EnableSuperfetch" /t REG_DWORD /d "0" /f
  1185.  
  1186. rem 0 - Disable It / 1 - Default
  1187. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters" /v "SfTracingState" /t REG_DWORD /d "0" /f
  1188.  
  1189. rem 0 - Disable Fast Startup for a Full Shutdown / 1 - Enable Fast Startup (Hybrid Boot) for a Hybrid Shutdown
  1190. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Power" /v "HiberbootEnabled" /t REG_DWORD /d "0" /f
  1191.  
  1192. rem Disable Hibernation / Disable Fast Startup (Hybrid Boot)
  1193. powercfg -h off
  1194.  
  1195.  
  1196. rem =================================== Windows Policies ===================================
  1197.  
  1198.  
  1199. rem https://docs.microsoft.com/en-us/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services
  1200. rem https://docs.microsoft.com/en-us/windows/client-management/mdm/new-in-windows-mdm-enrollment-management#whatsnew10
  1201. rem https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-configuration-service-provider
  1202. rem https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-security-baselines
  1203.  
  1204. rem ________________________________________________________________________________________
  1205. rem 0 - Disable Help Experience Improvement Program (HEIP)
  1206. reg add "HKCU\Software\Microsoft\Assistance\Client\1.0\Settings" /v "ImplicitFeedback" /t REG_DWORD /d "0" /f
  1207.  
  1208. rem 1808 - Disable the warning The Publisher could not be verified
  1209. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Associations" /v "DefaultFileTypeRisk" /t REG_DWORD /d "1808" /f
  1210.  
  1211. rem Disable Security warning to unblock the downloaded file
  1212. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments" /v "SaveZoneInformation" /t REG_DWORD /d "1" /f
  1213.  
  1214. rem 1 - Disable Low Disk Space Alerts
  1215. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoLowDiskSpaceChecks" /t REG_DWORD /d "1" /f
  1216. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoLowDiskSpaceChecks" /t REG_DWORD /d "1" /f
  1217.  
  1218. rem 1 - Don't run specified exe
  1219. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "DisallowRun" /t REG_DWORD /d "1" /f
  1220. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "1" /t REG_SZ /d "bash.exe" /f
  1221. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "2" /t REG_SZ /d "mshta.exe" /f
  1222. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "3" /t REG_SZ /d "msra.exe" /f
  1223. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "4" /t REG_SZ /d "powershell_ise.exe" /f
  1224. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "5" /t REG_SZ /d "powershell.exe" /f
  1225. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "6" /t REG_SZ /d "psexec.exe" /f
  1226. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "7" /t REG_SZ /d "nc.exe" /f
  1227. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "8" /t REG_SZ /d "nc64.exe" /f
  1228. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "9" /t REG_SZ /d "bitsadmin.exe" /f
  1229. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "10" /t REG_SZ /d "cipher.exe" /f
  1230. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "11" /t REG_SZ /d "scrcons.exe" /f
  1231. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "12" /t REG_SZ /d "wbemtest.exe" /f
  1232. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "13" /t REG_SZ /d "winrm.exe" /f
  1233. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "14" /t REG_SZ /d "winrs.exe" /f
  1234. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "15" /t REG_SZ /d "wecutil.exe" /f
  1235. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "16" /t REG_SZ /d "werfault.exe" /f
  1236. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "17" /t REG_SZ /d "wscript.exe" /f
  1237. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "18" /t REG_SZ /d "cscript.exe" /f
  1238. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun" /v "19" /t REG_SZ /d "hh.exe" /f
  1239.  
  1240. rem N - Disable Distributed Component Object Model (DCOM) support in Windows / Y - Enable
  1241. reg add "HKLM\Software\Microsoft\Ole" /v "EnableDCOM" /t REG_SZ /d "N" /f
  1242.  
  1243. rem 0 - Disable Microsoft Windows Just-In-Time (JIT) script debugging
  1244. reg add "HKCU\Software\Microsoft\Windows Script\Settings" /v "JITDebug" /t REG_DWORD /d "0" /f
  1245. reg add "HKU\.Default\Microsoft\Windows Script\Settings" /v "JITDebug" /t REG_DWORD /d "0" /f
  1246.  
  1247. rem 1 - When the system detects that the user is downloading an external program that runs as part of the Windows user interface, the system searches for a digital certificate or requests that the user approve the action
  1248. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "EnforceShellExtensionSecurity" /t REG_DWORD /d "1" /f
  1249.  
  1250. rem Disable Active Desktop
  1251. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "HideIcons" /t REG_DWORD /d "0" /f
  1252. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop" /v "NoAddingComponents" /t REG_DWORD /d "1" /f
  1253. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop" /v "NoComponents" /t REG_DWORD /d "1" /f
  1254. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "ForceActiveDesktopOn" /t REG_DWORD /d "0" /f
  1255. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoActiveDesktop" /t REG_DWORD /d "1" /f
  1256. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoActiveDesktopChanges" /t REG_DWORD /d "1" /f
  1257. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoDesktop" /t REG_DWORD /d "0" /f
  1258.  
  1259. rem Enables or disables the retrieval of online tips and help for the Settings app (ADs)
  1260. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "AllowOnlineTips" /t REG_DWORD /d "0" /f
  1261.  
  1262. rem 1 - Disable recent documents history
  1263. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoRecentDocsHistory" /t REG_DWORD /d "1" /f
  1264.  
  1265. rem 1 - Do not add shares from recently opened documents to the My Network Places folder
  1266. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "Norecentdocsnethood" /t REG_DWORD /d "1" /f
  1267.  
  1268. rem 0 - Disable configuring the machine at boot-up / 1 - Enable configuring the machine at boot-up / 2 - Enable configuring the machine only if DSC is in pending or current state (Default)
  1269. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "DSCAutomationHostEnabled" /t REG_DWORD /d "0" /f
  1270.  
  1271. rem 0 - Disable / 1 - Enable (Default)
  1272. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableCursorSuppression" /t REG_DWORD /d "0" /f
  1273.  
  1274. rem 0 - Disable Administrative Shares
  1275. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "LocalAccountTokenFilterPolicy" /t REG_DWORD /d "0" /f
  1276. reg add "HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters" /v "AutoShareServer" /t REG_DWORD /d "0" /f
  1277. reg add "HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters" /v "AutoShareWks" /t REG_DWORD /d "0" /f
  1278.  
  1279. rem Disable SMB 1.0/2.0
  1280. reg add "HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters" /v "SMB1" /t REG_DWORD /d "0" /f
  1281. reg add "HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters" /v "SMB2" /t REG_DWORD /d "0" /f
  1282.  
  1283. rem Disabling PowerShell script execution / Restricting PowerShell to Constrained Language mode
  1284. rem Set-ExecutionPolicy bypass - noprofile
  1285. reg add "HKLM\Software\Policies\Microsoft\Windows\PowerShell" /v "EnableScripts" /t REG_DWORD /d "0" /f
  1286. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Environment" /v "__PSLockDownPolicy" /t REG_SZ /d "4" /f
  1287.  
  1288. rem Determines how many user account entries Windows saves in the logon cache on the local computer.
  1289. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "CachedLogonsCount" /t REG_DWORD /d "0" /f
  1290.  
  1291. rem Locky ransomware using VBscript (Visual Basic Script) - https://blog.avast.com/a-closer-look-at-the-locky-ransomware
  1292. rem 0 - Disable Windows Script Host (WSH) (prevents majority of malware from working, especially when removing PowerShell as well, Disable ExecutionPolicy can be easily bypassed)
  1293. rem Also disabled via DisallowRun "wscript.exe" and "cscript.exe"
  1294. reg add "HKCU\Software\Microsoft\Windows Script Host\Settings" /v "Enabled" /t REG_DWORD /d "0" /f
  1295. reg add "HKLM\Software\Microsoft\Windows Script Host\Settings" /v "Enabled" /t REG_DWORD /d "0" /f
  1296. reg add "HKLM\Software\WOW6432Node\Microsoft\Windows Script Host\Settings" /v "Enabled" /t REG_DWORD /d "0" /f
  1297.  
  1298. rem Prevent Microsoft Edge from starting and loading the Start and New Tab page at Windows startup and each time Microsoft Edge is closed
  1299. reg add "HKCU\Software\Policies\Microsoft\MicrosoftEdge" /v "AllowPrelaunch" /t REG_DWORD /d "0" /f
  1300. reg add "HKCU\Software\Policies\Microsoft\MicrosoftEdge\Main" /v "AllowPrelaunch" /t REG_DWORD /d "0" /f
  1301. reg add "HKCU\Software\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v "AllowTabPreloading" /t REG_DWORD /d "0" /f
  1302. reg add "HKCU\Software\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v "PreventTabPreloading" /t REG_DWORD /d "1" /f
  1303. reg add "HKLM\Software\Policies\Microsoft\MicrosoftEdge" /v "AllowPrelaunch" /t REG_DWORD /d "0" /f
  1304. reg add "HKLM\Software\Policies\Microsoft\MicrosoftEdge\Main" /v "AllowPrelaunch" /t REG_DWORD /d "0" /f
  1305. reg add "HKLM\Software\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v "AllowTabPreloading" /t REG_DWORD /d "0" /f
  1306. reg add "HKLM\Software\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v "PreventTabPreloading" /t REG_DWORD /d "1" /f
  1307.  
  1308. rem Disable Customer Experience Improvement (CEIP/SQM - Software Quality Management)
  1309. reg add "HKLM\Software\Policies\Microsoft\Internet Explorer\SQM" /v "DisableCustomerImprovementProgram" /t REG_DWORD /d "0" /f
  1310. reg add "HKLM\Software\Policies\Microsoft\Messenger\Client" /v "CEIP" /t REG_DWORD /d "2" /f
  1311. reg add "HKLM\Software\Policies\Microsoft\SQMClient\Windows" /v "CEIPEnable" /t REG_DWORD /d "0" /f
  1312.  
  1313. rem 0 - Disable Application Impact Telemetry (AIT)
  1314. reg add "HKLM\Software\Policies\Microsoft\Windows\AppCompat" /v "AITEnable" /t REG_DWORD /d "0" /f
  1315.  
  1316. rem 0 - Disable Inventory Collector
  1317. reg add "HKLM\Software\Policies\Microsoft\Windows\AppCompat" /v "DisableInventory" /t REG_DWORD /d "1" /f
  1318.  
  1319. rem 0 - Disable Program Compatibility Assistant
  1320. reg add "HKLM\Software\Policies\Microsoft\Windows\AppCompat" /v "DisablePCA" /t REG_DWORD /d "1" /f
  1321.  
  1322. rem 1 - The device does not store the user's credentials for automatic sign-in after a Windows Update restart. The users' lock screen apps are not restarted after the system restarts.
  1323. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "DisableAutomaticRestartSignOn" /t REG_DWORD /d "1" /f
  1324.  
  1325. rem 1 - Disable Steps Recorder (Steps Recorder keeps a record of steps taken by the user, the data includes user actions such as keyboard input and mouse input user interface data and screen shots)
  1326. reg add "HKLM\Software\Policies\Microsoft\Windows\AppCompat" /v "DisableUAR" /t REG_DWORD /d "1" /f
  1327. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\WINEVT\Channels\Microsoft-Windows-Application-Experience/Steps-Recorder" /v "Enabled" /t REG_DWORD /d "0" /f
  1328.  
  1329. rem 1 - Specifies that Windows does not automatically encrypt eDrives
  1330. reg add "HKLM\Software\Policies\Microsoft\Windows\EnhancedStorageDevices" /v "TCGSecurityActivationDisabled" /t REG_DWORD /d "1" /f
  1331.  
  1332. rem 1 - Disable Network Connection Status Indicator (NCSI) - HKLM\System\CurrentControlSet\Services\NlaSvc\Parameters\Internet
  1333. reg add "HKLM\Software\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /v "NoActiveProbe" /t REG_DWORD /d "1" /f
  1334.  
  1335. rem Disable PerfTrack (tracking of responsiveness events)
  1336. reg add "HKLM\Software\Policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}" /v "ScenarioExecutionEnabled" /t REG_DWORD /d "0" /f
  1337.  
  1338. rem 1000000000000 - Block untrusted fonts and log events / 2000000000000 - Do not block untrusted fonts / 3000000000000 - Log events without blocking untrusted fonts
  1339. reg add "HKLM\Software\Policies\Microsoft\Windows NT\MitigationOptions" /v "MitigationOptions_FontBocking" /t REG_SZ /d "1000000000000" /f
  1340.  
  1341. rem 1 - Enable Shutdown Event Tracker / 0 - Disable (Default)
  1342. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Reliability" /v "ShutdownReasonOn" /t REG_DWORD /d "0" /f
  1343. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Reliability" /v "ShutdownReasonUI" /t REG_DWORD /d "0" /f
  1344.  
  1345. rem 1 - Do not allow storage of passwords and credentials for network authentication in the Credential Manager
  1346. reg add "HKLM\System\CurrentControlSet\Control\Lsa" /v "DisableDomainCreds" /t REG_DWORD /d "1" /f
  1347.  
  1348. rem Digest Security Provider is disabled by default, but malware can enable it to recover the plain text passwords from the system’s memory (+CachedLogonsCount/+DisableDomainCreds/+DisableAutomaticRestartSignOn)
  1349. reg add "HKLM\System\CurrentControlSet\Control\SecurityProviders\WDigest" /v "UseLogonCredential" /t REG_DWORD /d "0" /f
  1350.  
  1351. rem 0 - Turn off Windows Network Connectivity Status Indicator active tests
  1352. reg add "HKLM\System\CurrentControlSet\Services\NlaSvc\Parameters\Internet" /v "EnableActiveProbing" /t REG_DWORD /d "0" /f
  1353.  
  1354. rem The system registry is no longer backed up to the RegBack folder starting in Windows 10 version 1803
  1355. reg add "HKLM\System\CurrentControlSet\Control\Session Manager\Configuration Manager" /v "EnablePeriodicBackup" /t REG_DWORD /d "1" /f
  1356.  
  1357. rem No-one will be a member of the built-in group, although it will still be visible in the Object Picker / 1 - all users logging on to a session on the server will be made a member of the TERMINAL SERVER USER group
  1358. reg add "HKLM\System\CurrentControlSet\Control\Terminal Server" /v "TSUserEnabled" /t REG_DWORD /d "0" /f
  1359.  
  1360.  
  1361. rem =================================== Windows Policies ===================================
  1362. rem --------------------------------- User Account Control ---------------------------------
  1363.  
  1364. rem https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd835564(v=ws.10)
  1365. rem Reason to set UAC to Always Notify - https://technet.microsoft.com/en-us/library/2009.07.uac.aspx#id0560031
  1366.  
  1367. rem 0 - Elevate without prompting / 1 - Prompt for credentials on the secure desktop / 2 - Prompt for consent on the secure desktop / 3 - Prompt for credentials / 4 - Prompt for consent / 5 (Default) - Prompt for consent for non-Windows binaries
  1368. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "ConsentPromptBehaviorAdmin" /t REG_DWORD /d "1" /f
  1369.  
  1370. rem 0 - Automatically deny elevation requests / 1 - Prompt for credentials on the secure desktop / 3 (Default) - Prompt for credentials
  1371. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "ConsentPromptBehaviorUser" /t REG_DWORD /d "0" /f
  1372.  
  1373. rem 2 (Default)
  1374. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableFullTrustStartupTasks" /t REG_DWORD /d "0" /f
  1375.  
  1376. rem Detect application installations and prompt for elevation / 1 - Enabled (default for home) / 0 - Disabled (default for enterprise)
  1377. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableInstallerDetection" /t REG_DWORD /d "1" /f
  1378.  
  1379. rem Run all administrators in Admin Approval Mode / 0 - Disabled (UAC) / 1 - Enabled (UAC)
  1380. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableLUA" /t REG_DWORD /d "1" /f
  1381.  
  1382. rem Only elevate UIAccess applications that are installed in secure locations / 0 - Disabled / 1 (Default) - Enabled
  1383. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableSecureUIAPaths" /t REG_DWORD /d "1" /f
  1384.  
  1385. rem 0 (Default) = Disabled / 1 - Enabled
  1386. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableUwpStartupTasks" /t REG_DWORD /d "0" /f
  1387.  
  1388. rem Allow UIAccess applications to prompt for elevation without using the secure desktop / 0 (Default) = Disabled / 1 - Enabled
  1389. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableUIADesktopToggle" /t REG_DWORD /d "0" /f
  1390.  
  1391. rem https://technet.microsoft.com/en-us/itpro/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security
  1392. rem 0 - Disabled / 1 - Enabled (Default)
  1393. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "EnableVirtualization" /t REG_DWORD /d "0" /f
  1394.  
  1395. rem Admin Approval Mode for the built-in Administrator account / 0 (Default) - Disabled / 1 - Enabled
  1396. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "FilterAdministratorToken" /t REG_DWORD /d "1" /f
  1397.  
  1398. rem Allow UIAccess applications to prompt for elevation without using the secure desktop / 0 (Default) - Disabled / 1 - Enabled
  1399. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "PromptOnSecureDesktop" /t REG_DWORD /d "1" /f
  1400.  
  1401. rem Enforce cryptographic signatures on any interactive application that requests elevation of privilege / 0 (Default) - Disabled / 1 - Enabled
  1402. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v "ValidateAdminCodeSignatures" /t REG_DWORD /d "1" /f
  1403.  
  1404. rem 1 - Enable command-line auditing
  1405. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit" /v "ProcessCreationIncludeCmdLine_Enabled" /t REG_DWORD /d "1" /f
  1406.  
  1407.  
  1408. rem =============================== Windows Scheduled Tasks ================================
  1409.  
  1410.  
  1411. rem UAC Bypass - https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup
  1412. rem UAC Bypass - https://blog.ensilo.com/darkgate-malware
  1413.  
  1414. rem schtasks /Change /TN "Microsoft\Windows\TextServicesFramework\MsCtfMonitor" /Enable
  1415. rem schtasks /Run /TN "Microsoft\Windows\TextServicesFramework\MsCtfMonitor"
  1416. rem schtasks /Change /TN "Microsoft\Office\OfficeBackgroundTaskHandlerRegistration" /Disable
  1417. rem schtasks /End /TN "Microsoft\Office\OfficeBackgroundTaskHandlerRegistration"
  1418.  
  1419. rem Disable Background Synchronization (permanently, it can not be disabled)
  1420. schtasks /DELETE /TN "Microsoft\Windows\SettingSync\BackgroundUploadTask" /f
  1421.  
  1422. schtasks /DELETE /TN "Adobe Flash Player PPAPI Notifier" /f
  1423. schtasks /DELETE /TN "Adobe Flash Player Updater" /f
  1424. schtasks /DELETE /TN "AMDInstallLauncher" /f
  1425. schtasks /DELETE /TN "AMDLinkUpdate" /f
  1426. schtasks /DELETE /TN "Driver Easy Scheduled Scan" /f
  1427. schtasks /DELETE /TN "MicrosoftEdgeUpdateTaskMachineCore" /f
  1428. schtasks /DELETE /TN "MicrosoftEdgeUpdateTaskMachineUA" /f
  1429. schtasks /DELETE /TN "ModifyLinkUpdate" /f
  1430. schtasks /DELETE /TN "Repairing Yandex Browser update service" /f
  1431. schtasks /DELETE /TN "StartCN" /f
  1432. schtasks /DELETE /TN "StartDVR" /f
  1433. schtasks /DELETE /TN "System update for Yandex Browser" /f
  1434. schtasks /DELETE /TN "Update for Yandex Browser" /f
  1435.  
  1436. schtasks /Change /TN "CreateExplorerShellUnelevatedTask" /Enable
  1437.  
  1438. schtasks /Change /TN "Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319" /Disable
  1439. schtasks /Change /TN "Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64" /Disable
  1440. schtasks /Change /TN "Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical" /Disable
  1441. schtasks /Change /TN "Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical" /Disable
  1442. schtasks /Change /TN "Microsoft\Windows\ApplicationData\appuriverifierdaily" /Disable
  1443. schtasks /Change /TN "Microsoft\Windows\ApplicationData\appuriverifierinstall" /Disable
  1444. schtasks /Change /TN "Microsoft\Windows\ApplicationData\CleanupTemporaryState" /Disable
  1445. schtasks /Change /TN "Microsoft\Windows\ApplicationData\DsSvcCleanup" /Disable
  1446. schtasks /Change /TN "Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" /Disable
  1447. schtasks /Change /TN "Microsoft\Windows\Application Experience\ProgramDataUpdater" /Disable
  1448. schtasks /Change /TN "Microsoft\Windows\Application Experience\StartupAppTask" /Disable
  1449. schtasks /Change /TN "Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup" /Disable
  1450. schtasks /Change /TN "Microsoft\Windows\Autochk\Proxy" /Disable
  1451. schtasks /Change /TN "Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask" /Disable
  1452. schtasks /Change /TN "Microsoft\Windows\CloudExperienceHost\CreateObjectTask" /Disable
  1453. schtasks /Change /TN "Microsoft\Windows\Customer Experience Improvement Program\Consolidator" /Disable
  1454. schtasks /Change /TN "Microsoft\Windows\Customer Experience Improvement Program\UsbCeip" /Disable
  1455. schtasks /Change /TN "Microsoft\Windows\Device Information\Device" /Disable
  1456. schtasks /Change /TN "Microsoft\Windows\Defrag\ScheduledDefrag" /Disable
  1457. schtasks /Change /TN "Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner" /Disable
  1458. schtasks /Change /TN "Microsoft\Windows\Diagnosis\Scheduled" /Disable
  1459. schtasks /Change /TN "Microsoft\Windows\DiskCleanup\SilentCleanup" /Disable
  1460. schtasks /Change /TN "Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector" /Disable
  1461. schtasks /Change /TN "Microsoft\Windows\DiskFootprint\Diagnostics" /Disable
  1462. schtasks /Change /TN "Microsoft\Windows\DiskFootprint\StorageSense" /Disable
  1463. schtasks /Change /TN "Microsoft\Windows\DUSM\dusmtask" /Disable
  1464. schtasks /Change /TN "Microsoft\Windows\Feedback\Siuf\DmClient" /Disable
  1465. schtasks /Change /TN "Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload" /Disable
  1466. schtasks /Change /TN "Microsoft\Windows\FileHistory\File History (maintenance mode)" /Disable
  1467. schtasks /Change /TN "Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures" /Disable
  1468. schtasks /Change /TN "Microsoft\Windows\Flighting\OneSettings\RefreshCache" /Disable
  1469. schtasks /Change /TN "Microsoft\Windows\HelloFace\FODCleanupTask" /Disable
  1470. schtasks /Change /TN "Microsoft\Windows\InstallService\ScanForUpdates" /Disable
  1471. schtasks /Change /TN "Microsoft\Windows\InstallService\ScanForUpdatesAsUser" /Disable
  1472. schtasks /Change /TN "Microsoft\Windows\InstallService\WakeUpAndContinueUpdates" /Disable
  1473. schtasks /Change /TN "Microsoft\Windows\InstallService\WakeUpAndScanForUpdates" /Disable
  1474. schtasks /Change /TN "Microsoft\Windows\InstallService\SmartRetry" /Disable
  1475. schtasks /Change /TN "Microsoft\Windows\LanguageComponentsInstaller\Installation" /Disable
  1476. schtasks /Change /TN "Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources" /Disable
  1477. schtasks /Change /TN "Microsoft\Windows\LanguageComponentsInstaller\Uninstallation" /Disable
  1478. schtasks /Change /TN "Microsoft\Windows\License Manager\TempSignedLicenseExchange" /Disable
  1479. schtasks /Change /TN "Microsoft\Windows\Location\Notifications" /Disable
  1480. schtasks /Change /TN "Microsoft\Windows\Location\WindowsActionDialog" /Disable
  1481. schtasks /Change /TN "Microsoft\Windows\Management\Provisioning\Cellular" /Disable
  1482. schtasks /Change /TN "Microsoft\Windows\Management\Provisioning\Logon" /Disable
  1483. schtasks /Change /TN "Microsoft\Windows\Maintenance\WinSAT" /Disable
  1484. schtasks /Change /TN "Microsoft\Windows\Maps\MapsToastTask" /Disable
  1485. schtasks /Change /TN "Microsoft\Windows\Maps\MapsUpdateTask" /Disable
  1486. schtasks /Change /TN "Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" /Disable
  1487. schtasks /Change /TN "Microsoft\Windows\Multimedia\SystemSoundsService" /Disable
  1488. schtasks /Change /TN "Microsoft\Windows\NlaSvc\WiFiTask" /Disable
  1489. schtasks /Change /TN "Microsoft\Windows\NetTrace\GatherNetworkInfo" /Disable
  1490. schtasks /Change /TN "Microsoft\Windows\PI\Sqm-Tasks" /Disable
  1491. schtasks /Change /TN "Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem" /Disable
  1492. schtasks /Change /TN "Microsoft\Windows\Printing\EduPrintProv" /Disable
  1493. schtasks /Change /TN "Microsoft\Windows\PushToInstall\Registration" /Disable
  1494. schtasks /Change /TN "Microsoft\Windows\Ras\MobilityManager" /Disable
  1495. schtasks /Change /TN "Microsoft\Windows\RecoveryEnvironment\VerifyWinRE" /Disable
  1496. schtasks /Change /TN "Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask" /Disable
  1497. schtasks /Change /TN "Microsoft\Windows\RetailDemo\CleanupOfflineContent" /Disable
  1498. schtasks /Change /TN "Microsoft\Windows\Servicing\StartComponentCleanup" /Disable
  1499. schtasks /Change /TN "Microsoft\Windows\SettingSync\BackgroundUploadTask" /Disable
  1500. schtasks /Change /TN "Microsoft\Windows\SettingSync\BackupTask" /Disable
  1501. schtasks /Change /TN "Microsoft\Windows\SettingSync\NetworkStateChangeTask" /Disable
  1502. schtasks /Change /TN "Microsoft\Windows\Shell\CreateObjectTask" /Disable
  1503. schtasks /Change /TN "Microsoft\Windows\Setup\SetupCleanupTask" /Disable
  1504. schtasks /Change /TN "Microsoft\Windows\SpacePort\SpaceAgentTask" /Disable
  1505. schtasks /Change /TN "Microsoft\Windows\SpacePort\SpaceManagerTask" /Disable
  1506. schtasks /Change /TN "Microsoft\Windows\Speech\HeadsetButtonPress" /Disable
  1507. schtasks /Change /TN "Microsoft\Windows\Speech\SpeechModelDownloadTask" /Disable
  1508. schtasks /Change /TN "Microsoft\Windows\StateRepository\MaintenanceTasks" /Disable
  1509. schtasks /Change /TN "Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization" /Disable
  1510. schtasks /Change /TN "Microsoft\Windows\Subscription\EnableLicenseAcquisition" /Disable
  1511. schtasks /Change /TN "Microsoft\Windows\Subscription\LicenseAcquisition" /Disable
  1512. schtasks /Change /TN "Microsoft\Windows\Sysmain\ResPriStaticDbSync" /Disable
  1513. schtasks /Change /TN "Microsoft\Windows\Sysmain\WsSwapAssessmentTask" /Disable
  1514. schtasks /Change /TN "Microsoft\Windows\Task Manager\Interactive" /Disable
  1515. schtasks /Change /TN "Microsoft\Windows\Time Synchronization\ForceSynchronizeTime" /Disable
  1516. schtasks /Change /TN "Microsoft\Windows\Time Synchronization\SynchronizeTime" /Disable
  1517. schtasks /Change /TN "Microsoft\Windows\Time Zone\SynchronizeTimeZone" /Disable
  1518. schtasks /Change /TN "Microsoft\Windows\TPM\Tpm-HASCertRetr" /Disable
  1519. schtasks /Change /TN "Microsoft\Windows\TPM\Tpm-Maintenance" /Disable
  1520. schtasks /Change /TN "Microsoft\Windows\UPnP\UPnPHostConfig" /Disable
  1521. schtasks /Change /TN "Microsoft\Windows\USB\Usb-Notifications" /Disable
  1522. schtasks /Change /TN "Microsoft\Windows\User Profile Service\HiveUploadTask" /Disable
  1523. schtasks /Change /TN "Microsoft\Windows\WCM\WiFiTask" /Disable
  1524. schtasks /Change /TN "Microsoft\Windows\WDI\ResolutionHost" /Disable
  1525. schtasks /Change /TN "Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange" /Disable
  1526. schtasks /Change /TN "Microsoft\Windows\Windows Media Sharing\UpdateLibrary" /Disable
  1527. schtasks /Change /TN "Microsoft\Windows\WindowsUpdate\Scheduled Start" /Disable
  1528. schtasks /Change /TN "Microsoft\Windows\WlanSvc\CDSSync" /Disable
  1529. schtasks /Change /TN "Microsoft\Windows\WOF\WIM-Hash-Management" /Disable
  1530. schtasks /Change /TN "Microsoft\Windows\WOF\WIM-Hash-Validation" /Disable
  1531. schtasks /Change /TN "Microsoft\Windows\Work Folders\Work Folders Logon Synchronization" /Disable
  1532. schtasks /Change /TN "Microsoft\Windows\Work Folders\Work Folders Maintenance Work" /Disable
  1533. schtasks /Change /TN "Microsoft\Windows\Workplace Join\Automatic-Device-Join" /Disable
  1534. schtasks /Change /TN "Microsoft\Windows\WwanSvc\NotificationTask" /Disable
  1535.  
  1536.  
  1537. rem ================================== Windows Services ====================================
  1538.  
  1539.  
  1540. rem Security Accounts Manager has to be disabled Manually via services.msc
  1541. rem Disabling Windows Update will do nothing, but if you disable a service, it is dependent on, it will fail to start or check for updates, obviously
  1542.  
  1543. rem Application Information / required by UAC
  1544. rem AppX Deployment Service (AppXSVC) / required by Store
  1545. rem Background Intelligent Transfer Service / required by Windows Updates / depends on Network List Service (starts even when disabled)
  1546. rem Base Filtering Engine / required by Windows Defender Firewall
  1547. rem CNG Key Isolation / required to login to Windows Insider / Switch to Local Account / Set up PIN / Basically everything Credentials related
  1548. rem Credential Manager / required to store credentials (check User Accounts - Credential Manager) / required by apps like Windows Mail to store passwords / An administrator has blocked you from running this app.
  1549. rem Delivery Optimization / required by Windows Updates
  1550. rem Diagnostic Policy Service / required by Windows Diagnostic (Troubleshooting)
  1551. rem DHCP Client / required by Windows Updates (0x80240022)
  1552. rem Distributed Link Tracking Client / sometimes required to open shortcuts and System apps - "Windows cannot access the specified device, path, or file. You may not have the appropriate permission to access the item"
  1553. rem Geolocation Service / required by some Windows Store apps, it can not be enabled when Connected User Experiences and Telemetry is disabled
  1554. rem Microsoft Account Sign-in Assistant / required to login to Microsoft Account
  1555. rem Network Connections / required to manage Network Connections
  1556. rem Network Connection Broker / required to change Network Settings
  1557. rem Network List Service / required by Windows Update and to change Network Settings (when disabled Windows fails to boot - Critical Service Died)
  1558. rem Network Location Awareness / required by Windows Update and Windows Defender Firewall
  1559. rem Network Store Interface Service / disabling disables Windows Firewall (when disabled Windows might fail to boot - Critical Service Died)
  1560. rem Print Spooler / required by printers
  1561. rem Radio Management Service / required to display WiFi networks
  1562. rem Web Account Manager / required to login to Microsoft Account/Store
  1563. rem Windows Biometric Service / required by biometric devices like a fingerprint reader
  1564. rem Windows Connection Manager / required by WiFi and Data Usage and Windows Update (starts even when disabled)
  1565. rem Windows Defender Firewall (Base Filtering Engine/Network Location Awareness) / required by Windows Update and Store Apps (0x80073d0a)
  1566. rem Windows Driver Foundation - User-mode Driver Framework / required by some drivers like USB devices
  1567. rem Windows Image Acquisition (WIA) / required by scanners
  1568. rem Windows Management Instrumentation / required by wmic commands / disabled to prevent some fileless malware
  1569.  
  1570. rem Adobe Flash Player Update Service
  1571. sc config AdobeFlashPlayerUpdateSvc start= disabled
  1572.  
  1573. rem AMD External Events Utility
  1574. sc config "AMD External Events Utility" start= disabled
  1575.  
  1576. rem Application Layer Gateway Service
  1577. sc config ALG start= disabled
  1578.  
  1579. rem ASUS Com Service
  1580. sc config asComSvc start= disabled
  1581.  
  1582. rem AppX Deployment Service (AppXSVC)
  1583. reg add "HKLM\System\CurrentControlSet\Services\AppXSvc" /v "Start" /t REG_DWORD /d "4" /f
  1584.  
  1585. rem AVCTP service
  1586. sc config BthAvctpSvc start= disabled
  1587.  
  1588. rem Background Intelligent Transfer Service
  1589. rem https://www.secureworks.com/blog/malware-lingers-with-bits
  1590. sc config BITS start= demand
  1591.  
  1592. rem Base Filtering Engine
  1593. reg add "HKLM\System\CurrentControlSet\Services\BFE" /v "Start" /t REG_DWORD /d "2" /f
  1594.  
  1595. rem Beep
  1596. sc config Beep start= disabled
  1597.  
  1598. rem BitLocker Drive Encryption Service
  1599. sc config BDESVC start= disabled
  1600.  
  1601. rem CDPUserSvc
  1602. sc config CDPUserSvc start= disabled
  1603.  
  1604. rem Certificate Propagation
  1605. sc config CertPropSvc start= disabled
  1606.  
  1607. rem Clipboard User Service
  1608. reg add "HKLM\System\CurrentControlSet\Services\cbdhsvc" /v "Start" /t REG_DWORD /d "4" /f
  1609.  
  1610. rem CNG Key Isolation
  1611. sc config KeyIso start= disabled
  1612.  
  1613. rem COM+ Event System
  1614. sc config EventSystem start= disabled
  1615.  
  1616. rem Connected User Experiences and Telemetry
  1617. sc config DiagTrack start= disabled
  1618.  
  1619. rem Credential Manager
  1620. sc config VaultSvc start= disabled
  1621.  
  1622. rem Cryptographic Services
  1623. sc config VaultSvc start= demand
  1624.  
  1625. rem Data Usage
  1626. sc config DusmSvc start= disabled
  1627.  
  1628. rem Delivery Optimization
  1629. reg add "HKLM\System\CurrentControlSet\Services\DoSvc" /v "Start" /t REG_DWORD /d "4" /f
  1630.  
  1631. rem Device Management Wireless Application Protocol (WAP) Push message Routing Service
  1632. sc config dmwappushservice start= disabled
  1633.  
  1634. rem DHCP Client
  1635. sc config Dhcp start= disabled
  1636.  
  1637. rem Diagnostic Policy Service
  1638. sc config DPS start= disabled
  1639.  
  1640. rem Diagnostic Hub (Privacy/Telemetry)
  1641. sc config diagnosticshub.standardcollector.service start= disabled
  1642.  
  1643. rem Display Enhancement Service
  1644. sc config DisplayEnhancementService start= disabled
  1645.  
  1646. rem Display Policy Service
  1647. sc config DispBrokerDesktopSvc start= disabled
  1648.  
  1649. rem Distributed Link Tracking Client
  1650. sc config TrkWks start= demand
  1651.  
  1652. rem Distributed Transaction Coordinator
  1653. sc config MSDTC start= disabled
  1654.  
  1655. rem DNS Client (Required by the internet connection, unless you set up DNS servers manually in IPv4/6's properties)
  1656. reg add "HKLM\System\CurrentControlSet\Services\Dnscache" /v "Start" /t REG_DWORD /d "4" /f
  1657.  
  1658. rem Downloaded Maps Manager
  1659. sc config MapsBroker start= disabled
  1660.  
  1661. rem Encrypting File System (EFS)
  1662. sc config EFS start= disabled
  1663.  
  1664. rem Function Discovery Provider Host
  1665. sc config fdPHost start= disabled
  1666.  
  1667. rem Function Discovery Resource Publication
  1668. sc config FDResPub start= disabled
  1669.  
  1670. rem Geolocation Service
  1671. sc config lfsvc start= disabled
  1672.  
  1673. rem IKE and AuthIP IPsec Keying Modules
  1674. sc config IKEEXT start= disabled
  1675.  
  1676. rem IP Helper
  1677. sc config iphlpsvc start= disabled
  1678.  
  1679. rem IPsec Policy Agent
  1680. sc config PolicyAgent start= disabled
  1681.  
  1682. rem Microsoft Account Sign-in Assistant
  1683. sc config wlidsvc start= disabled
  1684.  
  1685. rem Microsoft Edge Elevation Service
  1686. sc config MicrosoftEdgeElevationService start= disabled
  1687.  
  1688. rem Microsoft Edge Update Service (edgeupdate)
  1689. sc config edgeupdate start= disabled
  1690.  
  1691. rem Microsoft Edge Update Service (edgeupdatem)
  1692. sc config edgeupdatem start= disabled
  1693.  
  1694. rem Microsoft Passport
  1695. reg add "HKLM\System\CurrentControlSet\Services\NgcSvc" /v "Start" /t REG_DWORD /d "4" /f
  1696.  
  1697. rem Microsoft Passport Container
  1698. reg add "HKLM\System\CurrentControlSet\Services\NgcCtnrSvc" /v "Start" /t REG_DWORD /d "4" /f
  1699.  
  1700. rem Network Connections
  1701. sc config Netman start= demand
  1702.  
  1703. rem Network Location Awareness
  1704. sc config NlaSvc start= auto
  1705.  
  1706. rem Network Store Interface Service
  1707. sc config nsi start= auto
  1708.  
  1709. rem Optimize drives
  1710. sc config defragsvc start= disabled
  1711.  
  1712. rem Portable Device Enumerator Service
  1713. sc config WPDBusEnum start= disabled
  1714.  
  1715. rem Print Spooler
  1716. sc config Spooler start= disabled
  1717.  
  1718. rem Program Compatibility Assistant Service
  1719. sc config PcaSvc start= disabled
  1720.  
  1721. rem Radio Management Service
  1722. sc config RmSvc start= disabled
  1723.  
  1724. rem Remote Access Connection Manager
  1725. sc config RasMan start= disabled
  1726.  
  1727. rem Remote Desktop Services
  1728. sc config TermService start= disabled
  1729.  
  1730. rem Retail Demo
  1731. sc config RetailDemo start=disabled
  1732.  
  1733. rem Secure Socket Tunneling Protocol Service
  1734. sc config SstpSvc start= disabled
  1735.  
  1736. rem Security Centre
  1737. reg add "HKLM\System\CurrentControlSet\Services\wscsvc" /v "Start" /t REG_DWORD /d "4" /f
  1738.  
  1739. rem Server
  1740. sc config LanmanServer start= disabled
  1741.  
  1742. rem Shell Hardware Detection
  1743. sc config ShellHWDetection start= disabled
  1744.  
  1745. rem Smart Card
  1746. sc config SCardSvr start= disabled
  1747.  
  1748. rem Storage Service
  1749. sc config StorSvc start= disabled
  1750.  
  1751. rem SSDP Discovery
  1752. sc config SSDPSRV start= disabled
  1753.  
  1754. rem Superfetch
  1755. sc config SysMain start= disabled
  1756.  
  1757. rem System Guard Runtime Monitor Broker
  1758. reg add "HKLM\System\CurrentControlSet\Services\SgrmBroker" /v "Start" /t REG_DWORD /d "4" /f
  1759.  
  1760. rem Task Scheduler
  1761. rem reg add "HKLM\System\CurrentControlSet\Services\Schedule" /v "Start" /t REG_DWORD /d "4" /f
  1762.  
  1763. rem TCP/IP NetBIOS Helper (Required by some internet connections like aDSL)
  1764. sc config lmhosts start= disabled
  1765.  
  1766. rem Themes
  1767. sc config Themes start= disabled
  1768.  
  1769. rem Tile Data model server
  1770. reg add "HKLM\System\CurrentControlSet\Services\tiledatamodelsvc" /v "Start" /t REG_DWORD /d "4" /f
  1771.  
  1772. rem Touch Keyboard and Handwriting Panel Service (keeps ctfmon.exe running)
  1773. sc config TabletInputService start= disabled
  1774.  
  1775. rem Update Orchestrator Service
  1776. reg add "HKLM\System\CurrentControlSet\Services\UsoSvc" /v "Start" /t REG_DWORD /d "4" /f
  1777.  
  1778. rem User Data Access
  1779. reg add "HKLM\System\CurrentControlSet\Services\UserDataSvc" /v "Start" /t REG_DWORD /d "4" /f
  1780.  
  1781. rem User Data Storage
  1782. reg add "HKLM\System\CurrentControlSet\Services\UnistoreSvc" /v "Start" /t REG_DWORD /d "4" /f
  1783.  
  1784. rem Web Account Manager
  1785. sc config TokenBroker start= disabled
  1786.  
  1787. rem WebClient
  1788. sc config WebClient start= disabled
  1789.  
  1790. rem Windows Biometric Service
  1791. sc config WbioSrvc start= disabled
  1792.  
  1793. rem Windows Connect Now - Config Registrar (Required by WPS WiFi connection)
  1794. sc config wcncsvc start= disabled
  1795.  
  1796. rem Windows Connection Manager
  1797. sc config Wcmsvc start= disabled
  1798.  
  1799. rem Windows Defender Firewall
  1800. reg add "HKLM\System\CurrentControlSet\Services\MpsSvc" /v "Start" /t REG_DWORD /d "2" /f
  1801.  
  1802. rem Windows Font Cache Service
  1803. sc config FontCache start= disabled
  1804.  
  1805. rem Windows Management Instrumentation
  1806. rem https://gbhackers.com/fileless-malware-wmi-eternalblue
  1807. sc config Winmgmt start= disabled
  1808.  
  1809. rem Windows Network Data Usage Monitoring Driver service (Kernel mode driver)
  1810. sc config ndu start= disabled
  1811.  
  1812. rem Windows Image Acquisition (WIA)
  1813. sc config stisvc start= disabled
  1814.  
  1815. rem Windows Insider Service
  1816. sc config wisvc start= disabled
  1817.  
  1818. rem Windows Push Notifications System Service
  1819. reg add "HKLM\System\CurrentControlSet\Services\WpnUserService" /v "Start" /t REG_DWORD /d "4" /f
  1820. sc config WpnService start= disabled
  1821.  
  1822. rem Windows PushToInstall Service
  1823. sc config PushToInstall start= disabled
  1824.  
  1825. rem Windows Remote Management (WS-Management)
  1826. sc config WinRM start= disabled
  1827.  
  1828. rem Windows Search
  1829. sc config WSearch start= disabled
  1830.  
  1831. rem Windows Time
  1832. sc config W32Time start= disabled
  1833.  
  1834. rem Windows Update
  1835. sc config wuauserv start= disabled
  1836.  
  1837. rem WinHTTP Web Proxy Auto-Discovery Service
  1838. reg add "HKLM\System\CurrentControlSet\Services\WinHttpAutoProxySvc" /v "Start" /t REG_DWORD /d "4" /f
  1839.  
  1840. rem WMI Performance Adapter
  1841. sc config wmiApSrv start= disabled
  1842.  
  1843. rem Workstation
  1844. sc config LanmanWorkstation start= disabled
  1845.  
  1846. rem Yandex.Browser Update Service
  1847. sc config YandexBrowserService start= disabled
  1848.  
  1849.  
  1850. rem =================================== Windows Settings ===================================
  1851. rem -------------------------------------- Accounts ----------------------------------------
  1852. rem ................................... Sing-in options ....................................
  1853.  
  1854. rem 1 - Automatically save my restartable apps when I sign out and restart them after I sign in
  1855. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v "RestartApps" /t REG_DWORD /d "0" /f
  1856.  
  1857.  
  1858. rem =================================== Windows Settings ===================================
  1859. rem -------------------------------------- Accounts ----------------------------------------
  1860. rem ................................. Sync your settings ...................................
  1861.  
  1862. rem 1 - Disable sync
  1863. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync" /v "SyncPolicy" /t REG_DWORD /d "5" /f
  1864. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1865.  
  1866. rem 2 - Disable sync / 1 - Enable
  1867. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableSettingSync" /t REG_DWORD /d "2" /f
  1868.  
  1869. rem Individual sync settings
  1870. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\Accessibility" /v "Enabled" /t REG_DWORD /d "0" /f
  1871. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\AppSync" /v "Enabled" /t REG_DWORD /d "0" /f
  1872. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\BrowserSettings" /v "Enabled" /t REG_DWORD /d "0" /f
  1873. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\Credentials" /v "Enabled" /t REG_DWORD /d "0" /f
  1874. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\DesktopTheme" /v "Enabled" /t REG_DWORD /d "0" /f
  1875. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\Language" /v "Enabled" /t REG_DWORD /d "0" /f
  1876. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\PackageState" /v "Enabled" /t REG_DWORD /d "0" /f
  1877. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\Personalization" /v "Enabled" /t REG_DWORD /d "0" /f
  1878. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\StartLayout" /v "Enabled" /t REG_DWORD /d "0" /f
  1879. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\Groups\Windows" /v "Enabled" /t REG_DWORD /d "0" /f
  1880. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableAppSyncSettingSync" /t REG_DWORD /d "2" /f
  1881. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableAppSyncSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1882. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableApplicationSettingSync" /t REG_DWORD /d "2" /f
  1883. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableApplicationSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1884. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableCredentialsSettingSync" /t REG_DWORD /d "2" /f
  1885. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableCredentialsSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1886. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableDesktopThemeSettingSync" /t REG_DWORD /d "2" /f
  1887. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableDesktopThemeSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1888. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisablePersonalizationSettingSync" /t REG_DWORD /d "2" /f
  1889. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisablePersonalizationSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1890. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableStartLayoutSettingSync" /t REG_DWORD /d "2" /f
  1891. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableStartLayoutSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1892. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableSyncOnPaidNetwork" /t REG_DWORD /d 1 /f
  1893. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableWebBrowserSettingSync" /t REG_DWORD /d "2" /f
  1894. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableWebBrowserSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1895. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableWindowsSettingSync" /t REG_DWORD /d "2" /f
  1896. reg add "HKLM\Software\Policies\Microsoft\Windows\SettingSync" /v "DisableWindowsSettingSyncUserOverride" /t REG_DWORD /d "1" /f
  1897.  
  1898.  
  1899. rem =================================== Windows Settings ===================================
  1900. rem ---------------------------------------- Apps ------------------------------------------
  1901. rem ................................... Apps & features ....................................
  1902.  
  1903. rem Choose where you can get apps from - Anywhere / PreferStore / StoreOnly / Recommendations
  1904. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "AicEnabled" /t REG_SZ /d "Anywhere" /f
  1905.  
  1906.  
  1907. rem =================================== Windows Settings ===================================
  1908. rem ---------------------------------------- Apps ------------------------------------------
  1909. rem ................................... Apps & features ....................................
  1910. rem . . . . . . . . . . . . . . . . Programs and Features . . . . . . . . . . . . . . . . .
  1911.  
  1912. rem Dism /Online /Get-Features
  1913. rem Windows Basics
  1914.  
  1915.  
  1916. rem =================================== Windows Settings ===================================
  1917. rem --------------------------------------- Devices ----------------------------------------
  1918. rem ...................................... Autoplay .......................................
  1919.  
  1920. rem 0 - Use Autoplay for all media and devices
  1921. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers" /v "DisableAutoplay" /t REG_DWORD /d "1" /f
  1922.  
  1923. rem ________________________________________________________________________________________
  1924. rem Disable AutoPlay and AutoRun
  1925. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoAutorun" /t REG_DWORD /d "1" /f
  1926. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoDriveTypeAutoRun" /t REG_DWORD /d "255" /f
  1927.  
  1928.  
  1929. rem =================================== Windows Settings ===================================
  1930. rem --------------------------------------- Devices ----------------------------------------
  1931. rem ........................................ Mouse .........................................
  1932. rem . . . . . . . . . . . . . . . . Additional mouse options . . . . . . . . . . . . . . . .
  1933.  
  1934. rem 1/6/10 - Enhance pointer precision (Mouse Acceleration)
  1935. reg add "HKCU\Control Panel\Mouse" /v "MouseSpeed" /t REG_SZ /d "0" /f
  1936. reg add "HKCU\Control Panel\Mouse" /v "MouseThreshold1" /t REG_SZ /d "0" /f
  1937. reg add "HKCU\Control Panel\Mouse" /v "MouseThreshold2" /t REG_SZ /d "0" /f
  1938. rem ________________________________________________________________________________________
  1939. reg add "HKCU\Control Panel\Mouse" /v "MouseTrails" /t REG_SZ /d "0" /f
  1940.  
  1941.  
  1942. rem =================================== Windows Settings ===================================
  1943. rem --------------------------------------- Devices ---------------.------------------------
  1944. rem ....................................... Typing .........................................
  1945.  
  1946. rem Autocorrect misspelled words (Privacy)
  1947. reg add "HKCU\Software\Microsoft\TabletTip\1.7" /v "EnableAutocorrection" /t REG_DWORD /d "0" /f
  1948.  
  1949. rem Highlight misspelled words (Privacy)
  1950. reg add "HKCU\Software\Microsoft\TabletTip\1.7" /v "EnableSpellchecking" /t REG_DWORD /d "0" /f
  1951.  
  1952. rem Show text suggestions as I type on the software keyboard (Privacy)
  1953. reg add "HKCU\Software\Microsoft\TabletTip\1.7" /v "EnableTextPrediction" /t REG_DWORD /d "0" /f
  1954.  
  1955. rem Add a space after I choose a text suggestion (Privacy)
  1956. reg add "HKCU\Software\Microsoft\TabletTip\1.7" /v "EnablePredictionSpaceInsertion" /t REG_DWORD /d "0" /f
  1957.  
  1958. rem Add a period after I double-tap the Spacebar (Privacy)
  1959. reg add "HKCU\Software\Microsoft\TabletTip\1.7" /v "EnableDoubleTapSpace" /t REG_DWORD /d "0" /f
  1960.  
  1961.  
  1962. rem =================================== Windows Settings ===================================
  1963. rem --------------------------------------- Devices ---------------.------------------------
  1964. rem ....................................... Typing .........................................
  1965. rem . . . . . . . . . . . . . . . . How AI has helped you . . . .  . . . . . . . . . . . . .
  1966.  
  1967. rem Typing insights (Privacy)
  1968. reg add "HKCU\Software\Microsoft\Input\Settings" /v "InsightsEnabled" /t REG_DWORD /d "0" /f
  1969. rem ________________________________________________________________________________________
  1970. reg add "HKCU\Software\Microsoft\InputPersonalization\TrainedDataStore" /v "HarvestContacts" /t REG_DWORD /d "0" /f
  1971. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\TextInput" /v "AllowLinguisticDataCollection" /t REG_DWORD /d "0" /f
  1972.  
  1973.  
  1974. rem =================================== Windows Settings ===================================
  1975. rem --------------------------------------- Devices ---------------.-------------------------
  1976. rem .................................. Pen & Windows Ink ....................................
  1977.  
  1978. rem Show recommended app suggestions (Privacy)
  1979. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\PenWorkspace" /v "PenWorkspaceAppSuggestionsEnabled" /t REG_DWORD /d "0" /f
  1980.  
  1981.  
  1982. rem =================================== Windows Settings ===================================
  1983. rem ------------------------------------ Easy of Access ------------------------------------
  1984. rem ....................................... Keyboard .......................................
  1985.  
  1986. rem Sticky Keys / 26 - Disable All / 511 - Default
  1987. reg add "HKCU\Control Panel\Accessibility\StickyKeys" /v "Flags" /t REG_SZ /d "26" /f
  1988.  
  1989. rem Toggle Keys / 58 - Disable All / 63 - Default
  1990. reg add "HKCU\Control Panel\Accessibility\ToggleKeys" /v "Flags" /t REG_SZ /d "58" /f
  1991.  
  1992. rem ________________________________________________________________________________________
  1993. rem 1 - Disable Windows Key Hotkeys
  1994. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "NoWinKeys" /t REG_DWORD /d "1" /f
  1995. rem Disable specific Windows Key Hotkeys only (like R = Win+R)
  1996. rem reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "DisabledHotkeys" /t REG_EXPAND_SZ /d "R" /f
  1997.  
  1998.  
  1999. rem =================================== Windows Settings ===================================
  2000. rem ------------------------------------ Easy of Access ------------------------------------
  2001. rem ........................................ Mouse ........................................
  2002.  
  2003. rem Mouse Keys / 254 - Disable / 255 - Default
  2004. reg add "HKCU\Control Panel\Accessibility\MouseKeys" /v "Flags" /t REG_SZ /d "254" /f
  2005.  
  2006.  
  2007. rem =================================== Windows Settings ===================================
  2008. rem ---------------------------------------- Gaming ----------------------------------------
  2009. rem ....................................... Game bar .......................................
  2010.  
  2011. rem 1 - Record game clips, screenshots, and broadcast using Game bar / Disable the message "Press Win + G to open Game bar"
  2012. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\GameDVR" /v "AppCaptureEnabled" /t REG_DWORD /d "0" /f
  2013.  
  2014. rem 1 - Open Game bar using this button on a controller
  2015. reg add "HKCU\Software\Microsoft\GameBar" /v "UseNexusForGameBarEnabled" /t REG_DWORD /d "0" /f
  2016.  
  2017.  
  2018. rem =================================== Windows Settings ===================================
  2019. rem ---------------------------------------- Gaming ----------------------------------------
  2020. rem ....................................... Game DVR .......................................
  2021.  
  2022. rem ________________________________________________________________________________________
  2023. rem 1 - Show tips when I start a game (ADs)
  2024. reg add "HKCU\Software\Microsoft\GameBar" /v "ShowStartupPanel" /t REG_DWORD /d "0" /f
  2025.  
  2026. rem 0 - Disable Fullscreen Optimizations for Current User / 0 - Enabled / 2 - Disabled
  2027. reg add "HKCU\System\GameConfigStore" /v "GameDVR_FSEBehavior" /t REG_DWORD /d "2" /f
  2028. reg add "HKCU\System\GameConfigStore" /v "GameDVR_HonorUserFSEBehaviorMode" /t REG_DWORD /d "2" /f
  2029.  
  2030. rem 0 - Disable Game DVR / "Press Win + G to record a clip"
  2031. reg add "HKCU\System\GameConfigStore" /v "GameDVR_Enabled" /t REG_DWORD /d "0" /f
  2032. reg add "HKLM\Software\Policies\Microsoft\Windows\GameDVR" /v "AllowgameDVR" /t REG_DWORD /d "0" /f
  2033.  
  2034. reg add "HKLM\System\CurrentControlSet\Services\BcastDVRUserService" /v "Start" /t REG_DWORD /d "4" /f
  2035. reg add "HKLM\System\CurrentControlSet\Services\xbgm" /v "Start" /t REG_DWORD /d "4" /f
  2036. sc config XblAuthManager start= disabled
  2037. sc config XblGameSave start= disabled
  2038. sc config XboxGipSvc start= disabled
  2039. sc config XboxNetApiSvc start= disabled
  2040. schtasks /Change /TN "Microsoft\XblGameSave\XblGameSaveTask" /Disable
  2041.  
  2042. rem Remove Game Bar Presence (to restore run "sfc /scannow")
  2043. takeown /s %computername% /u %username% /f "%WinDir%\System32\GameBarPresenceWriter.exe"
  2044. icacls "%WinDir%\System32\GameBarPresenceWriter.exe" /grant:r %username%:F
  2045. taskkill /im GameBarPresenceWriter.exe /f
  2046. del "%WinDir%\System32\GameBarPresenceWriter.exe" /s /f /q
  2047.  
  2048. reg add "HKCU\Software\Microsoft\GameBar" /v "UseNexusForGameBarEnabled" /t REG_DWORD /d "0" /f
  2049. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\GameDVR" /v "AppCaptureEnabled" /t REG_DWORD /d "0" /f
  2050. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\GameDVR" /v "AudioCaptureEnabled" /t REG_DWORD /d "0" /f
  2051. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\GameDVR" /v "CursorCaptureEnabled" /t REG_DWORD /d "0" /f
  2052.  
  2053.  
  2054. rem =================================== Windows Settings ===================================
  2055. rem ---------------------------------------- Gaming ----------------------------------------
  2056. rem ....................................... Game Mode ......................................
  2057.  
  2058. rem 0 - Disable support for Game Mode
  2059. reg add "HKCU\Software\Microsoft\GameBar" /v "AutoGameModeEnabled" /t REG_DWORD /d "0" /f
  2060.  
  2061. rem 1 - Use Game Mode
  2062. reg add "HKCU\Software\Microsoft\GameBar" /v "AllowAutoGameMode" /t REG_DWORD /d "0" /f
  2063.  
  2064.  
  2065. rem =================================== Windows Settings ===================================
  2066. rem ---------------------------------- Network & Internet ----------------------------------
  2067. rem ................................ Change adapter options ................................
  2068.  
  2069. rem Show public/external IP
  2070. rem nslookup myip.opendns.com. resolver1.opendns.com
  2071.  
  2072. rem Windows wmic command line command
  2073. rem http://www.computerhope.com/wmic.htm
  2074. rem To get adapter's index number use
  2075. rem wmic nicconfig get caption,index,TcpipNetbiosOptions
  2076.  
  2077. rem Disable IPv6
  2078. netsh int ipv6 isatap set state disabled
  2079. netsh int teredo set state disabled
  2080. netsh interface ipv6 6to4 set state state=disabled undoonstop=disabled
  2081. reg add "HKLM\System\CurrentControlSet\Services\Tcpip6\Parameters" /v "DisabledComponents" /t REG_DWORD /d "255" /f
  2082.  
  2083. rem Setup DNS Servers on DHCP Enabled Network (CloudflareDNS)
  2084. wmic nicconfig where DHCPEnabled=TRUE call SetDNSServerSearchOrder ("1.1.1.1")
  2085.  
  2086. rem Setup IP, Gateway and DNS Servers based on the MAC address (To Enable DHCP: wmic nicconfig where macaddress="28:E3:47:18:70:3D" call enabledhcp)
  2087. rem http://www.subnet-calculator.com/subnet.php?net_class=A
  2088. wmic nicconfig where macaddress="00:D8:61:6E:E8:C5" call EnableStatic ("10.10.10.12"), ("255.255.255.248")
  2089. wmic nicconfig where macaddress="00:D8:61:6E:E8:C5" call SetDNSServerSearchOrder ("156.154.71.2","156.154.70.2")
  2090. wmic nicconfig where macaddress="00:D8:61:6E:E8:C5" call SetGateways ("10.10.10.10")
  2091.  
  2092. rem 0 - Disable LMHOSTS Lookup on all adapters / 1 - Enable
  2093. reg add "HKLM\System\CurrentControlSet\Services\NetBT\Parameters" /v "EnableLMHOSTS" /t REG_DWORD /d "0" /f
  2094.  
  2095. rem 2 - Disable NetBIOS over TCP/IP on all adapters / 1 - Enable / 0 - Default
  2096. wmic nicconfig where TcpipNetbiosOptions=0 call SetTcpipNetbios 2
  2097. wmic nicconfig where TcpipNetbiosOptions=1 call SetTcpipNetbios 2
  2098.  
  2099. rem ________________________________________________________________________________________
  2100. rem https://msdn.microsoft.com/en-us/library/windows/desktop/aa383928(v=vs.85).aspx
  2101. rem https://www.codeproject.com/articles/1158641/windows-continuous-disk-write-plus-webcachev-dat-p
  2102. rem Disable WinInetCacheServer (WinINet Caching/V01.log/WebCacheV01.dat)
  2103. rem %LocalAppData%\Microsoft\Windows\WebCache
  2104. rem Take Ownership of the Registry key - https://www.youtube.com/watch?v=M1l5ifYKefg
  2105. reg delete "HKCR\AppID\{3eb3c877-1f16-487c-9050-104dbcd66683}" /f
  2106. reg delete "HKCR\CLSID\{0358b920-0ac7-461f-98f4-58e32cd89148}" /v "AppID" /f
  2107. reg delete "HKCR\Wow6432Node\AppID\{3eb3c877-1f16-487c-9050-104dbcd66683}" /f
  2108. reg delete "HKCR\Wow6432Node\CLSID\{0358b920-0ac7-461f-98f4-58e32cd89148}" /v "AppID" /f
  2109. reg delete "HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{3eb3c877-1f16-487c-9050-104dbcd66683}" /f
  2110. reg delete "HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0358b920-0ac7-461f-98f4-58e32cd89148}" /v "AppID" /f
  2111. schtasks /Change /TN "Microsoft\Windows\Wininet\CacheTask" /Disable
  2112.  
  2113. rem 0 - Disable WiFi Sense (shares your WiFi network login with other people)
  2114. reg add "HKLM\Software\Microsoft\PolicyManager\default\WiFi\AllowAutoConnectToWiFiSenseHotspots" /v "value" /t REG_DWORD /d "0" /f
  2115. reg add "HKLM\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting" /v "value" /t REG_DWORD /d "0" /f
  2116. reg add "HKLM\Software\Microsoft\WcmSvc\wifinetworkmanager\config" /v "AutoConnectAllowedOEM" /t REG_DWORD /d "0" /f
  2117.  
  2118. rem 1 - Disable Domain Name Devolution (DNS AutoCorrect) / 0 - Enabled (Default)
  2119. reg add "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters" /v "UseDomainNameDevolution" /t REG_DWORD /d "0" /f
  2120.  
  2121. rem Restrict NTLM: Incoming NTLM traffic - Deny All
  2122. reg add "HKLM\System\CurrentControlSet\Control\Lsa\MSV1_0" /v "RestrictReceivingNTLMTraffic" /t REG_DWORD /d "2" /f
  2123.  
  2124. rem Restrict NTLM: Outgoing NTLM traffic to remote servers - Deny All
  2125. reg add "HKLM\System\CurrentControlSet\Control\Lsa\MSV1_0" /v "RestrictSendingNTLMTraffic" /t REG_DWORD /d "2" /f
  2126.  
  2127.  
  2128. rem =================================== Windows Settings ===================================
  2129. rem ----------------------------------- Personalization ------------------------------------
  2130. rem ..................................... Background .......................................
  2131.  
  2132. rem Choose your picture (Black/Dark recommended)
  2133. reg add "HKCU\Control Panel\Desktop" /v "Wallpaper" /t REG_SZ /d "D:\Software\Temp\Pics\MLP Wallpapers\Wallpaper.jpg" /f
  2134.  
  2135. rem Choose a fit / 10 - Fill / 6 - Fit / 2 - Stretch / 0 - Tile/Center
  2136. reg add "HKCU\Control Panel\Desktop" /v "WallpaperStyle" /t REG_SZ /d "2" /f
  2137.  
  2138. rem ________________________________________________________________________________________
  2139.  
  2140. rem 60-100% Wallpaper's image quality / 85 - Default
  2141. reg add "HKCU\Control Panel\Desktop" /v "JPEGImportQuality" /t REG_DWORD /d "100" /f
  2142.  
  2143.  
  2144. rem =================================== Windows Settings ===================================
  2145. rem ----------------------------------- Personalization ------------------------------------
  2146. rem ....................................... Colors .........................................
  2147.  
  2148. rem 1 - Automatically pick an accent color from my background
  2149. reg add "HKCU\Control Panel\Desktop" /v "AutoColorization" /t REG_SZ /d "0" /f
  2150.  
  2151. rem 1 - Transparency Effects
  2152. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Themes\Personalize" /v "EnableTransparency" /t REG_DWORD /d "0" /f
  2153.  
  2154. rem 1 - Show accent color on the following surfaces - Start, taskbar, and action center
  2155. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Themes\Personalize" /v "ColorPrevalence" /t REG_DWORD /d "1" /f
  2156.  
  2157. rem 1 - Show accent color on the following surfaces - Title bars
  2158. reg add "HKCU\Software\Microsoft\Windows\DWM" /v "ColorPrevalence" /t REG_DWORD /d "1" /f
  2159.  
  2160.  
  2161. rem =================================== Windows Settings ===================================
  2162. rem ----------------------------------- Personalization ------------------------------------
  2163. rem ..................................... Lock screen ......................................
  2164.  
  2165. rem 1 - Get fun facts, tips, tricks, and more on your lock screen (ADs) / Windows Spotlight
  2166. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "RotatingLockScreenEnabled" /t REG_DWORD /d "0" /f
  2167. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "RotatingLockScreenOverlayEnabled" /t REG_DWORD /d "0" /f
  2168. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Notifications\Settings" /v "NOC_GLOBAL_SETTING_ALLOW_TOASTS_ABOVE_LOCK" /t REG_DWORD /d "0" /f
  2169.  
  2170. rem ________________________________________________________________________________________
  2171. rem 1 - Disable LockScreen
  2172. reg add "HKLM\Software\Policies\Microsoft\Windows\Personalization" /v "NoLockScreen" /t REG_DWORD /d "1" /f
  2173.  
  2174. rem 1 - Disable Sign-in Screen Background Image
  2175. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "DisableLogonBackgroundImage" /t REG_DWORD /d "1" /f
  2176.  
  2177. rem 1 - Disable Windows spotlight (provides features such as different background images and text on the lock screen, suggested apps)
  2178. reg add "HKLM\Software\Policies\Microsoft\Windows\CloudContent" /v "DisableWindowsConsumerFeatures" /t REG_DWORD /d "1" /f
  2179. reg add "HKLM\Software\Policies\Microsoft\Windows\CloudContent" /v "DisableWindowsSpotlightFeatures" /t REG_DWORD /d "1" /f
  2180.  
  2181.  
  2182. rem =================================== Windows Settings ===================================
  2183. rem ----------------------------------- Personalization ------------------------------------
  2184. rem ..................................... Lock screen ......................................
  2185. rem . . . . . . . . . . . . . . . . . Screen saver settings . . . . . . . . . . . . . . . .
  2186.  
  2187. rem 0 - No screen saver is selected / 1 - A screen saver is selected
  2188. reg add "HKCU\Control Panel\Desktop" /v "ScreenSaveActive" /t REG_SZ /d "1" /f
  2189.  
  2190. rem Specifies whether the screen saver is password-protected / 0 - No / 1 - Yes
  2191. reg add "HKCU\Control Panel\Desktop" /v "ScreenSaverIsSecure" /t REG_SZ /d "0" /f
  2192.  
  2193. rem Specifies in seconds how long the System remains idle before the screen saver starts
  2194. reg add "HKCU\Control Panel\Desktop" /v "ScreenSaveTimeOut" /t REG_SZ /d "250" /f
  2195.  
  2196. rem Screensaver - Mystify.scr
  2197. reg add "HKCU\Control Panel\Desktop" /v "SCRNSAVE.EXE" /t REG_SZ /d "C:\Windows\PONY_ALL_NO_SOUND.scr" /f
  2198.  
  2199.  
  2200. rem =================================== Windows Settings ===================================
  2201. rem ----------------------------------- Personalization ------------------------------------
  2202. rem ........................................ Start .........................................
  2203.  
  2204. rem 1 - Show suggestions occasionally in Start (ADs)
  2205. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-338388Enabled" /t REG_DWORD /d "0" /f
  2206. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SystemPaneSuggestionsEnabled" /t REG_DWORD /d "0" /f
  2207.  
  2208. rem 1 - Show recently opened items in Jump Lists on Start or the taskbar
  2209. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "Start_TrackDocs" /t REG_DWORD /d "0" /f
  2210.  
  2211.  
  2212. rem =================================== Windows Settings ===================================
  2213. rem ----------------------------------- Personalization ------------------------------------
  2214. rem ....................................... Taskbar ........................................
  2215.  
  2216. rem Lock the taskbar
  2217. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "TaskbarSizeMove" /t REG_DWORD /d "0" /f
  2218.  
  2219. rem Replace Command Prompt with Windows Powershell in the menu when I right-click the start button or press Windows key+X
  2220. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "DontUsePowerShellOnWinX" /t REG_DWORD /d "1" /f
  2221.  
  2222. rem Combine taskbar buttons / 0 - Always hide labels / 1 - When taskbar is full / 2 - Never
  2223. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "TaskbarGlomLevel" /t REG_DWORD /d "0" /f
  2224.  
  2225. rem 1 - Show contacts on the taskbar
  2226. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" /v "PeopleBand" /t REG_DWORD /d "0" /f
  2227.  
  2228. rem ________________________________________________________________________________________
  2229. rem 0 - Turn on Quiet Hours in Action Center / Disable/Hide the message: Turn on Windows Security Center service
  2230. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Notifications\Settings" /v "NOC_GLOBAL_SETTING_TOASTS_ENABLED" /t REG_DWORD /d "0" /f
  2231.  
  2232. rem 0 - Hide Task View button
  2233. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowTaskViewButton" /t REG_DWORD /d "0" /f
  2234.  
  2235. rem 0 - Disable Cortana in Taskbar search
  2236. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "BingSearchEnabled" /t REG_DWORD /d "0" /f
  2237. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "CortanaEnabled" /t REG_DWORD /d "0" /f
  2238.  
  2239. rem 0 - Cortana Button on Taskbar / 0 - Hide / 1 - Show
  2240. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCortanaButton" /t REG_DWORD /d "0" /f
  2241.  
  2242. rem 0 - Hide Taskbar search / 1 - Show search icon / 2 - Show search box
  2243. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "SearchboxTaskbarMode" /t REG_DWORD /d "0" /f
  2244.  
  2245.  
  2246. rem =================================== Windows Settings ===================================
  2247. rem ----------------------------------- Personalization ------------------------------------
  2248. rem ....................................... Taskbar ........................................
  2249. rem . . . . . . . . . . . . . Select which icons appear on the taskbar . . . . . . . . . . .
  2250.  
  2251. rem 0 - Always show all icons in the notification area / 1 - Hide Inactive Icons
  2252. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer" /v "EnableAutoTray" /t REG_DWORD /d "0" /f
  2253.  
  2254.  
  2255. rem =================================== Windows Settings ===================================
  2256. rem ----------------------------------- Personalization ------------------------------------
  2257. rem ....................................... Taskbar ........................................
  2258. rem . . . . . . . . . . . . . . . . . Turn on system icons . . . . . . . . . . . . . . . . .
  2259.  
  2260. rem 1 - Hide Action Center System Tray Icon in Taskbar
  2261. reg add "HKCU\Software\Policies\Microsoft\Windows\Explorer" /v "DisableNotificationCenter" /t REG_DWORD /d "1" /f
  2262.  
  2263. rem 1 - Hide Action Network System Tray Icon in Taskbar
  2264. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "HideSCANetwork" /t REG_DWORD /d "1" /f
  2265.  
  2266. rem 1 - Hide Action Power System Tray Icon in Taskbar
  2267. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "HideSCAPower" /t REG_DWORD /d "0" /f
  2268.  
  2269. rem 1 - Hide Volume System Tray Icon in Taskbar
  2270. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v "HideSCAVolume" /t REG_DWORD /d "1" /f
  2271.  
  2272.  
  2273. rem =================================== Windows Settings ===================================
  2274. rem ----------------------------------- Personalization ------------------------------------
  2275. rem ....................................... Themes .........................................
  2276. rem . . . . . . . . . . . . . . . . . Desktop Icon Settings . . . . . . . . . . . . . . . .
  2277.  
  2278. rem Hide Control Panel
  2279. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}" /t REG_DWORD /d "1" /f
  2280.  
  2281. rem Hide Network
  2282. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}" /t REG_DWORD /d "1" /f
  2283.  
  2284. rem Hide Recycle Bin
  2285. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{645FF040-5081-101B-9F08-00AA002F954E}" /t REG_DWORD /d "1" /f
  2286.  
  2287. rem Hide Quick access
  2288. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{679f85cb-0220-4080-b29b-5540cc05aab6}" /t REG_DWORD /d "1" /f
  2289.  
  2290. rem Hide This PC
  2291. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{20D04FE0-3AEA-1069-A2D8-08002B30309D}" /t REG_DWORD /d "1" /f
  2292.  
  2293. rem Hide User's Files
  2294. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel" /v "{59031a47-3f72-44a7-89c5-5595fe6b30ee}" /t REG_DWORD /d "1" /f
  2295.  
  2296.  
  2297. rem =================================== Windows Settings ===================================
  2298. rem ----------------------------------- Personalization ------------------------------------
  2299. rem ....................................... Themes .........................................
  2300. rem . . . . . . . . . . . . . . . . . . . . Sounds . . . . . . . . . . . . . . . . . . . . .
  2301.  
  2302. rem Delete Windows Default Sounds (Permanently)
  2303. reg delete "HKCU\AppEvents\Schemes\Apps" /f
  2304.  
  2305. rem When windows detects communications activity / 0 - Mute all other sounds / 1 - Reduce all other by 80% / 2 - Reduce all other by 50% / 3 - Do nothing
  2306. reg add "HKCU\Software\Microsoft\Multimedia\Audio" /v "UserDuckingPreference" /t REG_DWORD /d "3" /f
  2307.  
  2308.  
  2309. rem =================================== Windows Settings ===================================
  2310. rem ---------------------------------------- Privacy ---------------------------------------
  2311.  
  2312. rem Let apps access ... / 0 - Default / 1 - Enabled / 2 - Disabled
  2313. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessGazeInput" /t REG_DWORD /d "2" /f
  2314.  
  2315. rem Let apps access ... / 0 - Default / 1 - Enabled / 2 - Disabled
  2316. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessMotion" /t REG_DWORD /d "2" /f
  2317.  
  2318. rem Let apps access ... / 0 - Default / 1 - Enabled / 2 - Disabled
  2319. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessPhone" /t REG_DWORD /d "2" /f
  2320.  
  2321. rem Disable Cortana
  2322. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "AllowCortana" /t REG_DWORD /d "0" /f
  2323. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "CortanaCapabilities" /t REG_SZ /d "" /f
  2324. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "CortanaConsent" /t REG_DWORD /d "0" /f
  2325. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "DeviceHistoryEnabled" /t REG_DWORD /d "0" /f
  2326. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "IsAssignedAccess" /t REG_DWORD /d "0" /f
  2327. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "IsWindowsHelloActive" /t REG_DWORD /d "0" /f
  2328. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Windows Search" /v "CortanaConsent" /t REG_DWORD /d "0" /f
  2329. reg add "HKLM\Software\Microsoft\PolicyManager\default\Experience\AllowCortana" /v "value" /t REG_DWORD /d "0" /f
  2330. reg add "HKLM\Software\Policies\Microsoft\SearchCompanion" /v "DisableContentFileUpdates" /t REG_DWORD /d "1" /f
  2331. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "AllowCloudSearch" /t REG_DWORD /d "0" /f
  2332. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "AllowCortana" /t REG_DWORD /d "0" /f
  2333. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "AllowCortanaAboveLock" /t REG_DWORD /d "0" /f
  2334. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "AllowSearchToUseLocation" /t REG_DWORD /d "0" /f
  2335. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "ConnectedSearchPrivacy" /t REG_DWORD /d "3" /f
  2336. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "ConnectedSearchUseWeb" /t REG_DWORD /d "0" /f
  2337. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "ConnectedSearchUseWebOverMeteredConnections" /t REG_DWORD /d "0" /f
  2338. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "DisableWebSearch" /t REG_DWORD /d "1" /f
  2339. reg add "HKLM\Software\Policies\Microsoft\Windows\Windows Search" /v "DoNotUseWebResults" /t REG_DWORD /d "1" /f
  2340.  
  2341. rem 1 - Let Cortana respond to "Hey Cortana"
  2342. reg add "HKCU\Software\Microsoft\Speech_OneCore\Preferences" /v "VoiceActivationOn" /t REG_DWORD /d "0" /f
  2343.  
  2344. rem 1- Let Cortana listen for my commands when I press Windows key + C
  2345. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "VoiceShortcut" /t REG_DWORD /d "0" /f
  2346.  
  2347. rem 1 - Use Cortana even when my device is locked
  2348. reg add "HKCU\Software\Microsoft\Speech_OneCore\Preferences" /v "VoiceActivationEnableAboveLockscreen" /t REG_DWORD /d "0" /f
  2349.  
  2350. rem Disable keyboard input/monitoring in apps like Calc, Edge, Search, Start, Store
  2351. schtasks /Change /TN "Microsoft\Windows\TextServicesFramework\MsCtfMonitor" /Disable
  2352.  
  2353.  
  2354. rem =================================== Windows Settings ===================================
  2355. rem ---------------------------------------- Privacy ---------------------------------------
  2356. rem ...................................... Account info ....................................
  2357.  
  2358. rem Allow/Deny - Allow access to account info on this device
  2359. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userAccountInformation" /v "Value" /t REG_SZ /d "Deny" /f
  2360.  
  2361. rem Allow/Deny - Allow apps to access your account info
  2362. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userAccountInformation" /v "Value" /t REG_SZ /d "Deny" /f
  2363.  
  2364. rem Let apps access my name, picture, and other account info / 0 - Default / 1 - Enabled / 2 - Disabled
  2365. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessAccountInfo" /t REG_DWORD /d "2" /f
  2366.  
  2367.  
  2368. rem =================================== Windows Settings ===================================
  2369. rem ---------------------------------------- Privacy ---------------------------------------
  2370. rem .................................... Activity History ..................................
  2371.  
  2372. rem Allow/Deny - Allow access to app diagnostic info on this device
  2373. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\activity" /v "Value" /t REG_SZ /d "Deny" /f
  2374.  
  2375. rem Allow/Deny - Allow Apps to access diagnostic info about your other apps
  2376. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\activity" /v "Value" /t REG_SZ /d "Deny" /f
  2377.  
  2378. rem Collect Activity History / 0 - Disabled / 1 - Enabled
  2379. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "EnableActivityFeed" /t REG_DWORD /d "0" /f
  2380.  
  2381. rem Let Windows collect my activities from this PC / 0 - Disabled / 1 - Enabled
  2382. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "PublishUserActivities" /t REG_DWORD /d "0" /f
  2383.  
  2384. rem Let Windows collect my activities from this PC to the cloud / 0 - Disabled / 1 - Enabled
  2385. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "UploadUserActivities" /t REG_DWORD /d "0" /f
  2386.  
  2387.  
  2388. rem =================================== Windows Settings ===================================
  2389. rem ---------------------------------------- Privacy ---------------------------------------
  2390. rem ..................................... App diagnostic ...................................
  2391.  
  2392. rem Allow/Deny - Allow access to app diagnostic info on this device
  2393. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\appDiagnostics" /v "Value" /t REG_SZ /d "Deny" /f
  2394.  
  2395. rem Allow/Deny - Allow Apps to access diagnostic info about your other apps
  2396. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\appDiagnostics" /v "Value" /t REG_SZ /d "Deny" /f
  2397.  
  2398. rem Let apps access diagnostic information / 0 - Default / 1 - Enabled / 2 - Disabled
  2399. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsGetDiagnosticInfo" /t REG_DWORD /d "2" /f
  2400.  
  2401. rem ________________________________________________________________________________________
  2402. rem reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\DeviceAccess\Global\{2297E4E2-5DBE-466D-A12B-0F8286F0D9CA}" /v "Value" /t REG_SZ /d "Deny" /f
  2403.  
  2404.  
  2405. rem =================================== Windows Settings ===================================
  2406. rem ---------------------------------------- Privacy ---------------------------------------
  2407. rem .................................... Background apps ..................................
  2408.  
  2409. rem Let apps run in the background / 1 - Enabled / 0 - Disabled
  2410. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Search" /v "BackgroundAppGlobalToggle" /t REG_DWORD /d "0" /f
  2411.  
  2412. rem Let apps run in the background / 0 - Enabled / 1 - Disabled
  2413. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" /v "GlobalUserDisabled" /t REG_DWORD /d "1" /f
  2414.  
  2415. rem Let apps run in the background / 0 - Default / 1 - Enabled / 2 - Disabled
  2416. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsRunInBackground" /t REG_DWORD /d "2" /f
  2417.  
  2418.  
  2419. rem =================================== Windows Settings ===================================
  2420. rem ---------------------------------------- Privacy ---------------------------------------
  2421. rem ....................................... Calendar .......................................
  2422.  
  2423. rem Allow/Deny - Allow access to calendars on this device
  2424. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\appointments" /v "Value" /t REG_SZ /d "Deny" /f
  2425.  
  2426. rem Allow/Deny - Allow apps to access your calendar
  2427. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\appointments" /v "Value" /t REG_SZ /d "Deny" /f
  2428.  
  2429. rem Let Windows apps access contacts / 0 - Default / 1 - Enabled / 2 - Disabled
  2430. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCalendar" /t REG_DWORD /d "2" /f
  2431.  
  2432.  
  2433. rem =================================== Windows Settings ===================================
  2434. rem ---------------------------------------- Privacy ---------------------------------------
  2435. rem ..................................... Call history .....................................
  2436.  
  2437. rem Allow/Deny - Allow access to call history on this device
  2438. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\phoneCallHistory" /v "Value" /t REG_SZ /d "Deny" /f
  2439.  
  2440. rem Allow/Deny - Allow apps to access your call history
  2441. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\phoneCallHistory" /v "Value" /t REG_SZ /d "Deny" /f
  2442.  
  2443. rem Let apps access my call history / 0 - Default / 1 - Enabled / 2 - Disabled
  2444. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCallHistory" /t REG_DWORD /d "2" /f
  2445.  
  2446.  
  2447. rem =================================== Windows Settings ===================================
  2448. rem ---------------------------------------- Privacy ---------------------------------------
  2449. rem ........................................ Camera ........................................
  2450.  
  2451. rem Allow/Deny - Allow access to camera on this device
  2452. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\webcam" /v "Value" /t REG_SZ /d "Deny" /f
  2453.  
  2454. rem Allow/Deny - Allow Apps to access your camera
  2455. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\webcam" /v "Value" /t REG_SZ /d "Deny" /f
  2456.  
  2457. rem Let apps use my camera / 0 - Default / 1 - Enabled / 2 - Disabled
  2458. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCamera" /t REG_DWORD /d "2" /f
  2459. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCamera_ForceAllowTheseApps" /t REG_MULTI_SZ /d "" /f
  2460. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCamera_ForceDenyTheseApps" /t REG_MULTI_SZ /d "" /f
  2461. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessCamera_UserInControlOfTheseApps" /t REG_MULTI_SZ /d "" /f
  2462.  
  2463.  
  2464. rem =================================== Windows Settings ===================================
  2465. rem ---------------------------------------- Privacy ---------------------------------------
  2466. rem ..................................... Cellular Data ....................................
  2467.  
  2468. rem Allow/Deny - Allow access to cellular data on this device
  2469. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\cellularData" /v "Value" /t REG_SZ /d "Deny" /f
  2470.  
  2471. rem Allow/Deny - Allow apps to access your cellular data
  2472. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\cellularData" /v "Value" /t REG_SZ /d "Deny" /f
  2473.  
  2474.  
  2475. rem =================================== Windows Settings ===================================
  2476. rem ---------------------------------------- Privacy ---------------------------------------
  2477. rem ......................................... Chat .........................................
  2478.  
  2479. rem Allow/Deny - Allow access to messaging on this device
  2480. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\chat" /v "Value" /t REG_SZ /d "Deny" /f
  2481.  
  2482. rem Allow/Deny - Allow Apps to read or send messages
  2483. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\chat" /v "Value" /t REG_SZ /d "Deny" /f
  2484.  
  2485. rem ________________________________________________________________________________________
  2486. reg add "HKCU\Software\Microsoft\Messaging" /v "CloudServiceSyncEnabled" /t REG_DWORD /d "0" /f
  2487.  
  2488.  
  2489. rem =================================== Windows Settings ===================================
  2490. rem ---------------------------------------- Privacy ---------------------------------------
  2491. rem ....................................... Contacts .......................................
  2492.  
  2493. rem Allow/Deny - Allow access to contacts on this device
  2494. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\contacts" /v "Value" /t REG_SZ /d "Deny" /f
  2495.  
  2496. rem Allow/Deny - Allow Apps to access your contacts
  2497. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\contacts" /v "Value" /t REG_SZ /d "Deny" /f
  2498.  
  2499. rem Let Windows apps access contacts / 0 - Default / 1 - Enabled / 2 - Disabled
  2500. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessContacts" /t REG_DWORD /d "2" /f
  2501.  
  2502.  
  2503. rem =================================== Windows Settings ===================================
  2504. rem ---------------------------------------- Privacy ---------------------------------------
  2505. rem ....................................... Documents ......................................
  2506.  
  2507. rem Allow/Deny - Document libraries access for this device
  2508. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\documentsLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2509.  
  2510. rem Allow/Deny - Allow Apps to access your documents library
  2511. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\documentsLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2512.  
  2513.  
  2514. rem =================================== Windows Settings ===================================
  2515. rem ---------------------------------------- Privacy ---------------------------------------
  2516. rem ................................... Downloads folder ...................................
  2517.  
  2518. rem Allow/Deny - Downloads folders access on this device
  2519. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\downloadsFolder" /v "Value" /t REG_SZ /d "Deny" /f
  2520.  
  2521. rem Allow/Deny - Allow Apps to access your downloads folder
  2522. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\downloadsFolder" /v "Value" /t REG_SZ /d "Deny" /f
  2523.  
  2524.  
  2525. rem =================================== Windows Settings ===================================
  2526. rem ---------------------------------------- Privacy ---------------------------------------
  2527. rem ......................................... Email ........................................
  2528.  
  2529. rem Allow/Deny - Allow access to email on this device
  2530. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\email" /v "Value" /t REG_SZ /d "Deny" /f
  2531.  
  2532. rem Allow/Deny - Allow apps to access your email
  2533. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\email" /v "Value" /t REG_SZ /d "Deny" /f
  2534.  
  2535. rem Let apps access and send email / 0 - Default / 1 - Enabled / 2 - Disabled
  2536. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessEmail" /t REG_DWORD /d "2" /f
  2537.  
  2538.  
  2539. rem =================================== Windows Settings ===================================
  2540. rem ---------------------------------------- Privacy ---------------------------------------
  2541. rem ................................. Feedback & diagnostics ...............................
  2542.  
  2543. rem Diagnostic and usage data - Select how much data you send to Microsoft / 0 - Security (Not aplicable on Home/Pro, it resets to Basic) / 1 - Basic / 2 - Enhanced (Hidden) / 3 - Full
  2544. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection" /v "AllowTelemetry" /t REG_DWORD /d "0" /f
  2545. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\WINEVT\Channels\Microsoft-Windows-Application-Experience/Program-Telemetry" /v "Enabled" /t REG_DWORD /d "0" /f
  2546. reg add "HKLM\Software\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry" /t REG_DWORD /d "0" /f
  2547. reg add "HKLM\Software\Policies\Microsoft\Windows\DataCollection" /v "DoNotShowFeedbackNotifications" /t REG_DWORD /d "1" /f
  2548. reg add "HKLM\Software\Policies\Microsoft\Windows\DataCollection" /v "MaxTelemetryAllowed" /t REG_DWORD /d "0" /f
  2549.  
  2550. rem 1 - Let Microsoft provide more tailored experiences with relevant tips and recommendations by using your diagnostic data
  2551. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Privacy" /v "TailoredExperiencesWithDiagnosticDataEnabled" /t REG_DWORD /d "0" /f
  2552.  
  2553. rem Feedback Frequency - Windows should ask for my feedback: 0 - Never / Removed - Automatically
  2554. reg add "HKCU\Software\Microsoft\Siuf\Rules" /v "NumberOfSIUFInPeriod" /t REG_DWORD /d "0" /f
  2555. reg add "HKCU\Software\Microsoft\Siuf\Rules" /v "PeriodInNanoSeconds" /t REG_DWORD /d "0" /f
  2556.  
  2557.  
  2558. rem =================================== Windows Settings ===================================
  2559. rem ---------------------------------------- Privacy ---------------------------------------
  2560. rem ...................................... File System .....................................
  2561.  
  2562. rem Allow/Deny - File system access for this device
  2563. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\broadFileSystemAccess" /v "Value" /t REG_SZ /d "Deny" /f
  2564.  
  2565. rem Allow/Deny - Allow Apps to access your file system
  2566. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\broadFileSystemAccess" /v "Value" /t REG_SZ /d "Deny" /f
  2567.  
  2568.  
  2569. rem =================================== Windows Settings ===================================
  2570. rem ---------------------------------------- Privacy ---------------------------------------
  2571. rem ........................................ General ......................................
  2572.  
  2573. rem Let apps use advertising ID to make ads more interesting to you based on your app usage
  2574. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\AdvertisingInfo" /v "Enabled" /t REG_DWORD /d "0" /f
  2575. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\AdvertisingInfo" /v "Enabled" /t REG_DWORD /d "0" /f
  2576. reg add "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\AdvertisingInfo" /v "Enabled" /t REG_DWORD /d "0" /f
  2577. reg add "HKLM\Software\Policies\Microsoft\Windows\AdvertisingInfo" /v "DisabledByGroupPolicy" /t REG_DWORD /d "1" /f
  2578.  
  2579. rem 0 - Let websites provide locally relevant content by accessing my language list (let browsers access your local language)
  2580. reg add "HKCU\Control Panel\International\User Profile" /v "HttpAcceptLanguageOptOut" /t REG_DWORD /d "1" /f
  2581.  
  2582. rem 1 - Let Windows track app launches to improve Start and search results (Remember commands typed in Run) / 0 - Disable and Disable "Show most used apps"
  2583. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "Start_TrackProgs" /t REG_DWORD /d "1" /f
  2584.  
  2585. rem 1 - Show me suggested content in the Settings app
  2586. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-338393Enabled" /t REG_DWORD /d "0" /f
  2587. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-353694Enabled" /t REG_DWORD /d "0" /f
  2588. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-353696Enabled" /t REG_DWORD /d "0" /f
  2589.  
  2590.  
  2591. rem =================================== Windows Settings ===================================
  2592. rem ---------------------------------------- Privacy ---------------------------------------
  2593. rem ....................................... Location .......................................
  2594.  
  2595. rem 1 - Location for this device is Off
  2596. reg add "HKLM\Software\Policies\Microsoft\Windows\LocationAndSensors" /v "DisableLocation" /t REG_DWORD /d "1" /f
  2597. reg add "HKLM\Software\Policies\Microsoft\Windows\LocationAndSensors" /v "DisableLocationScripting" /t REG_DWORD /d "1" /f
  2598. reg add "HKLM\Software\Policies\Microsoft\Windows\LocationAndSensors" /v "DisableSensors" /t REG_DWORD /d "1" /f
  2599. reg add "HKLM\Software\Policies\Microsoft\Windows\LocationAndSensors" /v "DisableWindowsLocationProvider" /t REG_DWORD /d "1" /f
  2600.  
  2601. rem 0 - Default / 1 - Enabled / 2 - Disabled
  2602. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessLocation" /t REG_DWORD /d "2" /f
  2603.  
  2604. rem ________________________________________________________________________________________
  2605. rem reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\DeviceAccess\Global\{BFA794E4-F964-4FDB-90F6-51056BFE4B44}" /v "Value" /t REG_SZ /d "Deny" /f
  2606.  
  2607.  
  2608. rem =================================== Windows Settings ===================================
  2609. rem ---------------------------------------- Privacy ---------------------------------------
  2610. rem ....................................... Messaging ......................................
  2611.  
  2612. rem Let apps read or send messages (text or MMS) / 0 - Default / 1 - Enabled / 2 - Disabled
  2613. reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessMessaging" /t REG_DWORD /d "2" /f
  2614.  
  2615.  
  2616. rem =================================== Windows Settings ===================================
  2617. rem ---------------------------------------- Privacy ---------------------------------------
  2618. rem ...................................... Microphone ......................................
  2619.  
  2620. rem Allow/Deny - Allow access to the microphone on this device
  2621. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\microphone" /v "Value" /t REG_SZ /d "Deny" /f
  2622.  
  2623. rem Allow/Deny - Allow Apps to access your microphone
  2624. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\microphone" /v "Value" /t REG_SZ /d "Deny" /f
  2625.  
  2626. rem Let apps use my microphone / 0 - Default / 1 - Enabled / 2 - Disabled
  2627. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessMicrophone" /t REG_DWORD /d "2" /f
  2628.  
  2629.  
  2630. rem =================================== Windows Settings ===================================
  2631. rem ---------------------------------------- Privacy ---------------------------------------
  2632. rem ..................................... Notifications ....................................
  2633.  
  2634. rem Allow/Deny - Allow access to user notifications on this device
  2635. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userNotificationListener" /v "Value" /t REG_SZ /d "Deny" /f
  2636.  
  2637. rem Allow/Deny - Allow apps to access your notifications
  2638. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userNotificationListener" /v "Value" /t REG_SZ /d "Deny" /f
  2639.  
  2640. rem Let apps access my notifications / 0 - Default / 1 - Enabled / 2 - Disabled
  2641. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessNotifications" /t REG_DWORD /d "2" /f
  2642.  
  2643. rem ________________________________________________________________________________________
  2644. rem reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\DeviceAccess\Global\{52079E78-A92B-413F-B213-E8FE35712E72}" /v "Value" /t REG_SZ /d "Deny" /f
  2645.  
  2646.  
  2647. rem =================================== Windows Settings ===================================
  2648. rem ---------------------------------------- Privacy ---------------------------------------
  2649. rem ..................................... Other devices ....................................
  2650.  
  2651. rem Allow/Deny - Communicate with unpaired devices
  2652. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\bluetoothSync" /v "Value" /t REG_SZ /d "Deny" /f
  2653.  
  2654. rem Allow/Deny - Use trusted devices
  2655. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\bluetoothSync" /v "Value" /t REG_SZ /d "Deny" /f
  2656.  
  2657. rem Let apps automatically share and sync info with wireless devices that don't explicitly pair with your PC, tablet, or phone / 0 - Default / 1 - Enabled / 2 - Disabled
  2658. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsSyncWithDevices" /t REG_DWORD /d "2" /f
  2659. rem reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessTrustedDevices" /t REG_DWORD /d "2" /f
  2660.  
  2661.  
  2662. rem =================================== Windows Settings ===================================
  2663. rem ---------------------------------------- Privacy ---------------------------------------
  2664. rem ..................................... Phone calls ......................................
  2665.  
  2666. rem Allow/Deny - Allow phone calls on this device
  2667. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\phoneCall" /v "Value" /t REG_SZ /d "Deny" /f
  2668.  
  2669. rem Allow/Deny - Allow apps to make phone calls
  2670. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\phoneCall" /v "Value" /t REG_SZ /d "Deny" /f
  2671.  
  2672.  
  2673. rem =================================== Windows Settings ===================================
  2674. rem ---------------------------------------- Privacy ---------------------------------------
  2675. rem ....................................... Pictures .......................................
  2676.  
  2677. rem Allow/Deny - Pictures library access for this device
  2678. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\picturesLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2679.  
  2680. rem Allow/Deny - Allow apps to access your pictures library
  2681. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\picturesLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2682.  
  2683.  
  2684. rem =================================== Windows Settings ===================================
  2685. rem ---------------------------------------- Privacy ---------------------------------------
  2686. rem ............................... Speech, inking, & typing ...............................
  2687.  
  2688. rem ________________________________________________________________________________________
  2689. reg add "HKLM\Software\Microsoft\Input" /v "InputServiceEnabled" /t REG_DWORD /d "0" /f
  2690. reg add "HKLM\Software\Microsoft\Input" /v "InputServiceEnabledForCCI" /t REG_DWORD /d "0" /f
  2691. reg add "HKCU\Software\Microsoft\Input\TIPC" /v "Enabled" /t REG_DWORD /d "0" /f
  2692. reg add "HKCU\Software\Microsoft\InputPersonalization" /v "RestrictImplicitInkCollection" /t REG_DWORD /d "1" /f
  2693. reg add "HKCU\Software\Microsoft\InputPersonalization" /v "RestrictImplicitTextCollection" /t REG_DWORD /d "1" /f
  2694. reg add "HKCU\Software\Microsoft\InputPersonalization\TrainedDataStore" /v "HarvestContacts" /t REG_DWORD /d "0" /f
  2695. reg add "HKCU\Software\Microsoft\Personalization\Settings" /v "AcceptedPrivacyPolicy" /t REG_DWORD /d "0" /f
  2696. reg add "HKLM\Software\Policies\Microsoft\InputPersonalization" /v "AllowInputPersonalization" /t REG_DWORD /d "0" /f
  2697. reg add "HKLM\Software\Policies\Microsoft\InputPersonalization" /v "RestrictImplicitInkCollection" /t REG_DWORD /d "1" /f
  2698. reg add "HKLM\Software\Policies\Microsoft\InputPersonalization" /v "RestrictImplicitTextCollection" /t REG_DWORD /d "1" /f
  2699. reg add "HKLM\Software\Policies\Microsoft\Windows\HandwritingErrorReports" /v "PreventHandwritingErrorReports" /t REG_DWORD /d "1" /f
  2700. reg add "HKLM\Software\Policies\Microsoft\Windows\TabletPC" /v "PreventHandwritingDataSharing" /t REG_DWORD /d "1" /f
  2701.  
  2702.  
  2703. rem =================================== Windows Settings ===================================
  2704. rem ---------------------------------------- Privacy ---------------------------------------
  2705. rem ........................................ Radios ........................................
  2706.  
  2707. rem Allow/Deny - Allow access to control raadios on this device
  2708. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\radios" /v "Value" /t REG_SZ /d "Deny" /f
  2709.  
  2710. rem Allow/Deny - Allow Apps to control device radios
  2711. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\radios" /v "Value" /t REG_SZ /d "Deny" /f
  2712.  
  2713. rem Let apps control radios / 0 - Default / 1 - Enabled / 2 - Disabled
  2714. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessRadios" /t REG_DWORD /d "2" /f
  2715.  
  2716.  
  2717. rem =================================== Windows Settings ===================================
  2718. rem ---------------------------------------- Privacy ---------------------------------------
  2719. rem ......................................... Tasks ........................................
  2720.  
  2721. rem Allow/Deny - Allow access to tasks on this device
  2722. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userDataTasks" /v "Value" /t REG_SZ /d "Deny" /f
  2723.  
  2724. rem Allow/Deny - Allow Apps to access your tasks
  2725. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\userDataTasks" /v "Value" /t REG_SZ /d "Deny" /f
  2726.  
  2727. rem Let apps access tasks / 0 - Default / 1 - Enabled / 2 - Disabled
  2728. rem reg add "HKLM\Software\Policies\Microsoft\Windows\AppPrivacy" /v "LetAppsAccessTasks" /t REG_DWORD /d "2" /f
  2729.  
  2730.  
  2731. rem =================================== Windows Settings ===================================
  2732. rem ---------------------------------------- Privacy ---------------------------------------
  2733. rem ........................................ Videos ........................................
  2734.  
  2735. rem Allow/Deny - Videos library access for this device
  2736. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\videosLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2737.  
  2738. rem Allow/Deny - Allow Apps to access your videos library
  2739. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\videosLibrary" /v "Value" /t REG_SZ /d "Deny" /f
  2740.  
  2741.  
  2742. rem =================================== Windows Settings ===================================
  2743. rem --------------------------------------- System -----------------------------------------
  2744. rem ........................................ About .........................................
  2745.  
  2746. rem PC Name: LianLiPC-7NB (Computer name should not be longer than 15 characters, no spaces either)
  2747. reg add "HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName" /v "ComputerName" /t REG_SZ /d "LianLiPC-7NB" /f
  2748. reg add "HKLM\System\CurrentControlSet\Control\ComputerName\ComputerName" /v "ComputerName" /t REG_SZ /d "LianLiPC-7NB" /f
  2749. reg add "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters" /v "Hostname" /t REG_SZ /d "LianLiPC-7NB" /f
  2750. reg add "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters" /v "NV Hostname" /t REG_SZ /d "LianLiPC-7NB" /f
  2751.  
  2752. rem Support
  2753. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "Manufacturer" /t REG_SZ /d "TairikuOkami" /f
  2754. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "Model" /t REG_SZ /d "MSI Radeon RX 580 ARMOR 8G OC" /f
  2755. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "SupportHours" /t REG_SZ /d "Within 24-48 hours" /f
  2756. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "SupportPhone" /t REG_SZ /d "TairikuOkami@azet.sk" /f
  2757. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "SupportURL" /t REG_SZ /d "https://steamcommunity.com/id/tairikuokami" /f
  2758.  
  2759. rem Computer Description
  2760. reg add "HKLM\System\CurrentControlSet\services\LanmanServer\Parameters" /v "srvcomment" /t REG_SZ /d "100/10 MBps" /f
  2761.  
  2762.  
  2763. rem =================================== Windows Settings ===================================
  2764. rem --------------------------------------- System -----------------------------------------
  2765. rem ........................................ About .........................................
  2766. rem . . . . . . . . . . . . . . . . . . . System info . . . . . . . . . . . . . . . . . . .
  2767.  
  2768. rem System info (Logo - 120x120.bmp)
  2769. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\OEMInformation" /v "Logo" /t REG_SZ /d "D:\Software\Temp\Pics\Logo.bmp" /f
  2770. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion" /v "RegisteredOrganization" /t REG_SZ /d "(-_-)" /f
  2771. reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion" /v "RegisteredOwner" /t REG_SZ /d "Brony" /f
  2772.  
  2773. rem Remote Settings - Disable Remote Assistance
  2774. reg add "HKLM\System\CurrentControlSet\Control\Remote Assistance" /v "fAllowToGetHelp" /t REG_DWORD /d "0" /f
  2775. reg add "HKLM\System\CurrentControlSet\Control\Remote Assistance" /v "fAllowFullControl" /t REG_DWORD /d "0" /f
  2776.  
  2777. rem System Protection - Enable System restore and Set the size
  2778. rem reg delete "HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore" /v "DisableSR" /f
  2779. rem reg delete "HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore" /v "DisableConfig" /f
  2780. rem reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\SPP\Clients" /v " {09F7EDC5-294E-4180-AF6A-FB0E6A0E9513}" /t REG_MULTI_SZ /d "1" /f
  2781. rem schtasks /Change /TN "Microsoft\Windows\SystemRestore\SR" /Enable
  2782. rem vssadmin Resize ShadowStorage /For=C: /On=C: /Maxsize=5GB
  2783. rem sc config wbengine start= demand
  2784. rem sc config swprv start= demand
  2785. rem sc config vds start= demand
  2786. rem sc config VSS start= demand
  2787.  
  2788. rem System Protection - Disable System restore and Set the size
  2789. reg add "HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore" /v "DisableSR" /t REG_DWORD /d "1" /f
  2790. schtasks /Change /TN "Microsoft\Windows\SystemRestore\SR" /Disable
  2791. vssadmin Resize ShadowStorage /For=C: /On=C: /Maxsize=320MB
  2792.  
  2793. rem Advanced system settings - Performance - Advanced - Processor Scheduling
  2794. rem 0 - Foreground and background applications equally responsive / 1 - Foreground application more responsive than background / 2 - Best foreground application response time (Default)
  2795. rem 38 - Adjust for best performance of Programs / 24 - Adjust for best performance of Background Services
  2796. reg add "HKLM\System\CurrentControlSet\Control\PriorityControl" /v "Win32PrioritySeparation " /t REG_DWORD /d "38" /f
  2797.  
  2798. rem Advanced system settings - Performance - Advanced - Virtual memory
  2799. rem Disable pagefile
  2800. wmic computersystem where name="%computername%" set AutomaticManagedPagefile=False
  2801. wmic pagefileset where name="%SystemDrive%\\pagefile.sys" set InitialSize=0,MaximumSize=0
  2802. wmic pagefileset where name="%SystemDrive%\\pagefile.sys" delete
  2803.  
  2804. rem Advanced system settings - Startup and Recovery
  2805. rem 5 - 5 secs / Time to display list of operating systems
  2806. bcdedit /timeout 5
  2807.  
  2808. rem Advanced system settings - Startup and Recovery
  2809. rem 1 - Automatically Restart (on System Failure)
  2810. reg add "HKLM\System\CurrentControlSet\Control\CrashControl" /v "AutoReboot" /t REG_DWORD /d "0" /f
  2811.  
  2812. rem ________________________________________________________________________________________
  2813. rem Disable Remote Assistance
  2814. sc config RemoteRegistry start= disabled
  2815. reg add "HKLM\Software\Policies\Microsoft\Windows\WinRM\Service\WinRS" /v "AllowRemoteShellAccess" /t REG_DWORD /d "0" /f
  2816. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "fAllowToGetHelp" /t REG_DWORD /d "0" /f
  2817. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "fAllowUnsolicited" /t REG_DWORD /d "0" /f
  2818. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "fAllowUnsolicitedFullControl" /t REG_DWORD /d "0" /f
  2819. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "fDenyTSConnections" /t REG_DWORD /d "1" /f
  2820. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "TSAppCompat" /t REG_DWORD /d "0" /f
  2821. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "TSEnabled" /t REG_DWORD /d "0" /f
  2822. reg add "HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services" /v "TSUserEnabled" /t REG_DWORD /d "0" /f
  2823.  
  2824. rem Encrypt the Pagefile
  2825. rem fsutil behavior set EncryptPagingFile 1
  2826.  
  2827.  
  2828. rem =================================== Windows Settings ===================================
  2829. rem --------------------------------------- System -----------------------------------------
  2830. rem ..................................... Clipboard ........................................
  2831.  
  2832. rem Save multiple items / 0 - Disable / 1 - Enable
  2833. reg add "HKCU\Software\Microsoft\Clipboard" /v "EnableClipboardHistory " /t REG_DWORD /d "0" /f
  2834.  
  2835. rem Sync across devices / 0 - Disable / 1 - Enable
  2836. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "AllowCrossDeviceClipboard " /t REG_DWORD /d "0" /f
  2837.  
  2838. rem ________________________________________________________________________________________
  2839. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "AllowClipboardHistory" /t REG_DWORD /d "0" /f
  2840.  
  2841.  
  2842. rem =================================== Windows Settings ===================================
  2843. rem --------------------------------------- System -----------------------------------------
  2844. rem ............................... Notifications & actions ................................
  2845.  
  2846. rem 1 - Get tips, tricks, and suggestions as you use Windows (ADs)
  2847. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-338389Enabled" /t REG_DWORD /d "0" /f
  2848.  
  2849. rem 0 - Get notifications from apps and other senders
  2850. reg add "HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications" /v "NoToastApplicationNotification" /t REG_DWORD /d "1" /f
  2851.  
  2852. rem Show me the Windows welcome experience after updates and occasionally when I sign in to highlight what's new and suggested (ADs)
  2853. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContent-310093Enabled" /t REG_DWORD /d "0" /f
  2854.  
  2855.  
  2856. rem =================================== Windows Settings ===================================
  2857. rem --------------------------------------- System -----------------------------------------
  2858. rem .................................... Power & sleep .....................................
  2859. rem . . . . . . . . . . . . . . . . Additional power settings . . . . . . . . . . . . . . .
  2860.  
  2861. rem Change plan settings - Change advanced power settings - Hard disk - Turn off hard disk (on battery) after
  2862. rem 0 - Never / 4294967295 - max value in seconds
  2863. reg add "HKLM\Software\Policies\Microsoft\Power\PowerSettings\E69653CA-CF7F-4F05-AA73-CB833FA90AD4" /v "DCSettingIndex" /t REG_DWORD /d "0" /f
  2864.  
  2865. rem Change plan settings - Change adavnced power settings - Hard disk - Turn off hard disk (plugged in) after
  2866. rem 0 - Never / 4294967295 - max value in seconds
  2867. reg add "HKLM\Software\Policies\Microsoft\Power\PowerSettings\6738E2C4-E8A5-4A42-B16A-E040E769756E" /v "ACSettingIndex" /t REG_DWORD /d "0" /f
  2868.  
  2869.  
  2870. rem =================================== Windows Settings ===================================
  2871. rem --------------------------------------- System -----------------------------------------
  2872. rem ................................. Shared Experiences ...................................
  2873.  
  2874. rem Let apps on other devices open apps and message apps on this device, and vice versa / 0 - Disabled
  2875. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\CDP" /v "EnableRemoteLaunchToast" /t REG_DWORD /d "0" /f
  2876. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "EnableCdp" /t REG_DWORD /d "0" /f
  2877. reg add "HKLM\Software\Policies\Microsoft\Windows\System" /v "EnableMmx" /t REG_DWORD /d "0" /f
  2878.  
  2879.  
  2880. rem =================================== Windows Settings ===================================
  2881. rem --------------------------------------- System -----------------------------------------
  2882. rem ....................................... Storage ........................................
  2883.  
  2884. rem ________________________________________________________________________________________
  2885. rem 0 - Disable Reserved Storage (7GB) - works only after upgrading or after a repair upgrade or set offline prior to install
  2886. rem https://forums.mydigitallife.net/threads/reserved-storage-in-windows-10.79347/page-3#post-1519084
  2887. rem fsutil storagereserve query C:
  2888. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\ReserveManager" /v "ShippedWithReserves" /t REG_DWORD /d "0" /f
  2889.  
  2890. reg add "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "AllowStorageSenseGlobal" /t REG_DWORD /d "0" /f
  2891. reg add "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "AllowStorageSenseTemporaryFilesCleanup" /t REG_DWORD /d "0" /f
  2892. reg add "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "ConfigStorageSenseCloudContentDehydrationThreshold" /t REG_DWORD /d "0" /f
  2893. reg add "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "ConfigStorageSenseRecycleBinCleanupThreshold" /t REG_DWORD /d "0" /f
  2894. reg add "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "ConfigStorageSenseDownloadsCleanupThreshold" /t REG_DWORD /d "0" /f
  2895. reg delete "HKLM\Software\Policies\Microsoft\Windows\StorageSense" /v "ConfigStorageSenseGlobalCadence" /f
  2896.  
  2897.  
  2898. rem =================================== Windows Settings ===================================
  2899. rem ----------------------------------- Time & language -------------------------------------
  2900. rem ..................................... Date & time .......................................
  2901.  
  2902. rem Time Zone - Central Europe Standard Time
  2903. tzutil /s "Central Europe Standard Time"
  2904.  
  2905.  
  2906. rem =================================== Windows Settings ===================================
  2907. rem ----------------------------------- Time & language -------------------------------------
  2908. rem ..................................... Date & time .......................................
  2909. rem . . . . . . . . . . . . Additional date, time, & regional settings . . . . . . . . . . .
  2910.  
  2911. rem Set Formats to Metric
  2912. reg add "HKCU\Control Panel\International" /v "iDigits" /t REG_SZ /d "2" /f
  2913. reg add "HKCU\Control Panel\International" /v "iLZero" /t REG_SZ /d "1" /f
  2914. reg add "HKCU\Control Panel\International" /v "iMeasure" /t REG_SZ /d "0" /f
  2915. reg add "HKCU\Control Panel\International" /v "iNegNumber" /t REG_SZ /d "1" /f
  2916. reg add "HKCU\Control Panel\International" /v "iPaperSize" /t REG_SZ /d "1" /f
  2917. reg add "HKCU\Control Panel\International" /v "iTLZero" /t REG_SZ /d "1" /f
  2918. reg add "HKCU\Control Panel\International" /v "sDecimal" /t REG_SZ /d "," /f
  2919. reg add "HKCU\Control Panel\International" /v "sNativeDigits" /t REG_SZ /d "0123456789" /f
  2920. reg add "HKCU\Control Panel\International" /v "sNegativeSign" /t REG_SZ /d "-" /f
  2921. reg add "HKCU\Control Panel\International" /v "sPositiveSign" /t REG_SZ /d "" /f
  2922. reg add "HKCU\Control Panel\International" /v "NumShape" /t REG_SZ /d "1" /f
  2923.  
  2924. rem Set Time to 24h / Monday
  2925. reg add "HKCU\Control Panel\International" /v "iCalendarType" /t REG_SZ /d "1" /f
  2926. reg add "HKCU\Control Panel\International" /v "iDate" /t REG_SZ /d "1" /f
  2927. reg add "HKCU\Control Panel\International" /v "iFirstDayOfWeek" /t REG_SZ /d "0" /f
  2928. reg add "HKCU\Control Panel\International" /v "iFirstWeekOfYear" /t REG_SZ /d "0" /f
  2929. reg add "HKCU\Control Panel\International" /v "iTime" /t REG_SZ /d "1" /f
  2930. reg add "HKCU\Control Panel\International" /v "iTimePrefix" /t REG_SZ /d "0" /f
  2931. reg add "HKCU\Control Panel\International" /v "sDate" /t REG_SZ /d "-" /f
  2932. reg add "HKCU\Control Panel\International" /v "sList" /t REG_SZ /d "," /f
  2933. reg add "HKCU\Control Panel\International" /v "sLongDate" /t REG_SZ /d "d MMMM, yyyy" /f
  2934. reg add "HKCU\Control Panel\International" /v "sMonDecimalSep" /t REG_SZ /d "." /f
  2935. reg add "HKCU\Control Panel\International" /v "sMonGrouping" /t REG_SZ /d "3;0" /f
  2936. reg add "HKCU\Control Panel\International" /v "sMonThousandSep" /t REG_SZ /d "," /f
  2937. reg add "HKCU\Control Panel\International" /v "sShortDate" /t REG_SZ /d "dd-MMM-yy" /f
  2938. reg add "HKCU\Control Panel\International" /v "sTime" /t REG_SZ /d ":" /f
  2939. reg add "HKCU\Control Panel\International" /v "sTimeFormat" /t REG_SZ /d "HH:mm:ss" /f
  2940. reg add "HKCU\Control Panel\International" /v "sShortTime" /t REG_SZ /d "HH:mm" /f
  2941. reg add "HKCU\Control Panel\International" /v "sYearMonth" /t REG_SZ /d "MMMM yyyy" /f
  2942.  
  2943. rem 244 - Set Location to United States / 143 - Slovakia
  2944. reg add "HKCU\Control Panel\International\Geo" /v "Nation" /t REG_SZ /d "143" /f
  2945.  
  2946.  
  2947. rem =================================== Windows Settings ===================================
  2948. rem ----------------------------------- Time & Language ------------------------------------
  2949. rem .................................. Region & Language ...................................
  2950. rem . . . . . . . . . . . . . . . Advanced keyboard settings . . . . . . . . . . . . . . . .
  2951.  
  2952. rem Language bar options - Advanced key settings - Change Key Sequence
  2953. rem 3 - Not assigned / 2 - CTRL+SHIFT / 1 - Left ALT+SHIFT
  2954. reg add "HKCU\Keyboard Layout\Toggle" /v "Language Hotkey" /t REG_SZ /d "3" /f
  2955. reg add "HKCU\Keyboard Layout\Toggle" /v "Hotkey" /t REG_SZ /d "3" /f
  2956. reg add "HKCU\Keyboard Layout\Toggle" /v "Layout Hotkey" /t REG_SZ /d "3" /f
  2957.  
  2958. rem ________________________________________________________________________________________
  2959. rem 2 - Enable Num Lock on Sign-in Screen / 2147483648 - Disable
  2960. reg add "HKU\.DEFAULT\Control Panel\Keyboard" /v "InitialKeyboardIndicators" /t REG_SZ /d "2" /f
  2961.  
  2962.  
  2963. rem =================================== Windows Settings ===================================
  2964. rem ----------------------------------- Update & security ----------------------------------
  2965. rem ........................................ Backup .......................................
  2966.  
  2967. rem ________________________________________________________________________________________
  2968. rem 1 - Disable File History (Creating previous versions of files/Windows Backup)
  2969. reg add "HKLM\Software\Policies\Microsoft\Windows\FileHistory" /v "Disabled" /t REG_DWORD /d "1" /f
  2970.  
  2971.  
  2972. rem =================================== Windows Settings ===================================
  2973. rem ----------------------------------- Update & security ----------------------------------
  2974. rem .................................... Windows update ....................................
  2975.  
  2976. rem Change active hours (18 hours) 6am to 0am - Windows Updates will not automatically restart your device during active hours
  2977. reg add "HKLM\Software\Microsoft\WindowsUpdate\UX\Settings" /v "ActiveHoursStart" /t REG_DWORD /d "6" /f
  2978. reg add "HKLM\Software\Microsoft\WindowsUpdate\UX\Settings" /v "ActiveHoursEnd" /t REG_DWORD /d "0" /f
  2979.  
  2980. rem Restart options - 1 - We'll show a reminder when we're going to restart.
  2981. reg add "HKLM\Software\Microsoft\WindowsUpdate\UX\Settings" /v "RestartNotificationsAllowed" /t REG_DWORD /d "0" /f
  2982.  
  2983. rem ________________________________________________________________________________________
  2984. rem Remove Windows ActiveX Flash (could be exploited within Windows/Office)
  2985. rem regsvr32 /u /s "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.dll"
  2986. takeown /s %computername% /u %username% /f "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.exe"
  2987. icacls "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.exe" /inheritance:r /grant:r %username%:F
  2988. del "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.exe" /f /q
  2989. takeown /s %computername% /u %username% /f "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.dll"
  2990. icacls "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.dll" /inheritance:r /grant:r %username%:F
  2991. del "%SystemRoot%\System32\Macromed\Flash\FlashUtil_ActiveX.dll" /f /q
  2992. takeown /s %computername% /u %username% /f "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.exe"
  2993. icacls "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.exe" /inheritance:r /grant:r %username%:F
  2994. del "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.exe" /f /q
  2995. takeown /s %computername% /u %username% /f "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.dll"
  2996. icacls "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.dll" /inheritance:r /grant:r %username%:F
  2997. del "%SystemRoot%\SysWow64\Macromed\Flash\FlashUtil_ActiveX.dll" /f /q
  2998.  
  2999. rem Disable auto-checking for updates, non-eglish users have to remove selected users manually (manual checking works, whenever YOU want, not Windows 10)
  3000. takeown /s %computername% /u %username% /f "%WINDIR%\System32\UsoClient.exe"
  3001. icacls "%WINDIR%\System32\UsoClient.exe" /inheritance:r /grant:r %username%:F
  3002. icacls "%WINDIR%\System32\UsoClient.exe" /remove "Administrators" "Authenticated Users" "Users" "System"
  3003. rem https://i.postimg.cc/q7cS25g6/capture-03312019-102210.jpg
  3004.  
  3005. rem To Restore (when there is update/upgrade updating exe, otherwise it will fail)
  3006. rem icacls "%WINDIR%\System32\UsoClient.exe" /reset
  3007.  
  3008. rem Disable checking for updates via GUI, non-eglish users have to remove selected users manually
  3009. takeown /s %computername% /u %username% /f "%WINDIR%\System32\usocoreworker.exe"
  3010. icacls "%WINDIR%\System32\usocoreworker.exe" /inheritance:r /grant:r %username%:F
  3011. icacls "%WINDIR%\System32\usocoreworker.exe" /remove "Administrators" "Authenticated Users" "Users" "System"
  3012.  
  3013. rem To Restore (when there is update/upgrade updating exe, otherwise it will fail)
  3014. rem icacls "%WINDIR%\System32\usocoreworker.exe" /reset
  3015.  
  3016. rem 1 - Disable Malicious Software Removal Tool offered via Windows Updates (MRT) + Disable Heartbeat Telemetry
  3017. reg add "HKLM\Software\Microsoft\RemovalTools\MpGears" /v "HeartbeatTrackingIndex" /t REG_DWORD /d "0" /f
  3018. reg add "HKLM\Software\Microsoft\RemovalTools\MpGears" /v "SpyNetReportingLocation" /t REG_MULTI_SZ /d "" /f
  3019. reg add "HKLM\Software\Policies\Microsoft\MRT" /v "DontOfferThroughWUAU" /t REG_DWORD /d "1" /f
  3020. reg add "HKLM\Software\Policies\Microsoft\MRT" /v "DontReportInfectionInformation" /t REG_DWORD /d "1" /f
  3021.  
  3022.  
  3023. rem =================================== Windows Settings ===================================
  3024. rem ----------------------------------- Update & security ----------------------------------
  3025. rem .................................... Windows update ....................................
  3026. rem . . . . . . . . . . . . . . . . . . Advanced options . . . . . . . . . . . . . . . . . .
  3027.  
  3028. rem Choose how updates are delivered / 0 - Turns off Delivery Optimization / 1 - Gets or sends updates and apps to PCs on the same NAT only / 2 - Gets or sends updates and apps to PCs on the same local network domain / 3 - Gets or sends updates and apps to PCs on the Internet / 99 - Simple download mode with no peering / 100 - Use BITS instead of Windows Update Delivery Optimization
  3029. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\DeliveryOptimization\Config" /v "DODownloadMode" /t REG_DWORD /d "0" /f
  3030. reg add "HKLM\Software\Policies\Microsoft\Windows\DeliveryOptimization" /v "DODownloadMode" /t REG_DWORD /d "0" /f
  3031.  
  3032.  
  3033. rem ==================================== Windows Shell =====================================
  3034.  
  3035.  
  3036. rem Add Reset permissions to Shell/Manually Reset permissions/Take Ownership
  3037. rem http://lallouslab.net/2013/08/26/resetting-ntfs-files-permission-in-windows-graphical-utility
  3038.  
  3039. rem Take Ownership
  3040. rem Files/Folders - https://www.youtube.com/watch?v=x7gjZMvQHu4
  3041. rem Registry - https://www.youtube.com/watch?v=M1l5ifYKefg
  3042. rem https://ss64.com/nt/icacls.html
  3043. rem https://technet.microsoft.com/en-us/library/cc753024%28v=ws.11%29.aspx
  3044. rem https://technet.microsoft.com/en-us/library/cc753525(v=ws.11).aspx
  3045.  
  3046. rem Add "Take Ownership" Option in Files and Folders Context Menu in Windows
  3047. rem reg add "HKCR\*\shell\runas" /ve /t REG_SZ /d "Take ownership" /f
  3048. rem reg add "HKCR\*\shell\runas" /v "HasLUAShield" /t REG_SZ /d "" /f
  3049. rem reg add "HKCR\*\shell\runas" /v "NoWorkingDirectory" /t REG_SZ /d "" /f
  3050. rem reg add "HKCR\*\shell\runas\command" /ve /t REG_SZ /d "cmd.exe /c takeown /f \"%%1\" && icacls \"%%1\" /grant administrators:F" /f
  3051. rem reg add "HKCR\*\shell\runas\command" /v "IsolatedCommand" /t REG_SZ /d "cmd.exe /c takeown /f \"%%1\" && icacls \"%%1\" /grant administrators:F" /f
  3052. rem reg add "HKCR\Directory\shell\runas" /ve /t REG_SZ /d "Take ownership" /f
  3053. rem reg add "HKCR\Directory\shell\runas" /v "HasLUAShield" /t REG_SZ /d "" /f
  3054. rem reg add "HKCR\Directory\shell\runas" /v "NoWorkingDirectory" /t REG_SZ /d "" /f
  3055. rem reg add "HKCR\Directory\shell\runas\command" /ve /t REG_SZ /d "cmd.exe /c takeown /f \"%%1\" /r /d y && icacls \"%%1\" /grant administrators:F /t" /f
  3056. rem reg add "HKCR\Directory\shell\runas\command" /v "IsolatedCommand" /t REG_SZ /d "cmd.exe /c takeown /f \"%%1\" /r /d y && icacls \"%%1\" /grant administrators:F /t" /f
  3057.  
  3058. rem Remove Send To from Context Menu
  3059. reg delete "HKCR\AllFilesystemObjects\shellex\ContextMenuHandlers\SendTo" /f
  3060.  
  3061. rem Remove Share from Context Menu
  3062. reg delete "HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\ModernSharing" /f
  3063. reg delete "HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Sharing" /f
  3064. reg delete "HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Sharing" /f
  3065. reg delete "HKLM\SOFTWARE\Classes\Drive\shellex\PropertySheetHandlers\Sharing" /f
  3066. reg delete "HKLM\SOFTWARE\Classes\Directory\background\shellex\ContextMenuHandlers\Sharing" /f
  3067. reg delete "HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Sharing" /f
  3068. reg delete "HKLM\SOFTWARE\Classes\Directory\shellex\CopyHookHandlers\Sharing" /f
  3069. reg delete "HKLM\SOFTWARE\Classes\Directory\shellex\PropertySheetHandlers\Sharing" /f
  3070.  
  3071.  
  3072. rem ==================================== Windows Store =====================================
  3073. rem -------------------------------------- Settings ----------------------------------------
  3074.  
  3075. rem Update apps automatically / 2 - Off / 4 - On
  3076. reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsStore\WindowsUpdate" /v "AutoDownload" /t REG_DWORD /d "2" /f
  3077. schtasks /Change /TN "Microsoft\Windows\WindowsUpdate\Automatic App Update" /Disable
  3078.  
  3079. rem ________________________________________________________________________________________
  3080. rem Disable Auto-install subscribed/suggested apps (games like Candy Crush Soda Saga/Minecraft)
  3081. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "ContentDeliveryAllowed" /t REG_DWORD /d "0" /f
  3082. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "OemPreInstalledAppsEnabled" /t REG_DWORD /d "0" /f
  3083. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "PreInstalledAppsEnabled" /t REG_DWORD /d "0" /f
  3084. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "PreInstalledAppsEverEnabled" /t REG_DWORD /d "0" /f
  3085. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SilentInstalledAppsEnabled" /t REG_DWORD /d "0" /f
  3086. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SoftLandingEnabled" /t REG_DWORD /d "0" /f
  3087. reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SubscribedContentEnabled" /t REG_DWORD /d "0" /f
  3088. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager\Subscriptions" /f
  3089. reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager\SuggestedApps" /f
  3090.  
  3091.  
  3092. rem ==================================== Windows Waypoint ==================================
  3093.  
  3094.  
  3095. timeout 5
  3096.  
  3097. fsutil usn deletejournal /d /n c:
  3098.  
  3099. rem Clean Yandex Browser's installer, caches and cookies (not covered by CookieAutodelete, since the browser is running) - browser://settings/siteData
  3100. del "%LocalAppData%\Yandex\YandexBrowser\*service_update.exe" /s /f /q
  3101. del "%LocalAppData%\Yandex\YandexBrowser\Application\*.7z" /s /f /q
  3102. del "%LocalAppData%\Yandex\YandexBrowser\Application\*searchband.exe" /s /f /q
  3103. del "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\*history*." /s /f /q
  3104. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\AutofillStrikeDatabase" /s /q
  3105. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\BudgetDatabase" /s /q
  3106. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Cache" /s /q
  3107. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Code Cache" /s /q
  3108. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\data_reduction_proxy_leveldb" /s /q
  3109. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\databases" /s /q
  3110. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\File System" /s /q
  3111. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\GCM Store" /s /q
  3112. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\GPUCache" /s /q
  3113. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\IndexedDB" /s /q
  3114. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Local Storage" /s /q
  3115. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Media Cache" /s /q
  3116. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Session Storage" /s /q
  3117. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Service Value Store" /s /q
  3118. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Service Worker" /s /q
  3119. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Site Characteristics Database" /s /q
  3120. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\Tablo Cache" /s /q
  3121. rd "%LocalAppData%\Yandex\YandexBrowser\User Data\Default\VideoDecodeStats" /s /q
  3122.  
  3123. rem Run Wise Disk Cleaner
  3124. start "" /wait "%ProgramFiles(x86)%\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe" -a
  3125.  
  3126. rem Run Wise Registry Cleaner
  3127. start "" /wait "%ProgramFiles(x86)%\Wise\Wise Registry Cleaner\WiseRegCleaner.exe" -a -all
  3128.  
  3129. rem https://www.tenforums.com/general-support/95776-restart-fall-creators-update-reopens-apps-before.html#post1175516
  3130. rem https://www.tenforums.com/tutorials/49963-use-sign-info-auto-finish-after-update-restart-windows-10-a.html
  3131. rem https://www.tenforums.com/tutorials/138685-turn-off-automatically-restart-apps-after-sign-windows-10-a.html
  3132. shutdown /s /f /t 0
  3133.  
  3134. rem Is that all? Is that ALL? Yes, that is all. That is all.
  3135. rem https://www.youtube.com/watch?v=MTjs5eo4BfI&feature=youtu.be&t=1m47s
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
Top