This is driving me insane. Can't get stop Cortana and Edge running. Both are damn malware! I've tried GPO, registry and disabling services. I even tried removing it with powershell, knowing that as soon as I install a CU it get restored, but powershell says it cannot be removed. Background apps are also disabled in settings. Code: REG ADD HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer /v DisableEdgeDesktopShortcutCreation /t REG_DWORD /d 1 /f REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EdgeUpdate /v DoNotUpdateToEdgeWithChromium /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /v AllowPrelaunch /d 0 /t REG_DWORD /f >>C:\PostInstall.Log 2>&1 REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v AllowTabPreloading /d 0 /t REG_DWORD /f REG ADD "HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main" /v AllowPrelaunch /d 0 /t REG_DWORD /f REG ADD "HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\MicrosoftEdge\TabPreloader" /v AllowTabPreloading /d 0 /t REG_DWORD /f REG ADD "HKEY_CURRENT_USER\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\PhishingFilter" /v EnabledV9 /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\NTUSER\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI" /v EnableCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowCortanaAboveLock /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowSearchToUseLocation /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Wow6432Node\Microsoft\Windows\Windows Search" /v AllowCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Wow6432Node\Microsoft\Windows\Windows Search" /v AllowCortanaAboveLock /d 0 /t REG_DWORD /f2>&1 REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaConsent /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaIsReplaceable /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaIsReplaced /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v SearchboxTaskbarMode /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" /v DeviceHistoryEnabled /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" /v HistoryViewEnabled /d 0 /t REG_DWORD /f REG ADD "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Search" /v SearchboxTaskbarMode /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" /v HarvestContacts /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaConsent /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaIsReplaceable /t REG_DWORD /d 1 /f 1 REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v CortanaIsReplaced /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" /v SearchboxTaskbarMode /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\DEFAULT\SOFTWARE\Policies\Microsoft\InputPersonalization" /v RestrictImplicitInkCollection /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\InputPersonalization" /v RestrictImplicitTextCollection /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI" /v EnableCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InputPersonalization" /v RestrictImplicitInkCollection /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InputPersonalization" /v RestrictImplicitTextCollection /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InputPersonalization\TrainedDataStore" /v HarvestContacts /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Personalization\Settings" /v AcceptedPrivacyPolicy /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" /v DeviceHistoryEnabled /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" /v HistoryViewEnabled /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\current\device\AboveLock" /v AllowCortanaAboveLock /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\current\device\Experience" /v AllowCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Speech_OneCore\Preferences" /v ModelDownloadAllowed /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Search" /v SearchboxTaskbarMode /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowCloudSearch /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowCortana /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowCortanaAboveLock /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v AllowSearchToUseLocation /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v ConnectedSearchPrivacy /t REG_DWORD /d 3 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v ConnectedSearchSafeSearch /t REG_DWORD /d 3 /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v ConnectedSearchUseWeb /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v ConnectedSearchUseWebOverMeteredConnections /d 0 /t REG_DWORD /f REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search" /v DisableWebSearch /t REG_DWORD /d 1 /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana ActionUriServer.exe" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|App=C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe|Name=Block Cortana ActionUriServer.exe|Desc=Block Cortana Outbound UDP/TCP Traffic|" /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana Package" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|Name=Block Cortana Package|Desc=Block Cortana Outbound UDP/TCP Traffic|AppPkgId=S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742|Platform=2:6:2|Platform2=GTEQ|" /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana PlacesServer.exe" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|App=C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe|Name=Block Cortana PlacesServer.exe|Desc=Block Cortana Outbound UDP/TCP Traffic|" /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana RemindersServer.exe" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|App=C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe|Name=Block Cortana RemindersServer.exe|Desc=Block Cortana Outbound UDP/TCP Traffic|" /f >>C:\PostInstall.Log 2>&1 REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana RemindersShareTargetApp.exe" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|App=C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersShareTargetApp.exe|Name=Block Cortana RemindersShareTargetApp.exe|Desc=Block Cortana Outbound UDP/TCP Traffic|" /f REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules" /v "Block Cortana SearchUI.exe" /t REG_SZ /d "v2.26|Action=Block|Active=TRUE|Dir=Out|RA42=IntErnet|RA62=IntErnet|App=C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe|Name=Block Cortana SearchUI.exe|Desc=Block Cortana Outbound UDP/TCP Traffic|" /f IIRC I also tried wim-tweak about a month ago but that didn't work either What am I missing? Is renaming the folder the only way?
Looking at lines 21901 - 21906 in toolkit.cmd... Code: if "%Tweak%" equ "Disable3RDPartyApps" ( Reg add "HKLM\TK_NTUSER\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "OemPreInstalledAppsEnabled" /t REG_DWORD /d "0" /f >nul Reg add "HKLM\TK_NTUSER\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "PreInstalledAppsEnabled" /t REG_DWORD /d "0" /f >nul Reg add "HKLM\TK_NTUSER\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "SilentInstalledAppsEnabled" /t REG_DWORD /d "0" /f >nul Reg add "HKLM\TK_SOFTWARE\Policies\Microsoft\Windows\CloudContent" /v "DisableWindowsConsumerFeatures" /t REG_DWORD /d "1" /f >nul ) TK_NTUSER should be what on a live system? This.... Code: Reg add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager" /v "OemPreInstalledAppsEnabled" /t REG_DWORD /d "0" /f >nul
You need to extract the Update KB4551762 using 7-zip to <DVD\sources> folder. The update KB4551762 contains updated setup related files.
In Toolkit, TK_NTUSER referes to \Users\Default\ntuser.dat For live system, change TK_NTUSER to HKEY_CURRENT_USER
Oh darn! So... HKLM\TK_NTUSER becomes \HKCU HKLM\TK_SOFTWARE is \HKLM\Software HKLM\TK_SYSTEM is \HKLM\System and HKLM\TK_DEFAULT becomes ???
Services are under HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services HKLM\TK_DEFAULT is HKEY_USERS\.DEFAULT
1. I read somewhere that Task Scheduler try to launch disabled things, apps, telemetry again & again but my understanding of the fact is very little. 2. I was also checking Autoruns the other day with the option : Show Windows & Microsoft entries. What better if we can kill / disable the things on startup itself. ( I see it in you. So, what good if you use Autoruns with Process Monitor & Process Explorer ) 3. Event Log errors ? It reminds me of ''blackviper's service configurations for win 7'' & its obvious, isn't it ? System tries to launch something, gathers resources, initiates procesess & halted just at the final point! It has to be killed from the root, taking out all the branches & finally the tree but what to do if one of the branch is also shared /required among wanted components. 4. I was very much interested in mounting the live os in the toolkit & make the changes straight from there. OP sir has plans for it. 5. And I forgot to mention that before renaming the things, better kill them in Task Manager before hand. Thanks. ...
Hi @ll . . . are SomeMan in drouble with 19o3-19o9 an DisPlay Brightness Profiles ! ? Have checked to late that for Portabe PC (-: DragTops there are no Option for :-DisPlay Brightness Profiles on Accu and or PSU use . MayBe SomeMan have an Regedit Tweak or Mach2 Cr@ck ! ? ! Please * * * * * Th@nks ! ! ! ! !
Known Issues: ============= - Using ToolKit with Antivirus Programs enabled can affect the ToolKit's operations. - ToolKit's ToolKitHelper.exe may be flagged as a Virus/Trojan/Malware Program, Don't worry it's just a False Positive Sign. - The ToolKit won't support Post-Servicing of ToolKit serviced source images with other similar tools. Do use normal text size in forums.
Many thanks for the quick reply. [ I just pasted the text from the browser tab, where Defender redirected to for the explanation, & I didn't realise that it wasn't normal size before I posted. ]
So, is this correct? Code: HKLM\TK_DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" :: HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" and also, because it is defined for the current user also; Code: "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Windows Search" Toolkit lines 21850 and 21863.
@MSMG or anyone else.. if i want to use wondows 8.1 pro wich version of toolkit do i use.? for removal of components on windows 8.1 the packagelist i i use on last version of toolkit works also for windows 8.1 or i i need a specific version of msmgtoolkit and has its own pakage list rwmover.? or if anyone knows good source for already done .ISO please share.
From the very first post spoiler : Code: For Windows 7 - Windows 10 v1803 Component removal use v8.8 Thanks. ...
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] "SettingsPageVisibility"="hide:gaming-broadcasting;gaming-gamebar;gaming-gamedvr;gaming-gamemode;gaming-trueplay;gaming-xboxnetworking" Go to Regedit and Remove - "hide:gaming-broadcasting;gaming-gamebar;gaming-gamedvr;gaming-gamemode;gaming-trueplay;gaming-xboxnetworking"
Hi. Seems like EdgeChromium_w7_x64 doesn't work properly. All pages open with "This page is having a problem" message.
Can MSMG toolkit be used to remove components from a iso containing .swm file? I've downloaded a recovery DVD from the manufacturer of my tablet. Unpacking the iso, it extract a big .swm file divided in 2 chunks, + a boot.wim file.