Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Hard_Configurator Tools
WHHLight - simplified application control for Windows Home and Pro.
Message
<blockquote data-quote="Andy Ful" data-source="post: 1124704" data-attributes="member: 32260"><p>I have just re-tested the extended reg tweak I posted a few years ago, and it works on my fresh updated Windows 24H2. I am not sure if it will work on all machines.</p><p></p><p>One has to use the CMD from the recovery environment to modify the offline registry. It is easy for people who already know it (takes about one minute), but caution is required because:</p><ol> <li data-xf-list-type="ol">The recovery environment has its own Windows system (usually placed on disk X: ).</li> <li data-xf-list-type="ol">Regedit in the Recovery environment shows the Registry related to the Windows Recovery system (usually placed on disk X: ) and not the Registry related to the "normal" Windows system.</li> <li data-xf-list-type="ol">Recovery environment CMD is totally different from Safe Mode CMD (different Windows systems are used).</li> <li data-xf-list-type="ol">If the "normal" Windows system is installed on disk C:, it can be seen in the recovery environment as C:, D:, E:, etc.. For example, on my computer, it is E:.</li> <li data-xf-list-type="ol">A mistake can brick your system.</li> </ol><p>I assume that the offline system is visible in the recovery environment as C: (if not, then another letter must be used like D:, E:, F:, etc.).</p><p>It is necessary to load the offline System Registry Hive from "C:\Windows\System32\config" to "HKEY_LOCAL_MACHINE\xxxxx" (I used xxxxx as the name of the new key where the offline System Hive is loaded) and set the following keys:</p><p></p><p>HKEY_LOCAL_MACHINE\xxxxx\SYSTEM\<strong>CurrentControlSet001\Control\CI\Policy</strong></p><p><strong>VerifiedAndReputablePolicyState = 2</strong></p><p></p><p>HKEY_LOCAL_MACHINE\xxxxx\SYSTEM\CurrentControlSet001\Control\CI\Protected</p><p><strong>VerifiedAndReputablePolicyStateMinValueSeen = 2</strong></p><p></p><p>After <strong>unloading the "xxxxx" </strong>Hive and restarting Windows, the SAC is set in Security Center to Evaluation mode and can be changed to ON.</p><p></p><p>Edit 1.</p><p><strong><span style="color: rgb(184, 49, 47)">This tip is only for advanced (and careful) users. Please use it in the virtual machine until you are certain that it is applied as intended. A mistake can spoil your system.</span></strong></p><p></p><p>Edit 2.</p><p>Post updated (added some more information about Windows Recovery Environment).</p></blockquote><p></p>
[QUOTE="Andy Ful, post: 1124704, member: 32260"] I have just re-tested the extended reg tweak I posted a few years ago, and it works on my fresh updated Windows 24H2. I am not sure if it will work on all machines. One has to use the CMD from the recovery environment to modify the offline registry. It is easy for people who already know it (takes about one minute), but caution is required because: [LIST=1] [*]The recovery environment has its own Windows system (usually placed on disk X: ). [*]Regedit in the Recovery environment shows the Registry related to the Windows Recovery system (usually placed on disk X: ) and not the Registry related to the "normal" Windows system. [*]Recovery environment CMD is totally different from Safe Mode CMD (different Windows systems are used). [*]If the "normal" Windows system is installed on disk C:, it can be seen in the recovery environment as C:, D:, E:, etc.. For example, on my computer, it is E:. [*]A mistake can brick your system. [/LIST] I assume that the offline system is visible in the recovery environment as C: (if not, then another letter must be used like D:, E:, F:, etc.). It is necessary to load the offline System Registry Hive from "C:\Windows\System32\config" to "HKEY_LOCAL_MACHINE\xxxxx" (I used xxxxx as the name of the new key where the offline System Hive is loaded) and set the following keys: HKEY_LOCAL_MACHINE\xxxxx\SYSTEM\[B]CurrentControlSet001\Control\CI\Policy VerifiedAndReputablePolicyState = 2[/B] HKEY_LOCAL_MACHINE\xxxxx\SYSTEM\CurrentControlSet001\Control\CI\Protected [B]VerifiedAndReputablePolicyStateMinValueSeen = 2[/B] After [B]unloading the "xxxxx" [/B]Hive and restarting Windows, the SAC is set in Security Center to Evaluation mode and can be changed to ON. Edit 1. [B][COLOR=rgb(184, 49, 47)]This tip is only for advanced (and careful) users. Please use it in the virtual machine until you are certain that it is applied as intended. A mistake can spoil your system.[/COLOR][/B] Edit 2. Post updated (added some more information about Windows Recovery Environment). [/QUOTE]
Insert quotes…
Verification
Post reply
Top
