|
|
Post by The Jackal on Jul 12, 2019 8:19:15 GMT -8
OK, this is seriously annoying me. I'm trying to modify shell32.dll and all is good, that is until I reboot, to which I'm greeted to a BSOD. Putting the original, untouched version back and it boots fine. Now here's the thing: I disabled System File Protection (using this guide) and I'm certain I did it right (See here for screenshot). I know starting with Windows 8, MS started to have shell32 etc to be digitally signed, so how is this still refusing to work when I disabled SFP? I really need some insight here because I'm lost.  |
|
|
|
Post by R.O.B. on Jul 12, 2019 19:40:28 GMT -8
Oh, I'm so glad you created this topic! I actually figured out how to do this not too long ago, and I was in the middle of writing up a post about it. It's pretty lengthy, but I'm fairly close to having it ready. I'll post back here shortly with more details once I have everything put together.
|
|
|
|
Post by The Jackal on Jul 13, 2019 7:43:36 GMT -8
Thank you, ROB. I appreciate it.
|
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Jul 13, 2019 10:03:36 GMT -8
me too i want to modifiy shell32 in windows 8.1.  |
|
|
|
Post by R.O.B. on Jul 13, 2019 13:29:33 GMT -8
Giant wall of text incoming!
This was originally going to be in its own thread, which is why it reads a bit like a first post. However, the information here should still be useful regardless. Execution of Unsigned FilesIf you’re using a newer version of Windows and you’ve tried to modify certain system files (such as shell32.dll), chances are you’ve run into some problems doing so. This is because starting with Windows 8, Microsoft has added authenticode signatures to many system files in Windows, which prevents them from being executed if any changes are made to them. Modifications can result in a severely crippled (or even unbootable in many cases) operating system. Obviously, this limits customization quite a bit. This behavior is actually nothing new. In fact, all the way back in the days of Windows Vista, a signature was added to ntoskrnl.exe, making it much more difficult to use custom bootscreens the way people did in XP. And while it was more than likely used even before then, that was one of the first instances I remember seeing it. The only difference now is that a far greater number of system files include signatures. And up until fairly recently, there wasn't really a very well-known way around this. But as you have probably guessed by now, I have found one. After quite a bit of research, I discovered that it is actually possible to delete authenticode signatures from files, without preventing it from being executed. There are a couple of different tools that can do this, such as UnSigner, FileUnsigner, and delcert. All of these tools work pretty well, and they do exactly what they say they do. While deleting authenticode signatures may sound great and all, it's really only one piece of the puzzle. Even though a file will continue to run normally if its signature is deleted using these methods, it will still fail if any modifications are made to it. That's where Driver Signature Enforcement comes into play. You may already know that the purpose of Driver Signature Enforcement is to prevent the use of unsigned drivers, as its name would imply. But what you may not know is that it actually has another purpose as well, which is to prevent files with broken authenticode signatures from being executed. If a file is modified without its authenticode signature being deleted first, it will fail to execute under just about any circumstances. If, however, the file’s signature is deleted before modification, it will actually run normally as long as Driver Signature Enforcement is disabled. This can not only allow for customizations that were previously thought to be impossible (or extremely difficult at the very least) but it may also allow for us to fix things that break down the road. And I, for one, am quite excited to see what comes of this! Hopefully this post isn't too long/difficult to understand, and that this information will be useful to those who might be interested. If you do have any questions, please feel free to ask, and I will try to answer them as best I can.
|
|
|
|
Post by R.O.B. on Jul 13, 2019 13:45:14 GMT -8
A few other notes:
I left out details on how to actually disable Driver Signature Enforcement, and that's because I've had some trouble doing so consistently. This is honestly one of the main reasons why this information took a while to put together. It is certainly possible to permanently disable it, and I've even done it before. However, I had trouble putting together a clear, concise method of doing this. For the time being, you can always enable the Windows 7-style boot menu using WinAero Tweaker, and disable it using F8 at startup. I know that's not the most optimal thing in the world to do every time the computer is booted, but it does work.
If I can come up with a better way to turn off Driver Signature Enforcement, I'll post an update here.
It may also be theoretically possible to re-sign files so that Driver Signature Enforcement doesn't have to be disabled, however I have not had any success accomplishing this so far.
One last thing. This, combined with another trick I'll post about soon could potentially allow us to fix the Windows 8 Task Manager with the classic theme. I'm not 100% sure yet, but it's something we have been looking into.
|
|
|
|
Post by The Jackal on Jul 14, 2019 13:43:40 GMT -8
Thanks ROB, but I've ran into a bit of a snag: disabling Driver Enforcement has corrupted my system. I'm going to have to re-install everything.
|
|
|
|
Post by R.O.B. on Jul 14, 2019 14:39:59 GMT -8
Thanks ROB, but I've ran into a bit of a snag: disabling Driver Enforcement has corrupted my system. I'm going to have to re-install everything. Wow, are you serious? Sorry to hear that. That's really bizarre, though. As far as I know, disabling that shouldn't corrupt a OS. Never heard of something like that happening before. How did you go about disabling it? Are you sure it wasn't related to a modification you made? |
|
|
|
Post by The Jackal on Jul 14, 2019 15:13:32 GMT -8
At least now I have an excuse to install LTSB 2016 I guess. |
|
|
|
Post by The Jackal on Jul 18, 2019 5:52:00 GMT -8
I've reinstalled Windows 10 and have everything back to 80% of how I used to have it.  I'm not angry or upset. I knew something like this would happen eventually, so I had everything backed up on external drives. Just a word of warning to anyone wanting to modify W10: do it in a VM first, and not on a live install. |
|
|
|
Post by wizkid on Jul 22, 2019 14:49:19 GMT -8
I've reinstalled Windows 10 and have everything back to 80% of how I used to have it. I'm not angry or upset. I knew something like this would happen eventually, so I had everything backed up on external drives. Just a word of warning to anyone wanting to modify W10: do it in a VM first, and not on a live install. Any directions on how to achieve this? |
|
|
|
Post by The Jackal on Jul 23, 2019 6:07:45 GMT -8
|
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Jul 28, 2019 15:45:04 GMT -8
from now i don't know how to change shell32.dll and other signed files. when will this be possible? |
|
|
|
Post by The Jackal on Jul 29, 2019 8:55:55 GMT -8
from now i don't know how to change shell32.dll and other signed files. when will this be possible? I'm not the best person to ask that, honestly it should be okay to do as long as you're doing it in a VM. Just whatever you do, don't go the BCDEDIT route to disable driver signatures, do as ROB said and do it from the F8 menu at power-on (I honestly think I was a little hasty in wiping my drive, I might of been able to fix the boot issue I was having). Anyway, I found this comment on the UltraUXThemePatcher site's FAQ: "I have a 4k monitor installed and run in black screen and reboot issue. How do I fix it? A 4k monitor uses a special secured connection from PC to Monitor, therefor signed (unmodified) files are necessary. In this case you can not use UltraUXThemePatcher, sorry!" I have a 4k tv. So I guess that solves that.  |
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Aug 7, 2019 3:12:16 GMT -8
from now i don't know how to change shell32.dll and other signed files. when will this be possible? I'm not the best person to ask that, honestly it should be okay to do as long as you're doing it in a VM. Just whatever you do, don't go the BCDEDIT route to disable driver signatures, do as ROB said and do it from the F8 menu at power-on (I honestly think I was a little hasty in wiping my drive, I might of been able to fix the boot issue I was having). Anyway, I found this comment on the UltraUXThemePatcher site's FAQ: "I have a 4k monitor installed and run in black screen and reboot issue. How do I fix it? A 4k monitor uses a special secured connection from PC to Monitor, therefor signed (unmodified) files are necessary. In this case you can not use UltraUXThemePatcher, sorry!" I have a 4k tv. So I guess that solves that. Yeah exactly l, but can it be step by step? |
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Aug 7, 2019 16:17:17 GMT -8
from now i don't know how to change shell32.dll and other signed files. when will this be possible? I'm not the best person to ask that, honestly it should be okay to do as long as you're doing it in a VM. Just whatever you do, don't go the BCDEDIT route to disable driver signatures, do as ROB said and do it from the F8 menu at power-on (I honestly think I was a little hasty in wiping my drive, I might of been able to fix the boot issue I was having). Anyway, I found this comment on the UltraUXThemePatcher site's FAQ: "I have a 4k monitor installed and run in black screen and reboot issue. How do I fix it? A 4k monitor uses a special secured connection from PC to Monitor, therefor signed (unmodified) files are necessary. In this case you can not use UltraUXThemePatcher, sorry!" I have a 4k tv. So I guess that solves that. Please? |
|
|
|
Post by The Jackal on Aug 11, 2019 9:19:36 GMT -8
I'm not the best person to ask that, honestly it should be okay to do as long as you're doing it in a VM. Just whatever you do, don't go the BCDEDIT route to disable driver signatures, do as ROB said and do it from the F8 menu at power-on (I honestly think I was a little hasty in wiping my drive, I might of been able to fix the boot issue I was having). Anyway, I found this comment on the UltraUXThemePatcher site's FAQ: "I have a 4k monitor installed and run in black screen and reboot issue. How do I fix it? A 4k monitor uses a special secured connection from PC to Monitor, therefor signed (unmodified) files are necessary. In this case you can not use UltraUXThemePatcher, sorry!" I have a 4k tv. So I guess that solves that.  Yeah exactly l, but can it be step by step? Easiest way is download and install this: winaero.com/comment.php?comment.news.1836. Run it, then on the Boot Options section, make sure it matches this:  Then, next time you reboot your PC, you'll be greeted with the boot screen. On that screen, choose this option:  . W10 will start as usual, but with driver enforcement off. See ROB's post about patching shell32.dll, and ofc, you do this at your own risk. |
|
ISM
Sophomore Member
Posts: 116
OS: Windows 10 (22H2)
Theme: Classic theme (XP styled)
|
Post by ISM on Mar 14, 2020 7:22:48 GMT -8
I've reinstalled Windows 10 and have everything back to 80% of how I used to have it. I'm not angry or upset. I knew something like this would happen eventually, so I had everything backed up on external drives. Just a word of warning to anyone wanting to modify W10: do it in a VM first, and not on a live install. I gotta say, that is a good transformation. |
|
|
|
Post by xhamedz on Aug 15, 2022 10:40:40 GMT -8
A few other notes:I left out details on how to actually disable Driver Signature Enforcement, and that's because I've had some trouble doing so consistently. This is honestly one of the main reasons why this information took a while to put together. It is certainly possible to permanently disable it, and I've even done it before. However, I had trouble putting together a clear, concise method of doing this. For the time being, you can always enable the Windows 7-style boot menu using WinAero Tweaker, and disable it using F8 at startup. I know that's not the most optimal thing in the world to do every time the computer is booted, but it does work. If I can come up with a better way to turn off Driver Signature Enforcement, I'll post an update here. It may also be theoretically possible to re-sign files so that Driver Signature Enforcement doesn't have to be disabled, however I have not had any success accomplishing this so far. One last thing. This, combined with another trick I'll post about soon could potentially allow us to fix the Windows 8 Task Manager with the classic theme. I'm not 100% sure yet, but it's something we have been looking into. Hi 3 years later and are there any updates to how solve digital signature problem ? or a way to disable driver signature enforcement properly? i am around to find a way to modify ntoskrnl.exe for windows 10 actually for upgrade windows 10 arm32 build number from 15035 to something upper so ms-store apps wll install without any modifications as you said unsiner do not help the other way i found mean resign files do not help too I got Driver Signature Enforcement Overrider: Driver Signature Enforcement Overrider Downloads and go to windows test mode then re-signed my modified ntoskrnl.exe with the test signature. disabled Windows File Protection and copy it via winpe to sys32 but still after reboot it will replace to original one. |
|
|
|
Post by TechSalt on Aug 15, 2022 11:06:12 GMT -8
A few other notes:I left out details on how to actually disable Driver Signature Enforcement, and that's because I've had some trouble doing so consistently. This is honestly one of the main reasons why this information took a while to put together. It is certainly possible to permanently disable it, and I've even done it before. However, I had trouble putting together a clear, concise method of doing this. For the time being, you can always enable the Windows 7-style boot menu using WinAero Tweaker, and disable it using F8 at startup. I know that's not the most optimal thing in the world to do every time the computer is booted, but it does work. If I can come up with a better way to turn off Driver Signature Enforcement, I'll post an update here. It may also be theoretically possible to re-sign files so that Driver Signature Enforcement doesn't have to be disabled, however I have not had any success accomplishing this so far. One last thing. This, combined with another trick I'll post about soon could potentially allow us to fix the Windows 8 Task Manager with the classic theme. I'm not 100% sure yet, but it's something we have been looking into. Hi 3 years later and are there any updates to how solve digital signature problem ? or a way to disable driver signature enforcement properly? i am around to find a way to modify ntoskrnl.exe for windows 10 actually for upgrade windows 10 arm32 build number from 15035 to something upper so ms-store apps wll install without any modifications as you said unsiner do not help the other way i found mean resign files do not help too I got Driver Signature Enforcement Overrider: Driver Signature Enforcement Overrider Downloads and go to windows test mode then re-signed my modified ntoskrnl.exe with the test signature. disabled Windows File Protection and copy it via winpe to sys32 but still after reboot it will replace to original one. You can set a custom kernel via BCDEDIT |
|
