Package WAPT tis-fix-disable-windows-update 10.0-30 windows

tis-fix-disable-windows-update

10.0-30

Hard way to prevent Windows Updates from running on Windows 10 over WATP WUA

880 downloads

Download
See build result See VirusTotal scan

Description

package : tis-fix-disable-windows-update
name : Fix Disable Windows Update
version : 10.0-30
architecture : all
categories : Configuration,System and network
maintainer : WAPT Team,Tranquil IT,Simon FONTENEAU
locale : all
target_os : windows
installed_size :
impacted_process :
editor :
licence :
signature_date : 2023-01-01T13:00:09.489411

control


package           : tis-fix-disable-windows-update
version           : 10.0-30
architecture      : all
section           : base
priority          : optional
name              : Fix Disable Windows Update
categories        : Configuration,System and network
maintainer        : WAPT Team,Tranquil IT,Simon FONTENEAU
description       : Hard way to prevent Windows Updates from running on Windows 10 over WATP WUA
depends           : 
conflicts         : 
maturity          : PROD
locale            : all
target_os         : windows
min_wapt_version  : 1.7
sources           : 
installed_size    : 
impacted_process  : 
description_fr    : Moyen difficile d'empêcher l'exécution des mises à jour de Windows sur Windows 10 par WATP WUA
description_pl    : Twardy sposób na uniemożliwienie uruchamiania aktualizacji systemu Windows w Windows 10 przez WATP WUA
description_de    : Schwierige Methode, die Ausführung von Windows-Updates unter Windows 10 über WATP WUA zu verhindern
description_es    : Manera difícil de evitar que las actualizaciones de Windows se ejecuten en Windows 10 a través de WATP WUA
description_pt    : Forma difícil de impedir que as actualizações do Windows corram no Windows 10 sobre WATP WUA
description_it    : Modo difficile per impedire l'esecuzione degli aggiornamenti di Windows su Windows 10 tramite WATP WUA
description_nl    : Moeilijke manier om te voorkomen dat Windows Updates worden uitgevoerd op Windows 10 via WATP WUA
description_ru    : Жесткий способ предотвратить запуск обновлений Windows на Windows 10 через WATP WUA
audit_schedule    : 3h
editor            : 
keywords          : 
licence           : 
homepage          : 
package_uuid      : cec6710c-bd4f-40cc-bdd7-c84772d0f149
valid_from        : 
valid_until       : 
forced_install_on : 
changelog         : 
min_os_version    : 
max_os_version    : 
icon_sha256sum    : 7891f1ca19ac8a9e41cb2963c0833bb3424a1dcc3f89e6ae484b1841a67063b2
signer            : Tranquil IT
signer_fingerprint: 8c5127a75392be9cc9afd0dbae1222a673072c308c14d88ab246e23832e8c6bb
signature         : G+M2EhWjS7NORn3WxQDxHJlTdX6cEUs0ZmHvq7d18umgq8QjfeBoQwfkSL4JGIMlG4Gx4XNKKdnx/uy5FRqkO1u+KVYk21kOf1U5LnR+lHlV8THbbfQsfnZH0UH5+sALk5bTGKMT08I5CKRHhimnP4U9u7ox+H8TKNuyVkaw4463EjeytYDAMvgV9ek9eua+EDSN5Llr7a2BSdg06HSuaRM1a+nvGAVssJd9oqG0CZs6OkvvfFdPr+jFEoA/2h/tMIzphMIUekYAf910/aGwwey0m92mUy94jVfSXhND6majLIOsIR3EYi4bCpEn6r7LGfVBVy5l6wfjJsif2eGdZA==
signature_date    : 2023-01-01T13:00:09.489411
signed_attributes : package,version,architecture,section,priority,name,categories,maintainer,description,depends,conflicts,maturity,locale,target_os,min_wapt_version,sources,installed_size,impacted_process,description_fr,description_pl,description_de,description_es,description_pt,description_it,description_nl,description_ru,audit_schedule,editor,keywords,licence,homepage,package_uuid,valid_from,valid_until,forced_install_on,changelog,min_os_version,max_os_version,icon_sha256sum,signer,signer_fingerprint,signature_date,signed_attributes

Setup.py


# -*- coding: utf-8 -*-
from setuphelpers import *


uo_tasks_list = [
    "Backup Scan",
    "Driver Install",
    "Maintenance Install",
    "MusUx_UpdateInterval",
    "Reboot_AC",
    "Reboot_Battery",
    "Schedule Scan",
    "Schedule Scan Static Task",
    "Universal Orchestrator Start",
    "UpdateModelTask",
    "USO_UxBroker",
]
wu_list_tasks = ["Scheduled Start", "sihpostreboot"]


def install():
    if windows_version() > Version("10"):
        for service in ("dosvc", "waasmedicsvc", "usosvc"):
            print("Checking  %s " % service)
            if reg_key_exists(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service):
                if int(registry_readstring(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service, "start")) != 4:
                    print("Disabling Windows Remediation Service (%s)" % service)
                    registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service, "start", 4)
                    try:
                        service_stop(service)
                    except:
                        pass
                    run_notfatal('taskkill /FI "SERVICES eq %s"  /F' % service)
            else:
                print("no service %s found " % service)
        # osrss (Windows 10 Update Facilitation) cannot be shut down with standard way
        # https://admx.help/?Category=Windows_10_2016&Policy=Microsoft.Policies.WindowsUpdate::DoNotConnectToWindowsUpdateInternetLocations&Language=fr-fr
        registry_set(
            HKEY_LOCAL_MACHINE, r"SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate", "DoNotConnectToWindowsUpdateInternetLocations", 1, REG_DWORD
        )
        # https://github.com/vFense/vFenseAgent-win/wiki/Registry-keys-for-configuring-Automatic-Updates-&-WSUS
        registry_set(HKEY_LOCAL_MACHINE, r"Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate", "UseWUServer", 1, REG_DWORD)
        registry_set(
            HKEY_LOCAL_MACHINE, r"Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate", "WUStatusServer", "http://127.0.0.1:8088"
        )
        registry_set(HKEY_LOCAL_MACHINE, r"Software\Policies\Microsoft\Windows\WindowsUpdate\AU", "AUOptions", 2, REG_DWORD)
        registry_set(HKEY_LOCAL_MACHINE, r"Software\Policies\Microsoft\Windows\WindowsUpdate\AU", "NoAutoUpdate", 1, REG_DWORD)
        registry_set(HKEY_LOCAL_MACHINE, r"Software\Policies\Microsoft\Windows\WindowsUpdate\AU", "UseWUServer", 1, REG_DWORD)

        registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\osrss", "start", 4)
        run_notfatal(r"icacls c:\windows\system32\osrss.dll /deny *S-1-1-0:(oi)(ci)(DE,dc)")
        run_notfatal('taskkill /FI "SERVICES eq osrss"  /F')

        # wuauserv is still need for waptwua
        registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\wuauserv", "start", 4)

        for task in uo_tasks_list:
            try:
                disable_task(r"\Microsoft\Windows\UpdateOrchestrator\%s" % task)
            except:
                print("Unable to disable %s" % task)

        try:
            disable_task(r"\Microsoft\Windows\WaaSMedic\PerformRemediation")
        except:
            print("Unable to disable PerformRemediation")

        for task in wu_list_tasks:
            try:
                disable_task(r"\Microsoft\Windows\WindowsUpdate\%s" % task)
            except:
                print("Unable to disable %s" % task)

        try:
            print("Uninstall Microsoft Update Health Tools")
            run_notfatal(uninstall_cmd("{BAB9FCC5-1506-4B4F-BFCA-EDE0BDB86C21}"))
        except:
            print("Microsoft Update Health Tools already uninstalled")

        print("Disable SilentInstalledAppsEnabled")
        registry_set(HKEY_CURRENT_USER, r"SOFTWARE\Microsoft\Windows\CurrentVersion\ContentDeliveryManager", "SilentInstalledAppsEnabled", 0)


def uninstall():
    for service in ("dosvc", "waasmedicsvc", "usosvc"):
        print("Checking  %s " % service)
        if reg_key_exists(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service):
            if int(registry_readstring(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service, "start")) != 2:
                print("Enable Windows Remediation Service (%s)" % service)
                registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\%s" % service, "start", 2)
                try:
                    service_start(service)
                except:
                    pass
        else:
            print("no service %s found " % service)
    # osrss (Windows 10 Update Facilitation) cannot be shut down with standard way
    registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\osrss", "start", 2)
    run_notfatal(r"icacls c:\windows\system32\osrss.dll /Grant *S-1-1-0:(oi)(ci)(DE,dc)")

    # wuauserv is still need for waptwua
    registry_set(HKEY_LOCAL_MACHINE, r"SYSTEM\CurrentControlSet\Services\wuauserv", "start", 2)

    for task in uo_tasks_list:
        try:
            enable_task(r"\Microsoft\Windows\UpdateOrchestrator\%s" % task)
        except:
            print("Unable to enable %s" % task)

    try:
        enable_task(r"\Microsoft\Windows\WaaSMedic\PerformRemediation")
    except:
        print("Unable to enable PerformRemediation")

    for task in wu_list_tasks:
        try:
            enable_task(r"\Microsoft\Windows\WindowsUpdate\%s" % task)
        except:
            print("Unable to enable %s" % task)


def session_setup():
    registry_set(
        HKEY_CURRENT_USER,
        r"Software\Microsoft\Windows\CurrentVersion\BackgroundAccessApplications\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy",
        "Disabled",
        1,
    )
    registry_set(HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager", "SubscribedContent-338388Enabled", 0)
    # https://github.com/vFense/vFenseAgent-win/wiki/Registry-keys-for-configuring-Automatic-Updates-&-WSUS
    registry_set(HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\Policies\Explorer", "NoWindowsUpdate", 1)
    registry_set(HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate", "DisableWindowsUpdateAccess", 1)
    registry_set(HKEY_CURRENT_USER, r"Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate", "SetDisableUXWUAccess", 1)


def audit():
    install()
    return "OK"

manifest.sha256


                                
c5623bda5d3522bdc22a62bb7a69cec9294638002761534bed63f5c1556c4918 : setup.py 
7891f1ca19ac8a9e41cb2963c0833bb3424a1dcc3f89e6ae484b1841a67063b2 : WAPT/icon.png 
a5a97261381e1d0ad46ee15916abec9c2631d0201f5cc50ceb0197a165a0bbbf : WAPT/certificate.crt 
91ee32a89e647e17dbc910f204b98ba1b4d920599798dbfa115b335c51ff0d4c : luti.json 
10384c3db1ac46e001e86ccf464c7bf3e96918fbc8717770fed52943bed3532c : WAPT/control

Choose languages

Choose architecture

Choose OS

Choose Categorie

tis-fix-disable-windows-update

Description

control

Setup.py