bstjohn

Silent uninstall broken in Win10 -- need suggestions for workaround

14 posts in this topic

#1 ·  Posted (edited)

I'm running AutoIT v3.3.14.2 on Windows 10 ver 1511.  The September Cumulative Update from Microsoft has broken the way some third party credential providers work.  You can see more detail here:  https://www.novell.com/support/kb/doc.php?id=7018051

So I want to automatically and silently remove this update from all our machines.  In Windows 7 I could easily do it with this:

wusa.exe /uninstall /kb:3185614 /quiet

But apparently Microsoft has taken away the /quiet switch functionality in Windows 10.   wusa /? will show that the switch is there, but when trying to use it error 87 (invalid parameter) is returned.

So I relented on that point and decided to run wusa without the quiet switch.  It pops up a child window that prompts for confirmation before uninstalling the update.  Sounds like a perfect job for AutoIT, right?  Except I can't get the button to click, either using ControlClick or ControlSend or Send.  I can select it by sending the {Alt} key to it and it highlights.  But I just can't get it to accept the click or {Enter}.

I then tried using Powershell and DISM to remove the package, but this is a hotfix and doesn't have a package name, so I can't use dism /remove-package, either.

Does anybody have any other ideas how this can be done silently?

Edited by bstjohn

Share this post


Link to post
Share on other sites



#2 ·  Posted (edited)

mine runs clean as you have posted.  Though I am not on 1511 (i am on 14931)

Can you verify that this behavior occurs with other KBs, while I confirm it on previous builds?

*just removed 3118281 from Win10 in the exact manner you have above, with no user interaction.

Have you ruled out the other scenarios on technet that throw 0x80070057 like services disabled or the source server issues here?

https://social.technet.microsoft.com/Forums/windows/en-US/90b1d1dd-3538-444d-9ad8-0f080211a268/solved-having-a-hard-time-with-getting-windows-update-to-work?forum=w7itprogeneral

Edited by iamtheky

,-. .--. ________ .-. .-. ,---. ,-. .-. .-. .-.
|(| / /\ \ |\ /| |__ __||| | | || .-' | |/ / \ \_/ )/
(_) / /__\ \ |(\ / | )| | | `-' | | `-. | | / __ \ (_)
| | | __ | (_)\/ | (_) | | .-. | | .-' | | \ |__| ) (
| | | | |)| | \ / | | | | | |)| | `--. | |) \ | |
`-' |_| (_) | |\/| | `-' /( (_)/( __.' |((_)-' /(_|
'-' '-' (__) (__) (_) (__)

Share this post


Link to post
Share on other sites

#4 ·  Posted (edited)

whats the result of MicrosoftFixit50202?

Edited by iamtheky

,-. .--. ________ .-. .-. ,---. ,-. .-. .-. .-.
|(| / /\ \ |\ /| |__ __||| | | || .-' | |/ / \ \_/ )/
(_) / /__\ \ |(\ / | )| | | `-' | | `-. | | / __ \ (_)
| | | __ | (_)\/ | (_) | | .-. | | .-' | | \ |__| ) (
| | | | |)| | \ / | | | | | |)| | `--. | |) \ | |
`-' |_| (_) | |\/| | `-' /( (_)/( __.' |((_)-' /(_|
'-' '-' (__) (__) (_) (__)

Share this post


Link to post
Share on other sites

I absolutely do not want to do that.  That's what started this whole mess.  You think you have automatic updates locked down and Microsoft finds some sneaky way to get one by and break things.

Our updates are only supposed to come from a WSUS server.  This one Microsoft was able to send directly to machines.  If I reset automatic update settings it will just pull the lid off Pandora's Box.

-Barry.

Share this post


Link to post
Share on other sites

#6 ·  Posted (edited)

do you not have the update server blocked by firewall or GPO or other means?  Are your endpoints only a radio button away from running out to MS?  Resetting the entire stack should not be something to be afraid of.

ftr - i am enterprise security and have the same want for systems to only fetch from in house (we are SCCM on endpoints though), this solution would not circumvent any of those controls.

Edited by iamtheky

,-. .--. ________ .-. .-. ,---. ,-. .-. .-. .-.
|(| / /\ \ |\ /| |__ __||| | | || .-' | |/ / \ \_/ )/
(_) / /__\ \ |(\ / | )| | | `-' | | `-. | | / __ \ (_)
| | | __ | (_)\/ | (_) | | .-. | | .-' | | \ |__| ) (
| | | | |)| | \ / | | | | | |)| | `--. | |) \ | |
`-' |_| (_) | |\/| | `-' /( (_)/( __.' |((_)-' /(_|
'-' '-' (__) (__) (_) (__)

Share this post


Link to post
Share on other sites

Alright, just for the sake of argument I'll give this a shot.  Not until Monday, though.

-Barry.

Share this post


Link to post
Share on other sites

There were a couple of other suggestions in that link, it looked like one was a batch version of the tear down, so you could walk it yourself rather than trusting the FixIt.  I understand the aversion, and am not trying to be antagonistic, it just comes naturally. :)


,-. .--. ________ .-. .-. ,---. ,-. .-. .-. .-.
|(| / /\ \ |\ /| |__ __||| | | || .-' | |/ / \ \_/ )/
(_) / /__\ \ |(\ / | )| | | `-' | | `-. | | / __ \ (_)
| | | __ | (_)\/ | (_) | | .-. | | .-' | | \ |__| ) (
| | | | |)| | \ / | | | | | |)| | `--. | |) \ | |
`-' |_| (_) | |\/| | `-' /( (_)/( __.' |((_)-' /(_|
'-' '-' (__) (__) (_) (__)

Share this post


Link to post
Share on other sites

#9 ·  Posted (edited)

Windows 10 Pro 1511, wusa /? says :

wusa /uninstall /kb:<KB number> [/norestart | /warnrestart:<seconds> | /promptrestart | /forcerestart] [/log:<file name>]

No /quiet options when using /kb parameter... strange

Edited by jguinch

Share this post


Link to post
Share on other sites

probably not ideal, but can you call the one from the windows.old directory?


,-. .--. ________ .-. .-. ,---. ,-. .-. .-. .-.
|(| / /\ \ |\ /| |__ __||| | | || .-' | |/ / \ \_/ )/
(_) / /__\ \ |(\ / | )| | | `-' | | `-. | | / __ \ (_)
| | | __ | (_)\/ | (_) | | .-. | | .-' | | \ |__| ) (
| | | | |)| | \ / | | | | | |)| | `--. | |) \ | |
`-' |_| (_) | |\/| | `-' /( (_)/( __.' |((_)-' /(_|
'-' '-' (__) (__) (_) (__)

Share this post


Link to post
Share on other sites

#11 ·  Posted (edited)

For me, it's a from stratch install,  not an upgrade, so I can't.

I just tried to copy the wusa.exe file from a Windows 7 VM into my Windows 10 System32 directory (with a backup on the original one before, of course) : the command does nothing... (and anyway it's a bad idea)

I also tried with dism /online /get-packages, but the KB3185614 does not appear in the list (however, it appears in the updates list in the control panel)

Edited by jguinch

Share this post


Link to post
Share on other sites

@jguinch

Interesting.  I, too, am working with a fresh install (no upgrade from 7) but I see the /quiet switch.  See attached.

As for dism, you won't find it there because KB3185614 doesn't have a package name.

In powershell, it shows up under get-hotfix, but there's no corresponding command for removing a hotfix, only a package.  And you can't remove a package without the package name -- at least not that I've been able to find.

-Barry.

 

wusa.png

Share this post


Link to post
Share on other sites

#14 ·  Posted (edited)

OH!  Good catch!  The line above has it, but also lists <update>.  Not sure I get using /uninstall and update together.  Reading....  d'oh!  OK, update is what you'd be uninstalling.  I was looking at it as a verb.

-Barry.

Edited by bstjohn
clarity

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Similar Content

    • ur
      eclipse export war file silently
      By ur
      I have a project in eclipse which is created using below options.
      File --> New --> Dynamic web application project..   I have linked the src folder to local GitHub synced folder.   Whenever there is a change in GitHub source files, I need to clean the project (only clean , not clean and build)   Once the clean is completed, I will export the complete project as war file (right click on project folder in eclipse and export --> war )   I didn't find any command line options to eclipse to do this. Any other alternative to automate this in AutoIT.
    • Valnurat
      Powershell n00b question
      By Valnurat
      Hi experts.
      I'm trying to get this to work:
      https://www.autoitscript.com/forum/topic/173949-using-the-autoit-powershell-cmdlets/
      but I get an error:  error: syntax error (illegal character)

      "Import-Module .\"
      Can anyone help me?

    • ViciousXUSMC
      Remove Windows Apps for All Users
      By ViciousXUSMC
      I have messed with this time to time, but recently decided to go ahead and push it out because I have so many people having the default reader app take over adobe and since they are not admins they cant easily change the default program to adobe for their profile.
      To remove the app for the current user I use.
      get-appxpackage | where name -like '*reader*' | remove-appxpackage If it is a new computer build I can remove the app from the system so it does not install for any new users with this.
      get-provisionedappxpackage -online | where displayname -like '*reader*' | remove-appxprovisionedpackage -online So where I am stuck is getting it off existing accounts on computers in the field.  Every article, document, etc I can find says all you need to do is add the -allusers flag.
      If I add the flag to the get package part it does show the package for each user, but when I pipe it into the remove-package cmdlet I get an error that the package is not installed for the current user and it does not uninstall it for any other account.
      This is what I have tried:
      get-appxpackage -allusers | where name -like '*reader*' | remove-appxpackage Also a revision of it
      get-appxpackage -allusers *reader* | remove-appxpackage As far as I can tell, this is correct but simply is not working. 
      Any ideas or anybody know what the key issue that I am overlooking is?
    • TechScott
      Can I user AutoIT as a front-end to Powershell?
      By TechScott
      I have a rather heady PowerShell script that requires a few inputs that I would like to present as pick lists/pull down lists.  I've fiddled with doing this using Windows API calls and frankly it's pretty ugly and non-productive.  What I'd like to accomplish is to present the user with a refined UI that will force them to color between the lines and catch any error putput and display it to them in an organized fashion.
      Has anyone done this?  I'd like to have an AutoIT based solution as my current client didn't plan on any extra time or budget to accomplish this task.
      Thanks,
      -Scott.
    • cramaboule
      Ninite-Silent
      By cramaboule
      There is a great tool called ninite (www.ninite.com)
       
      The only problem is that it is not really 'silent'
       
      So I wrote this little script to make it silent (like /S or /Silent or /quiet)
       
      Just rename the downloaded 'Ninite ....... exe' into 'Ninite.exe' and place it into the same folder as the Ninite-silent.exe (my AutoIt prg) Run it and that's it !
       
      Link to my au3 and zip files here
      Also available here
      Enjoy
       
      Cramaboule!
      EDIT: Change link website!