Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: "Disable startup check for latest virus and spyware security intelligence (signature)" is wrong. #394

Open
femdiya opened this issue Aug 1, 2024 · 0 comments
Open

[Bug]: "Disable startup check for latest virus and spyware security intelligence (signature)" is wrong. #394

femdiya opened this issue Aug 1, 2024 · 0 comments
Labels
bug Something isn't working

Comments

@femdiya
Copy link

femdiya commented Aug 1, 2024

Description

:: Disable startup check for latest virus and spyware security intelligence (signature)
echo --- Disable startup check for latest virus and spyware security intelligence (signature)
PowerShell -ExecutionPolicy Unrestricted -Command "reg add 'HKLM\Software\Policies\Microsoft\Windows Defender\Signature Updates' /v 'UpdateOnStartUp' /t 'REG_DWORD' /d '1' /f"
:: ----------------------------------------------------------

The title

Disable startup check for latest virus and spyware security intelligence (signature)

Promises to disable the signature update during startup, while the script has done it wrong.
In this line:
PowerShell -ExecutionPolicy Unrestricted -Command "reg add 'HKLM\Software\Policies\Microsoft\Windows Defender\Signature Updates' /v 'UpdateOnStartUp' /t 'REG_DWORD' /d '1' /f"
The correct data for value UpdateOnStartUp should be "0" instead of "1", as mentioned on the admx.help itself (the script on privacy.sexy uses this link as reference):
Reference link used in privacy.sexy

If you disable this setting or do not configure this setting, a check for new security intelligence will not occur after service startup.

How can the bug be recreated?

ANSWER FROM GPT
Steps to Reproduce:

Open a PowerShell window with administrative privileges.

Execute the following command to create a registry entry that should disable the signature update at startup:

powershell

PowerShell -ExecutionPolicy Unrestricted -Command "reg add 'HKLM\Software\Policies\Microsoft\Windows Defender\Signature Updates' /v 'UpdateOnStartUp' /t 'REG_DWORD' /d '1' /f"

Verify the registry value by navigating to the registry path HKLM\Software\Policies\Microsoft\Windows Defender\Signature Updates and checking the UpdateOnStartUp value.

Note the value is set to 1 and confirm that a signature update check occurs at startup.

According to the documentation and reference link provided, this value should be 0 to disable the update check.

Expected Result:

The UpdateOnStartUp registry value should be set to 0 to disable signature update checks at startup.

Actual Result:

The UpdateOnStartUp registry value is set to 1, which incorrectly enables the update check at startup.

Operating system

This script affects Windows users.

Script file

https://gist.github.com/femdiya/4cf86b54d3c3604b0267912fc9d92f2e

Screenshots

No response

Additional information

No response
@femdiya femdiya added the bug Something isn't working label Aug 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@femdiya