public static void DeleteService(string scName) { new Thread(o => { WindowsUtil.RunCmd($"/c sc delete {scName}"); Logger.Log($"Delete {scName} service"); }).Start(); }
public static void DisableService(string scName) { new Thread(o => { WindowsUtil.RunCmd($"/c net stop {scName}"); WindowsUtil.ProcStartargs("powershell", $"-command \"Set-Service -Name {scName} -StartupType Disabled\""); Logger.Log($"Disable {scName} service"); }).Start(); }
public static void AddHostToHosts(string hostname) { try { if (!File.Exists(Hostslocation)) { File.Create(Hostslocation).Close(); } if (!HostExitsInHostsFile(hostname)) { File.AppendAllText(Hostslocation, $"\r\n0.0.0.0 {hostname}"); Logger.Log($"Host {hostname} successfully added to hosts file.", Logger.LogType.SUCCESS); WindowsUtil.RunCmd("/c ipconfig /flushdns"); } else { Logger.Log($"Hostname {hostname} exists in hosts", Logger.LogType.WARNING); } } catch (Exception e) { Logger.Log($"Error add host {hostname} to hosts file {Hostslocation}. Exception: {e}", Logger.LogType.ERROR); } }
public static void DigTrackFullRemove() { ServiceSC.DisableService("DiagTrack"); ServiceSC.DisableService("diagnosticshub.standardcollector.service"); ServiceSC.DisableService("dmwappushservice"); ServiceSC.DisableService("WMPNetworkSvc"); WindowsUtil.RunCmd( "/c REG ADD HKLM\\SYSTEM\\ControlSet001\\Control\\WMI\\AutoLogger\\AutoLogger-Diagtrack-Listener /v Start /t REG_DWORD /d 0 /f"); ServiceSC.DeleteService("dmwappushsvc"); ServiceSC.DeleteService("\"Diagnostics Tracking Service\""); ServiceSC.DeleteService("diagtrack"); WindowsUtil.RunCmd("/c reg add \"HKLM\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules\" /v \"{60E6D465-398E-4850-BE86-7EF7620A2377}\" /t REG_SZ /d \"v2.24|Action=Block|Active=TRUE|Dir=Out|App=C:\\windows\\system32\\svchost.exe|Svc=DiagTrack|Name=Windows Telemetry|\" /f"); WindowsUtil.RunCmd("/c reg add \"HKLM\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\FirewallRules\" /v \"{2765E0F4-2918-4A46-B9C9-43CDD8FCBA2B}\" /t REG_SZ /d \"v2.24|Action=Block|Active=TRUE|Dir=Out|App=C:\\windows\\systemapps\\microsoft.windows.cortana_cw5n1h2txyewy\\searchui.exe|Name=Search and Cortana application|AppPkgId=S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742|\" /f"); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Device Metadata\" /v \"PreventDeviceMetadataFromNetwork\" /t REG_DWORD /d 1 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Policies\\DataCollection\" /v \"AllowTelemetry\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\MRT\" /v \"DontOfferThroughWUAU\" /t REG_DWORD /d 1 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\SQMClient\\Windows\" /v \"CEIPEnable\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\AppCompat\" /v \"AITEnable\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\AppCompat\" /v \"DisableUAR\" /t REG_DWORD /d 1 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\DataCollection\" /v \"AllowTelemetry\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\WMI\\AutoLogger\\AutoLogger-Diagtrack-Listener\" /v \"Start\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\WMI\\AutoLogger\\SQMLogger\" /v \"Start\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg add \"HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Siuf\\Rules\" /v \"NumberOfSIUFInPeriod\" /t REG_DWORD /d 0 /f "); WindowsUtil.RunCmd( "/c reg delete \"HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Siuf\\Rules\" /v \"PeriodInNanoSeconds\" /f "); }
public static void DeleteService(string scName) { WindowsUtil.RunCmd($"/c sc delete {scName}"); Logger.Log($"Delete {scName} service"); }