Windows Update for 2000/XP/2003 and Vista is die (August 2020)

Discussion in 'Windows XP / Older OS' started by alvaro_ag, Aug 4, 2020.

  1. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
  2. Zenkaino lovelive

    Zenkaino lovelive MDL Junior Member

    Nov 18, 2019
    90
    3
    0
  3. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    #63 daniel_k, Oct 15, 2020
    Last edited: Oct 15, 2020
    @abbodi1406
    EDIT: Did you fake version or something?
    The redirection is server side.
     
  4. Zenkaino lovelive

    Zenkaino lovelive MDL Junior Member

    Nov 18, 2019
    90
    3
    0
  5. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    @daniel_k

    I forgot about TLS enabling
    Code:
    Windows Registry Editor Version 5.00
    
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]
    "DisabledByDefault"=dword:00000000
    "Enabled"=dword:00000001
    
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
    "DisabledByDefault"=dword:00000000
    "Enabled"=dword:00000001
    
    [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\DisabledByDefault]
    
    [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\DisabledByDefault]
    
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp]
    "DefaultSecureProtocols"=dword:00000AA0
    
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO\TLS1.1]
    "OSVersion"=-
    
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO\TLS1.2]
    "OSVersion"=-
     
  6. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    @abbodi1406, thanks, but no joy, same error.
    Will just wait for you to release it.

    Off-topic:
    Is it possible to possible to fake the presence of a "parent" package required by an update (Vista+)?
     
  7. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    I don't what's exactly needed for vanilla XP SP3 to work (i will try to test that iso)
    that's why i asked about other updates

    yes, but you must have the package .mum + .cat file
    and adding registry to CBS key

    it should work okey for 1-level package (i. e. no other sub-packages required)
     
  8. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    @abbodi1406
    Just to confirm, I've patched wuaueng.dll by NOPing the jump (at address 501A4194 / raw offset 163594) after the call to AreTestKeysAllowed.
     
  9. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    this is my patch
    address 501A4192 raw offset 163592
    Code:
    85C0 0F84
    Code:
    39C0 0F85
     
  10. Zenkaino lovelive

    Zenkaino lovelive MDL Junior Member

    Nov 18, 2019
    90
    3
    0
  11. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    @abbodi1406, thanks.
    Unfortunately, I've tried your patch with my fully updated SP3 ISO and the result is the same.0x80244004

    Can you still scan for updates?

    @Zenkaino lovelive
    If we get a 100% working fix, we will share it.
     
  12. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    @daniel_k
    Yes, it's still working

    i guess the updated ISO i use is properly tweaked
    i re-tested without WinHttp TLS update KB4467770 and it also works (it already have KB4019276)
     
  13. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    @abbodi1406
    Is that ISO one of those shared publicly? Mind to give me a hint so I can search for it?

    I'm intrigued and would like to see it working and compare it against my own updated ISO.
     
  14. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    @abbodi1406, thanks but unfortunately it doesn't work, even with the ISO you're using, same error.
    I give up for now.
     
  15. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    #77 abbodi1406, Oct 16, 2020
    Last edited: Oct 17, 2020
    @daniel_k
    I found the cause of error 0x80244004

    another patch is needed for wuaueng.dll
    patch
    Code:
    offset: 182349
    7424 -> 9090
    
    add registry
    Code:
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Test]
    "AllowAnySSL"=dword:00000001
    

    i forgot to mention it because i always use it for all OSs to capture WU traffic in Fiddler4 (credits for the late @whatever127)
    i didn't thought it also affect XP's WuRedirOverride

    the good news is, no TLS updates/config or any other updates are pre-required (at least not for XP SP3)
    only WUA 7.6.7600.256 is needed (and maybe updated certificates roots)
     
  16. daniel_k

    daniel_k MDL Member

    Jan 21, 2019
    113
    169
    10
    Thank you very much, @abbodi1406!!! :worthy:

    So all the time, MS' intention was just to kill support for unsupported OSes. :furious:
     
  17. Zenkaino lovelive

    Zenkaino lovelive MDL Junior Member

    Nov 18, 2019
    90
    3
    0
  18. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    11,459
    50,100
    340
    #80 abbodi1406, Oct 17, 2020
    Last edited: Oct 17, 2020