Server 2008R2 SP1 I'm getting timestamp signature and or certificate could be verified error on all patches from Mar 2022 forward. I have various other serves with Bypass installed no issues at all. All requirements installed . Have tried with V9 and V11. - ServiceName = Windows Update Standalone Installer 2022-04-16 18:35:39:884 1292 464 COMAPI - ScanFileLocation = C:\e1e018b65143ca2f2f73\wsusscan.cab 2022-04-16 18:35:39:891 796 c88 Misc Validating signature for C:\Windows\SoftwareDistribution\ScanFile\18b4d576-7334-4d2c-9939-74d658788bbf\Source.cab with dwProvFlags 0x00000080: 2022-04-16 18:35:40:085 796 c88 Misc FATAL: Error: 0x80096005 when verifying trust for C:\Windows\SoftwareDistribution\ScanFile\18b4d576-7334-4d2c-9939-74d658788bbf\Source.cab 2022-04-16 18:35:40:085 796 c88 Misc WARNING: Digital Signatures on file C:\Windows\SoftwareDistribution\ScanFile\18b4d576-7334-4d2c-9939-74d658788bbf\Source.cab are not trusted: Error 0x80096005 2022-04-16 18:35:40:085 796 c88 OfflSnc WARNING: failed to verify signature for offline cab. hr = 0x80096005 2022-04-16 18:35:40:086 796 c88 PT WARNING: PTError: 0x80096005 2022-04-16 18:35:40:086 796 c88 Agent WARNING: WU client fails CClientCallRecorder::OpenOfflineSyncSource with error 0x80096005 2022-04-16 18:35:40:086 1292 464 COMAPI WARNING: ISusInternal::OpenOfflineSyncSource failed, hr=80096005 2022-04-16 18:35:40:087 1292 464 COMAPI - Exit code = 0x80096005
When is it appropriate to uninstall the ESU bypass? Can I just leave it installed, or do we have to uninstall and re-install when we want to do WU?
I have installed it prior to using WU. Following that I only uninstall the .NET Bypass part of the ESU Bypass until the next WU cycle... this has been flawless since v9 (incl. v11). Leaving the .NET Bypass in place following the WU cycle, it has caused issues with some apps (Adobe) and has hampered certain app installations along the way. The easiest thing to do rather than guess... uninstall the .NET portion of the ESU Bypass until needed during the next update.
So if I don't have issues with any other software, I can leave it installed and it's safe? Just wondering, thanks.
That's what I found. All issues associated with it (when they occurred) had to do with new installations only of certain software and some Adobe products. When I would see those anomalies, I would uninstall the .NET Bypass and all would be just fine.
Hi all, did the april update still break win7 media center? WMC is the only reason I still use win7 and after reading this^ thread just skipped March. Work around not worth the time suck and brain damage of keeping security update + resetting wmc settings/ channels/ cable card, imo [insert 'Nope' gif here]
I don't use Windows Media Center, but apparently the bug has been fixed in this months Security Monthly rollup and Security-only updates.
Is anyone else struggling to install KB5012626? I couldn't install it with Windows update, I received error 8024200D. I tried to fix it, but instead tried downloading the .msu from microsoft, but that also gave me an error installing it (it just said failed to install update). Any ideas? I'm running it in a VM in VirtualBox.
Windows Embedded POS Ready 7 Hi, I installed Windows Embedded POS Ready 7 because its the windows 7 version that gets ESU updates until October 2024. I installed the patch but I have to "manually" install the updates. Not a big deal. I just have to look up and download from Microsoft Catalog every patch Tuesday. However, my question is has anyone else installed POS Ready 7 with the patch and does windows update automatically get the updates or do you have to manually install them? January 10, 2023 is the ESU EOL for all versions of 7 except POS Ready 7 which ends October 2024 which is a year and 10 months longer.
Is Windows 7 Ultimate supported for ESU's? I can install all updates except one, but I just found a list of supported versions for ESU. Ultimate isn't on that list. Do I need to change versions to Pro? I am wondering if that's the reason I can't install KB5012626 docs.microsoft.com/en-US/lifecycle/faq/extended-security-updates
It is my guess the experts here will be able to get Windows 7 to extend its life beyond January 2023 and until October 2024. We will find out in 9 - 10 months.
Hi redpill, i also have POS ready 7, its great because you can activate this version with serial ONLY, no online connection needed. I think its the only Win 7 version you can activate without online connection. Regarding your question: i have installed the "Bypass ESU v11 - LiveOS-Setup" and i dont get to see/install any new updates in WU manager. I got my update here: support.microsoft.com/en-us/topic/april-12-2022-kb5012626-monthly-rollup-92ddc62b-e5bf-4f21-a3de-2e8a72b56e2c installed " March 8, 2022—KB5011552 (Monthly Rollup) " after applying "Bypass ESU v11 LiveOS-Setup" and it worked fine, the rollup shows up in the windows update history as installed. You just have to install ONE monthly update (the newest) as it includes all older rollups. So the present one would be "KB 5012626 April", havent installed it yet but i guess it will work fine, just as the march one. The rollups include more fixes than the security updates only, but you only have to install the newest one, which saves a lot of work compared to installing ALL of the security updates manually. On the first page it says "not working for Windows 7 Embedded Standard WES7" does that include POS 7? As i said for me only manual install works, no automatic windows update check. Would be intersested if anyone got WU working with extended security updates in POS 7.
interesting, im running POS7. what exactly does this hack do? which telemetry services you mean exactly? all i know of are: In the "Microsoft\Windows\Application Experience" folder, In the "Microsoft\Windows\DiskDiagnostic" folder, In the "Microsoft\Windows\AppID" folder, and the "Microsoft\Windows\Autochk" folder some of those are not even enabled in POS, those which are can be disabled. the ESU patch works only for manual updates, not for the WUS here.
I still can't get KB5012626 installed (April monthly rollout). Manually downloading and installing it doesn't work either (just says there's an issue installing the update). Any ideas?
so the patch is basically to extend the update window and make it similar to POS7, thanks for clearing that up. WES7 and POS7 seem pretty similar in general, i also use the "Windows Embedded Standard 7" security updates from the microsoft update catalog. i was able to install the "convenience rollup" on POS7 without the need of any tricks that are described in the article you linked to. after installing all the remaining updates (WU shows no more available updates) the digitrack service in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DiagTrack was not installed, so im glad this also seems to be similar to WES7. i would be interested how win7 users should check which telemetry services are installed and running and which not. Is there a complete list somewhere? apart from the one above i checked with a fresh POS7 and all updates installed (inc. kb50122626 april 2022 mothly rollup) in the task scheduler: "Microsoft\Windows\Customer Experience Improvement Program": only "UsbCeip" enabled, can be disabled by user. "Microsoft\Windows\Application Experience": only "AitAgent" enabled, can be disabled by user. "Microsoft\Windows\DiskDiagnostic": "DiskDiagnosticDataCollector" enabled, can be disabled by user. "Microsoft\Windows\Autochk": "proxy" enabled, can be disabled by user. thats basically all the telemetry service folders in the task scheduler i know of. "Microsoft\Windows\AppID" is only installed for win 8 and above afaik. did you check if the services listed above are not installed/enabled in WES7? it would be surprising if there was not any telemetry at all included in WES7, or added with the updates. i didnt fiddle with the language packs at all, since i find the translations to the languages im native in ridiculous, so i stick to english - might as well learn something
can confirm that using "Bypass ESU v11 LiveOS-Setup" and then manually installing KB5012626 works fine on POS7.