Problem after installing Updates Agent 7.6.7600.256

[Only2]

Hello,

I re-installed everything, did the updates, but after SP2, they asked to install Windows Updates Agent 7.6.7600.256

After that, I wasn't able to update again (updates was running for 2 days without any results)

Still looking fo a solution to get this dinosaur every vista's updates till 2017

Thank you

 

[Volume Z]

Tadaa:

why has vista stopped automatic updates?

Vista will no longer automatically update. Nothing I've attempted works to fix the issue.

answers.microsoft.com

 

[SIW2]

As volume Z already posted:

You need to download and run the 4 "speedup" updates. There is a fifth if you have installed ie9. I don't think there is any point in having ie9 now.

Here are the links for ease

for 64 bit:
windows6.0-kb3205638-x64
windows6.0-kb4012583-x64
windows6.0-kb4015195-x64
windows6.0-kb4015380-x64

for 32 bit:
windows6.0-kb3205638-x86
windows6.0-kb4012583-x86
windows6.0-kb4015195-x86
windows6.0-kb4015380-x86

If you have ie9 installed :
for 64 bit
ie9-windows6.0-kb4018271-x64

for 32 bit:
ie9-windows6.0-kb4018271-x86

 

[Vistaar]

I re-installed everything...Still looking fo a solution to get this dinosaur every vista's updates till 2017

If you re-installed from an old factory image, then I recommend running sfc /scannow from an elevated command prompt before spending more time on Windows updates. A clean install of Vista might be necessary.
If you need a functional browser ASAP, then I would suggest a 32-bit build of Firefox 52.9.0. (Firefox x64 did not support Vista.)
The issue you describe has been well-known for years, and the link provided by Volume Z is among the best. Before attempting to manually install the 4 “speed-up” patches (64 bit in your case), it is important to set Windows Update to “Never check for updates” and restart the system!

 

[Prophet Maggie]

I cannot hear my DVD

 

[townsbg]

What do you mean? Please explain what's going on.

 

[Only2]

If you re-installed from an old factory image, then I recommend running sfc /scannow from an elevated command prompt before spending more time on Windows updates. A clean install of Vista might be necessary.
If you need a functional browser ASAP, then I would suggest a 32-bit build of Firefox 52.9.0. (Firefox x64 did not support Vista.)
The issue you describe has been well-known for years, and the link provided by Volume Z is among the best. Before attempting to manually install the 4 “speed-up” patches (64 bit in your case), it is important to set Windows Update to “Never check for updates” and restart the system!

OK, so I have to manually install those 4 patches, then update the Update Agent or before ?
Thank you

 

[Vistaar]

OK, so I have to manually install those 4 patches, then update the Update Agent or before ?

After updating the Windows Update Agent.

 

[lmacri]

OK, so I have to manually install those 4 patches, then update the Update Agent or before ?
Thank you

Hi Only2:

Right-click on the Windows Update Agent .dll file at C:\Windows\system32\wuaueng.dll, choose Properties from the pop-up menu, and see if you have the latest available v7.6.7600.256 (released in June 2012) for Vista SP2.

Once you install the 4 or 5 Windows Update "speed up" patches listed in Volume Z's post on page 1 of peggybeggs' thread why has vista stopped automatic updates? the first thing Windows Update should do is to run a self-check to see if you have the latest available Windows Update Agent for Vista v7.6.7600.256 and then automatically install it if you have an older version. I don't have my Vista SP2 laptop with me today but see my 07-Apr-2019 post # 658 in ScousaJAY's thread windows update just seems to hang while checking that includes an excerpt from my Windows Update log at C:\Windows\WindowsUpdate.log showing I already have the latest Windows Update Agent v7.6.7600.256:

2019-04-07 14:56:11:834 1252 cac Setup Checking for agent SelfUpdate
2019-04-07 14:56:11:880 1252 cac Setup Client version: Core: 7.6.7600.256 Aux: 7.6.7600.256
...
2019-04-07 14:56:13:487 1252 cac Setup Setup package "WUClient-SelfUpdate-Core-TopLevel~31bf3856ad364e35~x86~~7.6.7600.256" is already installed.
2019-04-07 14:56:13:487 1252 cac Setup SelfUpdate check completed. SelfUpdate is NOT required

There is an FAQ pinned at the top of this board titled How to Fix Vista SP2 "Checking for Updates..." Hangs and Slow Windows Updates with more background information on the cause of these slow Windows Updates.
-----------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Norton Security Deluxe v22.15.2.22 * Malwarebytes Free v3.5.1-1.0.365 * MS Office Professional 2003 SP3
HP Pavilion dv6835ca, Intel Core2Duo T5550 @ 1.83 GHz, 3 GB RAM, 256 GB Western Digital SATA HDD, NVIDIA GeForce 8400M GS

 

[Only2]

After updating the Windows Update Agent.

Right-click on the Windows Update Agent .dll file at C:\Windows\system32\wuaueng.dll, choose Properties from the pop-up menu, and see if you have the latest available v7.6.7600.256 (released in June 2012) for Vista SP2.

Thanks to both of you, I fixed this one and it was looking good till error 800B0109.

Anything about this one?

 

[lmacri]

Thanks to both of you, I fixed this one and it was looking good till error 800B0109....

Hi Only2:

Did the error occur during installation of the Windows Update Agent v7.6.7600.256 or some other Vista SP2 update?

I am aware of three Vista SP2 users who recently encountered a Windows Update error 800B0109 ("A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider") when Windows Update tried to install KB4014984 (Security and Quality Rollup for NET. Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Vista SP2 and Server 2008 SP2: April 11, 2017). I believe all three users recently performed a clean reinstall of Vista SP2 and installed MS .NET Framework v4.5 or 4.6 before patching their OS back to end of extended support so this might be a unique set of circumstances, but if you continue to encounter further certificate trust errors see greenhillmaniac's 06-Apr-2020 solution in mickey8811's Certificate Trust Provider Error Installing Updates in the Vista board of the MSFN forum for a possible fix. That post has a download link for a MicrosoftRootCertificateAuthority2011.cer file stored in greenhillmaniac's MEGA archive as well as instructions on how to add those trust certificates to your system.
------------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Norton Security Deluxe v22.15.2.22 * Malwarebytes Free v3.5.1-1.0.365 * MS Office Professional 2003 SP3
HP Pavilion dv6835ca, Intel Core2Duo T5550 @ 1.83 GHz, 3 GB RAM, 256 GB Western Digital SATA HDD, NVIDIA GeForce 8400M GS

 

[Only2]

Hi Only2:

Did the error occur during installation of the Windows Update Agent v7.6.7600.256 or some other Vista SP2 update?

It is after. Founds over 200 updates and then 1 critical goes to error 800B0109 related to KB4014984. Will try mickey8811's solution and let you know.

 

[Only2]

I believe all three users recently performed a clean reinstall of Vista SP2 and installed MS .NET Framework v4.5 or 4.6 before patching their OS back to end of extended support so this might be a unique set of circumstances, but if you continue to encounter further certificate trust errors see greenhillmaniac's 06-Apr-2020 solution in mickey8811's Certificate Trust Provider Error Installing Updates in the Vista board of the MSFN forum for a possible fix. That post has a download link for a MicrosoftRootCertificateAuthority2011.cer file stored in greenhillmaniac's MEGA archive as well as instructions on how to add those trust certificates to your system.

For future references : I had to install this "MicrosoftRootCertificateAuthority2011.cer" file as trusted certificates and then manually installed KB4014984 from "Microsoft Update Catalog". Finally, tried to run Windows Updates again and everything been sucessfully updated.

Thanks for the help.

 

[lmacri]

For future references : I had to install this "MicrosoftRootCertificateAuthority2011.cer" file as trusted certificates and then manually installed KB4014984 from "Microsoft Update Catalog". Finally, tried to run Windows Updates again and everything been sucessfully updated....

Hi Only2:

Thanks for your feedback. This new issue with KB4014984 sounds like it's going to be an ongoing problem for users performing a clean reinstall of Vista SP2 so I've added a footnote to my June 2016 instructions in the MS Answers thread Updates not working, it has been searching for updates for hours where I post as user Great White North.
------------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Norton Security Deluxe v22.15.2.22 * Malwarebytes Free v3.5.1-1.0.365 * MS Office Professional 2003 SP3
HP Pavilion dv6835ca, Intel Core2Duo T5550 @ 1.83 GHz, 3 GB RAM, 256 GB Western Digital SATA HDD, NVIDIA GeForce 8400M GS

 

[erpster4]

actually Imacri & Only2, the MicrosoftRootCertificateAuthority2011.cer file is still available directly from Microsoft
see MS support article 3149737 as that certificate file is available for download there.

no need to download it from MEGA

edit - I install that certificate file along with the KB2813430 update for Vista SP2.

 

[lmacri]

...the MicrosoftRootCertificateAuthority2011.cer file is still available directly from Microsoft
see MS support article 3149737 as that certificate file is available for download there....

Hi erpster4:

Thanks for the link to the MS support article KB3149737 and your info about the MicrosoftRootCertificateAuthority2011.cer file.

I'm still not sure, however, exactly what has changed on Microsoft's end since April 2020 that now triggers these 800B0109 errors ("A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider") when Windows Update tries to install update KB4014984 (Security and Quality Rollup for NET. Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Vista SP2 and Server 2008 SP2: April 11, 2017). That support article notes that "this issue occurs when you operate in an environment that's disconnected from the Internet or that has a firewall that blocks content from the following URL: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en". It also states that "this behavior occurs because of recent changes to Microsoft Windows Enforcement of Authenticode Code Signing and Timestamping", which describes the risk of downloading software signed exclusively with a SHA-1 certificate.

Problems with strict enforcement of SHA-2 signing for newly released Microsoft updates first appeared on my Vista SP2 machine back in October 2019 (see my post # 17 in VIstauser324's thread Windows Defender Definition Updates) so SHA-1 vs SHA-2 signing probably isn't the whole story. Perhaps it's because .NET Framework v4.x is an optional update and the Microsoft Update Catalog now shows that KB4014984 has been replaced by the Windows Server 2008 update KB4041086 (released Sept 2017) in the supercedence chain.



I also suspect Microsoft has gone back and either re-issued some Vista SP2 updates released on or before 11-Apr-2017 or altered the metadata. For example, Bob's My Uncle recently pointed out to me <here> that the 32-bit Vista version of KB4015195 (Security update for the Win32k information disclosure and escalation of privilege vulnerabilities in Windows Vista and Windows Server 2008: April 11, 2017), which used to have a Last Updated date of 08-Apr-2017 as shown in this old image I captured in April 2017 ....



... has now disappeared from the Microsoft Update Catalog, and the Last Updated date of the remaining 64-bit version has changed to 30-May-2017.


---------------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Malwarebytes Premium v3.5.1-1.0.365 * MS Office Professional 2003 SP3
HP Pavilion dv6835ca, Intel Core2Duo T5550 @ 1.83 GHz, 3 GB RAM, 256 GB Western Digital SATA HDD, NVIDIA GeForce 8400M GS

 

[erpster4]

then there are these new problems for Vista users Imacri:

SHA-1 Windows content to be retired August 3, 2020 | Microsoft Community Hub

To support evolving industry security standards, Microsoft is retiring content that is Windows-signed for SHA-1.

techcommunity.microsoft.com

Windows Update SHA-1 based endpoints discontinued for older Windows devices

if Vista users want to continue to use windows update starting August 2020 & beyond, try installing a SHA-2 support update like KB4039648 (MUC link to 4039648 update). otherwise, WU will stop working on Vista effective beginning of August 2020.

 

[SIW2]

Looks like the vista pre EOL updates will not be available.

Maybe download them now to be safe.

 

[Vistaar]

...if Vista users want to continue to use windows update starting August 2020 & beyond, try installing a SHA-2 support update like KB4039648 (MUC link to 4039648 update). otherwise, WU will stop working on Vista effective beginning of August 2020.

Unfortunately, Windows Update will not function at all on a Vista system with build number 6.0.6003, and you cannot install SHA-2 support without changing the build number. Better back up with an image or clone!

 

[lmacri]

...if Vista users want to continue to use windows update starting August 2020 & beyond, try installing a SHA-2 support update like KB4039648 (MUC link to 4039648 update). otherwise, WU will stop working on Vista effective beginning of August 2020.

Hi erpster4:

Thanks for providing the links to those MS support articles.

I'm still not entirely clear what Vista SP2 users performing a clean reinstall of their OS after 03-Aug-2020 will have to do in order to patch Vista SP2 back to the end of extended support (11-Apr-2017) so I posted a few questions in the MSFN Vista board at Adding SHA-2 Support to Vista SP2 After August 3, 2020 to see what folks there have to say.

In a worst case scenario, I assume users performing a clean reinstall of Vista SP2 will still be able to use Torsten Wittrock's WSUS Offline Update tool (i.e., the legacy ESR v9.2.4 or higher for Win XP/Vista) to patch their systems back to end of extended support (11-Apr-2017) since this offline update tool doesn't require Windows Update.
----------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Malwarebytes Premium v3.5.1-1.0.365
HP Pavilion dv6835ca, Intel Core2Duo T5550 @ 1.83 GHz, 3 GB RAM, NVIDIA GeForce 8400M GS