WIN7 Windows Update stuck / hangs / hängt

 

Some times the Windows 7 Update Client is stuck. Here is how to solve this in 2017.

This happens on Brand new installation of Windows 7 SP1 PRO or ENTERPRISE Media 64BIT (OEM or VL). The Internet conenction looks fine, You have no packet lost, Your MTU Size is correct. Simply Windows Update hangs and does that for hours. Sometimes it goes through and the time this could happen we have seen from 4 hrs to 3 Days.

 

First hint: On some Patches DISCONNECT the Network cable from your Client! (3020369 as example)

You need to Install 3 Patches from the Windows Update Catalog in a certain order. Keep in MIND that you need to Reboot (Restart) and also in certain cases UNLUG the Internet Connection before installing the Patches. Otherwise the Client will search endless again with the first patch.

http://catalog.update.microsoft.com/v7/site/home.aspx

Search for all 3 Patches mentioned below an add them to the Download basket

3020369

3172605

3125574

Then choose to Download all of them

 

KB3020369 (https://support.microsoft.com/de-ch/help/3020369/april-2015-servicing-stack-update-for-windows-7-and-windows-server-2008-r2)

REBOOT

KB3172605 (https://support.microsoft.com/de-de/help/3172605/july-2016-update-rollup-for-windows-7-sp1-and-windows-server-2008-r2-sp1)

REBOOT

 

Om most systems we heard this two Patches solved it. IF that did not work also try:

KB3125574 (https://support.microsoft.com/de-ch/help/3125574/convenience-rollup-update-for-windows-7-sp1-and-windows-server-2008-r2-sp1)

REBOOT

 

 

Please see our further posting regarding WSUS and WSUS-Clients:

http://www.butsch.ch/post/WSUS-Windows-Update-Client-Agent-Commandline-wuaucltexe.aspx

http://www.butsch.ch/post/WSUS-Windows-Update-Server-Most-common-Problems-FAQ.aspx

http://www.butsch.ch/category/WSUS.aspx

http://www.butsch.ch/category/Hotfixes-Updates.aspx

 

 

 

SPAM / RANSOMWARE, Switzerland, SWISSCOM, Faked Invoice

Currently 15.02.2017 there are several SPAM/Malware Attachment floating around with real good looking FAKED Swisscom Invoices.

 

Derzeit sind etliche SPAM/Malware E-Mails im Umlauf mit gefälschten Swisscom Telefon / Natel Rechnungen.

Die Rechnungen sind derart perfekt aufgebaut, dass man diese von einem Original nicht mehr unterscheiden kann.

 

MCAFEE ATD Diagnose of the File rechnung.zip > rechnung.js which a link PULLS. The faked Bill seems

To contain many AHREF Target. Most of the commercial Sandbox ONLY follow a certain amount of depth and links (5-8).

We think that there were several hidden links in the E-Mail and only those where scanned.

 

 

 

 

 

MCAFEE: Threat Intelligence Exchange TIE Policy is blank after EPO Update 5.X

 

PROBLEM: Threat Intelligence Exchange TIE Policy is blank after EPO Update 5.X

 

After you install an EPO Patch or HOTFIX some POLICY Rules are EMPTY. If you logon to the EPO Web console with a new CLIENT (Browser)

You see it fully. This is related due the Cache of your Browser. Clear the BROWSER Cache, Forms, data etc. fully and you will regain the view.

W10: German/Deutsch WIN 10 ENT how to add English as display language

W10, Windows 10, 1607, Sprache, Language Pack, LP, CAB, DISM, MUI, Enterprise, GPO, RSAT

If you are migrating from W7 to W10 and the DC's are still 2012R2 you need a W10 Admin machine. Mostly this will be the same language as the clients (In non-international company's thus German in DACH)

 

Problem: On a German WIN 10 the RSAT tools with as example GPO are in English.

If you don't want a English W10 and MUI you can do it the other way.

 

Here is HOW to add the second language to your EXISTING W10 with DISM. For example if YOU have a GERMAN (DEUTSCH) W7 Enterprise and

need to HANDLE English GPO / Gruppenrichtlinien on your W10 Admin machine. (Remember that you need RSAT for W10 to do so also).

  1. Download the add. Language pack from the Direct Links.
  2. Copy and rename the .CAB Files to something short like "en_lp_64.cab"
  3. Use DISM to integrate it

Dism /online /Add-Package /PackagePath:C:\edv\01_LP_EN\en_lp_64.cab

Reference for DISM and LP:

https://technet.microsoft.com/en-us/en-en/library/dd744278(v=ws.10).aspx

 

Windows 10 1607 64BIT Language Packs download (CAB-FILES) direct from MICROSOFT UPDATE CATALOG Source

ar-SA 

Download link

bg-BG 

Download link

cs-CZ 

Download link

da-DK 

Download link

de-DE 

Download link

el-GR 

Download link

en-GB 

Download link

en-US 

Download link

es-ES 

Download link

es-MX 

Download link

et-EE 

Download link

fi-FI 

Download link

fr-CA 

Download link

fr-FR 

Download link

he-IL 

Download link

hr-HR

Download link

hu-HU 

Download link

it-IT 

Download link

ja-JP 

Download link

ko-KR 

Download link

lt-LT 

Download link

lv-LV 

Download link

nb-NO 

Download link

nl-NL 

Download link

pl-PL 

Download link

pt-BR 

Download link

pt-PT 

Download link

ro-RO 

Download link

ru-RU 

Download link

sk-SK 

Download link

sl-SI 

Download link

sr-Latn-RS 

Download link

sv-SE 

Download link

th-TH 

Download link

tr-TR 

Download link

uk-UA 

Download link

zh-CN 

Download link

zh-TW 

Download link

af-ZA 

Download link

am-ET 

Download link

as-IN 

Download link

az-Latn-AZ 

Download link

be-BY 

Download link

bn-BD 

Download link

bn-IN 

Download link

bs-Latn-BA 

Download link

ca-ES 

Download link

ca-ES-valencia 

Download link

chr-CHER-US 

Download link

cy-GB 

Download link

eu-ES 

Download link

fa-IR 

Download link

fil-PH 

Download link

ga-IE 

Download link

gd-GB 

Download link

gl-ES 

Download link

gu-IN 

Download link

ha-Latn-NG 

Download link

hi-IN 

Download link

hy-AM 

Download link

id-ID 

Download link

ig-NG 

Download link

is-IS 

Download link

ka-GE 

Download link

kk-KZ 

Download link

km-KH 

Download link

kn-IN 

Download link

kok-IN 

Download link

ku-Arab-IQ 

Download link

ky-KG 

Download link

lb-LU 

Download link

lo-LA 

Download link

mi-NZ

Download link

mk-MK 

Download link

ml-IN 

Download link

mn-MN 

Download link

mr-IN 

Download link

ms-MY 

Download link

mt-MT 

Download link

ne-NP 

Download link

nn-NO 

Download link

nso-ZA 

Download link

or-IN 

Download link

pa-Arab-PK 

Download link

pa-IN 

Download link

prs-AF 

Download link

quc-Latn-GT 

Download link

quz-PE 

Download link

rw-RW 

Download link

sd-Arab-PK 

Download link

si-LK 

Download link

sq-AL 

Download link

sr-Cyrl-BA 

Download link

sr-Cyrl-RS 

Download link

sw-KE 

Download link

ta-IN 

Download link

te-IN 

Download link

tg-Cyrl-TJ 

Download link

ti-ET 

Download link

tk-TM 

Download link

tn-ZA 

Download link

tt-RU 

Download link

ug-CN

Download link

ur-PK 

Download link

uz-Latn-UZ 

Download link

vi-VN 

Download link

wo-SN 

Download link

xh-ZA 

Download link

yo-NG 

Download link

zu-ZA 

Download link

 

Finally change the Language Settings in W10

The "Wilkommen" stays on the original Setup Language. If you want it FULLY you need an EN English Setup ISO/WIM and then the language packs. However if you use CBB and not LTSB with APPSTORE and other you will run into problems like the APPS are in German. You can fix that with rather complex Powershell scripts.

Here you see the paths and which APPS can display in another language

Etc.

Etc.

The GPO Console CONTENT is now ENGLISH some MENUS are still German > Target reached

 

 

Enteo/Frontrange: Debug MODE PE 5.X / WIN 10 aktivieren in Boot

Es gab hier schon mal einen älteren Beitrag:

http://www.butsch.ch/post/Windows-7-Unattended-Files-for-Diagnostic-5cPanther.aspx

Pfad wo sich die wichtigen Infos befinden ist: \windows\panther

So kann man den Windows PE 5.X / WIN 10 DEBUG Mode bei Enteo/Frontrange/Heat aktivieren:

Bestehenden Boot Environment kopieren und Namen anpassen. (Am besten ein neues machen keine REVISION). Dies wird schnell fehleranfällig und unübersichtlich.

Diese neue Bot Environment dann dem "OS Configuration package Set" unter BootEnviromentLink zuweisen.

Diese neue "OS Configuration package Set" dann dem "OSSoftwareSet" Zuweisen. Am besten eine neues "SoftwareSet" machen damit die Revisionen nicht spinnen und sauber gehen.

Falls man nun mit dem OS-Set bootet hat man die DEBUG cmd box. Dort findet man mehr Infos was ging und nicht im File c:\windows\panther\setupact.log

 

In dem Fall war der Fehler der Unattend auch mit einem normalen Browser sichtbar. Es gibt aber auch Fehler

In der unattend.txt die nichts so einfach zu finden sind. Daher der DEBUG Mode.