OK here is the skinny and my possible workaround.
Background
I recently completed a clean installed Windows7Pro (64Bit) on a newly decommissioned server. Having upgraded my main server (S1) to Windows Server 2016 Essentials, MS licensing would no longer allow another Server operating system on my Domain, thus the change to Win 7 (S2).
S2 does 2 things. It hosts our email server (hMailserver which is not designed to run on more recent operating systems unless using MS SQL (unnecessarily large and complex for me)) and all our Audio/Visual Media, on a RAID 5 setup.
Security is provided by MS Defender and a paid for version of MalwareBytes
S2 only voluntarily accesses the internet to securely (TLS/SSL) receive and send emails and to receive updates to both Defender and MalwareBytes.
I then Restarted the 2 services and after choosing the 'look for updates but let me choose what to download and install' option in WU, I sent the system off to MS to look for updates. Only the failed update was listed as missing.
Background
I recently completed a clean installed Windows7Pro (64Bit) on a newly decommissioned server. Having upgraded my main server (S1) to Windows Server 2016 Essentials, MS licensing would no longer allow another Server operating system on my Domain, thus the change to Win 7 (S2).
S2 does 2 things. It hosts our email server (hMailserver which is not designed to run on more recent operating systems unless using MS SQL (unnecessarily large and complex for me)) and all our Audio/Visual Media, on a RAID 5 setup.
Security is provided by MS Defender and a paid for version of MalwareBytes
S2 only voluntarily accesses the internet to securely (TLS/SSL) receive and send emails and to receive updates to both Defender and MalwareBytes.
As I understand it (and this is/was not my day job) Win 7, once it has been brought up to date after the initial install, is not longer actively supported by MS, except for security updates.
Problem
Update KB4519976 fails with error 0824200D. And, being entirely optimistic about the outcome of its next installation attempt, it tries and fails to repeat its install several times a day!. I have tested S1 (SFC/DISM/SFCFix). It passes all of them. All other updates (including those which need to be installed before KB4519976) are in the system.Problem
My Workaround.
Firstly, after stopping the BITs and WU services I renamed the %windows%SoftwareDistribution Directory to %windows%SoftwareDistribution-old. This renders the list of previously installed updates inaccessible to the system.I then Restarted the 2 services and after choosing the 'look for updates but let me choose what to download and install' option in WU, I sent the system off to MS to look for updates. Only the failed update was listed as missing.
My view is that with Malwarebytes involved in security and with the very limited access to the internet I only need to check weekly on the WU situation, choose what I need to download and install and remain adequately protected.
Any thought/caveats from the Gurus?
Any thought/caveats from the Gurus?
