Unwanted updates for Windows 7

Topic

New Reply

I’ve received many variations on this request over the past few weeks: Hi Woody, I hope you are well. With all the knowledge you have of the Windows U
[See the full post at: Unwanted updates for Windows 7]

Reply | Quote

Replies

@TP, avoid these:

KB2506928
KB2545698
KB2592687
KB2660075
KB2726535
KB2876229
KB2923545
KB2952664
KB2970228
KB2976978
KB2977759
KB2990214
KB2994023
KB2999226
KB3012973
KB3021917
KB3022345
KB3035583
KB3046480
KB3050265
KB3065987
KB3068708
KB3075249
KB3075851
KB3077715
KB3078667
KB3080149
KB3083324
KB3083710
KB3090045
KB3102810
KB3112343
KB3123862
KB3135445

I’ve been adding to this list every month.

Reply | Quote

Thank you for the list, Deborah

Reply | Quote

@Deborah Wow! Excellent job! I’ll have to make a note of these.

This is the list that I’ve been using to avoid the W10 upgrade on my computers and for family and friends. So far… not a whisper of W10. I did install GWX Contol Panel in January to verify that nothing is lurking in my system and it’s clean.
2952664, 2976978, 2977759, 3022345, 3035583, 3068708, 3075249, 3080149, 3112343, 3123862, 3135445

Reply | Quote

Is it recommended that GWX Control Panel’s monitoring mode is enabled or disabled during the actual installation of Windows Updates?

In other words, is there a risk of it interfering with the installation of updates so that is better to install them without monitoring and then run the program afterwards, or is it safe and more effective to monitor them during the installation of updates?

Reply | Quote

Deborah, thank you very much for sharing your list.

Reply | Quote

“Updates to avoid in Windows 7 so not to end up with W10” ..so why list a bunch of updates that have nothing to do with Windows 10? Look in this thread instead https://www.askwoody.com/2015/disable-windows-10-upgrade-nagware-win-7-win-81-computers/

Reply | Quote

Woody
I have 8 updates that I got last black Tuesday that are marked important and have security update in the name. Should I go ahead and update them now or wait until you give us the word later in the month to do the updates.
I have Windows 7 OS.

Reply | Quote

Wait. There are no current patches with known exploits in the wild. Still too early to tell if any have problems.

Reply | Quote

Some people like to disable (or not install) patches that are associated with Microsoft snooping. I’ve never been able to tell, for sure, which patches add to the snooping problem. Other patches change Windows Update Services to make it easier to install Windows 10. I don’t have any sympathy for those patches, but have never gone out and zapped them.

The really lousy point is that Microsoft hasn’t given us any real bug fixes in a year – or at least, none that I can discern. All of the non-security patches in the last year or so, best I can tell, serve Microsoft’s purpose, not our best interests. That’s why I now recommend that people simply not install non-security patches.

Going back and culling useless patches is an interesting exercise, but not one I’d recommend for people who have other things to do. Instead, if you don’t want Windows 10, just run GWX Control Panel. Much simpler, and quite effective.

Note: The situation can become horrendously complex.

Reply | Quote

No risk at all. Keep it running.

Reply | Quote

My advise – which I followed myself when reinstalling 3 months ago – is to download a patch archive for W7. These one can find with varying dates at which the last updates were added. My end date for patches was October last year, it probably is better to move back a bit more, to Spring last year.

What yoi8u have when downloading such an archive is all W7 updates from beginning to end date of the archive. You can then switch off any KB numbers that you want to switch off, via a list (I maintain such a list, too). Then install the remaining patches. You then have your Windows 7 patched to status “end date of archive”, minus the switched off KB-numbers.

AND THEN TURN OFF Windows update completely. Never patch again. Also turn off all background services you can find and identify that connect to Windows servers. The service that logs to MS when you boot the system, the clock synchronization, and so forth.

Be aware that you need to adapt in any way you see fit to the fact that your W7’S security holes that get revealed in the future – since the end date of your used patch archive – will not be closed. You must adapt to that. Best by not working under Windows 7 at all, only using it as a launching platform for any software you need/want and that can only be run under Windows. For anything else, whatever it is: go to a dual boot system, a separate system, whatever: an alternative OS. Also, maintain tip top defences via traditional payware security suite, MBAM, Spybot Immunization under Windows 7. This does not give you total security again, but it reduces the chance of your old W7 getting hit by something. Its all about probabilities, and how to reduce the unwanted ones a bit more. You can then also additionally install GWX Control, Panel. It should not be needed if not patching Windows anymore, but it cannot hurt either, can it.

I did like this myself when I once realised what a hilarious amount of time it costed me per month to fight against MS’ malware attacks just to stay in command of my own property: my computer, and I also repeatedly suffered in past years from some of their malfunctioning updates. I do not write books on MS, nor is it my profession to care for these things, I am just an ordinary private user and player. I do not want to waste hours with patch research every months once the Tuesday of horror has struck again, only to risk a MS infection via some other way once the rig connects to a MS server. So I kicked the unwanted invader named MS out of my life: forever. They will never be let in again, neither via OS nor by any other MS software.

If one goes this way, I recommend to get rid of all Google and Adobe software and antisocial media software as well. MAKE A CLEAR CUT. Say No. Don’t endlessly hope or pray or negotiate.

Reply | Quote

A cute sketch I found & thought I would share.
Upgrade to Windows 10…OR ELSE! (Sketch)
https://youtu.be/sczleh_wmwI

Reply | Quote

I’m not that fanatical, but I certainly understand why you’re p***ed off.

Whatever you do, though, you DO have to install the security patches. Sooner or later, you need the security patches to protect your system.

Reply | Quote

Thank you for sharing your “bucket list,” Deborah!

Needless to say, having a master list is extremely helpful when reinstalling Windows (‘been compiling my own list of do-not-install patches for the past several years…).

Woody’s observation that “the situation can become horrendously complex” is not merely spot-on, but may by some be considered an understatement… .

Regards,

AJ

Reply | Quote

I dual-boot, and it is not necessary for the bootloader (GRUB in my case) to ever see Windows during boot. Widnows does not manage a Linux dual-boot — GRUB does this for both OSes. Windows security is not a Linux issue.

Reply | Quote

Funny stuff… It would be even funnier if it didn’t feel so close to the truth!

Reply | Quote

What does “Give me recommended updates the same way I receive important updates” do?
I have the option “Download updates but let me choose whether to install them” check so that updates are downloaded when I have my computer on. I find that if I have the “Never check for updates” option checked and I do a check manually it takes forever. Now I find that I am getting a yellow shield on my shut down button which says that downloaded updates will be installed before shutdown. I now do not have a choice of which downloaded updates to install as there does not seem to be a way of stopping the install. I would like to check each number before installing.
In a forum post someone has mentioned that if you uncheck “Give me recommended updates the same way I receive important updates” (still have “Download updates but let me choose whether to install them” checked) you will only get security updates downloaded with the yellow warning on the shut down button and no other updates? Is this correct? I am assuming in this case you will have to do a manual check for all other updates? This is really not what I want.
Thank you,
TomS

Reply | Quote

Does the GWX Control Panel work for you if you have left the option “Download but let me choose when to install” checked. I don’t like the idea of running manual checks. It takes DAYS sometimes to check for updates. I know everyone is saying not to install anything but security updates. I don’t know why someone would want to pay for Microsoft Windows OS and Microsoft Office and not want them updated. I find a little conflict here. The answer seems to be for Microsoft not to force these updates on us!
Thank you,
TomS

Reply | Quote

Here is a great list from the following link. I think I had to expand a “spoiler” from Phoenix to get it–

Link at end
===
KB2505438 (Although it claims to fix performance issues, it often breaks fonts)
KB2670838 (The EVIL Update, breaks AERO on Windows 7 and makes some fonts on websites fuzzy, Windows 7 specific update only, do not install IE10 or 11 otherwise it will be bundled with them, IE9 is the max version you should install)
KB2882822 (Very fishy update that just popped up with not enough detail about it)
KB2902907 (Microsoft Security Essentials)
KB2952664 (“Get Windows 10” Assistant)
KB2976978 (Windows 10 Upgrade preparation for Windows 8)
KB2977759 (Windows 10 Upgrade preparation for Windows 7)
KB2990214 (Windows 10 Upgrade preparation for Windows 7)
KB3012973 (Force Trigger Download and Install of Windows 10)
KB3015249 (Adds telemetry points to consent.exe in Windows 7 & Windows 8)
KB3021917 (Windows 10 Upgrade preparation + Telemetry)
KB3022345 (Telemetry)
KB3035583 (GWX Update installs the “Get Windows 10” app in Windows 7 & Windows 8)
KB3042058 (Microsoft claims its a security update but it contains Winlogon Spying)
KB3044374 (Windows 10 Upgrade for Windows 8 systems)
KB3050267 (Windows 10 upgrade preparation but also adds the option in GPEDIT to disable Windows 10 upgrade altogether so you may want to actually install this)
KB3064683 (Windows 10 Upgrade for Windows 8)
KB3065987 (Windows 10 Upgrade for Windows 7)
KB3065988 (Windows 10 Upgrade for Windows 8)
KB3068708 (Telemetry)
KB3072318 (Windows 10 Upgrade preparation for Windows 8)
KB3074677 (Windows 10 Upgrade preparation)
KB3075249 (Telemetry)
KB3075851 (Windows 10 Upgrade for Windows 7)
KB3075853 (Windows 10 Upgrade for Windows 8)
KB3080149 (Telemetry)
KB3081437 (Windows 10 Upgrade preparation)
KB3081454 (Windows 10 Upgrade preparation)
KB3081954 (Telemetry Update for Windows 7)
KB3083324 (Windows 10 Upgrade preparation for Windows 7)
KB3083325 (Windows 10 Upgrade preparation for Windows 8)
KB3083710 (Update for the Windows Update client with sketchy details for Windows 7, see this thread)
KB3083711 (Update for the Windows Update client with sketchy details for Windows 8, see this thread)
KB3086255 (Flagged as an Important update. It disables SafeDisc games in Windows Vista, 7, and 8/8.1)
KB3088195 (Miscorosft Claims it’s a security update but also has a key logger on the Kernel Level)

KB3090045 (Windows 10 Upgrade Update for Windows 7/8)
KB3093983 (Microsoft claims it’s a security update but it contains IE spying)
KB3102810 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 7)
KB3102812 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 8)
KB3107998 (Removes Lenovo USB Blocker)
KB3112336 (Windows 10 Upgrade for Windows 8)
KB3112343 (Windows 10 Upgrade for Windows 7)
KB3123862 (Windows 10 Upgrade for Windows 7 & 8)
KB3135445 (Windows 10 Upgrade for Windows 7)
KB3135449 (Windows 10 Upgrade for Windows 8)
=============================================================
To uninstall all the above updates in one shot rather than looking for any of them if they are installed or not as it can be a daunting task to go through the large list of installed updates, @Ethrem created a great script that does this job. Please make sure to rep him for his hard work. . . .

There was a lot before it on a clean install and more at end. Phoenix adds to the list.

http://forum.notebookreview.com/threads/windows7-8-updates-to-hide-to-prevent-windows-10-upgrade-disable-telemetry.780476/

Reply | Quote

Now THAT is a great list! Thanks.

Reply | Quote

Thank you for the itemized list! Makes it much easier.

Reply | Quote

Presumably, if a dual-boot system includes any MS o/s, the hard drive could still become infected by MS sickware, lieware, spyware, other malware, or generally be open to corruption from fraudsters (personal and corporate). If so, then a person (or business) would need two computers – one or more purely for offline ‘working’ (possibly with an MS o/s) plus one other purely for internet access – and keep the data (and hard drives) totally separate. Then being offline would negate the necessity to ever install any more MS ‘security’ patches. Even if some application s/w is ‘old’ (i.e. not ‘updated’ with all the latest (and usually useless) extra bells and whistles) the MS o/s PC should still run fine if not constantly being nagged and/or corrupted with annoying, unwanted, and unnecessary internet-sourced ‘updates’. MS has just got too big for its boots, IMHO.

Reply | Quote

@Thomas,

Uncheck “Give me recommended updates the same way I receive important updates”.

Change “Download updates but let me choose whether to install them” to –> “Check for updates but let me choose whether to download and install them”. Windows will then auto check for updates and you will be notified that Security Updates are available but they will NOT be atuomatically installed. Then, you can check AskWoody’s site for the All Clear on which Security updates to install and which to avoid.

[When you go to Control Panel and change to “Check for updates but let me choose whether to download and install them” from the dropdown menu…make SURE you click “OK” at the bottom of the page.]

Also, you can install GWX Control Panel V1.7.2 from here…
http://ultimateoutsider.com/downloads/

This approach has been working for me and for many people here. Plus, visiting AskWoody on a regular basis keeps you in the loop about what is going on and what actions need to be taken or avoided.

Reply | Quote

I would like to thank Deborah and Ruth for the lists of Unwanted Updates for Windows 7. Does anybody know whether we Windows 7 Diehards want KB3141092 which came out on 2-13-2016 and KB3092627 which was in the really bad list in Oct. of 2015?
Thanks in advance!
TP

Reply | Quote

kb3173040

Reply | Quote

Hi Woody,
I just got a strange update as it was written April 2012.

Canon-Imaging,other hardware-Canon MG2200 Series
Optional 12.4 MB April 2012
More Information
http://sysdev.microsoft.com/support/default.aspx

http://support.Microsoft.com/select/?target=hub

Do you know anything about this or have any suggestions.
I do have a Canon Printer MG2220.
Thank you,
Tom Spero

Reply | Quote

Yep, it looks like a Canon driver update. I never apply driver updates from Windows Update – if I have a problem with a peripheral, I go to the manufacturer’s site and install the latest driver. If I don’t have a specific problem, I don’t bother.

Reply | Quote

Woody,
I like the new email notification on comments!

Reply | Quote