News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Unwanted updates for Windows 7

    Posted on February 14th, 2016 at 17:53 woody Comment on the AskWoody Lounge

    I’ve received many variations on this request over the past few weeks:

    Hi Woody, I hope you are well. With all the knowledge you have of the Windows Updates, can you provide me a complete list of Updates to avoid in Windows 7 so not to end up with W10? It would be VERY much appreciated!
    Thanks, TP
    A list of “good” patches would be several hundred entries long, and vary depending on all sorts of things.
    Your best bet right now is to follow my advice on, and only install patches with “Security update” in the name.
    When you’re done, download and run GWX Control Panel.
    Depending on how long it’s been since you last installed Windows 7 patches, you’ll probably be OK. If you haven’t patched for several months, you need to get right on it. Don’t skip the security patches.
    If that helped, take a second to support AskWoody on Patreon

    Home Forums Unwanted updates for Windows 7

    This topic contains 28 replies, has 4 voices, and was last updated by  Deborah 2 years ago.

    • Author
    • #47252 Reply

      Da Boss

      I’ve received many variations on this request over the past few weeks: Hi Woody, I hope you are well. With all the knowledge you have of the Windows U
      [See the full post at: Unwanted updates for Windows 7]

    • #47253 Reply


      @TP, avoid these:


      I’ve been adding to this list every month.

    • #47254 Reply


      Thank you for the list, Deborah

    • #47255 Reply

      Richard Allen

      @Deborah Wow! Excellent job! I’ll have to make a note of these.

      This is the list that I’ve been using to avoid the W10 upgrade on my computers and for family and friends. So far… not a whisper of W10. I did install GWX Contol Panel in January to verify that nothing is lurking in my system and it’s clean.
      2952664, 2976978, 2977759, 3022345, 3035583, 3068708, 3075249, 3080149, 3112343, 3123862, 3135445

    • #47256 Reply


      Is it recommended that GWX Control Panel’s monitoring mode is enabled or disabled during the actual installation of Windows Updates?

      In other words, is there a risk of it interfering with the installation of updates so that is better to install them without monitoring and then run the program afterwards, or is it safe and more effective to monitor them during the installation of updates?

    • #47257 Reply


      Deborah, thank you very much for sharing your list.

    • #47258 Reply


      “Updates to avoid in Windows 7 so not to end up with W10” why list a bunch of updates that have nothing to do with Windows 10? Look in this thread instead

    • #47259 Reply

      AskWoody Lounger

      I have 8 updates that I got last black Tuesday that are marked important and have security update in the name. Should I go ahead and update them now or wait until you give us the word later in the month to do the updates.
      I have Windows 7 OS.

    • #47260 Reply

      Da Boss

      Wait. There are no current patches with known exploits in the wild. Still too early to tell if any have problems.

    • #47261 Reply

      Da Boss

      Some people like to disable (or not install) patches that are associated with Microsoft snooping. I’ve never been able to tell, for sure, which patches add to the snooping problem. Other patches change Windows Update Services to make it easier to install Windows 10. I don’t have any sympathy for those patches, but have never gone out and zapped them.

      The really lousy point is that Microsoft hasn’t given us any real bug fixes in a year – or at least, none that I can discern. All of the non-security patches in the last year or so, best I can tell, serve Microsoft’s purpose, not our best interests. That’s why I now recommend that people simply not install non-security patches.

      Going back and culling useless patches is an interesting exercise, but not one I’d recommend for people who have other things to do. Instead, if you don’t want Windows 10, just run GWX Control Panel. Much simpler, and quite effective.

      Note: The situation can become horrendously complex.

    • #47262 Reply

      Da Boss

      No risk at all. Keep it running.

    • #47263 Reply


      My advise – which I followed myself when reinstalling 3 months ago – is to download a patch archive for W7. These one can find with varying dates at which the last updates were added. My end date for patches was October last year, it probably is better to move back a bit more, to Spring last year.

      What yoi8u have when downloading such an archive is all W7 updates from beginning to end date of the archive. You can then switch off any KB numbers that you want to switch off, via a list (I maintain such a list, too). Then install the remaining patches. You then have your Windows 7 patched to status “end date of archive”, minus the switched off KB-numbers.

      AND THEN TURN OFF Windows update completely. Never patch again. Also turn off all background services you can find and identify that connect to Windows servers. The service that logs to MS when you boot the system, the clock synchronization, and so forth.

      Be aware that you need to adapt in any way you see fit to the fact that your W7’S security holes that get revealed in the future – since the end date of your used patch archive – will not be closed. You must adapt to that. Best by not working under Windows 7 at all, only using it as a launching platform for any software you need/want and that can only be run under Windows. For anything else, whatever it is: go to a dual boot system, a separate system, whatever: an alternative OS. Also, maintain tip top defences via traditional payware security suite, MBAM, Spybot Immunization under Windows 7. This does not give you total security again, but it reduces the chance of your old W7 getting hit by something. Its all about probabilities, and how to reduce the unwanted ones a bit more. You can then also additionally install GWX Control, Panel. It should not be needed if not patching Windows anymore, but it cannot hurt either, can it.

      I did like this myself when I once realised what a hilarious amount of time it costed me per month to fight against MS’ malware attacks just to stay in command of my own property: my computer, and I also repeatedly suffered in past years from some of their malfunctioning updates. I do not write books on MS, nor is it my profession to care for these things, I am just an ordinary private user and player. I do not want to waste hours with patch research every months once the Tuesday of horror has struck again, only to risk a MS infection via some other way once the rig connects to a MS server. So I kicked the unwanted invader named MS out of my life: forever. They will never be let in again, neither via OS nor by any other MS software.

      If one goes this way, I recommend to get rid of all Google and Adobe software and antisocial media software as well. MAKE A CLEAR CUT. Say No. Don’t endlessly hope or pray or negotiate.

    • #47264 Reply


      A cute sketch I found & thought I would share.
      Upgrade to Windows 10…OR ELSE! (Sketch)

    • #47265 Reply

      Da Boss

      I’m not that fanatical, but I certainly understand why you’re p***ed off.

      Whatever you do, though, you DO have to install the security patches. Sooner or later, you need the security patches to protect your system.

    • #47266 Reply

      AJ North

      Thank you for sharing your “bucket list,” Deborah!

      Needless to say, having a master list is extremely helpful when reinstalling Windows (‘been compiling my own list of do-not-install patches for the past several years…).

      Woody’s observation that “the situation can become horrendously complex” is not merely spot-on, but may by some be considered an understatement… .



    • #47267 Reply

      rc primak

      I dual-boot, and it is not necessary for the bootloader (GRUB in my case) to ever see Windows during boot. Widnows does not manage a Linux dual-boot — GRUB does this for both OSes. Windows security is not a Linux issue.

    • #47268 Reply

      AskWoody Lounger

      Funny stuff… It would be even funnier if it didn’t feel so close to the truth!

    • #47269 Reply

      Thomas Spero

      What does “Give me recommended updates the same way I receive important updates” do?
      I have the option “Download updates but let me choose whether to install them” check so that updates are downloaded when I have my computer on. I find that if I have the “Never check for updates” option checked and I do a check manually it takes forever. Now I find that I am getting a yellow shield on my shut down button which says that downloaded updates will be installed before shutdown. I now do not have a choice of which downloaded updates to install as there does not seem to be a way of stopping the install. I would like to check each number before installing.
      In a forum post someone has mentioned that if you uncheck “Give me recommended updates the same way I receive important updates” (still have “Download updates but let me choose whether to install them” checked) you will only get security updates downloaded with the yellow warning on the shut down button and no other updates? Is this correct? I am assuming in this case you will have to do a manual check for all other updates? This is really not what I want.
      Thank you,

    • #47270 Reply

      Thomas Spero

      Does the GWX Control Panel work for you if you have left the option “Download but let me choose when to install” checked. I don’t like the idea of running manual checks. It takes DAYS sometimes to check for updates. I know everyone is saying not to install anything but security updates. I don’t know why someone would want to pay for Microsoft Windows OS and Microsoft Office and not want them updated. I find a little conflict here. The answer seems to be for Microsoft not to force these updates on us!
      Thank you,

    • #47271 Reply


      Here is a great list from the following link. I think I had to expand a “spoiler” from Phoenix to get it–

      Link at end
      KB2505438 (Although it claims to fix performance issues, it often breaks fonts)
      KB2670838 (The EVIL Update, breaks AERO on Windows 7 and makes some fonts on websites fuzzy, Windows 7 specific update only, do not install IE10 or 11 otherwise it will be bundled with them, IE9 is the max version you should install)
      KB2882822 (Very fishy update that just popped up with not enough detail about it)
      KB2902907 (Microsoft Security Essentials)
      KB2952664 (“Get Windows 10” Assistant)
      KB2976978 (Windows 10 Upgrade preparation for Windows 8)
      KB2977759 (Windows 10 Upgrade preparation for Windows 7)
      KB2990214 (Windows 10 Upgrade preparation for Windows 7)
      KB3012973 (Force Trigger Download and Install of Windows 10)
      KB3015249 (Adds telemetry points to consent.exe in Windows 7 & Windows 8)
      KB3021917 (Windows 10 Upgrade preparation + Telemetry)
      KB3022345 (Telemetry)
      KB3035583 (GWX Update installs the “Get Windows 10” app in Windows 7 & Windows 8)
      KB3042058 (Microsoft claims its a security update but it contains Winlogon Spying)
      KB3044374 (Windows 10 Upgrade for Windows 8 systems)
      KB3050267 (Windows 10 upgrade preparation but also adds the option in GPEDIT to disable Windows 10 upgrade altogether so you may want to actually install this)
      KB3064683 (Windows 10 Upgrade for Windows 8)
      KB3065987 (Windows 10 Upgrade for Windows 7)
      KB3065988 (Windows 10 Upgrade for Windows 8)
      KB3068708 (Telemetry)
      KB3072318 (Windows 10 Upgrade preparation for Windows 8)
      KB3074677 (Windows 10 Upgrade preparation)
      KB3075249 (Telemetry)
      KB3075851 (Windows 10 Upgrade for Windows 7)
      KB3075853 (Windows 10 Upgrade for Windows 8)
      KB3080149 (Telemetry)
      KB3081437 (Windows 10 Upgrade preparation)
      KB3081454 (Windows 10 Upgrade preparation)
      KB3081954 (Telemetry Update for Windows 7)
      KB3083324 (Windows 10 Upgrade preparation for Windows 7)
      KB3083325 (Windows 10 Upgrade preparation for Windows 8)
      KB3083710 (Update for the Windows Update client with sketchy details for Windows 7, see this thread)
      KB3083711 (Update for the Windows Update client with sketchy details for Windows 8, see this thread)
      KB3086255 (Flagged as an Important update. It disables SafeDisc games in Windows Vista, 7, and 8/8.1)
      KB3088195 (Miscorosft Claims it’s a security update but also has a key logger on the Kernel Level)

      KB3090045 (Windows 10 Upgrade Update for Windows 7/8)
      KB3093983 (Microsoft claims it’s a security update but it contains IE spying)
      KB3102810 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 7)
      KB3102812 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 8)
      KB3107998 (Removes Lenovo USB Blocker)
      KB3112336 (Windows 10 Upgrade for Windows 8)
      KB3112343 (Windows 10 Upgrade for Windows 7)
      KB3123862 (Windows 10 Upgrade for Windows 7 & 8)
      KB3135445 (Windows 10 Upgrade for Windows 7)
      KB3135449 (Windows 10 Upgrade for Windows 8)
      To uninstall all the above updates in one shot rather than looking for any of them if they are installed or not as it can be a daunting task to go through the large list of installed updates, @Ethrem created a great script that does this job. Please make sure to rep him for his hard work. . . .

      There was a lot before it on a clean install and more at end. Phoenix adds to the list.

    • #47272 Reply

      Da Boss

      Now THAT is a great list! Thanks.

    • #47273 Reply


      Thank you for the itemized list! Makes it much easier.

    • #47274 Reply


      Presumably, if a dual-boot system includes any MS o/s, the hard drive could still become infected by MS sickware, lieware, spyware, other malware, or generally be open to corruption from fraudsters (personal and corporate). If so, then a person (or business) would need two computers – one or more purely for offline ‘working’ (possibly with an MS o/s) plus one other purely for internet access – and keep the data (and hard drives) totally separate. Then being offline would negate the necessity to ever install any more MS ‘security’ patches. Even if some application s/w is ‘old’ (i.e. not ‘updated’ with all the latest (and usually useless) extra bells and whistles) the MS o/s PC should still run fine if not constantly being nagged and/or corrupted with annoying, unwanted, and unnecessary internet-sourced ‘updates’. MS has just got too big for its boots, IMHO.

    • #47275 Reply



      Uncheck “Give me recommended updates the same way I receive important updates”.

      Change “Download updates but let me choose whether to install them” to –> “Check for updates but let me choose whether to download and install them”. Windows will then auto check for updates and you will be notified that Security Updates are available but they will NOT be atuomatically installed. Then, you can check AskWoody’s site for the All Clear on which Security updates to install and which to avoid.

      [When you go to Control Panel and change to “Check for updates but let me choose whether to download and install them” from the dropdown menu…make SURE you click “OK” at the bottom of the page.]

      Also, you can install GWX Control Panel V1.7.2 from here…

      This approach has been working for me and for many people here. Plus, visiting AskWoody on a regular basis keeps you in the loop about what is going on and what actions need to be taken or avoided.

    • #47276 Reply


      I would like to thank Deborah and Ruth for the lists of Unwanted Updates for Windows 7. Does anybody know whether we Windows 7 Diehards want KB3141092 which came out on 2-13-2016 and KB3092627 which was in the really bad list in Oct. of 2015?
      Thanks in advance!

    • #47277 Reply



    • #47278 Reply

      Thomas Spero

      Hi Woody,
      I just got a strange update as it was written April 2012.

      Canon-Imaging,other hardware-Canon MG2200 Series
      Optional 12.4 MB April 2012
      More Information

      Do you know anything about this or have any suggestions.
      I do have a Canon Printer MG2220.
      Thank you,
      Tom Spero

    • #47279 Reply

      Da Boss

      Yep, it looks like a Canon driver update. I never apply driver updates from Windows Update – if I have a problem with a peripheral, I go to the manufacturer’s site and install the latest driver. If I don’t have a specific problem, I don’t bother.

    • #47280 Reply

      Thomas Spero

      I like the new email notification on comments!

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Unwanted updates for Windows 7

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.

    Your information: