News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Caution updating Win7 if you have an ASUS motherboard and get a “Secure Boot Violation” warning

    Posted on September 7th, 2019 at 16:09 woody Comment on the AskWoody Lounge

    Poster @Charlie has questions about ASUS motherboards and the August Win7 Monthly Rollup:

    I was all set to go ahead with the August Updates when I read about this apparent problem that KB3133977 has with ASUS motherboards, and that stopped me dead in my tracks!  I have an ASUS P8H61-MLE CSM, H61 B3 chipset motherboard of around 2012 vintage and it has an EFI BIOS, but not UEFI.  I do not already have KB3133977 and according to what I see will need to install it (maybe).

    Just to refresh your memory, KB 3133977 caused all sorts of havoc when it was released in May of 2016. I wrote an article about it in Computerworld at the time. I’m not at all sure if the ghost from more than two years ago is still haunting Win7 Monthly Rollups.

    @PKCano has an answer:

    For those with ASUS motherboards considering KB3133977:

    It would seem that ASUS implemented “Safe Boot” on some Win7 machines, when Win7 doesn’t support Safe Boot, by altering the BIOS.

    There are instructions on the ASUS website (thank you, @samak ) here to deal with the situation:
    https://www.asus.com/support/FAQ/1016356/

    If you have an ASUS motherboard, and Safe Boot is implemented, it looks there are three options:
    Either
    Make the modification in the BIOS so you can install KB3133977
    OR
    Not install KB3133977 and just install the August patch.
    OR
    Do not install either patch and wait for further instructions.

    Anybody out there have more recent info?

    UPDATE: @Sinclair has a related question:

    What I am trying to get sorted is can you install the August and future patches on a non UEFI motherboard without installing the Bitlocker patch. Does the August patch not alter your boot files if the Bitlocker patch is not installed on a non UEFI system? Does it even matter if it is a non UEFI system or not when it comes to the boot files? Because it would really suck if so short before Windows 7 goes out of patching. I end up with a system that can not use any old repair tool to fix it if it ever has harddisk problems.

    That is why it is so complex. I have not seen anyone say yeah your fine the new boot files can be seen by old tools. Or yeah no worries nothing is altered on a non UEFI motherboard.