![]() |
MS-DEFCON 2:
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it.
|
-
2000004: How to apply the Win7 and 8.1 Monthly Rollups
Home › Forums › Knowledge Base › 2000004: How to apply the Win7 and 8.1 Monthly Rollups
- This topic has 45 replies, 11 voices, and was last updated 1 year, 8 months ago.
Viewing 17 reply threads-
AuthorPosts
-
-
May 20, 2017 at 5:39 pm #116993
woody
ManagerAKB 2000004: How to apply the Win7 and 8.1 Monthly Rollups
By @woody
Published 29 July 2017 rev 1.12
For those in “Group A” — the ones who want to use Microsoft’s preferred patching method, and aren’t overly concerned about increased telemetry (which is to say, snooping), here’s how to get your monthly rollup going, without succumbing to Automatic Updating.
For those in “Group A” who want to minimize Microsoft’s snooping but still install all of the offered patches, turn off the Customer Experience Improvement Program before you begin.
Click Start > Control Panel > Action Center. On the left, click the link to Change Action Center settings. Under Related settings, click Customer Experience Improvement Program settings. Choose No, I don’t want to participate in the program. Click Save changes.Step A1: Get your settings right.
In Win7, click Start > Control Panel. In Win 8.1, press Win-X and choose Control Panel. Click System and Security. Under Windows Update, click the link marked “Turn automatic updating on or off.” Make sure Windows Update is set to “Never check for updates (not recommended),” then check the boxes marked “Give me recommended updates the same way I receive important updates” and “Give me updates for Microsoft products and check for new optional Microsoft software when I update Windows.” Click OK.
Step A2: Check for updates.
Back in the Control Panel, under Windows Update, click the link to Check for Updates. (You may have to click Check for Updates a second time.) If you’ve done a Group A run in previous months, the check should go quickly. If it lingers for hours, follow these steps. Don’t check any unchecked boxes. If you have no intention of updating this machine to Win10 in the near future, look for KB 3150513 and make sure it’s unchecked.
Step A3: Get rid of problematic updates.
The list of problematic updates changes every month, so you’ll have to watch the main AskWoody blog page for details. Look for MS-DEFCON posts; they’re clearly marked. In general, if you have no intention of updating this machine to Win10 in the near future, look for KB 3150513 and uncheck the box.
Step A4: Install the patches.
Click the button marked Install Updates and follow the instructions. You’ll end up with the Security Monthly Quality Rollup; all of your Office patches; maybe some .Net patches; Adobe Flash fixes; the Microsoft Security Essentials update; and the usual MSRT scanner. After the reboot, everything will be set to block automatic updates.
Step A5: Wash, rinse, repeat.
Go through Steps A2 to A4 again, to see if Windows Update picked up any new patches. Repeat until there aren’t any more additional patches. When you’re done, you’re done, but be sure to watch this site next month to see when the unpaid beta testers are done.
You have to update your Windows computer. But you don’t have to update it according to Microsoft’s timetable.
-
May 20, 2017 at 6:54 pm #117019
MrBrian
AskWoody_MVPWhat is KB3010513?
Also, after completing step A4, I recommend to keep repeating steps A2 to A4 until there are no ticked by default updates remaining after step A3.
1 user thanked author for this post.
-
May 21, 2017 at 3:18 pm #117263
-
May 21, 2017 at 3:36 pm #117268
ch100
AskWoody_MVPAs far as I know, there is no need to avoid KB 3150513.
KB3150513 does not have any meaning and it cannot be installed on Windows 7 and 8.1 without KB2952664/KB2976978 as pre-requisite. It can be installed on Windows 10 and 2016 because the pre-requisite is already built-in.
I think we are wasting time with non-sense trying to analyse various patches instead of recommending end-users how to tune and use their computers at their maximum potential.-
July 3, 2018 at 6:35 pm #201199
cesmart4125
AskWoody PlusOne time I didn’t follow Ms. Susan’s advice, and I wound up with no audio. Simply uninstalling the patch and going back to an earlier restore point didn’t fix the problem. Unfortunately, I didn’t understand how to use Macrium Reflect and hadn’t used it beforehand.
Attachments:
You must be logged in to access attached files.
-
-
-
May 22, 2017 at 9:07 am #117583
MrToad28
AskWoody LoungerPlease explain advantage of this “turn off automatic updates” method over “check for updates but let me choose whether to download and install them” option.
I’ve never had an update install without my having initiated it using the “check for updates…let me choose” option. Am I missing something?
1 user thanked author for this post.
-
May 22, 2017 at 11:34 am #117628
AlexN
AskWoody LoungerMostly, it saps your computers performance heavily. But it also will eventually auto-install the updates whether you like it or not.
Fortran, C++, R, Python, Java, Matlab, HTML, CSS, etc.... coding is fun!
A weatherman that can code4 users thanked author for this post.
-
May 23, 2017 at 5:17 pm #117914
MrToad28
AskWoody LoungerPrior to the May patches…or more specifically the May .net patch, I wasn’t experiencing system drag, but after that .Net patch CPU cycles went way high…40-50% on several Win7-64 pc’s.
The primary culprit seems to be trusteninstaller.exe I stopped it and then switched to “Never check..” and that seems to have halted the CPU overrun.
-
May 23, 2017 at 5:28 pm #117915
PKCano
ManagerThe primary culprit seems to be trusteninstaller.exe
trustedinstaller.exe is the installer for Windows Update. It sometimes runs high CPU for as much as 10 minutes after update/reboot to complete the install process.
3 users thanked author for this post.
-
-
-
-
May 22, 2017 at 9:15 am #117585
MrToad28
AskWoody LoungerI would add the following cautious options:
If you have multiple similar PC’s with similar configurations, patch the least important one first it see if anything specific to your boxes doesn’t play well with the current patch.
Create one or more restore points before patching.
Apply major patches…the security roll-up and the .net roll-up separately and create a restore point in between.
1 user thanked author for this post.
-
May 22, 2017 at 11:44 am #117634
Marty
AskWoody PlusI’ve been in Group A for several months, but I have never understood the rationale for accepting ““Give me recommended updates the same way I receive important updates”. I do not check that box, since I don’t want anything but the updates that are designated as “important”. And having followed this procedure for several months, the list of optional/recommended updates has remained, without any of them having been installed.
-
May 22, 2017 at 11:57 am #117640
PKCano
Manager-
May 15, 2019 at 11:15 am #1628321
Myst
AskWoody LoungerI’m in the same category then, in between GrpA/B because I have always avoided receiving Recommended Updates the same as Important. In this month’s patching process should I switch back, and as noted by Woody to receive all Recommended Updates the same as Important? Thanks
Win7 Home x64 MacOS Chromebook
-
May 15, 2019 at 11:22 am #1628329
-
-
-
-
May 22, 2017 at 1:16 pm #117654
MrToad28
AskWoody Lounger-
May 22, 2017 at 1:18 pm #117655
-
-
May 22, 2017 at 7:52 pm #117770
rb
AskWoody LoungerDummie here and hoping to get some help.
I’m stuck at step one. Not sure when it happened (I suspect it’s when I installed GWX Control Panel back when; it’s since been uninstalled), but I’m not able to change my WU setting to “don’t check”; it’s stuck on “check but let me choose” and any option to change it is grayed out.
Just read from AlexN above that this setting saps my computer’s performance. Could this be a reason why my fan revs so much? That noise irks me to no end.
I believe the settings issue has been addressed before, so I apologize for returning to it, but I missed the solution, or if there is one.
Many thanks for the wealth of knowledge shared here.
-
May 23, 2017 at 6:11 pm #117916
BrianL
AskWoody Lounger@ PKCano Do I get rid of Trusted Installer, or just find a way to disable it? My Windows update settings have been stuck on “Don’t download or install without permission” and it is grayed out. I can check or un-check the boxes below the selection bar….. In picking the change settings, that is where this is. It has been grayed out since I had the severe blue screen problem on the first of Dec 2016. The computer was cleaned and the original OS was reinstalled. It stopped running correctly again last of March. I used “safe Mode” and changed out of “raid” and checked ‘OK’ and rebooted; blue screen gone and windows came right up. But update setting was still grayed. After reinstall, using RAID, I could not even ask it to look for updates. After changing out of RAID, even with change setting grayed I could look for updates and they would come in. I didn’t loose any files.
-
May 23, 2017 at 6:35 pm #117922
PKCano
ManagerDo I get rid of Trusted Installer
TrustedInstaller.exe is the installer for Windows Update. You definitely DON’T want to get rid of it.
RAID is sometimes the default BIOS setting (older PCs). I’ve been caught by that myself a couple of time too.
It has been grayed out since I had the severe blue screen problem on the first of Dec 2016
Did you have GWX Control Panel on your computer before the blue screen. It blocked the settings so GWX wouldn’t change it to Auto and install Win10. There is a Registry setting I think will fix it. If you’re not familiar with the Registry, get someone who is to help you. I think 5 may be what you want.
1) Hold WindowsKey + R
(is hold Start & press R on your keyboard)2) Type: “regedit”
Hit Enter3) Go to:
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AUFind AUOptions.
Double Click AUOptions or Right Click Modify> You can change the values data from 1 through 5 <
1. Install updates automatically (recommended)
2. Download updates but let me choose whether to install them
3. Check for updates but let me choose whether to download and install them
4. Install updates automatically / Never Check For Updates
5. Enable the option box to choose manually
Edit to correct numbering-
May 24, 2017 at 6:16 pm #118050
rb
AskWoody Lounger@PKCano Thank you! Such a simple solution to my problem as well! However, when I changed the value to 5 (enable me to choose option manually), back at the Windows Update Settings page, there were only 3 options to choose from: install updates automatically; download but let me choose; check for updates but let me choose..; NO option to “Never check for updates” listed.
Since the GWX campaign ended and with it my GWX Control Panel, I’ve been in group B. However, seeing that Woody’s recommending those of us with limited computer experience/knowledge to move to Group A, I don’t really understand why it’s best to enable “Never Check for updates”.
Question: On the list of values you provide above for the AUOptions, how would I set it to 4 “Never Check for Updates” vs 4 “Install Updates Automatically”? Is there a toggle button or something that will make it clear what I’ve chosen?
1 user thanked author for this post.
-
-
-
May 24, 2017 at 10:07 am #117995
BrianL
AskWoody Lounger@ PKCano I have regedit on my bar at bottom of screen along with services, for easy access. I have fiddled with both and am somewhat acquainted with them. Am going to try your suggestions in the next hour. ALSO, I downloaded “WireShark”, but haven’t used it yet. Also downloaded “MS Malicious Software Removal Tool”. So far entering a software screen or web page or changing screens is a little slower than before and but changing within screens is fast as ever.
-
May 24, 2017 at 10:42 am #117996
-
May 25, 2017 at 8:10 am #118106
-
May 27, 2017 at 10:16 am #118322
BrianL
AskWoody Lounger@ PKCano Question? In the windows update settings I have no Red label. In other words the box with “Never check for updates” is not there. The other boxes are. As per your advice I went into regedit and found the correct line and change it to 5. That gave me a choice that was available before. as I had no choices before. I think that back in November/December 2016 I had a collapse of my Windows 7 SP1 x64, the Computer
Sepecialist that I had reinstall the original OS did as I instructed (I don’t want to install any updates from MS anymore). Could this have causes the update acquiring problem?-
May 27, 2017 at 10:35 am #118325
-
-
July 30, 2017 at 7:07 am #127142
MrBrian
AskWoody_MVP-
July 30, 2017 at 8:45 am #127152
PKCano
Manager-
July 30, 2017 at 10:56 am #127166
MrBrian
AskWoody_MVP-
July 30, 2017 at 4:19 pm #127219
ch100
AskWoody_MVPI think this has more to do with uninstalling in the correct order if the patches got installed or if there is a change of mind.
People should be aware that the installation order is KB2952664 and next KB3150513, while for uninstalling, it should be quite the opposite, first KB3150513 (all patches if multiple) and next KB2952664 (again, all patches, if multiple).
-
-
-
-
July 30, 2017 at 11:02 am #127168
MrBrian
AskWoody_MVPRecommendation: Add a step at the end (for those that care about telemetry) linking to 2000007: Turning off the worst Windows 7 and 8.1 snooping.
-
July 30, 2017 at 11:32 am #127176
PKCano
Manager-
July 30, 2017 at 12:01 pm #127183
MrBrian
AskWoody_MVP-
July 30, 2017 at 12:25 pm #127189
MrBrian
AskWoody_MVP-
July 30, 2017 at 12:48 pm #127193
PKCano
ManagerGroup A people are not inclined to the complexities of removing telemetry in detail. Turning off CEIP can be done easily through the GUI and I believe is sufficient for people who “aren’t overly concerned about increased telemetry” as the topic states.
I am not inclined to make it overly complicated for this group (unless there is overwhelming consensus to do so).
-
July 30, 2017 at 3:25 pm #127215
ch100
AskWoody_MVPError Reporting which I mentioned is in the same class.
In Windows 10 can only be turned off via Group Policy or by direct editing of the registry.
In Windows 7 and 8.1 it can be configured in GUI.
It tends to record and send more relevant data back to Microsoft than CEIP, but I turn it off for reasons of space wasted and performance.1 user thanked author for this post.
-
-
-
-
-
October 14, 2017 at 11:09 am #137451
MrBrian
AskWoody_MVP2 users thanked author for this post.
-
December 8, 2017 at 9:40 am #150835
BrianL
AskWoody Lounger-
December 8, 2017 at 12:33 pm #150873
woody
ManagerThe fan may well be the problem, but don’t use a vacuum cleaner to remove the dust.
There’s a good overview from Rudolph Zorn here:
https://superuser.com/questions/1098813/cleaning-laptop-fan-with-a-vacuum-cleaner
-
-
May 26, 2018 at 12:57 pm #194572
cesmart4125
AskWoody PlusPatch Watch may have been like this previously; however, I didn’t notice it. For kb 4103718, it says this is the monthly roll up and there have been networking issues. There’s no mention of kb4103718 being safe to install. A similar situation exists for kb4099633 and the updates for Office 2010.
Should I wait until next weekend to install May’s updates? Thanks in advance for your advice.
Win 7 32 bit SP1, Office 2010 SP2, Intel Core 2 Duo @ 1.80 GHz, 4.0 GB RAM
Attachments:
You must be logged in to access attached files.
1 user thanked author for this post.
-
May 26, 2018 at 1:13 pm #194576
PKCano
ManagerThe Master Patch List (see button at top of blog home page) is a guide to whether the patches have problems (or not).
The DEFCON number at the top of the page is a guide to patching. When Woody raises the DEFCON mumber to 3 or above, he also publishes an article in ComputerWorld that contains the cautions and instructions for updating safely.
3 users thanked author for this post.
-
-
-
AuthorPosts
Viewing 17 reply threads -
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments. Click here for details and to sign up.
Search The Lounge
Recent Replies
Kirsty on Need a Great Rules Add-in for Outlook 2019
36 minutes agoKirsty on Extra USB Sound driver?
54 minutes agoNuyorker on Mouse settings NOT preserved after reboot
1 hour, 43 minutes agocybercrone on What Linux is and why it has persisted
2 hours, 1 minute agoanonymous on Adobe Flash Not working for School test
2 hours, 15 minutes agoOscarCP on What Linux is and why it has persisted
2 hours, 24 minutes agoWSArthurR on What Linux is and why it has persisted
2 hours, 46 minutes agoOscarCP on Apple to block sideloading iOS apps on M1
3 hours, 5 minutes agocybercrone on What Linux is and why it has persisted
3 hours, 14 minutes agoDaveH52 on Doesn’t like external FAT32 HDD
3 hours, 18 minutes agodmitriy1980 on Hard Drive at 100% usage
3 hours, 42 minutes agoAscaris on What Linux is and why it has persisted
3 hours, 51 minutes agoNathan Parker on Apple to block sideloading iOS apps on M1
4 hours, 7 minutes agoanonymous on Susan recommending version 2004
4 hours, 11 minutes agoMHCLV941 on What Linux is and why it has persisted
4 hours, 11 minutes agoOscarCP on Minor Lounge Button Tweaks
4 hours, 33 minutes agoMoonshine on Image Backup / Portable Hard Drive
4 hours, 38 minutes agohms on Susan recommending version 2004
4 hours, 51 minutes agoPKCano on Win 10 2004 still not ready for my device
4 hours, 52 minutes agoPepsiboy on Giving you the choice
4 hours, 54 minutes agoOscarCP on What Linux is and why it has persisted
5 hours, 3 minutes agoturbo930-44 on Win 10 2004 still not ready for my device
5 hours, 6 minutes agosatrow on Hard Drive at 100% usage
5 hours, 23 minutes agoanonymous on PNY Flash Drive Problem
5 hours, 30 minutes agoPKCano on Susan recommending version 2004
5 hours, 34 minutes agoPKCano on Susan recommending version 2004
5 hours, 43 minutes agoanonymous on Find the cable modem that’s just right for your ISP
5 hours, 51 minutes agoAlexEiffel on What Linux is and why it has persisted
5 hours, 54 minutes agoPKCano on Windows 10 2004/20H2 Not Being Offered Due to Conexant HD Audio Issue
5 hours, 59 minutes agoanonymous on Windows 10 2004/20H2 Not Being Offered Due to Conexant HD Audio Issue
6 hours, 2 minutes ago
Recent Topics
-
Extra USB Sound driver?
55 minutes ago
-
PNY Flash Drive Problem
7 hours, 27 minutes ago
-
Windows 10 bug crashes your PC when you access this location
11 hours, 12 minutes ago
-
Doesn’t like external FAT32 HDD
3 hours, 19 minutes ago
-
Why won’t Task Scheduler launch Office product
8 hours, 16 minutes ago
-
Susan recommending version 2004
4 hours, 52 minutes ago
-
Replace Images for Text in Word
13 hours, 14 minutes ago
-
Windows 10 internet connection freezes
11 hours, 48 minutes ago
-
Windows Defender In Win 10 Concern
7 hours, 10 minutes ago
-
Laptop with home and work networks
13 hours, 56 minutes ago
-
Top 40+ iOS 14 Tips and Tricks
19 hours, 7 minutes ago
-
What Linux is and why it has persisted
2 hours, 2 minutes ago
-
Find the cable modem that’s just right for your ISP
5 hours, 52 minutes ago
-
Four GB of RAM vanishes … but then reappears
11 hours, 10 minutes ago
-
Wow! Even more Office updates!
9 hours, 12 minutes ago
-
Hard Drive at 100% usage
3 hours, 42 minutes ago
-
Checking e-mail attachments with VirusTotal
1 day, 8 hours ago
-
Giving you the choice
4 hours, 55 minutes ago
-
outlook 365 emails not queueing
15 hours, 31 minutes ago
-
Need a Great Rules Add-in for Outlook 2019
37 minutes ago
-
Mouse settings NOT preserved after reboot
1 hour, 44 minutes ago
-
Apple News Wrap Up: January 17, 2021
1 day, 12 hours ago
-
Tasks for the weekend – January 16, 2021
1 day, 19 hours ago
-
Use Word to Create Awesome Signs
2 days, 3 hours ago
-
Zero day Windows 10 bug
1 day, 6 hours ago
-
KB4598242 fails to install, in rollback loop 2021-01 cum upate
1 day, 8 hours ago
-
Updates paused but not?
1 day, 10 hours ago
-
Security update for Secure Boot DBX can be skipped (KB4535680)
1 day, 13 hours ago
-
Copying Folder Names Into Excel
1 day, 7 hours ago
-
The iPhone Companion
2 days, 18 hours ago
Search for Topics
Recent blog posts
- What Linux is and why it has persisted
- Find the cable modem that’s just right for your ISP
- Four GB of RAM vanishes … but then reappears
- Wow! Even more Office updates!
- Giving you the choice
- Tasks for the weekend – January 16, 2021
- Zero day Windows 10 bug
- Security update for Secure Boot DBX can be skipped (KB4535680)
Key Links
Copyright © 2004 – 2021 AskWoody Tech LLC. All rights reserved.