Patch Tuesday is rolling out

Topic

New Reply

There’s a whole bunch of updates in Computerworld Woody on Windows

[See the full post at: Patch Tuesday is rolling out]

7 users thanked author for this post.

JDeC, SueW, Elly, walker, NetDef, MrBrian, AJNorth

Reply | Quote

Replies

AKB2000003 has been updated for Group B Security-only patches

12 users thanked author for this post.

woody, Noel Carboni, JDeC, SueW, Elly, Pepsiboy, The Surfing Pensioner, NetDef, Bill C., radosuaf, AJNorth, amraybt

Reply | Quote

Is there a caching problem on the homepage or something? The most recent post i see is the security advisory about DDEAUTO fandango, dated november 8th. I’ve tried ctrl+f5 and cleared askwoody.com from search history but still the same. I can see all the newer posts in the rss feed though. Anyone else seeing the same thing?

-T

Reply | Quote

Not seeing the problem here on Firefox

Reply | Quote

Hmmm strange, i’m using firefox 56.0.2 (not going anywhere near 57 yet without noscript). Also get the same result in palemoon 27.6.0. Who knows! The rss feed is fine.

-T

Reply | Quote

I’m also having the same issue – last posting concerning DDEAUTO – using IE11 11.0.9600.18816, FireFox 56.0.2, FireFox 57.0 (just updated) and iPad iOS 11.1.  When I google AskWoody or click on the “Home” tab on the AskWoody website from any forum page, the latest entries I get posted are from Nov 8 as are the recent post listings on the right side of the page.  The calendar also shows that the last postings made were on Nov 8 (Nov 8 is the last date underlined).  When I click on “Oct” on the calendar and then click on “Nov” on the calendar, the blog entries are all updated to today, Nov 14, and all recent posting dates are underlined.  Maybe, my ISP/DNS provider in Alaska is somehow filtering current content ???

Reply | Quote

Had this problem on Edge on W10M. Chrome on W10 is fine.

Fractal Design Pop Air * Thermaltake Toughpower GF3 750W * ASUS TUF GAMING B560M-PLUS * Intel Core i9-11900K * 4 x 8 GB G.Skill Aegis DDR4 3600 MHz CL16 * ASRock RX 6800 XT Phantom Gaming 16GB OC * XPG GAMMIX S70 BLADE 1TB * SanDisk Ultra 3D 1TB * Samsung EVO 840 250GB * DVD RW Lite-ON iHAS 124 * Windows 10 Pro 22H2 64-bit Insider * Windows 11 Pro Beta Insider

Reply | Quote

I noticed recently that this happens when I am not logged in to this site.

2 users thanked author for this post.

walker, woody

Reply | Quote

Seeing same on FF 57 and IE even after flushing cache. If logged in everything seems to work albeit slow.

1 user thanked author for this post.

woody

Reply | Quote

I’m also using Firefox and can see nothing after 8th November unless I log in. Then, and only then, do I get sight of more recent posts. But there is a delay of several minutes between clicking on anything and being able to see comments or enter text. The process is extremely cumbersome at the moment.

2 users thanked author for this post.

walker, woody

Reply | Quote

@The Surfing Pensioner:    I have seen this behavior numerous times during the past weeks.  It is very frustrating to put it mildly.   Don’t know the reason, it just “started one day”, and continued on and off.  It slows everything down as there are so many users who are having the same problem.   Hope that the cause can be located and eliminated.  When it’s in this behavior mode, it slows everything down to a crawl.    🙁

Reply | Quote

Adding another data point. I am experiencing odd site behavior as well. Very slow to load pages and comment sections. Also, my login status at the top/right of the screen disappeared though clearly I am logged in. I didn’t have problems seeing new posts, though. I am using Slimjet (Chromium) as my browser. This issue started, I don’t know, a few days ago at least. I didn’t think much of it since this site never really works right anymore.

I don’t know if this matters, but I am never “signed in” to the browser nor have I ever seen the need to be. It has never been a problem before.

After editing my post and clicking “Submit”, I got an error saying “www.askwoody.com is unreachable.” with this error: ERR_SSL_VERSION_INTERFERENCE

Hope this helps.

Reply | Quote

Same thing here….Nov 8th is last post. The whole site is doing it. I have tried IE, Chrome and Firefox. Woody advised me to try different ISP just in case it was on my ISP’s end. I tried different ISP just now, and it’s not my ISP.  I’ve tried 4 different computers, 3 different browsers and 2 different ISP’s. Hope it straightens out soon, but for now, I’m giving up trying to figure it out. Not a problem to just log in 🙂

Reply | Quote

“Yes, that means Microsoft is actively supporting seven different versions of Windows”

I remember all too clearly when the first version of Windows was introduced, and my local specialist software/engineer shop told me “This is great, it means that every single developer and user will be running the same operating system and it will make things so much easier for everyone”!

Ah well, how was he to know….?

2 users thanked author for this post.

NetDef, lurks about

Reply | Quote

It looks W10 breeds like roaches. It appears the theory of 1 version of Windows has been a bust.

Reply | Quote

advisory about DDEAUTO fandango, dated november 8th

Yeah seem to get the same here on Win10Prox64 1709 Edge & IE11, Win7prox86 IE11.
All 3 dont auto-log in despite being set to and then when ticking the box and logging in the topic jumps to the current topic which is Patch Tuesday is rolling out
“Curioser and curioser” strange been like this all weekend I just put it down to the vaguries of M$ and its finicky Browsers.
Might be time to give that new version of Firefox its annual appraisal/workout sounds promising 😉
I normally have a try of the latest and greatest every year to see if theres some refief in sight on the Browser front.

Reply | Quote

Anyone else using GP to enforce CBB (deferred) feature updates on their system?  Today I just saw a massive number of Win 10 Pro version 1703 installs that were set to stay on the deferred update (formerly known as CBB) get 1709 – across two client systems.  It’s just been a month since that was released . . . so much for a four month breathing space?

~ Group "Weekend" ~

3 users thanked author for this post.

fk5353, MrBrian, woody

Reply | Quote

More details:  all 1703 systems that were under WSUS are fine (and most of them won’t see updates until this coming Friday due to our odd custom schedule.)

All (and I mean ALL) 1703 systems today, even with correct Group Policy settings enforced, that were NOT under a WSUS system have picked up and installed (or attempted to install) the 1709 feature update.

Test systems that had CBB set, but also had the defer updates set for 60 or more days, did NOT update today.

Test systems where we used WUShowHide to hide/defer the 1709 update have ALSO attempted to upgrade to 1709 today.

MS has apparently greatly shorted the wait time for (formerly known as CBB) from 4 months to 1 month.  I do not yet know if this was an accident, or intentional.

~ Group "Weekend" ~

2 users thanked author for this post.

MrBrian, woody

Reply | Quote

Hi!

I just got pushed 1709 just after installing kb4048954. Despite running Windows 10 Pro and switched it to Business Branch. Obviously there is something very wrong with the latest KB, because it happened on all systems here. Some failed comepletely as expected. That’s why the upgrade was deferred after all. It will be a very long night after this nasty surprise. The idea is that we restore an image and quickly set a much longer delay for feature updates. And hope this works. Incredible what a mess Microsoft makes of Win 10, I am extremely angry!

greetings,

Ron.

4 users thanked author for this post.

walker, fk5353, MrBrian, woody

Reply | Quote

Restore your images with that machine offline, set the longer feature update deferral, then you should be good to reconnect.  As of today we’re using the max setting allowed now (365 days), hope it holds!

From a newly re-imaged Win 10 Pro 1703 (that failed an upgrade today to 1709):

 

~ Group "Weekend" ~

3 users thanked author for this post.

zero2dash, BobbyB, woody

Reply | Quote

My educated guess is that this was not an accident. “Microsoft recommends” at https://technet.microsoft.com/en-us/windows/release-info.aspx now shows that v1709 is recommended! I believe that Microsoft is now purposely blurring the distinction between what was formerly Current Branch and Current Branch for Business. I’m not surprised that Microsoft did this, but I would have thought that Microsoft would have given prominent notice beforehand (or did they?)

5 users thanked author for this post.

Elly, walker, zero2dash, woody, NetDef

Reply | Quote

Btw, tried to register here, but still didn’t receive a confimation mail etc. So that’s why I am anonymous.

greetings,

Ron.

Reply | Quote

Check your spamfolder of trash. Sometimes the email gets redirected.
If that doesn’t work, send an email to Woody@AskWoody and he can get you registered.

2 users thanked author for this post.

walker, woody

Reply | Quote

MrBrian wrote:

I noticed recently that this happens when I am not logged in to this site.

So am I.  Using Chrome.
My hard drive failed a couple of weeks ago.  IMO it was the September IE11 cumulative update that killed it.  Got a laptop with Windows 10.  Apparently DSL is not good for Windows 10.  Actually hated Windows 10 period. Returned it.
Brought my desktop in and replaced the hard drive and reloaded windows 7. They said they loaded all the windows update.  Well, they didn’t.  So dealing with that.  Thinking of going to group A via PKCano’s directions.  What a mess at the moment.
When this computer fails, going to buy a chromebook.

1 user thanked author for this post.

walker

Reply | Quote

anonymous wrote:

Is there a caching problem on the homepage or something? The most recent post i see is the security advisory about DDEAUTO fandango, dated november 8th. I’ve tried ctrl+f5 and cleared askwoody.com from search history but still the same. I can see all the newer posts in the rss feed though. Anyone else seeing the same thing? -T

Yes, I am also.  Using Chrome.

Reply | Quote

From The November 2017 Security Update Review: “None of the CVEs are listed as being under active attack, but one of the advisories certainly looks as though it may be even though it’s not stated.”

3 users thanked author for this post.

walker, woody, NetDef

Reply | Quote

Is it safe to install Windows 10 verison 1709 net or wait a few months longer? I can use the windows update hide program I installed to hide the update until I am certain it is safe to upgrade to fall creators update.

 

So should I wait until it’s safe to install fall creators update (1709) because I saw it in the hide/unhide updates part after the program found updates ready to install.

Reply | Quote

It is better to wait a while longer before installing 1709
But we are seeing reports of forced upgrades in spite of settings and wushowhide.
If you are successful deferring it, let us know what you did.

1 user thanked author for this post.

woody

Reply | Quote

I wrote this script specifically to fully and eternally enable/disable Windows Update without worries because after updating Windows -even some minor updates- it’s the wild wild west again and again.

It has always worked since then (one year right now). But if Windows update reenables itself again after using it, please contact me.

Reply | Quote

Win 10 Pro……I’m checking wushowhide every day, setting features delay to 365 days and regular updates to 35 days. Only thing extra I’ve done is to enable metered connection. Fairly new computer and I received last 2 feature updates right away, so I upgraded from Home to Pro and so far I’ve been Lucky.  Knock On Wood !!!!

Reply | Quote

bobcat5536 wrote:

Win 10 Pro……I’m checking wushowhide every day

Windows 10 – making things easier every day… 😉

Fractal Design Pop Air * Thermaltake Toughpower GF3 750W * ASUS TUF GAMING B560M-PLUS * Intel Core i9-11900K * 4 x 8 GB G.Skill Aegis DDR4 3600 MHz CL16 * ASRock RX 6800 XT Phantom Gaming 16GB OC * XPG GAMMIX S70 BLADE 1TB * SanDisk Ultra 3D 1TB * Samsung EVO 840 250GB * DVD RW Lite-ON iHAS 124 * Windows 10 Pro 22H2 64-bit Insider * Windows 11 Pro Beta Insider

Reply | Quote

Don’t worry-I’m gonna hide that UPDATE like it was a pesky bug. I ain’t gonna let 1709 conform my computer and go zombie or give it problems. It’s only 5 months old, brand new, good condition and in peak shape too since I take care of it-Ccleaner the MBS/GBS, clean the keyboard and scan for viruses and stuff.

 

Anyway I won’t let it get past me. I’ll hide and seal it away before it tries anything. Besides when I switch on my windows updates-I keep it on manual than AUTO. After updates, I disable it.

Reply | Quote

They fixed the “sfc” side effect issue that was introduced in October Preview Rollup KB4041686

https://www.askwoody.com/2017/big-problems-with-win7-preview-of-monthly-rollup-kb4041686/

thanks Woody for helping 🙂

 

and yes, the fix for excel jet database thing is included

6 users thanked author for this post.

Elly, walker, woody, PKCano, MrBrian, NetDef

Reply | Quote

From .NET Framework November 2017 Security and Quality Rollup: “This release contains no new security updates. The most recent .NET security updates were shipped with the September 2017 Security and Quality Rollup.”

1 user thanked author for this post.

walker

Reply | Quote

A comment in that blog post from Microsoft employee Rich Lander (my bolding):

“Great questions. This situation is due to us having quality fixes every month but not always security fixes. Our original plan was to only ever ship on patch Tuesday if we had security fixes to ship. This approach has a few bad characteristics: we ship on an uneven and unpredictable cadence, hold back quality fixes and then ship a lot of quality fixes at once when we have a security fix. We then decided to switch to this new model where we shipped every month with whatever fixes we had. In terms of supercedence, we opted for a more nuanced model, security would supersede security and quality-only would supersede quality-only. We believed that this approach was best because it enabled folks to skip the quality-only releases if they wanted to. If you read the compliance guidance in the post (a new section this month), you can see that it is addressing this situation.

October was our first month releasing quality-only fixes on Patch Tuesday. We heard some similar feedback after that. We added the new compliance guidance section to help mitigate the feedback.

We have the following choices available: go back to the old model (only ship when we have security fixes), use this new model (nuanced supercedence), update the new model to supercede independent of whether there is security fixes, or change the name of the rollup in the case that it doesn’t contain security fixes.

If those choices, we are most hesitant to go back to the old model. We need a monthly channel for shipping critical quality and reliability fixes. And for a variety of reasons, Patch Tuesday is that day/channel.

Note that this situation doesn’t apply to Windows 10, which is also described in the post.“

5 users thanked author for this post.

walker, AlexEiffel, SueW, Elly, woody

Reply | Quote

Fall creators update installing despite being on business branch

Reply | Quote

Anybody knows something about when Windows 7 updates will be full cumulative (sp2)?

https://blogs.technet.microsoft.com/windowsitpro/2016/08/15/further-simplifying-servicing-model-for-windows-7-and-windows-8-1/

Reply | Quote

I posted about this somewhere at this site maybe 4 months ago that a then-recent comment from a Microsoft employee in a Microsoft blog post indicated that this was maybe a year away from happening. So maybe mid-2018 would be a good estimate.

8 users thanked author for this post.

liamZ, SueW, Elly, walker, walker, walker, walker, walker

Reply | Quote

@Mr.Brian:  I managed to get rid of “it”, however the “thank” function actually showed the “thanks” FIVE times because it would not show itself and I continued to attempt to get it to do its job!

Then I went to “enter reader view”, and now the 5 “thanks” have disappeared and the “reply” function is working.   Something I’ve never seen all of the years I’ve been coming here – – – FIVE “thank yous”!!      Of course it is well deserved!     🙂   🙂

OH, OH, It’s back once again!!!!

1 user thanked author for this post.

MrBrian

Reply | Quote

Mid 2018, and Windows 7 EOL is january 2020.

Nice.

Reply | Quote

“I posted about this somewhere at this site maybe 4 months ago that a then-recent comment from a Microsoft employee in a Microsoft blog post indicated that this was maybe a year away from happening. So maybe mid-2018 would be a good estimate.”

Reference: Comment from Microsoft employee Andrei Stoica.

2 users thanked author for this post.

abbodi86, walker

Reply | Quote

I previously interpreted the statement in Andrei Stoica’s comment “We are planning to add these previously shipped patches over the next year […]” as being from Andrei Stoica, but I now see that that is not the case. Andrei Stoica’s original statement is: “A: The build & release of a cumulative update has been postponed […]”

1 user thanked author for this post.

walker

Reply | Quote

Anyone noticed the fact that this month’s edition of MSRT came flagged as important but not checked as usual?

Or is it just me? Running W7 x64 Pro here…

Reply | Quote

Mine is showing checked important dated Nov, 14 at 12.2MB on Win7 Ultimate x64

Reply | Quote

Anyone noticed the fact that this month’s edition of MSRT came flagged as important but not checked as usual?

Or is it just me? Running W7 x64 Pro here… – anonymous

It’s not just you. I’m also running W7 x64 Pro and I’m seeing the same thing. MRT is flagged as important but not checked.

I noticed another weird thing – the optional .NET updates for both October (KB4043766) and November (KB4049016) are being offered to me. I didn’t install KB4043766 because it contained no security updates, and apparently the same is true for KB4049016. However, I thought the .NET roll-ups were cumulative. If that’s the case, shouldn’t KB4043766 have dropped off Windows Update when KB4049016 became available?

Reply | Quote

The .NET Rollup contains patches for multiple versions of .NET. If you look it up in the MS catalog, you will see multiple patches with different KB numbers offered when you download.
If I recall, in Oct, .NET 4.7 had a security component but the other versions did not. But a Rollup is a Rollup, so even if your version has no update, the Rollup is offered because some version has an update.

Or something like that 🙂

1 user thanked author for this post.

walker

Reply | Quote

The reason is because according to the catalog the November update doesn’t metadata-supersede the October update (at least for Windows 7 x64); I don’t know why it doesn’t. However, you likely don’t need to install the October update if you install the November update because the October update is probably component-superseded after installation of the November update. Background info: The different types of Windows update supersedence.

1 user thanked author for this post.

walker

Reply | Quote

The reason is because according to the catalog the November update doesn’t metadata-supersede the October update (at least for Windows 7 x64); I don’t know why it doesn’t. However, you likely don’t need to install the October update if you install the November update because the October update is probably component-superseded after installation of the November update. Background info: The different types of Windows update supersedence. – MrBrian

Thanks.

I went ahead and installed the month-old 2017-10 Security and Quality Rollup for .NET (KB4043766) to get myself relatively current. I’m not going to install any 2017-11 patches until Woody gives the all clear.

Reply | Quote

A comment from a Microsoft employee at https://blogs.msdn.microsoft.com/dotnet/2017/11/14/net-framework-november-2017-security-and-quality-rollup/ indicates that the November .NET update ought to metadata-supersede the October .NET update, and that Microsoft will make this change.

2 users thanked author for this post.

walker, abbodi86

Reply | Quote

Not checked, Win 7 Home Premium x64.

Reply | Quote

The MSRT thing and it’s flagging seems strange. I noticed, it was flagged as important, but unchecked. Then readers commented, that during the first update checks, the MSRT update has been checked. Obviously MS got aware of install issues, and they unchecked this update.

I’ve documented it within my blog post Issues with Microsoft’s November 2017 Updates.

Ex Microsoft Windows (Insider) MVP, Microsoft Answers Community Moderator, Blogger, Book author

https://www.borncity.com/win/

3 users thanked author for this post.

walker, SueW, MrBrian

Reply | Quote

It’s been several months since I’ve installed MSRT. What’s happened in the past is that on Patch Tuesday, the new MSRT appears as checked and important and the previous month’s MSRT simply disappears. Not this month, though. Instead the October MST is still showing as checked and important and I’ve seen neither hide nor hair of the November MSRT.

Reply | Quote

MSRT has some problems this month. See @gborn comment and check out the link to his site.

1 user thanked author for this post.

walker

Reply | Quote

On my Win 7 and 8.1 test virtual machines, which always get updates first for testing and which are kept up to date Group A (with a few exceptions) style, I saw the following:

For Win 7 I saw 2 important updates and 2 optional updates.

Important, checked: KB4048957 2017-11 Security Monthly Quality Rollup for Windows 7 for x64
Important. unchecked: KB890830 Windows Malicious Software Removal Tool x64 – November 2017
Optional, unchecked: KB4049018 2017-11 Security and Quality Rollup for .NET Framework
Optional, unchecked: KB2952664 Update for Windows 7 for x64 (checks for Win 10 compatibility)

I hid KB2952664 (for about the hundredth time) and installed the rest. So far everything has gone smoothly and the system is running fine. I still need to do detailed testing.

Update, one day after

My Windows 7 test VM, updated as above, has passed all my tests. And after most of a day of uptime it didn’t show any signs of memory or handle leaks. And Microsoft Security Essentials has updated itself successfully as of a little while ago.

Note that my testing for Win 7 covers it being used in the role I need – primarily a small business server and running the specific software I use on it, not an interactive system that’s run a lot by a user sitting at the console. Thus in my testing I only touched on such things as internet usage (though it appears to run IE fine; I saw no new basic UI problems with IE this month).

Update, two days after

Still no problems.

-Noel

7 users thanked author for this post.

AJNorth, CraigS26, cesmart4125, SueW, Elly, walker, MrBrian

Reply | Quote

I had very nearly the same story with my Win 8.1 test VM as with Win 7…

I hid KB2976978 and installed the rest. It went smoothly and rebooted without faults. Detailed testing has to be done next.

Update:

Passed all my Win 8.1 tests.

-Noel

1 user thanked author for this post.

AJNorth

Reply | Quote

KB2952664 appears checked in my W7 x64 Pro system, what does it mean?

Reply | Quote

https://support.microsoft.com/en-us/help/2952664/compatibility-update-for-keeping-windows-up-to-date-in-windows-7

It runs tests on your system to let Microsoft know if you’re ready to upgrade to Windows 10, then – if you haven’t opted out of the Customer Experience Improvement Program – it lets Microsoft know whether your system is compatible.

That’s what the update documentation implies anyway. That they feel it necessary to state “There is no GWX or upgrade functionality contained in this update” tells us LOTS of people are already blocking this one. I can tell you that doing so hasn’t hurt my operations a bit.

If you have no intention of upgrading your machine to Windows 10, why should Microsoft be handed any information about whether your system is compatible? Why should you spare even one extra CPU cycle for them (not to mention put extra stress on your hardware) to help them know if your system has what it takes for an operating system you may not even want. If they had never released software that caused CPU meltdowns I might never think this way.

Even if you ARE anticipating ultimately giving in, are there other computers like yours in the world? If you didn’t build it up from obscure parts, chances are there are PLENTY of others out there. Don’t worry that Microsoft won’t know your system exists and will make different decisions if your system does not participate.

-Noel

2 users thanked author for this post.

SueW, Elly

Reply | Quote

Noel Carboni wrote:

If you have no intention of upgrading your machine to Windows 10, why should Microsoft be handed any information about whether your system is compatible? Why should you spare even one extra CPU cycle for them (not to mention put extra stress on your hardware) to help them know if your system has what it takes for an operating system you may not even want.

I actually installed it on my computer to let them know I have a system perfectly capable of taking Windows 10, but I have no intention to do so :). My last experience with 1709 was quite terrifying. After all the laugh at Linux and need to use Terminal now we’re in XXI century, have a system that GUI is designed to be used with touchscreens, but you can’t do much without using PowerShell and typing in commands like:

to reinstall an app. This is a JOKE. Having installed Ubuntu 17.04 and Windows 1709 I have to say for a typical office user Ubuntu is a much more friendly space out-of-the-box.

Fractal Design Pop Air * Thermaltake Toughpower GF3 750W * ASUS TUF GAMING B560M-PLUS * Intel Core i9-11900K * 4 x 8 GB G.Skill Aegis DDR4 3600 MHz CL16 * ASRock RX 6800 XT Phantom Gaming 16GB OC * XPG GAMMIX S70 BLADE 1TB * SanDisk Ultra 3D 1TB * Samsung EVO 840 250GB * DVD RW Lite-ON iHAS 124 * Windows 10 Pro 22H2 64-bit Insider * Windows 11 Pro Beta Insider

1 user thanked author for this post.

Noel Carboni

Reply | Quote

After update, service “Microsoft .NET Framework NGEN v4.0.30319_X86” no longer start automaticaly. If i run it manualy , it is immediately stopped. Win 7 64 bit.

Reply | Quote

Which update?

Reply | Quote

I installed all updates, so rollup for framework and also rollup for Win 7 64 bit. Has anyone same problem? How can I fix this? Thanks

Reply | Quote

So i manualy installed net framework 4.7.1 from microsoft and this fix my problem. Again both net services work.

1 user thanked author for this post.

woody

Reply | Quote

Those services stops automaticaly if here no work for it. It is normal behaviour, not bug. Sorry for that post.

Reply | Quote

Wow. Windows 8.1 had one less vulnerability this month than Windows 7. I find that kind of surprising.

Reply | Quote

anonymous wrote:

Wow. Windows 8.1 had one less vulnerability this month than Windows 7. I find that kind of surprising.

Why? It’s actually (a bit) more advanced than 7 under the covers, and since it’s not getting feature changes, they’ve had quite a while to patch up the initial problems they released with it.

Windows 8.1 is actually a VERY good system, once you configure, tweak, and augment around the several big problems (such as using Classic Shell for a Start Menu, shunning all Apps, etc.). I base my business on it (and 7).

-Noel

2 users thanked author for this post.

AJNorth, radosuaf

Reply | Quote

How is Win 8.1 “a very good system”? It’s not user friendly, it’s not easy to use at all and it’s not stable in my experience. I got 2 BSOD in a year just from basic internet tasks. It’s way better than Win 10 though but what isn’t?

Reply | Quote

Woody’s initial post was updated to include a link to Microsoft forces Win10 1703 customers onto 1709, and other Patch Tuesday shenanigans.

2 users thanked author for this post.

gborn, woody

Reply | Quote

Just wanted to say thanks for mentioning & linking your article (“Microsoft forces Win10 1703 customers onto 1709, and other Patch Tuesday shenanigans”) on AskWoody.

For whatever reason, at this time (15 Nov 2017, ~5:00 PM EST) Computerworld is still not showing this article when I visit https://www.computerworld.com/blog/woody-on-windows/ …

(quite confusing they can be, these interwebs 🙂

Reply | Quote

? says:

homepage was stuck here for a few days on ie11 and ff56.0…

side note for xp people, install kb4047206 ie8 update from the catalog first. it is chock full of the speed-up goodness, then turn on update for kb4047211-win search dos, kb4048968-win EOT font engine, kb4048970- win 32k.sys, and ?kb4050795 a fix for an October patch (kb4042007) in the jet DB engine (msexcl40.dll) when opening excel.xls files. huh?

i’m going to wait for the green light to update the win7’s

thanks all

1 user thanked author for this post.

PKCano

Reply | Quote

Thanks for the tip. Update seemed to go faster.

Reply | Quote

? says:

you are welcome! thank you for all you do with all these moving parts…

i waited and waited for XP IE8 microsoft update to move off “searching” last month and this month, my brain forgot how to do it, so i downloaded the win32k.sys and when that didn’t work i everything else but the ie8 update (didn’t see it) and lo and behold that is where the speed ’em up was hiding. when i went back for another look it completed in less than 30 seconds…

well, maybe i’ll remember to find the “right” one on first crack…

thank you PKCano!

Reply | Quote

The Software Services Update History page has a description of the XP patches. Makes knowing which is which easier.

Reply | Quote

? says:

thank you, i was there a few times when searching, i even went to the specific kb page…

this is why you guys are sooooo valuable to us users because you distill all the years of lookin’ around for the right stuff into a point and click…

thanks again

Reply | Quote

“Keeping XP updated” sounds, to me, like a great AKB article….

1 user thanked author for this post.

AJNorth

Reply | Quote

KB4048957 on Win7 pc will kill your printing to dot matrix printers. Looks like it is printing, but nothing will come out. Uninstall KB4048957 fixes the printer issue.

2 users thanked author for this post.

woody, gborn

Reply | Quote

On the ComputerWorld post I read about the forced to 1709 thing. 🙁

On of my small business customers called me that he was warned that the Windows was not up-to-date (I guess he was looking for Windows Updates because of the mtsc.exe does not work with RDS-Gateway 2008 R2). And guess what happened: He upgraded to 1709.

Seriously I give up. I tried everything to avoid the possability that this can happen: First do not allow upgrade in the GPO Windows Update setting and second “forbid” the communication in the Internet communications GPO. I want to decide when I make this s*** update and no one else!

The only solution I see is to block the communication to the apropiate address maybe using the hosts file (because notebook). But I guess it’s the update.microsoft.com? Or is it different? What address is where the “feature” upgrades are coming from.

And another thing. If I forbid to communicate with the service and Windows thinks it can ignore what I set how can I trust this s***?

Reply | Quote

It looks like Windows Update is honoring the Win10 1703 Pro “Defer updates” setting, but is not honoring the “Current Branch for Business” setting.

Win10 Home users don’t have much choice except to use a metered connection. (Or, yes, you can turn off the Windows Update service.)

What’s odd – I got a tweet early this morning from somebody who had his 1611 machine upgraded to 1709, although the Group Policy setting was for “CBB.”

I’m surprised there aren’t more people livid about this….

Reply | Quote

All the computers I manage Home or Pro are still on 1607 except one we didn’t push my settings on.

No metered trick. No wushownhide.

Only set CBB and the number of days of delays in group policy (registry setting pushed on Home version since it doesn’t process group policies). So it seems Woody’s assertion about respecting the delay is correct, in my case.

Reply | Quote

The November 2017 patch day brought some users some nasty surprises. Beside the MSRT thing mentioned above, we have the:

• Epson dot matrix printers killed (briefly mentioned two posts above)
• HP’s 3D Guard won’t work after KB4048955 for Windows 10 Version 1709

I’ve documented it within my blog post Issues with Microsoft’s November 2017 Updates.

Addendum: It seems that Microsoft has released a new version of MSRT, that has been fixed.

Ex Microsoft Windows (Insider) MVP, Microsoft Answers Community Moderator, Blogger, Book author

https://www.borncity.com/win/

4 users thanked author for this post.

SueW, MrBrian, woody, radosuaf

Reply | Quote

The November 2017 patch day brought some users some nasty surprises. – gborn

My employer started rolling out the November patches on Wednesday 11/15 and they wreaked havoc.

My own experience is that once I installed the November Security and Quality Roll-up for Windows 7 32-bit, it messed up my Windows Update and Microsoft Office 2010.

Specifically, no further patches would install after the November Windows roll-up was installed. I ran the Windows Update troubleshooter and it said the “Service Registration was missing or corrupt” and also reported another error.  After I followed these directions from Microsoft, Windows Update seemed to be working again.

I scanned again for updates and recorded the KB numbers for what I had yet to install. There was one Microsoft Excel security update, one Microsoft Word security update, and MRT. I downloaded all three manually from Microsoft’s web site. I managed to get MRT installed, but the two Office updates still refused to install.  I check the logs and they both said “fatal error”.  I tried running a repair of Microsoft Office, and about two-thirds in, the repair started throwing up errors about being unable to write to the registry. I kept clicking the “Ignore” button just so it would finish.

In other areas of the company there were reports of Outlook crashing repeatedly after installing the Windows roll-up.  When I called the help desk to report I needed help getting these two Office patches installed, there was a recording saying something like, “If you are calling about the Outlook issue, we are aware of it and are looking into it.”

Thankfully, in all other respects, my Office installation seems to be working normally.  However, I have run a repair before, and never encountered those error messages until now.

1 user thanked author for this post.

MrBrian

Reply | Quote

The M$ recommended forced upgrade from Win 10 Pro 1703 to 1709 is likely because M$ needed more Beta-testers for Win 10 Pro 1709, in order to give better service to or less upgrade problems for Win 10 Ent users who are like VIPs. Remember, Win 10 Ent users are M$’s cash cows, not Win 10 Home & Pro users.

IOW, in the eyes of M$-Nadella, “Windows as a Service” mostly applies to Win 10 Ent users only.
… For Win 10 Home & Pro users, it’s mostly “Windows as a Disservice” or “Windows as a Service Slave” or “Windows as a Forced Service”.

Seems, M$ is conducting class warfare in the Computerworld of Win 10.

Reply | Quote

Just installed the group B patches on Win 7 Ultimate 32-bit (KB4048960 and KB4047206), didn’t install the .NET one, since it’s listed as only recommended, everything seems fine so far, started up fine, no unusual errors or warnings in event logs, security software seems fine, very old TV tuner and its software still work, system fans operate normally (twice before updates for some reason made my system unable to dynamically adjust fan speed anymore, reboots didn’t help, full shutdown and start back up did the 2nd time, first time it was a BIOS update since one was available, but no idea whether that actually did something in itself)…

One thing I noticed though was that when I checked for updates with Windows Update, I had no November MSRT, just the October one still there (forgot when I last installed one… must have been when I saw a post on here that it started acting up).

2 users thanked author for this post.

AJNorth, walker

Reply | Quote

Here’s another glitch for you. KB4048960 (Security-only update) for Windows 7 hosed my Windows Media Player. Specifically, WMP 12. Once the patch installed, all existing shortcuts I had on my desktop and in my start menu were automatically deleted. When I then clicked on the program exe itself [C:\Program Files (x86)\Windows Media Player\] it relaunched WMP like it was brand spanking new. Any customized settings, and any library files links I had associated with it, were history.

All I can say is — thank goodness for System Restore!

So as it is, if I update my system with this latest Windows security patch, I lose my customized Media Player settings and my WMP library. Conversely, if I forgo the KB4048960 update to prevent this very thing, my system basically goes “unprotected”. So what now Microsoft??

If anyone finds a workaround to this latest patch snafu, kindly post it!

[Windows 7 Ultimate x64]

2 users thanked author for this post.

walker, MrBrian

Reply | Quote

Anyone know if the same thing happens with the monthly rollup?

1 user thanked author for this post.

walker

Reply | Quote

I installed KB4048957 (Rollup) on one computer and I’m getting the first-time-run screen on Media Player asking for setup. So looks like a complete new install with no saved settings.

2 users thanked author for this post.

walker, MrBrian

Reply | Quote

Is there any effective way to report these kinds of bugs to Microsoft? How do such things even get brought to their attention? Knowing good ol’ MS, I can only imagine the kinds of hoops one would have to jump through to get their attention, if it can be done at all.

1 user thanked author for this post.

walker

Reply | Quote

You could try reporting via “Was this information helpful?” at the bottom of KB articles. After you click “yes” or “no,” textbox “Tell us what we can do to improve the article” appears.

1 user thanked author for this post.

walker

Reply | Quote

I’ll give that a try. Thanks.

Reply | Quote

How to apply to become a beta tester for Microsoft

1 user thanked author for this post.

walker

Reply | Quote

@Mr.Brian:

I thought we were “already” Beta Testers  – – – IF WE WEREN’T very, very careful.    🙁  🙁

1 user thanked author for this post.

MrBrian

Reply | Quote

Player version 12.0.7601.23930

wmplayer.exe the wmpconfig and several files in the system32 modified 11/17 (installation date)

Reply | Quote

Hardly the first time WMP acts as newly installed after an update. This time Comodo reported something called unregmp2.exe accessed the WMP start menu link in ProgramData, didn’t see that before, but since I otherwise use it rarely I’m used to every so often stumble into a new install screen when I do.

Reply | Quote

Actualy there is updates for win 10 1511 home i just received 3 as my screen shot shows, just no cumulative updates so far my pc received MSRT 2days ago and KB4023057 and KB4033631 today

Reply | Quote

DISASTER … W7-64  Grp A / (2) 2010 Office, (1) Word, (1) Excel, MSRT, Sec Quality Rollup … 1st Time have had to Macrium Image OUT of a WU. Everything sluggish or Spinning Circles after the Update; Files Slow to open, CCleaner slow to show if any SR’s were loaded (all of mine disappear), WU SR I tried just kept Cycling, etc.

YOU may have no issues. Thanks Macrium.

W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / Macrium Pd vX / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU = 0

2 users thanked author for this post.

walker, MrBrian

Reply | Quote

So sorry you had problems. But you must want to be a Microsoft Guinea Pig.

We are on DEFCON-2. Patches have only been out for 3 days. Why are you running Windows Update now? The whole purpose of the DEFCON system is to WAIT until you know what’s good and what’s not.

1 user thanked author for this post.

walker

Reply | Quote

@CraigS26:  You may be correct.….  this only began for me when I opened an attachment.   I hope nothing else is wrong with the computer.  I have not “checked for updates”, nor installed anything.   Until the Defcon goes higher I won’t even check for updates.   I’m sorry for all of the problems you are having, and hope that there is a way to fix them all.

Reply | Quote

@Mr.Brian:   After clicking on the attachment in the message following yours, I cannot see any more messages.   After I clicked on that attachment, all I could get was  a message as follows:

504 Gateway Time-out

nginx/1.10.3 (Ubuntu)

I can’t get any more recent messages on the site, and had difficulty even getting this “reply” sent.   Just throwing this out there because I have no clue as to what occurred.   I just know that I will probably never open another attachment on the website.

I thank you for anything you may be able to discern about that attachment which caused my computer to go wacky because of it.   I hope that this reply will go through    🙁

Edit to remove HTML

Reply | Quote

Probably due to site issues, and not your fault.

1 user thanked author for this post.

walker

Reply | Quote

@Mr.Brian:  Thank you for the advice.   I hope no one else has encountered this issue.  I appreciate your thoughtfulness about this matter.  I have wondered about a lot of “things” that this could possibly be, and I’m wondering  IF:

This attachment appears to be the problem, and also mentions “Ubuntu” which seems to be “different”.   Thank you very, very much for your help.    🙂

Reply | Quote

W7-64  GRP A ….. 1st Time I’ve had to Macrium Image Back OUT of WU.

Everything Sluggish / Quirky after Update, SR wouldn’t even work ….

Thanks, Macrium. YOUR experience may be fine. I’m on IE 11 (rarity) as FF 57 (like it, easy transition for this amateur) was TOO Buggy on this Forum and Submit did nothing. Hope this works.

I edited this with FF 57 as it now seems OK on the Forum.

W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / Macrium Pd vX / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU = 0

1 user thanked author for this post.

walker

Reply | Quote

CraigS26 wrote:

as FF 57 (like it, easy transition for this amateur) was TOO Buggy on this Forum and Submit did nothing

It’s not FF being BUGGY, the site is having problems. FF is fine when the site is OK

CraigS26 wrote:

W7-64 GRP A ….. 1st Time I’ve had to Macrium Image Back OUT of WU. Everything Sluggish / Quirky after Update, SR wouldn’t even work ….

You should WAIT for DEFCON-3, 4, or 5. If you install while DEFCON is at 1 or 2 you risk being Microsoft’s Beta tester.

Reply | Quote

So Windows 10 1511 Enterprise / Education is still getting security updates after the 1511 version supposedly is no longer supported after October 2017.

Microsoft has said support for these versions will be extended to April 2018:
https://blogs.technet.microsoft.com/windowsitpro/2017/11/14/progressing-windows-as-a-service/

Hope for the best. Prepare for the worst.

Reply | Quote

Hi, I have just spent 3h online over two days w/ MS W10 support in SE Asia (I think), very good, remote control, but unable to help much. 1709 removed my entire Office 10 install, but I found prod key and they reinstalled. Good thing I was not on deadline! 1709 also blew away AcroReader but W10 staff are unable to help with that — on my rig currently it cannot be uninstalled, downloaded, or reinstalled, something about msi file missing, on network resource unavailable, blah blah.

Just fyi. I suppose I can live without Reader but am really concerned

Reply | Quote

Malicious Office document exploits Office Equation Editor vulnerability (fixed in Nov. 2017).

How to disable Equation Editor 3.0.

1 user thanked author for this post.

walker

Reply | Quote

Equation Editor 3.0 has been removed (reference).

Reply | Quote

Does anyone know the answer to the following question: Where do we stand with this month’s unchecked MSRT in windows update?

As indicated by @gborn on  Nov. 16,  in message #145848, one of the issues with the November Updates is that the MSRT is unchecked in windows update. In that same message he updated the information with the following Addendum: “It seems that Microsoft has released a new version of MSRT, that has been fixed.”

The problem is, the MSRT in my windows update still remains unchecked with the original release date of 11/14/17. The Microsoft Update Catalog MSRT download still shows the original 11/14/17 date as well.

Does the fact that the MSRT remains unchecked mean that it hasn’t been fixed, or is it just another Microsoft oversight?

1 user thanked author for this post.

walker

Reply | Quote

I think it’s best to assume that it hasn’t been fixed. When I installed the November Microsoft updates, I didn’t install that update.

5 users thanked author for this post.

walker, SueW, AJNorth, JDeC, twbartender

Reply | Quote

The Belarc Advisor has been updated to version 8.6 – https://www.belarc.com/products_belarc_advisor.

For the “Group B” Win 7 & 8.1 boxes that I’ve run it on, it correctly identified the missing updates as the November 2017 Security Only Quality Update and the November 2017 IE 11 Cumulative Security Update.

2 users thanked author for this post.

walker, SueW

Reply | Quote

5 new updates today so far:

https://support.microsoft.com/en-us/help/4049068 (not documented yet; probably time zone change)

November 27, 2017—KB4051033 (OS Build 14393.1914)

November 27, 2017—KB4051034 (Preview of Monthly Rollup)

November 27, 2017—KB4050946 (Preview of Monthly Rollup)

November 27, 2017—KB4050945 (Preview of Monthly Rollup)

1 user thanked author for this post.

walker

Reply | Quote

Another update: KB4051963 (OS Build 16299.96) (not documented yet)

1 user thanked author for this post.

walker

Reply | Quote

Article now available for KB4049068 (“Time zone changes in Windows for Fiji”), which was released yesterday.

1 user thanked author for this post.

walker

Reply | Quote

Users of Formerly Know PGP (Symantec Encryption Desktop 10.4 MP2 HF1) can no longer open files on File Share after November  2017 Windows Security Updates.

Running Windows 7 Pro – KB4033342 – KB4049068 – KB4051034 – KB4011228 – KB4011229 – KB4011238 – KB4011227 – KB4011219 – KB4011240 – KB4011238 – KB4011227 – KB4011219 – KB4011240 – KB4011137 – KB4011259 – KB4011226 – KB4011224 – KB4011223 – KB4011216 – KB4011138 – KB4011223 – kb40111138 – kb4011188 – kb4048960 – kb4048957 – kb4047206 – kb4011262 – kb4011220 – kb4011242 – kb4011618

Has anyone seen this?  I am sure it was one of these but had no success trying to uninstall them one at a time.  I just thought I would ask … I was able to restore back to before the updates and fix the issue but it will break again after the next round.

Reply | Quote