Updated list of all Windows Updates NOT to install

Topic

New Reply

Hi Everyone,
Being a newbie to forums, wanted to ask all you wizards for an “up-to-date & complete list of all Windows Updates NOT to install” in Windows 7 Pro 64… for Dummies.
Installed their ‘critical’ updates few months ago, blew machine up thus complete reinstall which isn’t fun being on a domain… would prefer not going thru this again.
Any help greatly appreciated.

Reply | Quote

Replies

@mark345
Recent blogposts @Woody published may be of some assistance to you. It could be a good place to start, if your W7 update concerns relate to telemetry:
https://www.askwoody.com/2017/martin-brinkmanns-deep-dive-into-removing-telemetry-in-win7-and-8-1/
https://www.askwoody.com/2017/a-way-to-mediate-the-telemetry-gathering-in-win7-and-8-1/

Hope that is of some help to you

Reply | Quote

First rule of thumb: Do not download device drivers from Windows Update. Go to your computer manufacturer’s website of the device manufacturer’s website for the drivers.

As far as Windows 7 is concerned, it’s a matter of personal preference.

If you are willing to accept the telemetry and snooping that Microsoft is rolling into Windows 7 (Woody calls that Group A), then the answer is there are NO updates not to install. You install everything, with this qualification: DO NOT install anything that is not already checked. That includes ALL of the patches on the “optional” list and any on the “important” list that are unchecked by default.

If you do not accept the snooping and telemetry (Woody calls that Group B) You will need to avoid the “Security Monthly Quality ROLLUPS” released after Oct 2016 through Windows Update. These are cumulative, so you will only see one in WU.
The older patches that contain the telemetry or CEIP are KB2952664, KB3021917, KB3068708, and KB5080149.
In order to keep up to date with security patches you need to download from the MS Update Catalog EACH MONTH the “Security Only Quality UPDATE” and install it manually. These are not cumulative, so you will have to do it monthly to stay up to date.

It is a good rule NOT to hide patches. So, each month:
Download and install manually the securit-only UPDATE.
In the important list, UNCHECK the ROLLUP for Windows.
UNCHECK any other patches you do not want to install
Install the rest (NET, Office, IE, etc)

7 users thanked author for this post.

Elly, BobbyB, woody, Microfix, ch100, Noel Carboni, Bill C.

Reply | Quote

I would add to the list above KB971033
https://support.microsoft.com/en-us/help/971033/description-of-the-update-for-windows-activation-technologies
You normally don’t need this update, it comes unticked on WU for the Enterprise version and it does not exist on WSUS (the Enterprise/Small Business version of WU).
It is known to generate false activation positives and if you can avoid it, I suggest you to do so.
If it is installed, it can be uninstalled correctly without side effects.

3 users thanked author for this post.

Elly, BobbyB, woody

Reply | Quote

Glad you posted that link. We had a convo. about that some time last year as it was on my hit list (retired after SP2) of not to add to images (could even been prior to Win7 SP2 aka kb3125574) Probably because of the KMS MAK implications (now I know). There’s another thing about that update is that occasionally it will/has been know to install in stealth mode on Win7x86 Pro & Home Prem. Which is fine If you’ve got a legit. key but a potential problem if your using the above methods of activation. You cleared up a conundrum cheers mate

Reply | Quote