back to article Microsoft shifts Windows 7 and 8.1 fixes to 'rollup' bundles

Microsoft says it will simplify the update process for older versions of Windows by switching to once-a-month "rollup" bundles. Redmond says that all PCs running Windows 7 SP1 and Windows 8.1, and servers running Windows Server 2008, Windows Server 2008 R2 SP1, and Windows Server 2012 will begin getting the monthly updates. " …

  1. Anonymous Coward
    Anonymous Coward

    There are no Windows 7 installs. They've all been forcibly upgraded to 10.

    (Even machines which haven't been powered on in over 3 years.)

    1. Anonymous Coward
      Anonymous Coward

      Say Goodbye to Windows Heaven

      (join us below)

      Progress towards Windows Evileven

  2. Not Terry Wogan

    I... Er... Um... Words fail me!

    It it just me, or is this Microsoft doing something *genuinely useful* for their customers?

    What's the catch? Sneaky Windows 10 upgrade that they'll 'forget was in there'? No technical description other than "It dun updatez ur cmpootaz LOL!!!!!1"?

    1. Trevor_Pott Gold badge

      Re: I... Er... Um... Words fail me!

      Nothing about this is useful. This is all so they can slip in shit like spyware and Win10 upgrade malware without you being able to avoid it.

      Arrogant twatdangles, the lot of them!

      1. Sorry that handle is already taken. Silver badge


        It does mean I only have to ignore the "recommended" updates once rather than several times a month!

        1. Mark 85 Silver badge

          Re: However...

          Possibly not. It wouldn't surprise me to find out that they can change your settings or go around them. Keep in mind the date for last "free" Win 10 upgrade and be afraid.... At this point, I would put nothing past them.

      2. Steve Davies 3 Silver badge

        Re: I... Er... Um... Words fail me!

        Have an upvote for using the word 'Twatdangles'....

        Well said Mr Pott.

        Isn't this just 'Patch Tuesday' rolled into one update just so the more informed of us can decided what to apply and importantly what NOT to apply? Thought so.

        All of my remaining Windows 7/Server 2008R2/Server 2012 are setup to NOT even run the windows updater service so they won't get patched. mind you, all of them are being retired in a few months.

        {proudly posted from a Windows 10 free environment}

      3. Anonymous Coward
        Anonymous Coward

        Re: I... Er... Um... Words fail me!

        Nothing about this is useful. This is all so they can slip in shit like spyware and Win10 upgrade malware without you being able to avoid it.

        Maybe it's another attempt to rig the statistics? Packing it all together may mean we get CVEs that contain 10, no wait, 20 vulnerabilities in one so that can claim later that their OS is "safer" based (10's too small, sorry).

        Arrogant twatdangles, the lot of them!

        Well, let's be realistic. You would be arrogant too if you had held on to a monopoly for decades that is basically based on abysmally bad code. I assume it's very hard to let go, must cause a lot of withdrawal symptoms.

        1. Anonymous Coward
          Anonymous Coward

          Re: I... Er... Um... Words fail me!

          I have come to the conclusion that whatever MS do is wrong yet all you commenters cannot produce a better OS so just blindly slag them off, like MS V IOS, the the linux will save us all crowd (been hearing that for over 20 years now)

          I would love to find / change OS, but as yet nothing better for the majority of my users has surfaced, only niche builds that fade withing a few updates

          rant over, and WIN10 isnt as bad as Vista, try before you slag off for a change, else I'll just slag off every Linux distro without testing too.

    2. Lee D

      Re: I... Er... Um... Words fail me!

      It saves on their bandwidth, because fresh Windows 7 machines tend to fall over while they catch up with all this lot on Windows Update, and because it's not a "Service Pack" they don't have to extend their extended support deadlines.

      It's hardly a public service to their customers. It's a bandwidth-save on probably one of their highest-bandwidth services, using a technique that they've done for every OS they've ever released, at a time when Windows 10 is about to be become pay-only and the die-hards are making their system insecure because they won't touch Windows Updates because of Windows 10 at the moment.

    3. energystar

      Re: I... Er... Um... Words fail me!

      It's using for a moment the tired IT support shoes. Specially the lipstream to an image.

    4. Dan 55 Silver badge

      Re: I... Er... Um... Words fail me!

      If they were at all interested in doing something useful for everyone and save bandwidth they would put out Win 7 SP2 after the GWX nonsense has finished without GWX (because it's over) and without telemetry (because it's optional, supposedly).

      What they're doing here sounds like every bundle will contain everything and be marked as recommended. Like GWX adverts being crowbarred into IE11 security updates.

    5. nkuk

      Re: I... Er... Um... Words fail me!

      Its not being useful, its reducing the number and frequency of updates. Rather than getting them when they're ready they're being withheld and bundled up into a monthly release. Its Microsoft reducing their costs of supporting Win7 and 8.

  3. bombastic bob Silver badge

    Will the rollup silently include KB3035583 and (unwanted) telemetry?

    Has Micro-shaft discovered JUST HOW MANY OF US are NOT getting any updates (or deliberately NOT installing a certain handful of updates) because of their AGGRESSIVE GWX marketing tactics? And, the alleged SPYWARE being added to 7 and 8.x via Windows Update?

    Not to mention the more RECENT discovery, having GWX 'up'grades to Win-10-nic AUTOMATICALLY SCHEDULED FOR US.

    I take it that this will be THEIR way of STOPPING us from picking and choosing which updates we DO install.

    Thanks, Micro-shaft. We really _NEEDED_ that...

    1. Anonymous Coward
      Anonymous Coward

      Re: Will the rollup silently include KB3035583 and (unwanted) telemetry?

      Well we can always download the rollup, and then wait for reports on whether it screws us. Or try it first in a VM that can be easily rolled back.

      1. Steve Davies 3 Silver badge

        Re: Will the rollup silently include KB3035583 and (unwanted) telemetry?

        At the same time, can we bill MS for doing all this (cough-cough) testing for them?


        Sorry, I'll pass.

    2. ITS Retired

      Re: Will the rollup silently include KB3035583 and (unwanted) telemetry?

      That is my thought exactly. Microsoft has been proven to never have been trustworthy - Time and time again.

  4. Carl D


    >> Microsoft also says that for Windows 7 SP1, it will now begin distributing a single cumulative rollup update that contains all patches and updates for the OS up to April 2016. <<

    Will that include all the spyw... oops, sorry, "Update for customer experience and diagnostic telemetry" and Windows 10 upgrade nag patches released since last year? If so, can they be removed easily?

    I'm guessing not. Sounds like a ploy for a last (?) desperate attempt to get more people onto Windows 10 before the 'free' offer ends in a couple of months.

    (Edit: I see Bob beat me to it.. lol..)

  5. Anonymous Coward
    Anonymous Coward

    Yes, well... I'm not the first to suppose all the ignominious shite will also be included. Which just leaves my other point: it doesn't take that long to download all updates on a clean install. It's getting the fucking list in the first place takes a bloody eon! I just do not see what is so hard about fixing that - unless it's so little talent at Microsoft these days.

    Then again, I guess to judge by the user-experience plummet post-Windows 7...

    (2am and I almost lulled myself into thinking this isn't simply the latest twist to the Telemetry/GWX story and actually was about slow updates! Doh!)

    1. energystar

      Re: Yes, well...

      WTF do you smoke, Joel? Up until now is getting every one system to walk the full evolutive path since inception! And is quite a mess! And is quite risky, also! The exposure during this lapse is huge.

    2. Anonymous Coward
      Anonymous Coward

      Re: Yes, well...


      If its a new install KB3102810 still works for fresh installs (but it no longer works for restored Disk images)

      There is a knack to it though.

      On completing a fresh install of Windows 7 SP1.

      Select Manual updates (Check for updates but let me choose whether to download and install them)

      Deselect - Give me recommended updates the same way I receive important updates check box.

      Check for updates, allow it to install the new version of Windows Update, this will close Windows Update and relaunch the Window, once the new Window 'checking for updates' relaunches, shutdown and restart the machine. Once rebooted Apply KB3102810 (you need to manually download this).

      Once applied, check for updates again.

      This should take not longer than 8 minutes on an SSD with fast internet connection 20Mbps+.

      1. This post has been deleted by its author

  6. thexfile

    Microsoft is catching so much negative press over Windows 10 they decided to throw a bone.

  7. Criminny Rickets

    I had to do a system restore of my Windows 7 system last night. The restore itself went without a hitch, even leaving my Linux Mint partition alone. The only hitch was doing updates. Thanks to 2 update bugs I came across, one where I had to manually download an update from Microsoft to fix the issue, and the other where I had to uninstall Silverlight and re-install it, I have been over 24 hours just doing updates. So yes, I can see where this bundled update could be beneficial.

    Unfortunately, the more updates I do, the less space I have left on that partition.

    Hmm, wonder if Microsoft counts system restores as a new Windows 7 install?

  8. Trevor_Pott Gold badge

    I am not amused.

    1. Anonymous Coward
      Anonymous Coward

      It beats the 8+ hour wait for Windows Update to "search" for updates from a clean install.

      I had that last week. WSUS Offline wound up doing the job faster.

      1. Trevor_Pott Gold badge

        I'd much rather an 8+ hour wait than uninstallable spyware and Windows 10 malware!

      2. Anonymous Coward
        Anonymous Coward

        The trick is to update the Windows Update client first manually.

      3. Mike Dolan

        To solve the 8 hr initial scan issue, apply the following first and reboot:

        1) Windows Update Client

        2) KB3138612 - An update to the windows update client

        and critically

        3) KB3145739 - although it updates the graphics component, hidden in that little gem is a kernel update which allows the OS to take advantage of the windows update client updates

        Reduced 8+ hrs to ~30-45 mins for a scan.

        Still stupidly long, but saves me a day so it's a good starting point.

        1. Anonymous Coward
          Anonymous Coward

          This method doesn't work for restored images. Also, the original KB3102810 (rather than its update KB3138612) still works for a fresh install.

          The reason I stick to the older one, is it works still, the only thing MS would be adding to its successor is more ways to prevent you restoring Windows 7 from an image, so that Windows 10 upgrades are a one way path (once the 30 days are up).

          KB3102810 was released to solve the problem of slow updates, I'm not sure the newer versions of it have the same intentions.

        2. Anonymous Coward
          Anonymous Coward

          ta for that tip I'll have to give it a go. A fresh install of Win7SP1 takes a total age checking for updates! I have tried kb3138612 but haven't tried it with 3145739.

          And despite all the haters I would say this is a benefit to MS customers, it'll certainly save us time, not that we have to do many installs of fresh win7

          1. glnz

            Dumb Q - A week ago, on my Win 7 Pro 64-bit, I installed first kb3138612 and then kb3145739 specifically to make downloading of updates faster.

            Last night I stupidly UNinstalled kb3138612 because it was on a Stop Win 10 list.

            Seeing your reminder here, I just REinstalled kb3138612.

            But I am now worried that I have installed kb3138612 and kb3145739 in the wrong "order", with kb3145739 "first".

            ► Am I ok, or should I now UNinstall kb3145739 and then REinstall kb3145739 so that the two KBs are installed in the right "order"?

            Sorry, and thanks.

  9. Carl D

    Time for a test, I think...

    Might have to do a test install of Windows 7 Professional SP1 on a separate SSD I have inside my computer tower.

    I'll install Windows, then run Steve Gibson's Never 10 and/or Josh Mayfield's GWX Control Panel (I think they pretty much do the same thing although I've noticed Never 10 needs to download and install a more recent Windows Update Agent before it can do it's job).

    Then, I'll install the rollup package and see what happens. I'll also run Spybot's Anti-Beacon afterwards and see if it still disables telemetry if it has been installed.

    It'll be something to fill in time one evening when there's nothing worth watching on telly

    1. Kobus Botes

      Re: Time for a test, I think...

      @Carl D

      ...Josh Mayfield's GWX Control Panel...

      I just downloaded the latest version and installed it on my work machine and found that MS Security Essentials now flags it for analysis. The message reads

      "We found some files we would like to analyze. Send them to Microsoft to help us improve our anti-virus and malware measures".

      The question now is: will they mark it as acceptable or PUP (potentially unwanted program)?

      I did not send it, by the way.

      Regarding slow Win7 updates, WSUSOffline is your answer. It takes substantially less time to use, especially if combined with WPKG.

      1. Anonymous Coward
        Anonymous Coward

        Re: Time for a test, I think...

        You have a program GWX Control Panel that is actively preventing MS runnng 'their code'/preventing installing recommended updates (the updates which, are trying to force Windows 10 on you) from installing.

        I said this before, I expected GWX Control panel to be marked by MS Security Essentials as Malware and be removed, it will probably happen sometime in July, which would see a 'nice uptick' (in their eyes) for MS, before the end of July.

        MS want GWX Control Panel removed from Windows machines, make no mistake.

        ...and have the tools in place (MS security essentials), to remove it.

        (Maybe GWX Control Panel should be nicknamed 'Swampy' given its good intentions against the forced rollout by a Multinational company)

        PS. 'Swampy' was a person who protested against the building of the A30 in Devon the 1980s, by locking his arms through underground tunnels, to prevent the build from taking place,

    2. Kobus Botes

      Re: Time for a test, I think...

      Just missed the Edit deadline...

      ...Spybot's Anti-Beacon...

      Thanks for that one - it is currently running and has already found a couple I missed. It will be interesting to see what it would do with Windows 10 installs where I already spent a lot of time going through all the settings to block unwanted telemetry and adverts.

      (I KNEW there must be a reason why I read the comments sections! Apart from the witty, sharp and funny comments, of course).

  10. quxinot

    Just turn updates off.

    No security fix is more important than having common sense and backups.

    Seriously, which do you think is the bigger headache? An internet-facing machine without security updates, but an intelligent user at the controls.... or a microsoft-patcher-facing machine?

    Sorry if you're supporting computers for other people. Though it's amazing that the best antivirus is a good adblocking setup.

    1. Anonymous Coward
      Anonymous Coward

      You may be "intelligent" as much as you think, but some kind of flaws will hit you notwithstanding. If you believe only ads and a few other things are a threat, you may discover you're wrong the hard way, one day. Hope, for example, you never, never plug any device from relatives or friends into your system - and never open any file form outside before inspecting it fully. And believe me, no backups will save you from stolen data.

      A lot of issues I've see can be traced to users who believe they are smarter than what they are actually. It just need a little mistake...

  11. Anonymous Coward

    RTFA - Security Updates Not Included

    You're still going to be out a ton of time fetching those. And since it's the non-security updates, you'll at least invlude the GWX patches and telemetry too.

    "It's a trap."

  12. Pascal Monett Silver badge

    Maybe this will enable the community to create a patch iso

    I'm looking forward to seeing a website that will allow you to download an ISO image of the bundled patches for Win7 that have been carefully vetted for weeding out telemetry and GWX nonsense.

    That way, us 7 diehards could download the image for when we need to wipe our machines and reinstall. We could then install Win7 without the network connection, apply the ISO patches and then connect the machine (more or less) securely.

    I would do it myself if I knew how.

    1. Ken Hagan Gold badge

      Re: Maybe this will enable the community to create a patch iso

      "I would do it myself if I knew how."

      The idea is nice, but it won't fly in real life. If you knew how, you could trust the result. Since you don't, do you really want to trust an ISO downloaded from a domain that you've never heard of before?

    2. Anonymous Coward
      Anonymous Coward

      Re: Maybe this will enable the community to create a patch iso

      It's called "slipstreaming" and you'll find a lot of tutorials around how to do it - and you don't need a separate ISO for the patches, you get an ISO to install a "fully" patched Windows at once.

      Just nobody can distribute (legally) ISOs of Windows or its patches but Microsoft. And I wouldn't trust anything from unknown people distributing them. GWX is a malware, but it's not the only one.

  13. Anonymous Coward

    Er .. no. No thanks

    Having spent the last year, it seems, carefully avoiding (and even uninstalling) telemetry-related and Windows 10-related updates, I'm not about to install this 'not a service pack, really' monster update and get them all back.

    Likewise the future roll-up patches. I want to be able to select which ones I install, thanks.

    Microsoft have been crippling machines for months : why trust that they're now offering a helping hand to be nice to us?

  14. Novex

    Microsoft could solve these problems 'easily' by just taking out the telemetry and forced updates from Windows 10, then I think most people would be reasonably happy to upgrade to Win 10 and leave Win 7 and 8 behind.

    1. TRT Silver badge

      No. They'd have to get rid of that dreadful UI as well.

      1. jelabarre59

        No. They'd have to get rid of that dreadful UI as well.

        Exactly. So much of what *else* is wrong with MSW10 can be fixed, modified, blocked or circumvented, but even with all that the GUI will still be FUGLY. And there's no fixing that. Now, if I could run Cinnamon Desktop as the system shell, it could be fixed, but fat chance of that happening.

    2. theOtherJT Silver badge

      Re: "Microsoft could solve these problems 'easily'"

      I'm sort of with you. I have a work laptop that runs windows 10 and it's fine. It's just a Windows PC. It does everything I want of it. The control panel/system settings split is a massive step backwards, but everything else - meh, it's fine.

      I'm still never installing Win10 at home because I don't trust Microsoft to be responsible with the data they'll gather from it, or trust them not to break my machine with some future update that I'm not allowed to opt out of.

      I don't control the work machine, so I don't care about the loss of control. That's someone else's department. I'm not prepared to tolerate it on a machine that I manage personally.

  15. Chris King

    Oh boy, yet more "Mystery Meat" Updates...

    One problem I see with bundling patches like this (apart from forcing us to chow down on the obvious GWX and telemetry "shit sandwich") is that it will be FAR more difficult - if not impossible - to remove individual patches.

    Sometimes, somebody has something installed on their machine that chokes on an update (usually something obscure, or Crystal Reports), and being able to pull that update for those individuals can get them working again reasonably quickly - at least until the update (or the offending app) is fixed. Rolling back an entire patch cluster could be a whole different matter.

  16. PeterM42

    " improve the reliability and quality of our updates."

    SERIOUSLY NEEDED. Have Microcrap only just realised what the rest of the world already knew?

  17. Captain Badmouth

    I can has win7 updates wizzout telemetry?


  18. Anonymous Coward

    Get with the times, daddy-o!

    Peeps still haven't upgrade to Windows 10? In 2016?

    1. Captain Badmouth

      Re: Get with the times, daddy-o!

      No we still haven't upgrade(d).


  19. cheshS80

    Found it - KB 3156417

    I just found this lurking in Recommended Updates :- KB 3156417 - The May 2016 update rollup package for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1 - Which acccording to M$

    This update package fixes the issues that are documented in the following Microsoft Knowledge Base articles:

    KB3155039 Error 1326 when you change domain account password in Windows

    KB3155218 Memory leak occurs in the Lsass.exe process after you install security update 3067505 in Windows.

    No mention of the dreaded KB 3035583 or it's friends - I'll wait and see

    Windows 10 Free Zone (We need an Icon for that)

  20. quxinot

    I haven't had a virus issue under windows in years.

    And yet I've had to dodge horrible patches that try to direct my actions on a regular basis for more than a year.

    Who's the bigger threat here?

    (Note: You can't patch defenses in against users being stupid. For that you need wire cutters--apply to power, network, or user as you see fit.)

  21. DanceMan

    187 updates

    After failing miserably to clone the hdd on an ancient Thinkpad T41 because of the non-PAE cpu, I resorted last week to doing a fresh install of Win 7 (on a larger hdd so I can dual-boot with Mint Mate). From Win 7 SP1 it took 187 updates (important updates only) and very many hours, maybe 8 or more overall (old slow cpu, no ssd). Then I ran DWS to take care of the spyware.

    I too would be afraid of the rollup including the unwanted updates, and DWS was made to deal with the individual known updates, though the hosts file and firewall changes should still work.

    1. Anonymous Coward
      Anonymous Coward

      Re: 187 updates

      Sounds like you used Paragon Hard Disk Manager.

      Paragon Hard Disk Manager 12 works (32bit-linux bootable ver) will work with non-PAE processors still, Paragon Hard Manager 14/15 (linux bootable ver) switched to PAE processors only. Try an older version if you can, HDM12 will work with Windows 7. Its one of those quirk's thats worth knowing,

      (Linux Based recovery tools (getting underneath Windows) are the support life line to Windows. I'd have ditched Windows completely years ago, if you couldn't backup/restore Images via linux, to save re-installing Windows.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like