Microsoft update blunders going out of control

I haven't run a Windows update since mid 2013 after one of their updates conflicted with my video drivers and made the system nearly useless.

Reading this I am not regretting that decision. My system still runs fine, I have plenty of antimalware scanners and protection, and between Adblock Plus and NoScript I don't get hit by malware via browser. It sounds to me like the MS updates are borderline malware themselves, since they are causing too many problems.

Lady Fitzgerald said:

mjf said:

Lady Fitzgerald said:

You can say that again! If anything, it's past due. Even if all M$ did was roll all the previous updates into a package and did nothing else, that would be hugely welcome!

I wouldn't hold your breath.

I'm not.

Lady Fitzgerald said:

GeneO said:

Seems it is time for a service pack 2 final roll up.

You can say that again! If anything, it's past due. Even if all M$ did was roll all the previous updates into a package and did nothing else, that would be hugely welcome!

Interesting article here:

Waiting to Download Service Pack 2 (SP2) for Windows 7 and Server 2008 R2? - AskVG

I've never needed to use that download. :)

Diosoth said:

I haven't run a Windows update since mid 2013 after one of their updates conflicted with my video drivers and made the system nearly useless.

Reading this I am not regretting that decision. My system still runs fine, I have plenty of antimalware scanners and protection, and between Adblock Plus and NoScript I don't get hit by malware via browser. It sounds to me like the MS updates are borderline malware themselves, since they are causing too many problems.

Jonguy30 said:

I also haven't run a Windows Update in a long time. Last time I ran it was in October. And even then I was behind. While I've not had any incidents with WU on my computer yet you just never know when it'll break you. I've read about these Windows update errors every month now and it's become ridiculous. Every time there's been some BSOD or freezes or hangs or whatever. And then you're encouraged to uninstall the offending updates if you've installed it. And then I thought "I will not get involved in this mess!".

And since this is my only computer I don't want to risk it. I know it's "not recommended" but how often are you going to run into trouble because you have not updated? It seems to me that if you're careful there's a very low chance.

Actually, you are at far greater risk for getting infected by NOT downloading and installing updates than you are by doing so every month. And being careful will not protect you nearly as much as you seem to think. As long as your computer is connected to the internet, unplugged security holes can let nasties sneak in without you even opening up a browser.

If you are paranoid about downloading and installing M$ updates (and I don't blame you; I am), you can always set Windows Updates to just notify you that updates are available, then wait until Saturday to download and install them, like I do. That way, you have time to learn if there were any problem updates or not. Besides, M$ almost always pulls problem updates before Saturday.

groze said:

Lady Fitzgerald said:

Actually, you are at far greater risk for getting infected by NOT downloading and installing updates than you are by doing so every month. And being careful will not protect you nearly as much as you seem to think. As long as your computer is connected to the internet, unplugged security holes can let nasties sneak in without you even opening up a browser.

Lady Fitzgerald,

I am actually mixed on this. I experiences issues both ways not so much with Windows 7 though. When I used 98se on my old computer not updated anymore, I got no viruses or malware that wasn't my fault. I used it on highspeed just a couple of months ago until surge damaged my network card. When I used xp even with virus protections I still got a couple of viruses that were not my fault & windows xp was updated at that time. I update it on a Tuesday because I have a backup, that I can go back to if needed. The only thing that makes me is the out of bounds updates like KB3025390. I may start waiting tell Saturday like you do.

The real issues is Microsoft needs to do further testing before releasing an update, even if it means extended mainstream support for Windows 7 for a couple of more months.

M$ updates alone will not ensure that you will not get viruses. It takes a combination of M$ updates, an anti-virus program, and additional anti-malware programs to fig and using ht against infections, not to mention safe surfing habits. But even the most stringent (read anal) protection is no guarantee you will not ever get infected. However, you put the odds vastly in your favor by keeping up with M$ updates and using good AV and anti-malware programs.

As I already stated (here or somewhere else), there are literally thousands (if not millions) of possible combinations of software and hardware that M$ would have to test to be able to completely avoid conflict. That simply isn't possible. In fact, I find it remarkable that M$ does as well as it does. Even more remarkable is how quickly it responds to problems when they do occur. Adding to the mix are programs that actually use security holes as part of their programming or use Windows programming in ways M$ never intended.

I would much rather that M$ continue releasing non-scheduled updates when a really serious security hole has been discovered rather than leave us at risk for getting infected while waiting for the next scheduled batch of updates. Besides, the out of cycle updates don't happen often enough to really be that big of a deal anyway.

Despite keeping updated and running Avast Free, MBAM Pro, SAS and Spybot S&D, I still got hit with a virus a couple of weeks ago (the first one in several years) that was pegging my CPU usage at 100% and was dumping adware onto my computer (70-130 at a time). My AV/antimalware programs couldn't find a problem so it must have been a new nasty. I tracked it down to a process that replicating itself faster than I could delete it. When I would manage to delete the file that was creating the process and zap the adware it dumped on my computer, it would come back when I rebooted. I could find nothing anywhere on the interwebz about the process nor the file that was creating it (I don't remember the names now but they looked East European). After wasting time trying to track it down and zap it for good (my guess is it was in the System Reserve partition), I resorted to restoring an earlier image. That killed it for good.

Lady Fitzgerald said:

If you are paranoid about downloading and installing M$ updates (and I don't blame you; I am), you can always set Windows Updates to just notify you that updates are available, then wait until Saturday to download and install them, like I do. That way, you have time to learn if there were any problem updates or not. Besides, M$ almost always pulls problem updates before Saturday.

I am doing this sort of thing now. Ultimately I will install the updates but have some system images to fall back on if things go pear shape.

Plus, there are the threats you do not see and do not announce themselves. Not patching windows and your browser is the worst thing you could possibly do.

Modern malware does not announce itself, it makes every attempt so you don't discover it.