Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Almost all WannaCry victims were running Windows 7

6 Days Ago   #21
ThrashZone

Win-7-Pro64bit 7-H-Prem-64bit
 
 

Hi,
To be more clear using these settings and only installing the Real Important updates will be just fine so no worries
Almost all WannaCry victims were running Windows 7-update-settings.jpg




My System SpecsSystem Spec
.
6 Days Ago   #22
Painter

W7Pro/64
 
 

The WannaCry cretins who chose to infect systems with ransomware were not choosing a specific Windows system to infect. They released their malware to take advantage of SMB facing systems, especially those with lots of endpoints. Those being primarily Enterprise and Government Windows systems of all stripes (XP, W7,8 and 10). It should be noted that very few Home users were infected with WannaCry ransomware.

Security labs later determined that XP systems were harder to infect using the NSA exploit. Enterprise and Government systems currently use W7 (over 80%) and the fact that SMB1, 2 and 3 are all enabled by default meant that they would be hit. Some XP and some W10 systems were also hit.

The IT pros who had already installed the March security updates fared the best. Large organizations take a long time to install updates so it is unfair to lay the blame at their feet. MS released a special patch for XP systems (gratis) in April and it was labelled critical. It was a good business decision.

The security patch that MS sent out in March will protect Home Users from WannaCry on W7, but it would be better if they also disabled SMB1. If you are a novice, don't get your knickers in a knot as MS will/may disable it for you in a future patch (hopefully June). If they do this, a user who really needs SMB1, would have to enable it. This should have been done a long time ago (unfortunately, MS had its head in the clouds).

There is no guarantee that the March patch will protect us all from what will come. There are numerous malware campaigns underway using the NSA exploits. Some have already been identified and Microsoft and security companies have yet to step up to those. The bad guys are mostly organised crime gangs, state sponsored hackers or individuals (useful idiots or scum). Their motives are both monetary and political. Treat them with the disdain they deserve. Don't pay a ransom.
My System SpecsSystem Spec
6 Days Ago   #23
michael diemer

Windows 7 x64 SP1
 
 

Based on what Thrash said, I just ran Update using his settings, and installed the updates. At first I got an error, but it was installing other updates, and did successfully complete the rest. I restarted and it found and installed one more update.

My GWX Control Panel is saying I have no unwanted updates, but its version is from April 2016. Should I update it, or at this point can I safely assume that updating W7 according to the Thrash's settings (search for updates but let me decide; install all important updates) are safe and Windows 10/telemetry free?
My System SpecsSystem Spec
.

5 Days Ago   #24
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

Everything I have read, plus the experience on my two system, Windows 7 updates is no longer pushing W-10.

Big companies take a little longer to install updates for a good reason.
With the record of the last year with Windows 7 updates, these companies want to make sure of all updates before applying the updates on thousands of computers.
I can't blame them. I test updates on one of my computers for a while before I install them on the others.

A company the size of 'UPS' has thousands of computers. One bad update has the possibility of shutting them down.

The trust we had in Microsoft has dwindled in the past year.

Jack
My System SpecsSystem Spec
5 Days Ago   #25
Brds7t7

Windows 7 Pro 64-Bit, Windows 7 Ultimate 64-Bit, Windows 8.1 Pro 64-Bit
 
 

Quote   Quote: Originally Posted by michael diemer View Post
Based on what Thrash said, I just ran Update using his settings, and installed the updates. At first I got an error, but it was installing other updates, and did successfully complete the rest. I restarted and it found and installed one more update.

My GWX Control Panel is saying I have no unwanted updates, but its version is from April 2016. Should I update it, or at this point can I safely assume that updating W7 according to the Thrash's settings (search for updates but let me decide; install all important updates) are safe and Windows 10/telemetry free?
Don't worry about GWX it's over and done with now. Despite what many users think, I highly doubt MS cares to rerun all that again. From what I've seen, people are still using old Windows 7/8.1 licences to install Windows 10 without GWX anyway. My guess is MS has intentionally done this because they want everyone off their older OS's.

With regards to telemetry, the 3 main culprits are KB3068708, KB3080149 and KB2952664.
The first two can easily be disabled by turning off the Customer Experience Improvement settings in Action Center and disabling the corresponding tasks in task scheduler. KB2952664 is the main update which runs the CompatTel runner, Diagtrack and GeneralTel files. This can be blocked by using a 3rd party firewall. I've yet to see this update be integrated into any rollups though (including the large convenience update). So far it's still a standalone update.

There may be others, but I haven't picked apart every single update. I don't believe you can fully stop all data being sent to MS anyway, it's part of the OS. But, you can certainly reduce what gets sent through various methods.
My System SpecsSystem Spec
5 Days Ago   #26
drankinatty

Windows 7 Professional x64
 
 

Quote   Quote: Originally Posted by michael diemer View Post
Based on what Thrash said, I just ran Update using his settings, and installed the updates. At first I got an error, but it was installing other updates, and did successfully complete the rest. I restarted and it found and installed one more update.

My GWX Control Panel is saying I have no unwanted updates, but its version is from April 2016. Should I update it, or at this point can I safely assume that updating W7 according to the Thrash's settings (search for updates but let me decide; install all important updates) are safe and Windows 10/telemetry free?
You can get rid of GWX altogether. WU on Win7 works as it did before the Win10 push. In fact the recommended update https://support.microsoft.com/en-us/kb/3184143 will "Remove software related to the Windows 10 free upgrade offer".

I have a dozen Win7 Pro and a couple of Home Premium installs. Update works as it is supposed to (and they actually fixed the problem with wu hanging and running continually last summer (I believe it was in the June update).
My System SpecsSystem Spec
5 Days Ago   #27
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

kb/3184143 works for me on two systems.

Jack
My System SpecsSystem Spec
5 Days Ago   #28
michael diemer

Windows 7 x64 SP1
 
 

Thanks Jack et al. Welcome news indeed. I'll check to see if those sneaky updates made it on. 2952664 is one I actually remember. must be the most notorious of the bunch. My computer seems to be a bit peppier now that it's fully updated. Office opens faster, eM Mail also. tomorrow I'll do the wifey's laptop.

Thank God for this place!
My System SpecsSystem Spec
5 Days Ago   #29
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
WannaCry vulnerability checker from ESET

ESET released a tool to check if your system is vulnerable to WannaCry ransomware.

Info and download: ESET Stops WannaCryptor, WannaCry and EternalBlue. Use our free tool to make sure Windows vulnerabilities are patchedESET Knowledgebase
My System SpecsSystem Spec
Reply

 Almost all WannaCry victims were running Windows 7




Thread Tools




Similar help and support threads
Thread Forum
Missing 4012212 or 4012215 Updates and WannaCry
On a Dell Optiplex 755 running Win7 Home Premium x86 (NOT the PC this note has been sent from), I find no record of KB4012212 or 4012215 ever being installed even though Microsoft Update indicates the PC is fully updated. Microsoft's MS17-010 says one of these is mandatory to protect against the...
System Security
(wannacry ransomware) disabling smb1, but cannot found it
hello, wannacry ransomware piracy brought me here. So i want to disable smb1 as a proactive measure (i read many advices to do that). However, i didn't found it in "start/control panels/programms/turn windows features on or off". Here's my question ? Why smb1 doesn't appear here? Is this ok...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:46.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App