Need to uninstall W7 security update 2823324?

[Ant]

Hello.

I installed W7 security update 2823324
(http://support.microsoft.com/kb/2839011 ) on to my 64-bit W7 EE SP1
Lenovo office/work desktop PC on Tuesday morning after 10:00 AM PDT's
release time. I already rebooted and have not seen any problems so far
since then.

Is it still recommended to uninstall and reboot? Thank you in advance.
--
"Whoops, there goes another ambulance ant." --Seymour and Pepe (Rick
Moranis episode from The Muppets)
/\___/\ Ant(Dude) @ http://antfarm.ma.cx (Personal Web Site)
/ /\ /\ \ Ant's Quality Foraged Links: http://aqfl.net
| |o o| |
\ _ / If crediting, then use Ant nickname and AQFL URL/link.
( ) If e-mailing, then axe ANT from its address if needed.
Ant is currently not listening to any songs on this computer.

 

[Paul in Houston TX]

Hello.

I installed W7 security update 2823324
(http://support.microsoft.com/kb/2839011 ) on to my 64-bit W7 EE SP1
Lenovo office/work desktop PC on Tuesday morning after 10:00 AM PDT's
release time. I already rebooted and have not seen any problems so far
since then.

Is it still recommended to uninstall and reboot? Thank you in advance.

The complaints were from 7-32 users in Brazil.

 

[...winston]

Remove it. Restart, Rerun WU in manual mode. Wait for MSFT to rerelease it.

Even though the update may have installed correctly, it is still the source of a potential problem.

As with anything WU related, just because a problem appears to be unique to a given hardware/software configuration or geographic
location....it doesn't negate the fact that the update *is* the problem. Additionally its not exactly clear what conflict this
created for some thus the impact on current or future applications is unknown nor if other issues have yet to appear. It would be
a pita to troubleshoot a problem down the road when everyone forgets about this one.

Imo, why take the risk since there's a high probability that the update will be re-released once final analysis is complete and
validated.



--
....winston
msft mvp consumer apps


"Ant" wrote in message
Hello.

I installed W7 security update 2823324
(http://support.microsoft.com/kb/2839011 ) on to my 64-bit W7 EE SP1
Lenovo office/work desktop PC on Tuesday morning after 10:00 AM PDT's
release time. I already rebooted and have not seen any problems so far
since then.

Is it still recommended to uninstall and reboot? Thank you in advance.
--
"Whoops, there goes another ambulance ant." --Seymour and Pepe (Rick
Moranis episode from The Muppets)
/\___/\ Ant(Dude) @ http://antfarm.ma.cx (Personal Web Site)
/ /\ /\ \ Ant's Quality Foraged Links: http://aqfl.net
| |o o| |
\ _ / If crediting, then use Ant nickname and AQFL URL/link.
( ) If e-mailing, then axe ANT from its address if needed.
Ant is currently not listening to any songs on this computer.

 

[Paul]

Hello.

I installed W7 security update 2823324
(http://support.microsoft.com/kb/2839011 ) on to my 64-bit W7 EE SP1
Lenovo office/work desktop PC on Tuesday morning after 10:00 AM PDT's
release time. I already rebooted and have not seen any problems so far
since then.

Is it still recommended to uninstall and reboot? Thank you in advance.

Kaspersky has already issued a patch, for their problem (license
invalidated). The Brazilian banking sandbox app, I don't know if
they issued a patch for the problems they were causing.

If you don't have any of the applications that cause the problem,
you may be OK. It's the combination of the patch, plus certain
third party applications, that causes a problem. Many people
won't see anything bad happen - at least, that's the theory.

The symptoms, as I understand them, is C: can get marked "dirty".
And you'll know this, because a scheduled defragmenter run,
will refuse to run. You can't defragment a partition which is
"dirty" (because it needs CHKDSK first).

This is all related, somehow, to the patched ntfs.sys or something.
Maybe the problem is related to applications that "hook" ntfs.sys,
use an Upperfilter driver or the like. AV applications are most
likely to do stuff like that. AV applications are very intrusive.

My guess is, like the last time this happened, Microsoft had
an inkling this would happen, but released the patch anyway.
Sorta like slapping Kaspersky on the wrist, for screwing
around (i.e. give Kaspersky a bad name). Kaspersky has done
some stuff in the past (like using Alternate Streams to
store AV state information), that Microsoft was surprised to
find out about later. So while on the one hand, I'd like to
dismiss this as "bad automated testing" in Microsoft labs,
I'm not naive enough to think that's all this is. Any company
that "paints outside the lines" with their software, are
likely to get slapped back into line once in a while. (Remember
that Microsoft has to dodge the clutches of fifty different
AV products. It makes it pretty hard to patch ntfs.sys or
atapi.sys, if the fifty companies all do something different
to it.)

I only did a cursory search, and there is some info (hints)
out there, as to what the problem is. I just didn't go looking
for the exact problem with the file system that was caused. But
at least one user noted that the defragmenter no longer wanted
to run. You can use fsutil to query the dirty bit, if necessary.
There are at least two ways to schedule CHKDSK, one is to set the
dirty bit, a second is to modify the autochk registry entry,
and effectively schedule a check in the early part of the next
POST and boot. But why C: ends up dirty, now, that's a puzzle.
And if CHKDSK runs, and clears the dirty bit, will the file
system end up dirty again ? Again, who knows.

By the time I get around to installing the April patch Tuesday,
all the dust will have settled Haven't done it yet. (I
don't run my Windows 7 laptop every day.)

Paul

 

[Ant]

The complaints were from 7-32 users in Brazil.

So Americans (English) had no problems?
--
"Where there is sugar, there are bound to be ants." --Malay Proverb
/\___/\ Ant(Dude) @ http://antfarm.ma.cx (Personal Web Site)
/ /\ /\ \ Ant's Quality Foraged Links: http://aqfl.net
| |o o| |
\ _ / If crediting, then use Ant nickname and AQFL URL/link.
( ) If e-mailing, then axe ANT from its address if needed.
Ant is currently not listening to any songs on this computer.

 

[s|b]

I installed W7 security update 2823324
(http://support.microsoft.com/kb/2839011 ) on to my 64-bit W7 EE SP1
Lenovo office/work desktop PC on Tuesday morning after 10:00 AM PDT's
release time. I already rebooted and have not seen any problems so far
since then.

Is it still recommended to uninstall and reboot? Thank you in advance.

I can't give you a URL right now, but the last thing I read was
Microsoft advising to uninstall the update, even if you aren't
experiencing problems. KB2823324 has been removed from the automatic
updates list, so I expect M$ to release a new update.

I installed it on W7 HP x64 SP1 and wasn't experiencing any problems,
but I removed it anyway.

 

[Ghostrider]

I can't give you a URL right now, but the last thing I read was
Microsoft advising to uninstall the update, even if you aren't
experiencing problems. KB2823324 has been removed from the automatic
updates list, so I expect M$ to release a new update.

I installed it on W7 HP x64 SP1 and wasn't experiencing any problems,
but I removed it anyway.

Just received reference to this from ZDNET. URL below:

http://www.zdnet.com/microsoft-pulls-patch-tuesday-security-fix-7000013942/?s_cid=e550&ttag=e550


GR