When Windows Update automatically replaces an installed 3rd-party driver with a different version, without your knowledge, it can lead to random and unexpected problems.
You might have a valid reason for keeping a specific driver, and don't want Windows touching it.
The normal options are to entirely disable WU, or only disable driver updates. Unfortunately, this is an all-or-nothing fix that blocks other drivers from being offered. A third option for W10/11 is enabling a GPO which blocks Updates for specific Hardware ID's.
I wrote a PowerShell script which creates a device exclusion list based on your user selections. This reg file can be loaded for immediate use, or integrated into an image. The exclusion list doesn't prevent you from installing or uninstalling drivers, it only blocks that device from WU. Any unblocked devices will continue to get suggested updates.
A major drawback from using this process, is you need to install Windows at least once to see the correct HW ID. While NTLite can integrate a driver set, there's no way for it to predict what the actual HW ID will match on. Some driver INF files cover a wide range of different HW ID's with the same driver package.
Run the DenyDeviceIDs.bat script:
You can use Shift or Control key to select multiple lines.
The script creates two reg files:
Suggested uses include blocking graphics & audio devices from unwanted updates. No reboot is required.
You might have a valid reason for keeping a specific driver, and don't want Windows touching it.
The normal options are to entirely disable WU, or only disable driver updates. Unfortunately, this is an all-or-nothing fix that blocks other drivers from being offered. A third option for W10/11 is enabling a GPO which blocks Updates for specific Hardware ID's.
I wrote a PowerShell script which creates a device exclusion list based on your user selections. This reg file can be loaded for immediate use, or integrated into an image. The exclusion list doesn't prevent you from installing or uninstalling drivers, it only blocks that device from WU. Any unblocked devices will continue to get suggested updates.
A major drawback from using this process, is you need to install Windows at least once to see the correct HW ID. While NTLite can integrate a driver set, there's no way for it to predict what the actual HW ID will match on. Some driver INF files cover a wide range of different HW ID's with the same driver package.
Run the DenyDeviceIDs.bat script:
You can use Shift or Control key to select multiple lines.
The script creates two reg files:
Enable_DeviceInstall_Restrictions.reg blocks WU.
Disable_DeviceInstall_Restrictions.reg clears all the settings.
Code:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeviceInstall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeviceInstall\Restrictions]
"DenyDeviceIDs"=dword:00000001
"DenyDeviceIDsRetroactive"=dword:00000000
[-HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeviceInstall\Restrictions\DenyDeviceIDs]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeviceInstall\Restrictions\DenyDeviceIDs]
;
; Microsoft High Definition Audio Device
"1"="HDAUDIO\\FUNC_01&VEN_15AD&DEV_1975&SUBSYS_15AD1975"
;
; Microsoft Intel(R) 82574L Gigabit Network Connection
"2"="PCI\\VEN_8086&DEV_10D3&SUBSYS_07D015AD"
;
; VMware, Inc. VMware SVGA 3D
"3"="PCI\\VEN_15AD&DEV_0405&SUBSYS_040515AD"
Suggested uses include blocking graphics & audio devices from unwanted updates. No reboot is required.