All the patches are needed for the reason given in each patch. But let's say a patch is for IIS and you don't run IIS but someone installed IIS just to look at it. This machine will get those updates but IIS is not running so it can be debated if that is needed or not.

Try this. Uninstall all unused software titles and features not in use (one hour gone!) Then let it update.