AutoPatcher 2000 June 2005

[+theblazingangel MVC]

General Information

This release is based on the all-new AutoPatcher 5.1. Although it was made with Windows 2K SP4 English in mind, it will load on any (English) Windows version, showing only the items which match the running environment.

There is also a special release in Portuguese (Thanks gandolas!), hopefully others will arrive soon.

Warning

IE6SP1 is a major update, if you install the other updates before it you can have serious problems.

if you dont already have it installed, make sure its checked for installation on the first run.

Also note that some updates will only be available to install after IE6SP1 is installed, so youll need to run AP at least twice.

What's included (English June 2005)

Windows 2K SP4 - Updated Components

Internet Explorer 6 SP1
DirectX 9.0c
.Net 1.1 SP1
Jet 4.0 SP8 (MS04-014 Updated Version)
Microsoft Installer 3.1 v2
MDAC 2.8 SP1
Windows Script 5.6 (v5.6.0.8825)
Windows Media Player v9

Windows 2K SP4 - Critical Updates

KB823182: Vulnerability in Authenticode Verification Could Allow Remote Code Execution
KB823559: Buffer Overrun In HTML Converter Could Allow Code Execution
KB826232: Buffer Overflow in Windows Troubleshooter ActiveX Control Could Allow Code Execution
KB828026: Update for Windows Media Player URL script command behavior
KB828035: Buffer Overrun in Messenger Service Could Allow Code Execution
KB828741: Cumulative Update for Microsoft RPC/DCOM
KB828749: Buffer Overrun in the Workstation Service Could Allow Code Execution
KB833989: Security Update for Internet Explorer 6 SP1
KB835732: Security Update for Microsoft Windows
KB839645: Vulnerability in Windows Shell Could Allow Remote Code Execution
KB840987: Security Update for Microsoft Windows
KB841356: Vulnerability in Windows Shell Could Allow Remote Code Execution
KB841533: Vulnerability in NetDDE Could Allow Remote Code Execution
KB841873: Vulnerability in Task Scheduler Could Allow Code Execution
KB842773: Update for Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1
KB870669: Disable ADODB.Stream object from Internet Explorer
KB873333: Vulnerability in OLE and COM Could Allow Remote Code Execution
KB873374: Microsoft GDI+ Detection Tool
KB883935: Vulnerability in NNTP Could Allow Remote Code Execution
KB883939: Cumulative Security Update for Internet Explorer
KB885250: Vulnerability in Server Message Block Could Allow Remote Code Execution
KB885492: Security Update for Windows Media Player 9 Series
KB885834: Vulnerability in the License Logging Service Could Allow Code Execution
KB886903: Security Update for .NET Framework 1.1 SP1
KB888113: Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution
KB890830: Malicious Software Removal Tool v1.5
KB890859: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service
KB891781: Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution
KB893066: Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service
KB896358: Vulnerability in HTML Help Could Allow Remote Code Execution
KB896422: Vulnerability in Server Message Block Could Allow Remote Code Execution

Windows 2K SP4 - Recommended updates

KB329115: Certificate validation flaw might permit identity spoofing
KB818043: L2TP/IPsec NAT-T update for Windows XP and Windows 2000
KB820888: Fix for Crash When Mounting NTFS Volumes
KB822343: Vulnerability in ISAPI Extension for Windows Media Services
KB822831: Driver Installation Program Does Not Install Device Drivers
KB824105: Flaw in NetBIOS Could Lead to Information Disclosure
KB824151: Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service
KB832359: Vulnerability in Windows Media Services
KB841872: Vulnerability in POSIX Could Allow Code Execution
KB842526: Vulnerability in Utility Manager Could Allow Code Execution
KB870763: Vulnerability in WINS Could Allow Remote Code Execution
KB871250: Vulnerability in the Indexing Service Could Allow Remote Code Execution
KB873339: Vulnerability in HyperTerminal Could Allow Code Execution
KB885835: Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege
KB885836: Vulnerability in WordPad Could Allow Code Execution
KB887797: Cumulative update for Outlook Express 6 Service Pack 1
KB887811: Fix for Issue with KB840987
KB890046: Vulnerability in Microsoft Agent Could Allow Spoofing
KB892313: Updates for Windows Media Player 9 & 10
KB892944: Vulnerability in Message Queuing Could Allow Code Execution
KB893086: Vulnerability in Windows Shell that Could Allow Remote Code Execution
KB894320: Vulnerability in Web View Could Allow Remote Code Execution
KB897715: Cumulative Security Update for Outlook Express
Root Certificates Update

Addons

DirectX Control Panel
TweakUI 1.33
Google Toolbar (only in Full)
ieSpellcheck (only in Full)
Startup Control Panel 2.8 (only in Full)
Startup Monitor 1.02 (only in Full)
New XP Style Wallpapers (only in Full)
New Wallpapers (only in Full)
Delete Old 9x Wallpapers Otion (only in Full)
Windows Journal Viewer 1.5 (only in Full)
Windows Messenger 5.1 (only in Full)
Macromedia Shockwave Player (only in Full)
MSN Messenger 7.0.0813 (only in Full)
Sun Java 1.5.0_03 (only in Full)
WinUptime Tool (only in Full)
Windows Movie Maker 1.2 (only in Full)

And of course around 44 registry tweaks which improve speed, appearance, functionality and security!

Torrent Download Links

BitTorrent is a P2P system that makes transfering large files (or groups of files) amongst a large group of people easy, fast and efficient. The BitTorrent network is impressive mostly for the speed and reliability with which you get files that have been recently released. As long as a .torrent file has enough people sharing then you can be assured that it will start quickly and maintain a good download speed.

Always remember to leave your BitTorrent client open to help distribute the files!

- English

Torrents provided by M2Ys4U: June 2005 Full & June 2005 Lite

Direct Download Links

You may download AutoPatcher XP from any of the following mirrors:

- English

Mirror provided by tkam: June 2005 Full & June 2005 Lite

Mirror provided by Deaper: June 2005 Full & June 2005 Lite

Mirror provided by LittlBUGer: June 2005 Full & June 2005 Lite

Mirror provided by megaupload.com: June 2005 Full

- Portuguese (Portugal)

Mirror provided by Homer: June 2005 Full & June 2005 Lite

ED2K Download Links

You may download AutoPatcher XP from any of the following mirrors:

- English Full

ed2k://|file|AutoPatcher_2K_June2005_ENU_Full.exe|212098918|417E3E039579C3A3C43FF4DDA22338BD|/|sources,andymutz.dyndns.org:46620

- English Lite

ed2k://|file|AutoPatcher_2K_June2005_ENU_Lite.exe|162180658|64E1339BE60445F62C112104A38CDF1C|/|sources,andymutz.dyndns.org:46620|/

- Portuguese (Portugal) Full

ed2k://|file|AutoPatcher_2000_Jun2005_Portuguese_Full.exe|243966079|C346B91CC32F085A963DEB987CDCACB0|/

Sizes & Hashes

To help you verify your download isnt corrupt!

- English

Full File Size: 202 MB (212098918 bytes)

Full MD5 Hash: B4C7AB2AAD8C1BD617721437EFAC1D2A

Lite File Size: 154 MB (162180659 bytes)

Lite MD5 Hash: 5CFAF3C448A5E81AB0CB8D190CFA31E5

- Portuguese (Portugal)

Full File Size: 232 MB (243966079 bytes)

Full MD5 Hash: 626F4A954FC078F36D821A5EC772F7B3

Thanks To

Raptor for making this all possible.

Gandolas for all the work he's been doing.

rtk and pascal for the work on the tweaks youve both done.

I would also like to thank those who continue to help with hosting and distribution, along with: Frank (main download server), skyypunk, eXplosive, iverson0881, SteelTrepid, Storm, DigitalScar, M2Ys4U, LittlBUGer, mlazovjp, iSix, calidude, cpugeniusmv, SilentKnight, Mace68, Nexose Networks, Draganta, Homer, SHUR, PlanetMirror and AusGamer.

Enjoy!

Blaze,

AutoPatcher Team Member

www.autopatcher.com

Edited June 21, 2005 by TheBlazingAngel

[akaladis Veteran]

Awesome Job! (Y) (Y) (Y)

Thread Pinned

[patto909]

Yay first post! [Edit: Damn missed the first post, i knew i should have posted and then editted ;) )

Thanks BlazingAngel! I can't believe the amount of effort you have put in selflessly for others. Great job.

Im downloading this now, ill seed it on http://torrent.autopatcher5.mirror.ineedhosting.net/

[proXtu]

thank you very much for this version ! :) i'll download the full and the lite version and i'll seed them as bittorrents ;) good job ! :p thanx again ;)

[patto909]

Seeding torent now, looks like im the only one. :cool:

(I only have 128kbit upload, so it will be ~4hrs before i can spawn new seeds)

http://torrent.autopatcher5.mirror.ineedhosting.net/

[Digital Punk]

Nice Blazing Angel!

Thanks for all your hard work, it is appreciated! :D

[gandolas]

The Portuguese version is ready too. Here is the eD2K link:

Thanks to Blaze for all the help! ;)

ed2k://|file|AutoPatcher_2000_Jun2005_Portuguese_Full.exe|243966079|C346B91CC32F085A963DEB987CDCACB0|/

[Angel Blue01]

Yes!

[SergeantNoob]

Let me warn that if you install all these updates before installing IE6 SP1, you will have MAJOR problems. IE6 SP1 is mandatory!

[+theblazingangel MVC]

^ok, ill make it more obvious.

[maxkohl]

Hi, it's my first post here - first I'd like to say a HUGE thanks to TheBlazingAngle for all the work on this (I read all the old thread, too :blush: )

A few questions though:

1) Did anyone notice that after applying all patches, the hotkey ability of shortcuts (i.e. on desktop/start menu, etc.) is lost? I tried everything, including TweakUI's "repair hotkeys" & rebooted several times, but all my "Ctrl-Shift-<smth>" to launch shortcuts are not functioning anymore. Can anyone please confirm/assist?

2) There was a talk in the past about applying the "256-colors tray icons" patch. Actually, if I recall correctly, raptor made it work on the new exe (dll?) but I haven't seen any link to download, nor an option for such patch in the June package.

3) The previous patch had some great wallpapers in it (like "mud volcano") - where are they? (or where can I download them please? thanx!)

4) suppose I want to burn this thing - if I follow the instruction I read here somewhere to "extract in folder & launch once" before I burn - will it work? despite those instruction (I think for the xp ver.), I couldn't run the burned image (gave errors, can't remember exactly, but at the loading phase, in the 2nd or 3rd tasks of the four "initializing" stuff... :huh: )

[Edit: one more question] 5) Can you make an option that after all the updates the program will erase its trace from the hosted machine (from the registry too) and optionally power off?

Thank you very very much again blaze & all who helped - I really hope you would get the deserved worldwide appreciation once it's on download.com :)

[akaladis Veteran]

1. I don't use win2k, so hopefully someone else can confirm/help.

2. I had created a 'patched' explorer.exe based on instruction on how to manually patch it. However, since new patches have been released, I'm quite sure that patched explorer.exe is now old. It only took 5 minutes of HEX patching, but I'll have to find that instruction page to make a new one.

3. Hehe, we'll see about those wallpapers :)

4. Well, this one is just "install & burn". We say "launch once" (up to the selection screen) when you install additional modules, because AutoPatcher automatically unpacks any new modules you have thrown into the Modules folder.

5. You mean delete the AutoPatcher folder? Also, AutoPatcher (as a program) does not use the registry for anything. Only modules can do that.

/Raptor

[+theblazingangel MVC]

^^

thanks maxkohl :D

i dont actually use 2K either, nor do i use shortcut hotkeys, so i havent got a clue, hopefully someone will come along with a solution

As for download.com, i havent actually got around to doing that yet.

they ask for lots of contact details including the phone number of the author and such.

i think it might be better if raptor does that himself, because he'll know exactly what he wants them to know, and will be able to write a much better descrption than i could :D

[mcramer]

Re: 1)

I can confirm, but not assist. I noticed this when I patched up a few months ago, and queried it here (I think) and a few other places, but never got a response. If you remove the shortcut key from a shortcut, and reapply it, they will work till next reboot, then they're gone again, still listed in the shortcut details, just not working.

I hope you find a solution, I really miss the shortcut keys.

[andsmith]

Is it possible to slipstream all the current updates into a W2K CD?

Andrew

[maxkohl]

raptor:

2. I found manual patch instructions for explorer.exe here:

http://www.dr-hoiby.com/TrayIconIn256Color/

however, suppose I use PSPad as my hex-editor, but I'm not sure how I can patch an active ("locked") file...? (sure, it needs to be "replaced" on boot, but how exactly one does that manually? :huh: )

5. I'm quite sure I saw some "AutoPatcher" entries under the "software" keys (either hklm/hkcu - I use jv16PowerTools to spy on such stuff...) - maybe the installer is responsible for those?

blaze/raptor/gandolas/[...?] :

5. I saw many other people wanting an "uninstall" after the patches (@xp thread), so if you do implement that, please consider my "power off the machine" when done all patching. Actually, choosing between poweroff/hybernate/standby could be even nicer... :cool:

6. might be OT for ap2k, can't remember, but atleast on xp thread I saw you bundle both google-toolbar v3 & ie-spellchecker - why? google's toolbar already has such a feature on its new v3... :)

7. actually. personally, I prefer to "stay on the fence" with the new updates (I'm behind a university firewall + I have my partition backed up) until proven stable for all. I was wondering where would be the first non-microsoft place on the net to know if there are problems with new ms-updates, since a random search of mine on such issues from the past revealed horror stories... anyone knows where is the best place to be informed on that?

mcramer:

strange, you know that win98 had the exact same symptoms?!? I now recall that I had the same problem back in the past that was related to the shortcut arrow - go figure how those ms-stuff are intertwined... :blink:

anyway, sorry but I have no solution... it's hard to choose keywords for such problems... what I recommend to you is to search a freeware that allows to assign hotkeys (like on www.snapfiles.com, www.pricelessware.org, etc...) - some are much more powerful then windows capabilities - they may let you assign the "win" key too, and build scripts/macroes... hope it helps! :blush:

[Edit - one more reply] andsmith :

Is it possible to slipstream all the current updates into a W2K CD?

Andrew

if I recall correctly, only "type 1" hotfixes (like post-sp2 xp ones) can be slipstreamed per-se. what you might do is to install ap "unattended", though I'm not sure how such thing can actually be done.

Edited June 20, 2005 by maxkohl

[+theblazingangel MVC]

^^

1) raptors already got some instructions and is working on making the tweak.

ive sent him a copy of explorer.exe from a freshly formatted test machine with the latest AP 2K release applied.

2) the entries you saw are used by the tweaks for registry detection entries.

if you want to completely remove autopatcher from your system, you can simply delete the two keys.

3) personally im slightly concerned about the uninstall autopatcher option thats being discussed.

with the 2K release you need to run it at least twice to get everything installed.

if a user missed that and removed autopatcher, they wouldnt be fully patched.

also, someone might absent mindedly tick the box, loose autopatcher and have to redownload it all over again.

personnally i think its easy enough to just delete the folder manually.

you could even make a quick batch file to remove the folder & reg keys if you wanted.

adding hibernate/standby options defies the point in having a reboot option.

the whole idea is that you need to reboot your computer for the changes to take effect.

if you used hibernate/standby you wouldnt be doing it, and wouldnt have a fully patched, stable system

4) not sure why both google & iespell are included. perhaps to give users more of a choice? i dont know.

5) ive no idea where you could get such info appart from microsoft themselves.

you can find the info in the KB articles for each update.

[maxkohl]

3) I DO know about the 2 reboots (ie6sp1 & 2nd-pass updates...) of course - I was actually aiming at a fully automatic installation that could make the 2-pass/2-reboots thingy, but I guess that's tricky ;)

5) yeah, but MS won't be confirming too quickly that her updates "breaks" other functionalities (see the sp2 story, that hotkey above, and many other "new KB to patch <whatever> after old KB patch...". The thing with me, is that I'm no IT person - I'm just a student who like to help friends to have *stable* machines (security is only 2nd goal, since they all have burned backups and no "sensitive" data to be prone to lose like trade-comapnies' employees do).

anyway, was just curious! thank for your help & comments blaze :-)

[akaladis Veteran]

^^ a 'patched' explorer.exe has been sent your way blaze, try it out and post it if it works :)

[+theblazingangel MVC]

^^well, windows runs.... :D

it took a lot of effort - swapping out laptops dvd+rw drive with floppy, hitting test computer to get floppy drive working, ending up putting dvd+rw drive back in laptop & burning the file to a cdrw, copying it to test computer, figuring out how to get it to boot to safe mode, then figuring out how to replace explorer.exe

and in the end ive forgotten what they looked like before, so ive no idea whether it makes a difference :)

i think ill leave making the module to you raptor, what i had to do was the following, and ive no idea how to do it via batch:

1) delete explorer.exe from C:\WINNT\System32\dllcache

2) turn of Windows File Protection (not sure if this was necessary in the end)

set HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\WinLogon\SFCDisable(DWord) = 00000000 to ffffff9d

(possibly now reboot)

3) Use Ctrl+Alt+Del to end the explorer.exe task

4) then to run the modified copy from it current location

5) Replace the existing explorer.exe in C:\WINNT with the new one

6) end the explorer.exe task again

7) then run the replaced copy of explorer.exe (C:\WINNT\explorer.exe)

8) remove the copy (not necessary for AP module)

9) turn Windows File Protection back on

set HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\WinLogon\SFCDisable(DWord) = ffffff9d to 00000000

(possibly now reboot)

[RedSiege]

2) turn of Windows File Protection (not sure if this was necessary in the end)

set HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\WinLogon\SFCDisable(DWord) = 00000000 to ffffff9d

586094527[/snapback]

Actually Blaze, disabling WFP in this manner was taken out after Windows 2000 SP2 or so. This CAN'T be done this way in SP4; 100% positive of this. Only way is to alter a dll or some other file (I forget the specifics). Do a google search on it (many sites on this list the way you show, but only a handful of them clarify that this only works in earlier W2K Service Packs.)

<edit>

I found a site that lists how to do it in Windows 2000 SP2 and above and Windows XP.

Windows 2000 SP2

1. Make a backup the SFC.DLL in the C:\WINNT\SYSTEM32 directory.

2. Make an additional copy of SFC.DLL called SFC1.DLL and open it in a hex editor.

3. At offset 00006211 (6211h) you should find the values "8B" and "C6". Do not continue if you are unable to find these values.

4. Change the values "8B C6" to read "90 90" and save the changes.

5. Run these commands to update the system files:

copy c:\winnt\system32\sfc1.dll c:\winnt\system32\sfc.dll /y

copy c:\winnt\system32\sfc1.dll c:\winnt\system32\dllcache\sfc.dll /y

6. If you are prompted to insert the Windows CD, click Cancel.

7. Restart Windows for the change to take effect.

Taken from winguides.com

</edit>

Edited June 21, 2005 by RedSiege

[+theblazingangel MVC]

ok, well that bit can be forgotten then :)

[yizuman]

Anyone post some screenshots of the patcher?

Thanks

Yiz

[AndyMutz]

i'm sharing the english lite version on release on the edonkey network.

md5: 5cfaf3c448a5e81ab0cb8d190cfa31e5

ed2k://|file|AutoPatcher_2K_June2005_ENU_Lite.exe|162180658|64E1339BE60445F62C112104A38CDF1C|/|sources,andymutz.dyndns.org:46620|/

-andy-

[+theblazingangel MVC]

^^excelent :)

no chance you could share the full version too is there ?