Windows 2000 SP4 updates and hotfixes

[Tomcat76]

2007-02-01:

• updated Roots Certificate Update link

2007-01-11:

• added KB920213, KB927977, KB927978, KB923980, KB924270, KB926121, KB926247, KB925398, KB925454, KB929969, KB923694 and KB923689

• added optional KB928388 and KB917275

• changed DX9 April '06 redist link to DX9 Dec '06 redist

• removed KB890046, KB925672, KB925673, KB918899, KB925486 and KB911567

• updated link to page with SP slipstreaming instructions

• updated texts

Notes about HFSLIP

The description of new updates is colored differently.

Updates that are currently only handled in a test release of HFSLIP are colored differently.

Starting with version 60421, the HFSVPK and HFSVPK_SW are called HFSVCPACK and HFSVCPACK_SW respectively. HFSLIP will automatically rename the folders if they still have the old name.

As of version 60129, you can let HFSLIP slipstream Service Pack 4 into the Windows 2000 source you provide in the SOURCE folder. Please read the instructions carefully.

All individual updates mentioned on this page are optional. However, the Windows 2000 source must be patched to Service Pack 4 (either by yourself or by HFSLIP) regardless of the updates you include, and you must add the Post-SP4 Update Rollup (KB891861) if you wish to slipstream Internet Explorer 6.

For some components (should you wish to include these), the necessary files are marked.

LegitCheckControl.cab, the DX9 CABS and the MSIE6 CABS go in HFCABS.

All other updates go in HF.

Note from TommyP

HFSLIP concentrates on critical updates and not optional ones reported by Windows Update.

Note for non-English Windows 2000 users

There's an issue with the non-English versions of "webvw.dll" present in the Update Rollup, KB894320 (superseded) and KB900725. This is patched as of HFSLIP 60121 but I thought you might wanna know what's going on.

I've tested this thing extensively, and my conclusion is that localized versions of webvw.dll that are present in these hotfixes are corrupt or at least have a corrupt registration section. When either of these files is registered, and you didn't disable the "left pane" in folders, you'll be bombarded with JavaScript error messages when you're trying to browse your local network through "Computers Near Me".

Why doesn't this happen when installing the hotfixes by hand?

Because the localized versions of these hotfixes don't register the webvw.dll file they contain. They just overwrite the previous version that resides in the system32 folder and let the registry believe the SP4 version is still installed. As a test, install a clean version of Windows 2000 with SP4, and install IE6 too if you want. Then install either one of these hotfixes. All is still fine at this point. Now open up a Run prompt and type in the following:

regsvr32 /u webvw.dll

Hit Enter and click OK at the message that appears. This unregisters the SP4 version of webvw.dll. Now open up the Run prompt again and type in the following:

regsvr32 webvw.dll

Press Enter and click OK. You just registered the new version of webvw.dll. Now try browsing your network through "Computers Near Me"...

(PM me for instructions on how to fix it again)

The English versions of the newer webvw.dll files are registered, but the versions for other languages are not. It's impossible MS are not aware of the webvw.dll problem, otherwise they wouldn't have "blocked" the registration process. I just wish they'd fix this once and for all...

Current Windows 2000 updates

Browsing

• Internet Explorer 6.0 Service Pack 1 English / other languages

Required files: BRANDING.CAB; IEW2K_1.CAB; IEW2K_2.CAB; IEW2K_3.CAB;

IEW2K_4.CAB; MAILNEWS.CAB; OEEXCEP.CAB; SCRIPTEN.CAB; WAB.CAB

• Windows Script 5.6 (IE6 only)

• MSXML: KB832414_MSXML2.5_x86.exe (language neutral)

• MSXML2: msxml2.msi (multilingual) + msxml2sp6-kb887606-x86-enu.exe update (language neutral)

• MSXML4: msxml4-KB927978-enu.exe (available in 9 languages)

• MSXML6: msxml6-KB927977-enu-x86.exe (available in 13 languages)

DirectX

• DirectX 9.0c from DirectX 9.0c Redist (33.5MB) or DirectX 9.0c Dec '06 Redist (59.2MB)

Required files: BDANT.cab and DXNT.cab

• Extra DX9 gaming binaries from DirectX 9.0c Dec '06 Redist (59.2MB)

Supported files: *d3dx9*x86.cab, *XACT*x86.cab and *xinput*x86.cab

Windows Media

• Windows Media Player 6.4 codec package (wmp6cdcs.exe; include only when using WMP 6.4)

• Windows Media 9/10 Codecs. Required file: wmfdist.exe

• Windows Media Player 9 English / other languages

Other

• Windows Update Agent 2.0 (Windows Update v6; direct link)

• Windows Genuine Advantage (LegitCheckControl.cab; redirect link)

• Roots Certificate Update (English; direct link)

• Malicious Software Removal Tool

Current critical Windows 2000 post-SP4 hotfixes

MDAC253-KB911562-x86-ENU.exe (Vulnerability in MDAC 2.5 SP3)

Windows2000-KB842773-x86-ENU.EXE (BITS 2.0 and WinHTTP 5.1)

Windows2000-KB891861-v2-x86-ENU.EXE (Update Rollup 1 v2)

Windows2000-KB893756-x86-ENU.EXE (Vulnerability in Telephony service)

Windows2000-KB896358-x86-ENU.EXE (Vulnerability in HTML Help)

Windows2000-KB896423-x86-ENU.EXE (Vulnerability in Print Spooler service)

Windows2000-KB896424-x86-ENU.EXE (Vulnerabilities in graphics rendering engine)

Windows2000-KB899587-x86-ENU.EXE (Vulnerabilities in Kerberos)

Windows2000-KB899589-x86-ENU.EXE (Vulnerability in Client Service for NetWare)

Windows2000-KB899591-x86-ENU.EXE [sERVER] (Vulnerability in Remote Desktop protocol)

Windows2000-KB900725-x86-ENU.EXE (Vulnerabilities in Windows Shell)

Windows2000-KB901017-x86-ENU.EXE (Vulnerability in MS Collaboration Data Objects)

Windows2000-KB901214-x86-ENU.EXE (Vulnerability in MS Color Management Module)

Windows2000-KB902400-x86-ENU.EXE (Vulnerabilities in MSDTC and COM+)

Windows2000-KB905414-x86-ENU.EXE (Vulnerability in Network Connection Manager)

Windows2000-KB905749-x86-ENU.EXE (Vulnerability in Plug and Play)

Windows2000-KB908506-x86-ENU.EXE (Post-896423)

Windows2000-KB908519-x86-ENU.EXE (Vulnerability in Embedded Web Fonts)

Windows2000-KB908531-v2-x86-ENU.EXE (Vulnerability in Windows Explorer)

Windows2000-KB911280-v2-x86-ENU.EXE (Vulnerability in Routing and Remote Access)

Windows2000-KB912919-x86-ENU.EXE (Vulnerability in graphics rendering engine)

Windows2000-KB913580-x86-ENU.EXE (Vulnerability in MS DTC)

Windows2000-KB914388-x86-ENU.EXE (Vulnerability in DHCP Client Service)

Windows2000-KB914389-x86-ENU.EXE (Vulnerability in Server Message Block)

Windows2000-KB917008-x86-ENU.EXE (Vulnerability in MS MMC)

Windows2000-KB917422-x86-ENU.EXE (Vulnerability in Windows Kernel)

Windows2000-KB917537-x86-ENU.EXE (Vulnerability in MS IIS using ASP)

Windows2000-KB917736-x86-ENU.EXE (Vulnerability in RPC mutual authentication)

Windows2000-KB917953-x86-ENU.EXE (Vulnerability in TCP/IP)

Windows2000-KB920213-x86-ENU.EXE (Vulnerability in Microsoft Agent)

Windows2000-KB920670-x86-ENU.EXE (Vulnerabilities in Hyperlink Object Library)

Windows2000-KB920683-x86-ENU.EXE (Vulnerability in DNS Resolution)

Windows2000-KB920685-x86-ENU.EXE (Vulnerability in Indexing Service)

Windows2000-KB920958-v2-x86-ENU.EXE (Vulnerability in Windows Kernel)

Windows2000-KB921398-x86-ENU.EXE (Vulnerability in Windows Explorer)

Windows2000-KB921883-x86-ENU.EXE (Vulnerability in Server Service)

Windows2000-KB922582-x86-ENU.EXE (Error message "0x80070002")

Windows2000-KB922616-x86-ENU.EXE (Vulnerability in HTML Help)

Windows2000-KB923191-x86-ENU.EXE (Vulnerability in Windows Explorer)

Windows2000-KB923414-x86-ENU.EXE (Vulnerability in Server Service)

Windows2000-KB923980-x86-ENU.EXE (Vulnerabilities in Client Service for NetWare)

Windows2000-KB924191-v2-x86-ENU.EXE (Vulnerability in MSXML3)

Windows2000-KB924270-x86-ENU.EXE (Vulnerability in Workstation Service)

Windows2000-KB926121-x86-ENU.EXE (Vulnerability in Remote Installation Service)

Windows2000-KB926247-x86-ENU.EXE (Vulnerability in SNMP)

WindowsInstaller-KB893803-v2-x86.exe (Windows Installer 3.1 Redistributable)

WindowsMedia6-KB925398-x86-ENU.EXE (Vulnerability in Windows Media Format)

WindowsMedia-KB911564-x86-ENU.exe (Vulnerability in Windows Media Player plug-in)

Current optional Windows 2000 post-SP4 hotfixes

Windows-KB909520-v1.000-x86-ENU.exe (MS Base Smart Card...)

WindowsRightsManagementServicesSP2... (Windows RMS Client)

WindowsXP-KB928388-x86-ENU.exe (2007 time zone update)

Updates for MSIE when slipstreaming MSIE 6.0 SP1

IE6.0sp1-KB905495-Windows2000-x86-ENU.exe (Vulnerability in the Windows FTP client)

IE6.0sp1-KB925454-Windows2000-x86-ENU.exe (Cumulative security update for MSIE6)

IE6.0sp1-KB929969-Windows2000-x86-ENU.exe (Vulnerability in Vector Markup Language)

OE6.0sp1-KB923694-Windows2000-x86-ENU.exe (Cumulative security update for MSOE6)

Update for Windows Scripting when slipstreaming MSIE 6.0 SP1 but NOT slipstreaming the latest Windows Script 5.6

Windows2000-KB917344-56-x86-ENU.EXE (Vulnerability in MS JScript 5.6)

Updates for MSIE when keeping MSIE 5.01 SP4 (ie, NOT slipstreaming MSIE6)

IE5.01sp4-KB925454-Windows2000sp4-x86-ENU.exe (Cumulative security update for MSIE5)

IE5.01sp4-KB929969-Windows2000sp4-x86-ENU.exe (Vulnerability in Vector Markup Language)

OE5.5sp2-KB923694-Windows2000sp4-x86-ENU.exe (Cumulative security update for MSOE5.5)

Windows2000-KB917344-x86-ENU.EXE (Vulnerability in MS JScript)

Update for DirectX when slipstreaming DirectX 9.0c

Windows2000-KB904706-DX9-x86-ENU.exe

Update for DirectX when keeping DirectX 7.0 (ie, NOT slipstreaming DX9)

Windows2000-KB904706-v2-x86-ENU.EXE

Update for WMP9

Windows2000-KB923689-x86-ENU.EXE (Vulnerability in Windows Media Format)

WindowsMedia9-KB917734-x86-ENU.exe (Vulnerability in Windows Media Player 9)

Edited February 1, 2007 by Tomcat76

[tain]

On your other Win2K page, can you please explain this in more detail?

DirectX 9.0c from DirectX 9.0c Redist (33.5MB) or DirectX 9.0c Feb '06 Redist (49MB)

Needed files: BDANT.cab and DXNT.cab

New DirectX 9.0c gaming binaries from DirectX 9.0c Feb '06 Redist (49MB)

Needed files: [date]_d3dx9_[number]_x86.cab

What are the pros/cons of either option? Using just option 2 will give you full DX9 funtionality?

A bit of this was addressed in http://www.msfn.org/board/index.php?showtopic=67203&hl=d3dx9 but some of us knuckledraggers could still use a summarized clue

[Tomcat76]

The first is the basic DX9 stuff and the second are additions for gamers. HFSLIP allows the latter to be installed seperately but I don't know if they work in a non-DX9 environment... I'm not a gamer.

[Aluminum]

The monthly addons are just addons, every game that uses them also uses the DX9c base. A lot of games will install the addons no matter what. (no prompt at all, but they do check for DX9c first and prompt that if none detected)

So its almost pointless to do them, but personally I like having 'complete' slipstreams. And eventually installers will stop messing with files without at least asking or checking first.

I believe most of them are various shader program libraries.

Edited March 6, 2006 by Aluminum

[Jackrip5]

Note for non-English Windows 2000 users

There's an issue with the non-English versions of "webvw.dll" present in the Update Rollup, KB894320 (superseded) and KB900725. This is patched as of HFSLIP 60121 but I thought you might wanna know what's going on.

Hi !

I just wanted to let you know that above mentionned Problem stills exists with version 60425 and a german Windows 2000 Install. (indeed i have the update rollup and the KB900725 in my HF folder).

I'll give it a try and remove the KB900725 from my HFSLIP/UNATTENDED install (only to get rid of these stuped script errors in Control Panel, Network,...)

Greetings

[Tomcat76]

HFSLIP does a generic fix, independent of the hotfix that contains webvw.dll. The only way I can imagine this wouldn't work is when HFSLIP fails to detect that your OS is a non-English Windows 2000.

Can you check in SOURCESS\I386 that you have a file called webvw2.dl_?

[Jackrip5]

Mea Culpa

I must have done something wrong. Probably I integrated a wrong or old Hotfix. I've redownloaded all listet updates and hotfixes here in this post and it seems to work again.

Sorry !

[Xenomorph]

when i run this, everything seems to work during install, EXCEPT:

i get the message that Win2000 setup cannot read SPX.CAB and SP4.CAB. i skip both, and Windows 2000 installs fine.

the files are in \i386, so why arent they seen/copied correctly?

sorry if this has been covered before.

[Super-Magician]

This seems to happen often with Win2000 Setup. I've encountered the error before too.

Can you attach your HFSLIP.LOG file?

Also, is SP4.CAB present in your SOURCE\I386 directory? Which driver compression method did you select?

[Tomcat76]

That you get the message for SP4.CAB is odd. HFSLIP doesn't mess with that file. I'm gonna try to see if I can work around this problem by using the same "file copy error fix" that's in use now for Windows XP.

[Xenomorph]

i'll try to attach one of the logs

i've done this twice now, and both times got the spx/sp4 error.

i went with option E, for the medium compression seperate SPX file.

\source\i386\sp4.cab exists

i read somewhere that i need to add this to DOSNET.INF:

[Files]

;...

d1,disk1

;...

i have NOT tried that yet.

im doing this for one of my Laptops. i have a slipstreamed Win2kSP4 disc that works fine.

the Laptop does NOT have a Floppy or CD drive...! all files are installed from real mode DOS (Win98SE boot) using WINNT.EXE.

everything is installed from C:\Files\Install\Win2k\i386.

i'm testing out these updated slipstream builds using WINNT.EXE + Win98SE DOS under VMware.

3 systems of mine do not have Floppy or CD drives

HFSLIP.TXT

[Tomcat76]

HFSLIP wasn't made for DOS installs. I cleared some of the "problems" in that domain in the last few months and intend to continue this so if "d1,disk1" fixes it for you I'll see if I can implement it.

[the_guy]

@Tomcat: Microsoft released v2 of 911280 today. Just thought I'd give you a heads up about it to update your lists and, maybe, see if you need to modify HFSLIP to support v2 on 2000.

the_guy

[Tomcat76]

Thanks.

No HFSLIP updates are needed at first glance....

[wrulab]

I've been trying to make my own windows 2000 SP5 disk (sp4/dx9/ie6/wmp9) but I seem to run into two problems

KB917344 and KB911562

With KB917344 HFSLIP pauses with an error message saying it has nothing to load from it (hit space and it continues of course) and it doesn't matter which version of the update I try ("Windows2000-KB917344-x86-ENU.EXE" and "WindowsXP-Windows2000-Script56-KB917344-x86-enu.exe")

HFSLIP seems to install KB911562 but both updates show up in windows update. I can either run the updates or let Windows update install them and then it shows fully patched. I even doubled checked my HF lists with the (http://users.telenet.be/tc76/winup/_win2k.html) list. even Nlite failed to install the updates after the fact.

Is this common? I have skipped something otherwise obvious? or should I just be happy I can get everything but 2 updates to install, add them to the disk to install afterwards and STFU? any helpful comments appreciated.. thanks!

:-)