On decommissioning of update servers for 2000, XP, (and Vista?) as of July 2019

**D.Draker** · January 22, 2022

20 hours ago, maile3241 said:

Hello @Dave-H have you tried this yet? http://i430vx.net/files/wsusstuff/NT5x/rootsupd.exe

This is the same Microsoft tool from here , just from another mirror.

https://msfn.org/board/topic/175170-root-certificates-and-revoked-certificates-for-windows-xp/

For Root Certificate Update "rootsupd.exe" ~~Microsoft download (http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/rootsupd.exe)~~, unzip to a folder (eg with WinRAR), in "rootsupd.inf" entry in the string VERSION should "40,0,2195,0" loud and in VER "040" , In the next step,

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authroots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/delroots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/roots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/updroots.sst" download and paste the unzipped folder and replace older files. Then with e.g. (Create Self-Extracting Archive) WinRAR all files in the folder to an archive option SFX with the following comment:

TempMode

Silent=1

Overwrite=1

Setup=Rundll32.exe advpack.dll,LaunchINFSection rootsupd.inf,DefaultInstall

pack and you have a current root certificate update!

**Dave-H** · January 23, 2022

OK, I'll give that a try to see if it makes any difference, and I'll report back tomorrow.

**D.Draker** · January 23, 2022

Don't forget to apply the disallowed first . And run the rar file as admin.

**ExtremeGrief** · January 23, 2022

14 hours ago, D.Draker said:

This is the same Microsoft tool from here , just from another mirror.

https://msfn.org/board/topic/175170-root-certificates-and-revoked-certificates-for-windows-xp/

For Root Certificate Update "rootsupd.exe" Microsoft download (http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/rootsupd.exe), unzip to a folder (eg with WinRAR), in "rootsupd.inf" entry in the string VERSION should "40,0,2195,0" loud and in VER "040" , In the next step,

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authroots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/delroots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/roots.sst"

"http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/updroots.sst" download and paste the unzipped folder and replace older files. Then with e.g. (Create Self-Extracting Archive) WinRAR all files in the folder to an archive option SFX with the following comment:

TempMode

Silent=1

Overwrite=1

Setup=Rundll32.exe advpack.dll,LaunchINFSection rootsupd.inf,DefaultInstall

pack and you have a current root certificate update!

You forgot disallowedcerts.sst

**maile3241** · January 23, 2022

15 hours ago, AstroSkipper said:

@maile3241 Have you already checked if at offset EC84 of your file this code 83F89D7508 matches? You always say the same but you give less information about what you have tried. Use an hexeditor like WinHex and look inside! If code matches then you can patch outside of system32 without any problems.

I think I found the problem. I have version 5.1.2600.5512 not 5.1.2600.3264. :blushing:

**AstroSkipper** · January 23, 2022

9 minutes ago, maile3241 said:

I think I found the problem. I have version 5.1.2600.5512 not 5.1.2600.3264

@maile3241 Version 5.1.2600.5512 is what I have and is an original service pack 3 file. And patching is no problem using hexeditor.

**maile3241** · January 23, 2022

13 minutes ago, AstroSkipper said:

@maile3241 Version 5.1.2600.5512 is what I have and is an original service pack 3 file. And patching is no problem using hexeditor.

Which line in the editor do I need to change?

**AstroSkipper** · January 23, 2022

4 minutes ago, maile3241 said:

Which line in the editor do I need to change?

@maile3241 At offset EC84, replace 83F89D7508 by 3BC0EB3290. But first check if code 83F89D7508 matches exactly in your file.

Edited January 23, 2022 by AstroSkipper
addition

**maile3241** · January 23, 2022

I don't have EC84.

Edited January 23, 2022 by maile3241

**AstroSkipper** · January 23, 2022

On 1/23/2022 at 12:34 PM, maile3241 said:

I don't have EC84

@maile3241 https://imgur.com/AqLdRes

Of course you have. In hexeditor all lines are arranged hexadecimal on left side. Find line 0000EC80 and then position (column) 4. Open your eyes! In your screenshot I can see the matching code. :whistle:

Edited January 31, 2022 by AstroSkipper
deletion

**maile3241** · January 23, 2022

28 minutes ago, AstroSkipper said:

@maile3241 Of course you have. In hexeditor all lines are arranged hexadecimal on left side. Find line 0000EC80 and then position (column) 4. Open your eyes! In your screenshot I can see the matching code.

Thanks, found it. Can I just use the cursor to replace the values?

**AstroSkipper** · January 23, 2022

11 minutes ago, maile3241 said:

Thanks, found it. Can I just use the cursor to replace the values?

@maile3241 Of course you can. Copy new code, mark this region with your mouse and paste new code, But do not change other bits. Check after patching if only these ten digits have changed. It's the most simple thing. :buehehe:

Edited January 23, 2022 by AstroSkipper

**maile3241** · January 23, 2022

5 minutes ago, AstroSkipper said:

@maile3241 Of course you can. Copy new code, mark this region with your mouse and paste new code, It's the most simple thing.

I get an error message that the file is in use. I have already stopped the cryptographic service.

**AstroSkipper** · January 23, 2022

16 minutes ago, maile3241 said:

I get an error message that the file is in use. I have already stopped the cryptographic service

@maile3241 I don't know what you are doing. I told you a lot of posts above you have to copy sfc_os.dll to another partition or folder. Windows may not have access to your file. Do not patch this file in folder system32 or system32\dllcache! Then copy your patched file first to system32\dllcache and then to system32.If it is blocked do it using linux or WinPE.

**maile3241** · January 23, 2022

17 minutes ago, AstroSkipper said:

@maile3241 I don't know what you are doing. I told you a lot of posts above you have to copy sfc_os.dll to another partition or folder. Windows may not have access to your file. Do not patch this file in folder system32 or system32\dllcache! Then copy your patched file first to system32\dllcache and then to system32.If it is blocked do it using linux or WinPE.

OK. I patched the file on the desktop. But I don't see any dllcache folder. I'm slowly giving up.

Sign In

On decommissioning of update servers for 2000, XP, (and Vista?) as of July 2019

Recommended Posts

D.Draker

Dave-H

D.Draker

ExtremeGrief

maile3241

AstroSkipper

maile3241

AstroSkipper

maile3241

AstroSkipper

maile3241

AstroSkipper

maile3241

AstroSkipper

maile3241

Create an account or sign in to comment

Create an account

Sign in

Recently Browsing 0 members

Activity

Browse