Windows XP Lists of Updates

Jim Carlock · Mar 29, 2004

Windows is retaining a list of installed components and
updated components somewhere. It is a list as anyone can
do this to prove it. The list can be used by viral
programmers to indicate that your system is fully updated
and compliant when your system goes to verify it's
integrity against the Windows update site.

It is real easy to prove that this exists and is a
situation that Microsoft has continued to neglect since
Windows 98 first came out and possibly earlier.

NOTE: Before you attempt this make sure you can restore
your original configuration, because Windows Update will
NOT detect anything has changed. In other words create
a backup of any files you are going to replace.

To prove it on an XP system, just copy msoeres.dll from
the original CD to the following to places:

C:\Windows\System32\dllcache
C:\Program Files\Outlook Express

Then reboot the system. We want to make sure that the
files are taken out of memory and that they hold the
date of the original msoeres.dll.

And the goal is to prove that upon reboot, the files
will hold the original date, and that when you go to
the Windows Update site, it will in no way detect the
changes.

Outlook Express should continue to work okay and the
files should work fine and you can run Outlook Express
to confirm this. I don't recommend it but I'm doing it
and I believe the msoeres.dll file is just a resource
file based upon the name of the file. It does contain
some scripting code within though, that might compromise
your system, so you'll want to change it back to the
updated version.

And I do hold a question. Obviously, the operating
system doesn't check or verify integrity and Microsoft
does not do so and their sales pitches that XP is more
secure than other operating systems is not 100% correct.
This has been a problem that has existed dating all
the way back to at least Windows 98 and it's been talked
about in the past.

I'm looking for that file that the Microsoft Update site
checks.

Also, note that using SFC.exe as is recommended and
supplied by Microsoft poses an even greater security
flaw. It seems to try to restore files from the Original
CD and does NOT update that list of components and it is
my proposition that any such list is faulty. Perhaps
someone at Microsoft thinks that such is a list is an
improvement to the operating system. I however disagree
right at this moment.

Please correct me if I'm wrong in stating these. I
believe they are all 100% truthful and factual but I
might have overlooked something.

Does anyone out there know where this list is found,
if the list is duplicated anywhere else, like if it's
found in a particular folder, is it then duplicated
inside of the registry?

Thanks in advance for any comments. :-)

Bee · Mar 30, 2004

Jim said:
....It seems to try to restore files from the Original
CD and does NOT update that list of components...

http://www.updatexp.com/scannow-sfc.html
Please read "What about Windows Updates...." 2/3 down the page.

Bee.

Jim Carlock · Apr 4, 2004

Thanks Bee.

That is useful information. But it doesn't seem to work or apply to
my system for some reason.

I'm really trying to understand the whole concept behind it, but it
really looks like I need a degree from Microsoft to understand
what's going on with it. It just doesn't make sense to me and it's
creating problems.

I really appreciate the link, but I've gone over it, and Microsoft
was supposed to have gotten rid of the rebooting problems with
Windows 9x, but they reintroduced the same problems with XP.

They seem to be playing head trick and mind tricks on everyone
and it's really getting annoying to me.

There is a saying about KISS. Microsoft has gone out of their
way to make something as simple as a functional operating
system... it's just so annoying that the amount of .... that one
must go through to understand a simple file copying process.

It's gone past intelligent. It's no longer intelligent. I used to
really look up to Bill Gates, but he seems to have lost control.

I still admire the guy, but it's so obvious that he is no longer
in control and that he's letting people make really stupid mistakes,
mistakes that are imbrawling his corporation in legal battles with
not only the U.S. Government, but with other Governments as
well. Although, I really see a lot of what Europe is doing is just
because they are hungry for money, as is everyone, because G.
Bush really demonized everything for everyone but his own
personal friends, it is just absolutely disgusting.

The webpage you've provided is helpful. I'm just so lost when it
comes to trying to understand why SFC exists. It doesn't work.
It's creating so many problems. Is there a Microsoft published
page that details exactly what it does somewhere? Microsoft
seems to want to hide everything they've done. I've disabled
the SFC on various servers and they've never had any problem
whatsoever. Those were Win2K servers. But when I deal with
SFC on XP, all I get are problems.

I've deleted all the ServicePack Folders, all the hidden folders,
and Microsoft's WebUpdate page fails to identify updates that
are required and needed. It does NOT work. It works about 50%
of the time on the first group of updates, but it just doesn't work
in general.

I can put files on my system that the update site just doesn't do
a darn thing about. This is a FAILURE on the part of MICROSOFT.

FAILURES:
SFC continuously asks for a CD. The files are on the hard disk drive.

Please, if I am wrong about any statements I've made, let me know.
I really appreciate your help. If anyone knows of a statement that
I've made that is wrong or shouldn't be said, please tell me so. Some-
times I run around blind and need to be corrected. And if I am left
to run around without correction, I just make myself look like a dolt.
<g>

I've updated the registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup

Subkey: SourcePath
Value: C:\Deploy\XP\

The i386 folder is located off the XP subdirectory.

I've looked at Microsoft's website link:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;242450

which details keywords, but SFC doesn't exist there. System File doesn't
exist either. The keywords don't mention anything about it. The keyword
that seems appropriate would be sysinfo, but when combined with sfc,
their search engine fails to find anything.

Searching for sysinfo keyword doesn't return what I'd expect it to return.
Apparently SysInfo is not a global keyword but rather a localized KeyWord
that only applies to the SysInfo program.

http://support.microsoft.com/default.aspx?scid=kb;en-us;188186

indicates that SFC scans for:

1) damaged, missing, or changed files.

IT FAILS.

2) Extract original Windows 98 system files.

I NEVER USED SFC on Windows 98.

3) Track changes to the system and identify altered files.

What is it checking, specifically? Where is the list, specifically?
Microsoft's
website doesn't say! It advertises things but doesn't mention anything
appropriate. It is just a big FAILURE on the part of MICROSOFT. They
are advertising things there that they are NOT providing. That SFC is NOT
providing. It IS a blatent LIE!

I really hate saying that, so please correct me if I am wrong.

If a car dealer tells you that a car has A/C and it doesn't that car dealer
gets
into big trouble. That particular webpage is at Microsoft:

http://support.microsoft.com/default.aspx?scid=kb;en-us;188186

It also indicates some more useless information:
* Track changes to the system and identify altered files.

Where is this tracking information to be found? It has some secret hiding
spot that no one is supposed to know about? It kind of makes managing
a system useless. Because instead of managing the system files, you end
up managing SFC. While it does indicate that a file is messed up, it does
NOTHING in the realm of indicating any useful information, other than
providing a filename. That means that SFC must be reconfigured as well
as the file. That means there are two things to manage instead of one.

One file has now become a big complicated issue that SFC fails 100%
in every manner, and means tracking down that one file, NOW means,
it is not one file to be tracked down any longer. It must be tracked down
in multiple locations, and to do a file search on a system that is failing
may take 10 or 20 minutes to find all occurances of the files because the
whole dang hard drive must be searched for all occurances of that file.
SFC is not KISS. SFC is an the brilliance of an idiot. The guy that though
of SFC should be set on fire, cut up and fed to everyone at Microsoft.
Bill Gates should be fed that guy or gal's royal anotomy. What a DOLT!

I am truly apologetic about this RANT. But I feel I need to get it out.

<g> Cheers!

--
Jim Carlock
http://www.microcosmotalk.com/
Post replies to the newsgroup.

Bee said:
Jim wrote:
....It seems to try to restore files from the Original
CD and does NOT update that list of components...

http://www.updatexp.com/scannow-sfc.html
Please read "What about Windows Updates...." 2/3 down the page.

Bee.