@echo off

REM ##############################################################################
REM
REM Windows 2000 Professional / Server SP3 patch script by Doc Rice v1.2
REM This script requires the use of REG.EXE from the Windows NT 4.0 Resource Kit, 
REM the SLEEP.EXE utility, and QFECHECK.EXE.
REM
REM An updated version of REG.EXE utility can be found at:
REM 
REM ftp://ftp.microsoft.com/bussys/winnt/winnt-public/reskit/nt40/i386/reg_x86.exe
REM
REM SLEEP.EXE can be found at:
REM
REM http://www2.gol.com/users/trane/programming/programming.html
REM
REM QFECHECK.EXE can be found at:
REM
REM http://support.microsoft.com/default.aspx?scid=kb;EN-US;q282784
REM
REM WARNING: This script assumes your Windows 2000 OS has been installed with 
REM defaults and currently has DirectX 7.0.
REM
REM Please see http://winpatch.homeip.net for updated information.
REM
REM ##############################################################################


color 1F
title Windows 2000 SP3 Hotfix Install
setlocal
for /f "tokens=7" %%i in ('".\QFECHECK\qfecheck.exe /v | find /i "service pack""') do set Service Pack=%%i
if 3 == %Service Pack% goto install
endlocal
goto nosp3

:install
echo Installing patches for Windows 2000 SP3...
echo --------------------------------------------------------------------------------
echo Patch list updated as of 5/10/2005.
echo.
echo Today is %date%.
echo.
echo.
echo.


REM -------------------------------------------------------------
echo Patching for Q296441... & .\OS\Q296441\rbupdate.exe

echo.
echo Checking for MS02-042: Flaw in Network Connection Manager Could Enable Privilege Elevation
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q326886\Description" /s || echo Patching - see Q326886... && .\OS\Q326886\Q326886_W2K_SP4_X86_EN.exe -q -z

echo.
echo Checking for MS02-045: Unchecked Buffer in Network Share Provider Can Lead to Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q326830\Description" /s || echo Patching - see Q326830... && .\OS\Q326830\Q326830_W2K_SP4_X86_EN.exe -q -z

echo.
echo Checking for MS02-048: Flaw in Certificate Enrollment Control Could Allow Deletion of Digital Certificates
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q323172\Description" /s || echo Patching - see Q323172... && .\OS\Q323172\q323172_W2K_SP4_X86_EN.exe -u -q -z

echo.
echo Checking for MS02-050: Certificate Validation Flaw Could Enable Identity Spoofing
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q329115\Description" /s || echo Patching - see Q329115... && .\OS\Q329115\Q329115_W2K_SP4_X86_EN.exe /u /q /z

echo.
echo Checking for MS02-063: Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q329834\Description" /s || echo Patching - see Q329834... && .\OS\Q329834\Q329834_W2K_SP4_X86_EN.exe /q /m /z

echo.
echo Checking for MS02-070: Flaw in SMB Signing Could Enable Group Policy to be Modified
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q329170\Description" /s || echo Patching - see Q329170... && .\OS\Q329170\Q329170_W2K_SP4_X86_EN.exe /q /u /z

echo.
echo Checking for MS03-001: Unchecked Buffer in Locator Service Could Lead to Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q810833\Description" /s || echo Patching - see Q810833... && .\OS\Q810833\Q810833_W2K_SP4_X86_EN.exe /u /q /z

echo.
echo Patching for Q814078... & .\OS\Q814078\js56nen.exe /q /r:n

echo.
echo Checking for MS03-011: Flaw in Microsoft VM Could Enable System Compromise
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP-1\Q816093\Description" /s || echo Patching - see Q816093... && .\OS\Q816093\Q816093_W2K_SP4_X86_EN.exe -z -q

echo.
echo Checking for MS03-023: Buffer Overrun In HTML Converter Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB823559\Description" /s || echo Patching - see Q823559... && .\OS\Q823559\Windows2000-KB823559-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-024: Buffer Overrun in Windows Could Lead to Data Corruption
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\KB817606\Description" /s || echo Patching - see Q817606... && .\OS\Q817606\Windows2000-KB817606-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-034: Flaw in NetBIOS Could Lead to Information Disclosure
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB824105\Description" /s || echo Patching - see Q824105... && .\OS\Q824105\Windows2000-KB824105-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-041: Vulnerability in Authenticode Verification Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB823182\Description" /s || echo Patching - see Q823182... && .\OS\Q823182\Windows2000-KB823182-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-042: Buffer Overflow in Windows Troubleshooter ActiveX Control Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB826232\Description" /s || echo Patching - see Q826232... && .\OS\Q826232\Windows2000-KB826232-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-043: Buffer Overrun in Messenger Service Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB828035\Description" /s || echo Patching - see Q828035... && .\OS\Q828035\Windows2000-KB828035-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-044: Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB825119\Description" /s || echo Patching - see Q825119... && .\OS\Q825119\Windows2000-KB825119-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-049: Buffer Overrun in the Workstation Service Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB828749\Description" /s || echo Patching - see Q828749... && .\OS\Q828749\Windows2000-KB828749-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-051: Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\KB810217\Description" /s || echo Patching - see Q810217... && .\OS\Q810217\Windows2000-KB810217-x86-ENU.exe /u /q /z

echo.
echo Checking for MS04-011: Security Update for Microsoft Windows
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB835732\Filelist" /s || echo Patching - see Q835732... && .\OS\Q835732\Windows2000-KB835732-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-012: Cumulative Update for Microsoft RPC/DCOM
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB828741\Filelist" /s || echo Patching - see Q828741... && .\OS\Q828741\Windows2000-KB828741-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-014: Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB837001\Filelist" /s || echo Patching - see Q837001... && .\OS\Q837001\Windows2000-KB837001-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-019: Vulnerability in Utility Manager Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB842526\Filelist" /s || echo Patching - see Q842526... && .\OS\Q842526\Windows2000-KB842526-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-020: Vulnerability in POSIX Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB841872\Filelist" /s || echo Patching - see Q841872... && .\OS\Q841872\Windows2000-KB841872-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-022: Vulnerability in Task Scheduler Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB841873\Filelist" /s || echo Patching - see Q841873... && .\OS\Q841873\Windows2000-KB841873-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-023: Vulnerability in HTML Help Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB840315\Filelist" /s || echo Patching - see Q840315... && .\OS\Q840315\Windows2000-KB840315-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-024: Vulnerability in Windows Shell Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB839645\Filelist" /s || echo Patching - see Q839645... && .\OS\Q839645\Windows2000-KB839645-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-031: Vulnerability in NetDDE Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB841533\Filelist" /s || echo Patching - see Q841533... && .\OS\Q841533\Windows2000-KB841533-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-032: Security Update for Microsoft Windows
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB840987\Filelist" /s || echo Patching - see Q840987... && .\OS\Q840987\Windows2000-KB840987-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-037: Vulnerability in Windows Shell Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB841356\Filelist" /s || echo Patching - see Q841356... && .\OS\Q841356\Windows2000-KB841356-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-041: Vulnerability in WordPad Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB885836\Filelist" /s || echo Patching - see Q885836... && .\OS\Q885836\Windows2000-KB885836-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-043: Vulnerability in HyperTerminal Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB873339\Filelist" /s || echo Patching - see Q873339... && .\OS\Q873339\Windows2000-KB873339-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-044: Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB885835\Filelist" /s || echo Patching - see Q885835... && .\OS\Q885835\Windows2000-KB885835-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-001: Vulnerability in HTML Help Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB890175\Filelist" /s || echo Patching - see Q890175... && .\OS\Q890175\Windows2000-KB890175-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-002: Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB891711\Filelist" /s || echo Patching - see Q891711... && .\OS\Q891711\Windows2000-KB891711-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-003: Vulnerability in the Indexing Service Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB871250\Filelist" /s || echo Patching - see Q871250... && .\OS\Q871250\Windows2000-KB871250-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-008: Vulnerability in Windows Shell Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB890047\Filelist" /s || echo Patching - see Q890047... && .\OS\Q890047\Windows2000-KB890047-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-010: Vulnerability in the License Logging Service Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB885834\Filelist" /s || echo Patching - see Q885834... && .\OS\Q885834\Windows2000-KB885834-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-011: Vulnerability in Server Message Block Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB885250\Filelist" /s || echo Patching - see Q885250... && .\OS\Q885250\Windows2000-KB885250-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-012: Vulnerability in OLE and COM Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB873333\Filelist" /s || echo Patching - see Q873333... && .\OS\Q873333\Windows2000-KB873333-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-013: Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB891781\Filelist" /s || echo Patching - see Q891781... && .\OS\Q891781\Windows2000-KB891781-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-015: Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB888113\Filelist" /s || echo Patching - see Q888113... && .\OS\Q888113\Windows2000-KB888113-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-016: Vulnerability in Windows Shell that Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB893086\Filelist" /s || echo Patching - see Q893086... && .\OS\Q893086\Windows2000-KB893086-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-018: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB890859\Filelist" /s || echo Patching - see Q890859... && .\OS\Q890859\Windows2000-KB890859-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-019: Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB893066\Filelist" /s || echo Patching - see Q893066... && .\OS\Q893066\Windows2000-KB893066-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS05-024: Vulnerability in Web View Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB894320\Filelist" /s || echo Patching - see Q894320... && .\OS\Q894320\Windows2000-KB894320-x86-ENU.EXE /quiet /norestart


REM -------------------------------------------------------------
echo.
echo.
echo Patching Internet Information Services 5.0 SP3
echo --------------------------------------------------------------------------------
echo.

.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NntpSvc" || goto w3svc

echo.
echo Checking for MS04-036: Vulnerability in NNTP Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB883935\Filelist" /s || echo Patching for Q883935... && .\IIS\Q883935\Windows2000-KB883935-x86-ENU.EXE /quiet /norestart

:w3svc
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W3SVC" || goto iepatch


echo.
echo Checking for MS03-018: Cumulative Patch for Internet Information Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP4\Q811114\Filelist" /s || echo Patching for Q811114... && .\IIS\Q811114\Q811114_W2K_SP4_X86_EN.exe /q /z

echo.
echo Checking for MS04-030: Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB824151\Filelist" /s || echo Patching for Q824151... && .\IIS\Q824151\Windows2000-KB824151-x86-ENU.EXE /quiet /norestart


:iepatch
REM -------------------------------------------------------------
echo.
echo.
echo Patching Internet Explorer
echo --------------------------------------------------------------------------------
echo.

setlocal

for /f "tokens=3" %%i in ('.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Version"') do set IE_Version=%%i

if 5.00.2516.1900 == %IE_Version% (goto patch-ie501sp3)
if 5.00.2919.800 == %IE_Version% (goto patch-ie501sp3)
if 5.00.2919.3800 == %IE_Version% (goto patch-ie501sp3)
if 5.00.2919.6307 == %IE_Version% (goto patch-ie501sp3)
if 5.00.2920.0000 == %IE_Version% (goto patch-ie501sp3)
if 5.00.3103.1000 == %IE_Version% (goto patch-ie501sp3)
if 5.00.3105.0106 == %IE_Version% (goto patch-ie501sp3)
if 5.00.3314.2101 == %IE_Version% (goto patch-ie501sp3)
if 5.00.3315.1000 == %IE_Version% (goto patch-ie501sp3)
if 5.00.3502.1000 == %IE_Version% (goto patch-ie501sp3)
if 5.50.3825.1300 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4030.2400 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4134.0100 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4134.0600 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4308.2900 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4522.1800 == %IE_Version% (goto patch-ie55sp2)
if 5.50.4807.2300 == %IE_Version% (goto patch-ie55sp2)
if 6.0.2462.0000 == %IE_Version% (goto patch-ie6sp1)
if 6.0.2479.0006 == %IE_Version% (goto patch-ie6sp1)
if 6.0.2600.0000 == %IE_Version% (goto patch-ie6sp1)
if 6.0.2800.1106 == %IE_Version% (goto patch-ie6sp1)
if 6.0.3663.0000 == %IE_Version% (goto patch-ie6sp1)
if 6.0.3718.0000 == %IE_Version% (goto patch-ie6sp1)
goto recommend-ie

:patch-ie501sp3
echo Patching for Q318089... & .\IE_5.01\Q318089\vbs51nen.exe /q

echo.
echo Checking for MS05-020: Cumulative Security Update for Internet Explorer
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Hotfix\KB890923-ie501sp3-20050225.100153" /s || echo Patching - see Q890923... && .\IE_5.01\Q890923-SP3\IE5.01sp3-KB890923-Windows2000sp3-x86-ENU.exe /quiet /norestart
goto mdac

:patch-ie55sp2
echo.
echo Checking for MS04-004: Cumulative Security Update for Internet Explorer
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{eddbec60-89cb-44ef-8291-0850fd28ff6a}\Version" /s || echo Patching - see Q832894... && .\IE_5.5\Q832894\Q832894.exe /q:a /r:n
goto mdac

:patch-ie6sp1
echo Patching for Q330994... & .\IE_60\Q330994\q330994.exe /q:a /r:n

echo.
echo Checking for MS05-014: Cumulative Security Update for Internet Explorer
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Hotfix\KB867282-ie6sp1-20050127.163319" /s || echo Patching - see Q867282... && .\IE_60\Q867282\IE6.0sp1-KB867282-Windows-2000-XP-x86-ENU.exe  /quiet /norestart
goto mdac

endlocal

:recommend-ie
echo.
echo You are currently running an outdated version of Internet Explorer.
echo Updating to at least 5.01 is recommended.


:mdac
REM -------------------------------------------------------------
echo.
echo.
echo Patching MDAC 2.5 SP3
echo --------------------------------------------------------------------------------
echo.

echo.
echo Checking for MS02-065: Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\DataAccess\Q329414-25\Description" /s || echo Patching - see Q329414... && .\MDAC\Q329414\q329414_mdacall_x86.exe /C:"dahotfix.exe /q /n" /q

echo.
echo Checking for MS04-003: Buffer Overrun in MDAC Function Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\DataAccess\Q832483\Description" /s || echo Patching - see Q832483... && .\MDAC\Q832483\ENU_Q832483_MDAC_x86.EXE /C:"dahotfix.exe /q /n" /q


REM -------------------------------------------------------------
echo.
echo.
echo Qchaining hotfixes...
echo.

.\Qchain\qchain.exe


REM -------------------------------------------------------------
color
echo.
echo.
echo Initial update process for Windows 2000 SP3 completed.  Please reboot 
echo for all hotfixes to take effect and verify patch levels afterwards.
echo.

.\SLEEP\sleep.exe 03
goto end

:nosp3
echo Service Pack 3 is not installed on this system.  Please install SP3
echo before running this script.
echo.
pause
goto end

:end