Bootup - Shutdown logger

May 2, 2008

Re: Bootup - Shutdown logger

Gary S. Terhune wrote:

| I have discovered that I also have version 8825 of SCR56EN. I'll put

| that on my site instead of v. 6626. Have you guys decided if there

| are any problems with 8825?

There's no problem with it on my machine. It provides both a JScript.dll

& a VBScript.dll of v.5.6.0.8825. Zabcar's currently has...

jscript.dll 5.6.0.8831

vbscript.dll 5.6.0.7426

We think he should run Scr56en.exe v.5.50.4134.600, which contains files

of v...8825. It will lift his VBScript.dll & leave the other alone.

(However, the actual problem he reported already is solved, i.e., he can

run the .vbs files you posted now.)

| --

| Gary S. Terhune

| MS-MVP Shell/User

| http://www.grystmill.com

|

| "Lee" <melee5@my-deja.com> wrote in message

|

news:234891b6-c92a-42dc-810e-18295566059a@k37g2000hsf.googlegroups.com...

| On Apr 23, 7:15 pm, "PCR" <pcr...@netzero.net> wrote:

|> Franc Zabkar wrote:

|>

|> | On Mon, 21 Apr 2008 22:42:49 -0400, "PCR" <pcr...@netzero.net> put

|> | finger to keyboard and composed:

|> |

|> |>Another thing: what about your settings at...?...

|> |>

|> |>"Control Panel, Internet Options, Security tab, Select Internet (&

|> |>maybe Local Intranet)"

|> |>

|> |>Are you at Default or Custom? If Custom, are the 3 Scripting

|> |>options enabled? Mine are, (but not all the ActiveX options are

|> |>enabled).

|> |

|> | I'll try to answer everyone's questions here.

|> |

|> | These are my security settings:

|> |

|> | Local intranet Medium-low

|> | Trusted sites Low

|> | Internet Medium

|> | Restricted sites High

|> |

|> | I've tried setting Local intranet to Low but the error remained.

|>

|> Those settings were good, then. And I see you have solved the

|> problem & possibly could stop now. Probably, some 3rd-party software

|> renamed your Scrrun.dll as a security measure to prevent scripts

|> from running, & you will be fine now that you renamed it back.

|>

|> | I've been able to successfully run Gary's .vbs script on my other

|> | Win98SE box. Now I'm trying to find what is different about them.

|> |

|> | According to msinfo32.exe, the two boxes are both using IE6SP1 with

|> | the same build version and same updates.

|>

|> I'm not seeing that you have taken all the updates, at "IE, Help,

|> About"...!...

|>

|> Yours... ;SP1;q240308;q313829;Q330994;Q828750

|> Mine....

|> SP1, Q313829, Q328970, Q328389, Q324929, Q810847, Q813951, Q816506,

|> Q813489, Q330994, Q818529, Q822925, Q828750, Q824145, Q832894,

|> Q837009, Q831167, Q823353, Q867801, Q833989, Q834707, Q889293,

|> Q867282, Q891781, Q890923, Q883939, Q896688, Q905915, Q912812,

|> Q916281 & Q918439.

|>

|> Although mine is misleading (because the registry key the data comes

|> from is not cleared of superceded updates, but the later ones are

|> just added)... you need to go to Windows Update & get at least

|> Q916281 & Q918439...

|>

|> http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx

|> Microsoft Security Bulletin MS06-021

|> Cumulative Security Update for Internet Explorer (916281)

|>

|> http://www.microsoft.com/technet/security/Bulletin/MS06-022.mspx

|> Microsoft Security Bulletin MS06-022

|> Vulnerability in ART Image Rendering Could Allow Remote Code

|> Execution (918439)

|>

|> REMEMBER... To see the Win98 updates at Windows Update, you must go

|> there from a Win98 machine. And that MSVCRT.dll you reported earlier

|> looks suspiciously XP/Vista-irradiated to me...!...

|>

|> You Me

|> MSVCRT.dll 6.10.8924.0 6.00.8797.0

|>

|> Also, your script files...

|>

|> jscript.dll 5.6.0.8513

|> vbscript.dll 5.6.0.8515

|>

|> ...are STILL lower than my versions. Jugding from this SFCLog.txt of

|> mine, you need at least one more update...

|>

|> [C:\WINDOWS]

|> wscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> [c:\windows\COMMAND]

|> cscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> [C:\WINDOWS\SYSTEM]

|> jscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> scrobj.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> vbscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> wshext.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> scrrun.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|> wshom.ocx Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

|>

|> I'm not sure Windows Update will get that done for you. If not, I'll

|> try harder to recall what it was that I ran (back in '06 says the

|> date in SFCLog.txt) that got me updated to that.

|>

|> Well... wait a minute... I am seeing those files with those dates in

|> my version of that file you mentioned... Scr56en.exe. Its Properties

|> says my version is 5.50.4134.600. (Not sure where I got it from.)

|

| Hi,PCR. Check again and you will notice that the version you quote is

| for Wextract.exe which is the package itself and NOT the update files

| it contains. Your vbs version of 5.6.0.8825 is the latest MS offered

| from this now dead URL:

|

http://msdn.microsoft.com/library/default.asp?url=/downloads/list/webdev.asp

|

| Begining with Gary's Scr56en.exe of 6626 version, MS would silently

| update the version available from the above website such that one

| always got the latest version. I have archived versions

| 6626

| 8515

| 8825

|

| The only one I think I might be missing was 8513. You could only have

| gotten your version 8825 from that source as it was never available

| from the WinUP site for reasons I can't fathom at all. Update 917344

| does update just Jscript.dll to 8831 version, and once again NONE of

| these updates will retrograde any version of files backwards. Files

| are only replaced if the incoming files are the same or higher

| version. So when Franc re-applys his 6626 version update all his

| script files should be getting refreshed provided they ARE the same

| version.

|

| I'll be emailing Gary (from lee_454 AT Yahoo) the latest version for

| all to enjoy the latest scripting host package - it is NOT available

| anywhere else that I know of, so thanks a lot Gary, we need it hosted

| somewhere. To view the version of files inside, open it with WinZip

| and double click on the inf file to read, close to the bottom of it,

| the version number. WinZip extracts just the inf file as a temporary

| file in your TEMP folder and launches your default text file reader to

| view it with, in such double click situations. To ensure trust, do

| check the Digital Signature to see that it is a valid MS file that has

| not been tampered with.

|

| I once had a problem with script errors and found it was Norton's

| scripting guard causing it because when I removed Norton my vbs spell

| checker started working again with out the errors. Perhaps Franc has

| Norton? The "Can't create ActiveX Object" error report is a common

| one and more of a generic output than something specifically wrong

| with the script itself although the script CAN be wrong and generate

| the valid error - when the same script works for several other people

| it is NOT an ActiveX error after all. Something else is going on with

| Franc's machine. Getting him the latest Scripting Host package would

| be number one on my list of things to do.

|

|>

|> | The above security settings

|> | are also identical.

|> |

|> | These are the IE data for the good box:

|> |http://www.users.on.net/~fzabkar/VBS_problem/xp2500IE.txt

|> |

|> | These are the IE data for the bad box:

|> |http://www.users.on.net/~fzabkar/VBS_problem/xp2500IE.txt

|> |

|> | This is the difference between the two data sets:

|> |http://www.users.on.net/~fzabkar/VBS_problem/diff_ie.txt

|> |

|> | I can find only one real difference and that is that the good box

|> | has a later version of vbscript.dll. However using this version on

|> | the bad box doesn't make the error go away.

|> |

|> | The good box also has Opera installed on it, although it is a much

|> | earlier version.

|> |

|> | The same versions of wscript.exe are installed on both boxes.

|> |

|> | This a Filemon record up until the error box appears:

|> |http://www.users.on.net/~fzabkar/VBS_problem/vbs_filemon.txt

|> |

|> | The Filemon output screen isn't mousable, but holding down the

|> | Ctrl-Shift key plus Home/End/PgUp/PgDown and then selecting Edit >

|> | Copy enables one to copy and paste the output into Notepad. Thanks

|> | to MEB.

|> |

|> | As for TweakUI's IE settings, all but the following boxes are

|> | checked:

|> |

|> | Clear document, run, typed-URL history on exit

|> | Show Favorites on Start Menu

|> |

|> | If I use Opera to open a .vbs file, it merely displays its

|> | contents. Under Tools > Preferences > Advanced > Downloads there

|> | is no VBS file type.

|> |

|> | ===============================================================

|> |

|> | While writing the above and trying things as I went, I finally got

|> | the script to work. Unfortunately I lost track of what I did. :-(

|> |

|> | However, if I now rename scrrun.dll in the Windows\System

|> | directory to scrrun.dl_, then the VB script breaks as before.

|> | Renaming other files in the scr56en.exe package either has no

|> | effect, or produces other errors. I notice that scrrun.dll appears

|> | in MEB's Filemon output screen (thank you MEB) soon after mine

|> | errors out. Maybe that was the problem all along.

|> |

|> | The following URL may offer an explanation for what happened:

|> | http://www.auditmypc.com/process/scrrun.asp

|> |

|> | "The file, scrrun.dll, is used by windows when running scripts

|> | such as those written with JScript or VBScript. If scrrun.dll is

|> | unavailable, windows will not be able to execute scripts. If you

|> | do not use any scripting on your computer you may be able to

|> | remove this file."

|> |

|> | Anyway I suspect that something broke my IE6 or WSH installation. I

|> | hate installing updates and patches because this sort of thing

|> | seems to happen to me a lot.

|> |

|> | Thanks to all for your help.

|> |

|> | - Franc Zabkar

|> | --

|> | Please remove one 'i' from my address when replying by email.

|>

|> --

|> Thanks or Good Luck,

|> There may be humor in this post, and,

|> Naturally, you will not sue,

|> Should things get worse after this,

|> PCR

|> pcr...@netzero.net

--

Thanks or Good Luck,

There may be humor in this post, and,

Naturally, you will not sue,

Should things get worse after this,

PCR

pcrrcp@netzero.net

May 2, 2008

Re: Bootup - Shutdown logger

Thanks Gary, I can report not a single problem with version 8825

Scripting Host on my machine.

MEB - MDGx.com already has an unofficial 5.6 and 5.7 9x scripting host

packages, I was holding out for the official version for the very

reasons you mention.

PCR - Wextract is the engine of the update executable package itself,

it's version numbers vary a lot so it's not much use by itself. But

the digital signature of it both shows you the Signatory of the

package and that it has not been tampered with since by the word and

standing of the Signatory which in this case is MS - which is good

enough for me to trust it.

On May 1, 7:48 am, "Gary S. Terhune" <none> wrote:

> I have discovered that I also have version 8825 of SCR56EN. I'll put that on

> my site instead of v. 6626. Have you guys decided if there are any problems

> with 8825?

>

> --

> Gary S. Terhune

> MS-MVP Shell/Userwww.grystmill.com

>

> "Lee" <mel...@my-deja.com> wrote in message

>

> news:234891b6-c92a-42dc-810e-18295566059a@k37g2000hsf.googlegroups.com...

> On Apr 23, 7:15 pm, "PCR" <pcr...@netzero.net> wrote:

>

> > Franc Zabkar wrote:

>

> > | On Mon, 21 Apr 2008 22:42:49 -0400, "PCR" <pcr...@netzero.net> put

> > | finger to keyboard and composed:

> > |

> > |>Another thing: what about your settings at...?...

> > |>

> > |>"Control Panel, Internet Options, Security tab, Select Internet (&

> > |>maybe Local Intranet)"

> > |>

> > |>Are you at Default or Custom? If Custom, are the 3 Scripting options

> > |>enabled? Mine are, (but not all the ActiveX options are enabled).

> > |

> > | I'll try to answer everyone's questions here.

> > |

> > | These are my security settings:

> > |

> > | Local intranet Medium-low

> > | Trusted sites Low

> > | Internet Medium

> > | Restricted sites High

> > |

> > | I've tried setting Local intranet to Low but the error remained.

>

> > Those settings were good, then. And I see you have solved the problem &

> > possibly could stop now. Probably, some 3rd-party software renamed your

> > Scrrun.dll as a security measure to prevent scripts from running, & you

> > will be fine now that you renamed it back.

>

> > | I've been able to successfully run Gary's .vbs script on my other

> > | Win98SE box. Now I'm trying to find what is different about them.

> > |

> > | According to msinfo32.exe, the two boxes are both using IE6SP1 with

> > | the same build version and same updates.

>

> > I'm not seeing that you have taken all the updates, at "IE, Help,

> > About"...!...

>

> > Yours... ;SP1;q240308;q313829;Q330994;Q828750

> > Mine....

> > SP1, Q313829, Q328970, Q328389, Q324929, Q810847, Q813951, Q816506,

> > Q813489, Q330994, Q818529, Q822925, Q828750, Q824145, Q832894,

> > Q837009, Q831167, Q823353, Q867801, Q833989, Q834707, Q889293,

> > Q867282, Q891781, Q890923, Q883939, Q896688, Q905915, Q912812,

> > Q916281 & Q918439.

>

> > Although mine is misleading (because the registry key the data comes

> > from is not cleared of superceded updates, but the later ones are just

> > added)... you need to go to Windows Update & get at least Q916281 &

> > Q918439...

>

> >http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx

> > Microsoft Security Bulletin MS06-021

> > Cumulative Security Update for Internet Explorer (916281)

>

> >http://www.microsoft.com/technet/security/Bulletin/MS06-022.mspx

> > Microsoft Security Bulletin MS06-022

> > Vulnerability in ART Image Rendering Could Allow Remote Code Execution

> > (918439)

>

> > REMEMBER... To see the Win98 updates at Windows Update, you must go

> > there from a Win98 machine. And that MSVCRT.dll you reported earlier

> > looks suspiciously XP/Vista-irradiated to me...!...

>

> > You Me

> > MSVCRT.dll 6.10.8924.0 6.00.8797.0

>

> > Also, your script files...

>

> > jscript.dll 5.6.0.8513

> > vbscript.dll 5.6.0.8515

>

> > ...are STILL lower than my versions. Jugding from this SFCLog.txt of

> > mine, you need at least one more update...

>

> > [C:\WINDOWS]

> > wscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > [c:\windows\COMMAND]

> > cscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > [C:\WINDOWS\SYSTEM]

> > jscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > scrobj.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > vbscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > wshext.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > scrrun.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > wshom.ocx Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

>

> > I'm not sure Windows Update will get that done for you. If not, I'll try

> > harder to recall what it was that I ran (back in '06 says the date in

> > SFCLog.txt) that got me updated to that.

>

> > Well... wait a minute... I am seeing those files with those dates in my

> > version of that file you mentioned... Scr56en.exe. Its Properties says

> > my version is 5.50.4134.600. (Not sure where I got it from.)

>

> Hi,PCR. Check again and you will notice that the version you quote is

> for Wextract.exe which is the package itself and NOT the update files

> it contains. Your vbs version of 5.6.0.8825 is the latest MS offered

> from this now dead URL:http://msdn.microsoft.com/library/default.asp?url=/downloads/list/web...

>

> Begining with Gary's Scr56en.exe of 6626 version, MS would silently

> update the version available from the above website such that one

> always got the latest version. I have archived versions

> 6626

> 8515

> 8825

>

> The only one I think I might be missing was 8513. You could only have

> gotten your version 8825 from that source as it was never available

> from the WinUP site for reasons I can't fathom at all. Update 917344

> does update just Jscript.dll to 8831 version, and once again NONE of

> these updates will retrograde any version of files backwards. Files

> are only replaced if the incoming files are the same or higher

> version. So when Franc re-applys his 6626 version update all his

> script files should be getting refreshed provided they ARE the same

> version.

>

> I'll be emailing Gary (from lee_454 AT Yahoo) the latest version for

> all to enjoy the latest scripting host package - it is NOT available

> anywhere else that I know of, so thanks a lot Gary, we need it hosted

> somewhere. To view the version of files inside, open it with WinZip

> and double click on the inf file to read, close to the bottom of it,

> the version number. WinZip extracts just the inf file as a temporary

> file in your TEMP folder and launches your default text file reader to

> view it with, in such double click situations. To ensure trust, do

> check the Digital Signature to see that it is a valid MS file that has

> not been tampered with.

>

> I once had a problem with script errors and found it was Norton's

> scripting guard causing it because when I removed Norton my vbs spell

> checker started working again with out the errors. Perhaps Franc has

> Norton? The "Can't create ActiveX Object" error report is a common

> one and more of a generic output than something specifically wrong

> with the script itself although the script CAN be wrong and generate

> the valid error - when the same script works for several other people

> it is NOT an ActiveX error after all. Something else is going on with

> Franc's machine. Getting him the latest Scripting Host package would

> be number one on my list of things to do.

>

> > | The above security settings

> > | are also identical.

> > |

> > | These are the IE data for the good box:

> > |http://www.users.on.net/~fzabkar/VBS_problem/xp2500IE.txt

> > |

> > | These are the IE data for the bad box:

> > |http://www.users.on.net/~fzabkar/VBS_problem/xp2500IE.txt

> > |

> > | This is the difference between the two data sets:

> > |http://www.users.on.net/~fzabkar/VBS_problem/diff_ie.txt

> > |

> > | I can find only one real difference and that is that the good box has

> > | a later version of vbscript.dll. However using this version on the bad

> > | box doesn't make the error go away.

> > |

> > | The good box also has Opera installed on it, although it is a much

> > | earlier version.

> > |

> > | The same versions of wscript.exe are installed on both boxes.

> > |

> > | This a Filemon record up until the error box appears:

> > |http://www.users.on.net/~fzabkar/VBS_problem/vbs_filemon.txt

> > |

> > | The Filemon output screen isn't mousable, but holding down the

> > | Ctrl-Shift key plus Home/End/PgUp/PgDown and then selecting Edit >

> > | Copy enables one to copy and paste the output into Notepad. Thanks to

> > | MEB.

> > |

> > | As for TweakUI's IE settings, all but the following boxes are checked:

> > |

> > | Clear document, run, typed-URL history on exit

> > | Show Favorites on Start Menu

> > |

> > | If I use Opera to open a .vbs file, it merely displays its contents.

> > | Under Tools > Preferences > Advanced > Downloads there is no VBS file

> > | type.

> > |

> > | ===============================================================

> > |

> > | While writing the above and trying things as I went, I finally got the

> > | script to work. Unfortunately I lost track of what I did. :-(

> > |

> > | However, if I now rename scrrun.dll in the Windows\System directory to

> > | scrrun.dl_, then the VB script breaks as before. Renaming other files

> > | in the scr56en.exe package either has no effect, or produces other

> > | errors. I notice that scrrun.dll appears in MEB's Filemon output

> > | screen (thank you MEB) soon after mine errors out. Maybe that was the

> > | problem all along.

> > |

> > | The following URL may offer an explanation for what happened:

> > |http://www.auditmypc.com/process/scrrun.asp

> > |

> > | "The file, scrrun.dll, is used by windows when running scripts such as

> > | those written with JScript or VBScript. If scrrun.dll is unavailable,

> > | windows will not be able to execute scripts. If you do not use any

> > | scripting on your computer you may be able to remove this file."

> > |

> > | Anyway I suspect that something broke my IE6 or WSH installation. I

> > | hate installing updates and patches because this sort of thing seems

> > | to happen to me a lot.

> > |

> > | Thanks to all for your help.

> > |

> > | - Franc Zabkar

> > | --

> > | Please remove one 'i' from my address when replying by email.

>

> > --

> > Thanks or Good Luck,

> > There may be humor in this post, and,

> > Naturally, you will not sue,

> > Should things get worse after this,

> > PCR

> > pcr...@netzero.net- Hide quoted text -

>

> - Show quoted text -- Hide quoted text -

>

> - Show quoted text -

May 2, 2008

Re: Bootup - Shutdown logger

Lee wrote:

| Thanks Gary, I can report not a single problem with version 8825

| Scripting Host on my machine.

|

| MEB - MDGx.com already has an unofficial 5.6 and 5.7 9x scripting host

| packages, I was holding out for the official version for the very

| reasons you mention.

|

| PCR - Wextract is the engine of the update executable package itself,

| it's version numbers vary a lot so it's not much use by itself. But

| the digital signature of it both shows you the Signatory of the

| package and that it has not been tampered with since by the word and

| standing of the Signatory which in this case is MS - which is good

| enough for me to trust it.

OK. There certainly are a lot version numbers associated with the

various Scr56en.exe. But why not just R-Clk it, Properties, Version tab?

Mine says v.5.50.4134.600 there. And inside are files of v...8825. Won't

that always be true?

| On May 1, 7:48 am, "Gary S. Terhune" <none> wrote:

|> I have discovered that I also have version 8825 of SCR56EN. I'll put

|> that on

|> my site instead of v. 6626. Have you guys decided if there are any

|> problems

|> with 8825?

|>

|> --

|> Gary S. Terhune

|> MS-MVP Shell/Userwww.grystmill.com

|>

....snip

--

Thanks or Good Luck,

There may be humor in this post, and,

Naturally, you will not sue,

Should things get worse after this,

PCR

pcrrcp@netzero.net

May 2, 2008

Re: Bootup - Shutdown logger

Interesting.

I have:

5.6.0.6626 wscript.exe

5.6.0.6626 cscript.exe

And those were provided by Windows Update in this last clean install...

So where did the updated files come from....

--

MEB http://peoplescounsel.orgfree.com

--

_________

"Lee" <melee5@my-deja.com> wrote in message

news:f6690c5f-3fe5-4b3f-8ee6-27a6257c2837@x35g2000hsb.googlegroups.com...

Thanks Gary, I can report not a single problem with version 8825

Scripting Host on my machine.

MEB - MDGx.com already has an unofficial 5.6 and 5.7 9x scripting host

packages, I was holding out for the official version for the very

reasons you mention.

PCR - Wextract is the engine of the update executable package itself,

it's version numbers vary a lot so it's not much use by itself. But

the digital signature of it both shows you the Signatory of the

package and that it has not been tampered with since by the word and

standing of the Signatory which in this case is MS - which is good

enough for me to trust it.

On May 1, 7:48 am, "Gary S. Terhune" <none> wrote:

> I have discovered that I also have version 8825 of SCR56EN. I'll put that

on

> my site instead of v. 6626. Have you guys decided if there are any

problems

> with 8825?

>

> --

> Gary S. Terhune

> MS-MVP Shell/Userwww.grystmill.com

>

> "Lee" <mel...@my-deja.com> wrote in message

>

> news:234891b6-c92a-42dc-810e-18295566059a@k37g2000hsf.googlegroups.com...

> On Apr 23, 7:15 pm, "PCR" <pcr...@netzero.net> wrote:

>

> > Franc Zabkar wrote:

>

> > | On Mon, 21 Apr 2008 22:42:49 -0400, "PCR" <pcr...@netzero.net> put

> > | finger to keyboard and composed:

> > |

> > |>Another thing: what about your settings at...?...

> > |>

> > |>"Control Panel, Internet Options, Security tab, Select Internet (&

> > |>maybe Local Intranet)"

> > |>

> > |>Are you at Default or Custom? If Custom, are the 3 Scripting options

> > |>enabled? Mine are, (but not all the ActiveX options are enabled).

> > |

> > | I'll try to answer everyone's questions here.

> > |

> > | These are my security settings:

> > |

> > | Local intranet Medium-low

> > | Trusted sites Low

> > | Internet Medium

> > | Restricted sites High

> > |

> > | I've tried setting Local intranet to Low but the error remained.

>

> > Those settings were good, then. And I see you have solved the problem &

> > possibly could stop now. Probably, some 3rd-party software renamed your

> > Scrrun.dll as a security measure to prevent scripts from running, & you

> > will be fine now that you renamed it back.

>

> > | I've been able to successfully run Gary's .vbs script on my other

> > | Win98SE box. Now I'm trying to find what is different about them.

> > |

> > | According to msinfo32.exe, the two boxes are both using IE6SP1 with

> > | the same build version and same updates.

>

> > I'm not seeing that you have taken all the updates, at "IE, Help,

> > About"...!...

>

> > Yours... ;SP1;q240308;q313829;Q330994;Q828750

> > Mine....

> > SP1, Q313829, Q328970, Q328389, Q324929, Q810847, Q813951, Q816506,

> > Q813489, Q330994, Q818529, Q822925, Q828750, Q824145, Q832894,

> > Q837009, Q831167, Q823353, Q867801, Q833989, Q834707, Q889293,

> > Q867282, Q891781, Q890923, Q883939, Q896688, Q905915, Q912812,

> > Q916281 & Q918439.

>

> > Although mine is misleading (because the registry key the data comes

> > from is not cleared of superceded updates, but the later ones are just

> > added)... you need to go to Windows Update & get at least Q916281 &

> > Q918439...

>

> >http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx

> > Microsoft Security Bulletin MS06-021

> > Cumulative Security Update for Internet Explorer (916281)

>

> >http://www.microsoft.com/technet/security/Bulletin/MS06-022.mspx

> > Microsoft Security Bulletin MS06-022

> > Vulnerability in ART Image Rendering Could Allow Remote Code Execution

> > (918439)

>

> > REMEMBER... To see the Win98 updates at Windows Update, you must go

> > there from a Win98 machine. And that MSVCRT.dll you reported earlier

> > looks suspiciously XP/Vista-irradiated to me...!...

>

> > You Me

> > MSVCRT.dll 6.10.8924.0 6.00.8797.0

>

> > Also, your script files...

>

> > jscript.dll 5.6.0.8513

> > vbscript.dll 5.6.0.8515

>

> > ...are STILL lower than my versions. Jugding from this SFCLog.txt of

> > mine, you need at least one more update...

>

> > [C:\WINDOWS]

> > wscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > [c:\windows\COMMAND]

> > cscript.exe Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > [C:\WINDOWS\SYSTEM]

> > jscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > scrobj.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > vbscript.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > wshext.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > scrrun.dll Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

> > wshom.ocx Updated 5.6.0.8515 1/14/03 5.6.0.8825 8/9/04 No

>

> > I'm not sure Windows Update will get that done for you. If not, I'll try

> > harder to recall what it was that I ran (back in '06 says the date in

> > SFCLog.txt) that got me updated to that.

>

> > Well... wait a minute... I am seeing those files with those dates in my

> > version of that file you mentioned... Scr56en.exe. Its Properties says

> > my version is 5.50.4134.600. (Not sure where I got it from.)

>

> Hi,PCR. Check again and you will notice that the version you quote is

> for Wextract.exe which is the package itself and NOT the update files

> it contains. Your vbs version of 5.6.0.8825 is the latest MS offered

> from this now dead

URL:http://msdn.microsoft.com/library/default.asp?url=/downloads/list/web...