How to Use Windows XP Patch Inspector The Windows XP Patch Inspector (often associated with tools like the Microsoft Baseline Security Analyzer (MBSA) or built-in hotfix tools) is a utility used to verify which security patches are installed and to inspect code-level modifications in the legacy OS ecosystem. Managing updates on Windows XP requires careful analysis of hotfixes, KB packages, and executable states.
This guide outlines exactly how to inspect, verify, and catalog updates on a Windows XP machine. Prerequisites Before Inspecting Patches
Because Windows XP no longer receives mainstream live updates from the official Microsoft Update infrastructure, you must configure your environment properly before running an inspection:
Administrator Privileges: You must be logged into an account with full administrative rights.
Show Hidden Files: Open My Computer, go to Tools > Folder Options > View, and check Show hidden files and folders. This exposes the \(NtUninstallKB...\) update folders in your Windows directory. Step 1: Use the Built-In Windows XP Patch List
The quickest way to inspect your patch footprint without third-party software is through the built-in system management utilities. Click the Start Menu and select Control Panel. Open Add or Remove Programs.
At the very top of the window, check the box next to Show Updates.
Scroll through the listed Windows XP – Software Updates. Each item displays its corresponding KB number (e.g., KB4012598) and the date it was applied. Step 2: Query Patch Status via Command Prompt
For system administrators who need a granular layout of system patches, the command-line utility systeminfo extracts a definitive list of hotfixes. Click Start, select Run, type cmd, and press Enter.
In the Command Prompt terminal, type the following command and press Enter: systeminfo Use code with caution.
Wait for the tool to analyze the system. Scroll down to the Hotfix(es) section to inspect the comprehensive indexed list of every patch applied to the OS kernel. Step 3: Inspect the Physical Patch Directories
Every time Windows XP installs a patch, it creates a backup copy of the files it replaced so you can roll back the update later. You can inspect these folders directly to see when patch binaries were altered. Navigate to C:\Windows</code>.
Look for compressed, hidden folders highlighted in blue text that start with $NtUninstallKB.
Inside any of these folders, inspect the spuninst.inf file using Notepad to see exactly which system .dll or .exe files the patch modified. Step 4: Audit Security Patches Using MBSA
For a deep-dive vulnerability inspection, you can deploy the legacy standalone utility Microsoft Baseline Security Analyzer (MBSA).
+————————————————————+ | Microsoft Baseline Security Analyzer | +————————————————————+ | [ Scan a Computer ] –> Select Local Computer | | [ Analyze Binary ] –> Checks File Versions against | | Offline Security Catalogs | | [ View Report ] –> Generates List of Missing / | | Vulnerable System Patches | +————————————————————+
Leave a Reply