AcitveX Killbits Listing

Hello all,
For one of my clients the canned EMR software cannot have the ActiveX Killbits updates from Microsoft or it will cause the screen on the software to not show up correctly.  
Is there a way to get a listing of all AcitveX Killbits that have been released from Microsoft for both Windows XP and Windows 7?
Who is Participating?
Darr247Connect With a Mentor Commented:
For what it's worth, the kill bits update last week was KB2508272.

If you follow the IT Professionals link in that KB article to
and expand the Third-Party Kill Bits section, it shows that update prevents the activex CLSID's


from running in IE.

Anyway, you might want to contact the software's creators for a workaround.  Because overriding kill bits that prevent unauthenticated access could be a violation of HIPAA laws. (or maybe EMR means something other than electronic medical records?)
dranzer from cert does listing and testing of activex controls.
secunia psi does scan for security updates for non-microsoft programs.
app vendor should be able to know which control is used and which update is needed to avoid blacklisting.
Rich RumbleSecurity SamuraiCommented: (see the bottom for kill-bit FAQ)Kill-bits are located in the registry:
x86 IE / x86 OS: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\CLSID of the ActiveX control

x64 IE / x64 OS: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\CLSID of the ActiveX control

x86 IE / x64 OS: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility\CLSID of the ActiveX control
And they have a Compatibility Flag value of 0x00000400
Here is a simple query you can do:
From a command prompt:
Reg.exe QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility" /f 1024 /t REG_DWORD /s >c:\Output.txt
That will send all the output to a txt file called output.txt on your C:
Change the Registry path if needed, you can so do this against remote machines, see "reg.exe /?"  help if you need more syntax.
chillepodAuthor Commented:
That is what I was looking for.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.