Windows Secrets logo

 

 

   
       
   
Windows Secrets Newsletter • Issue 121 • 2007-09-06 • Circulation: over 270,000
 		   
     
Contents
 TOP STORY: Unpatched software abounds on user systems
KNOWN ISSUES: How to fix problems Software Inspector finds
WACKY WEB WEEK: Danish engineers find low-tech speed limit fix
PERIMETER SCAN: Sony renews rootkit debate with USB drives
PATCH WATCH: MS server error marks PCs as "nongenuine"
YOUR SUBSCRIPTION: How to change your address or unsubscribe

    
   

For links to every topic in this issue, scroll down to the Index

    
   
ADS
Simplify Windows server backup & restore   Simplify Windows server backup & restore
 Easy to install, use & maintain Windows backup software. Supports Exchange, Active Directory, MS-SQL and Open Files. Client/server solution designed for small business, disk-based storage with drive spanning to grow with you. Free download.
 www.Backup-for-Workgroups.com

Forget Vista, make your XP system faster   Forget Vista, make your XP system faster
 PC Pitstop's Free Optimize Scan will automatically diagnose problems with your PC and give you a custom report detailing issues that are hurting your PC's performance. Scan your PC for free today!
 www.pcpitstop.com

Be more productive in Microsoft Outlook   Be more productive in Microsoft Outlook
 Save time in Outlook with these powerful utilities: Attachment Save — automatically save attachments when e-mail arrives; Schedule Recurring Email — send regularly occurring e-mails; and more. See our entire list of 36 powerful add-ins on our Web site.
 www.SperrySoftware.com

See your ad here

    
   
TOP STORY

Unpatched software abounds on user systems

Scott Dunn By Scott Dunn

Readers of the Aug. 16 issue of Windows Secrets took our advice and used the Secunia Software Inspector service in droves.

The results show that — even though our readers are more tech-savvy than the average computer user — thousands of you apparently still use computers with unpatched software.

Software Inspector finds many unpatched apps

After we recommended that our readers use Secunia.com's Software Inspector, the link we provided was clicked more than 63,000 times. The service scans PCs for applications that lack available security patches.

Secunia.com provides us with aggregate counts of the number of products installed and the percentage that are unpatched. No personal information is collected. Table 1, below, shows the top 20 unpatched applications installed on the systems of Windows Secrets readers. (Several readers ran the scan more than once, which is why some apps show up more than 63,000 times.)

The figures reveal that many people haven't patched their media players and other run-time software: Java, Flash, QuickTime, Adobe Reader, and RealPlayer. This exposes you to infected media files. I'll explain below how you can keep these apps patched and your computer safer.

Table 1. Unpatched products on Windows Secrets readers' systems.

Product
 Number
installed
 Percent
unpatched
 Number
unpatched
Java JRE 1.6.x/6.x
 70,860
 38.08
 26,983
Java JRE 1.5.x/5.x
 60,465
 98.84
 59,764
Flash Player 9.x
 73,256
 62.03
 45,441
Flash Player 8.x
 14,885
 99.84
 14,861
Flash Player 7.x
 14,659
 99.88
 14,641
Flash Player 6.x
 19,179
 76.47
 14,666
Flash Player 5.x
 8,683
 99.85
 8,670
Flash Player 4.x
 3,745
 99.92
 3,742
QuickTime 7.x
 28,752
 33.85
 9,733
QuickTime 6.x
 3,944
 99.87
 3,939
Internet Explorer 7.x
 41,914
 10.16
 4,258
Internet Explorer 6.x
 14,008
 20.33
 2,848
Adobe Reader 7.x
 29,767
 11.89
 3,539
Adobe Reader 5.x
 2,956
 99.90
 2,953
WinZip 8.x
 3,715
 99.87
 3,710
Firefox 2.0.x
 25,981
 14.71
 3,822
RealPlayer 10.x
 16,471
 16.73
 2,756
RealPlayer 6
 2,213
 97.65
 2,161
Yahoo! Messenger 8.x
 4,417
 44.78
 1,978
Winamp 5.x
 5,700
 34.25
 1,952

How to keep your system up to date

Reducing security risks on your system means keeping all of your applications up to date, not just the operating system. To do that, you need a two-pronged approach.

First, if you're not using Windows' Automatic Updates feature, run Microsoft Update once a month after Patch Tuesday (the second Tuesday of each month, when Microsoft releases security updates). If possible, install Microsoft's patches after you read the Windows Secrets Newsletter on the Thursday after Patch Tuesday. We may report glitches you should avoid, while still ensuring that you can install the latest Microsoft Windows and Office security updates within two days of their release.

Second, consider turning on the auto-update feature of your individual applications to make sure they're updated regularly. See my Aug. 16 story for details on how to do this.

Understandably, many people (particularly in companies with thousands of users) don't want auto-updating turned on for every user. Companies often prefer to test individual updates before everyone in the organization adopts them.

If you prefer this more cautious approach, use the Secunia Software Inspector once a month to tell you what applications have patches available. Then update the individual applications manually (after running your usual research-and-test regimen).

Enterprises can run Secunia's Network Software Inspector, a commercial application that has recently emerged from beta testing. The program reportedly scans PCs for more than 4,000 applications and versions.

For information on removing out-of-date software, see this week's installment of Known Issues.

Get an automatic reminder to check for updates

The biggest challenge in manually checking for reminders is remembering to do it on a regular basis. Fortunately, Windows' Scheduled Tasks accessory can help out.

How to schedule an update reminder in Windows XP

You can make Scheduled Tasks run a script that launches Internet Explorer 7 with Microsoft Update in one tab and Secunia Software Inspector in another. I use IE 7 in this example because Microsoft Update won't run in most other browsers, such as Mozilla Firefox. The technique shown below is adapted from a Windows Scripting Host script published by Tony Schreiner in his MSDN blog.

Step 1. Open your favorite text editor, such as Notepad. Type or paste in the following five lines:

 var navOpenInBackgroundTab = 0x1000;
var oIE = new ActiveXObject("InternetExplorer.Application");
oIE.Navigate2("http://update.microsoft.com");
oIE.Navigate2("http://secunia.com/software_inspector/", navOpenInBackgroundTab);
oIE.Visible = true;
Step 2: Save the file with a .js extension. For example, I named mine Update-me.js.

Step 3: Choose Start, All Programs, Accessories, System Tools, Scheduled Tasks.

Step 4: In the Scheduled Tasks window, double-click Add Scheduled Task.

Step 5: In the Scheduled Task Wizard, click Next. Then click Browse.

Step 6: Locate and select Wscript.exe in Windows' System32 folder. (Or just type c:\Windows\System32\Wscript.exe in the File name box; your path may differ.) Click Open.

Step 7: In the next step of the wizard, select Monthly and click Next.

Step 8: Specify a start time. Select the second radio button and specify the second Tuesday. Leave all months checked. Click Next.

Step 9: Enter your account name and password for an administrator account. (Only administrators can install updates.) Click Next.

Step 10: Check the box for opening advanced properties and click Finish.

Step 11: When the Wscript Properties dialog box opens, click at the end of the line in the Run box. Type a space followed by the path to your script (.js) file. If the path includes spaces or long names, put it in quotation marks. For example, when you're done, the finished command should read something like this:

 c:\windows\system32\wscript.exe "C:\My Documents\update-me.js"
Step 12: Click OK. Enter your account name and password again, if prompted. Click OK.

As long as you are logged in as an administrator on the appropriate day, Scheduled Tasks will open a browser with these two sites, reminding you of this important chore.

How to schedule an update reminder in Windows Vista

The Microsoft Update site in Vista has been replaced by a Control Panel applet. To automate the reminder in Vista, you'll need to set up two automated processes: one for patching Windows, and another for launching a browser showing the Secunia Software Inspector.

Follow these steps to run Windows Update once a month after Patch Tuesday:

Step 1: Choose Start, type Task Scheduler, and press Enter. Click to confirm User Account Control.

Step 2: In the far right pane, click Create Basic Task.

Step 3: In the Create Basic Task Wizard, type the name of your task and (optionally) a description. Click Next.

Step 4: Select Monthly and click Next.

Step 5: Specify a start date. For Months, choose Select All Months in the pop-up menu. Click On and specify the Second Tuesday. Click Next.

Step 6: Leave Start a program selected and click Next.

Step 7: For Program/script, type c:\Windows\System32\Wuapp.exe (your path may differ).

Step 8: Click Next and then click Finish.

Follow these steps to run Software Inspector once a month after Patch Tuesday:

Step 1: Follow steps 1 through 6 above but specify a different task name in Step 3.

Step 2: For Program/script, specify the path to your preferred Web browser. In the Add arguments (optional) box, type http://secunia.com/software_inspector/.

Step 3: Click Next and then click Finish.

Windows will launch these tasks on the appropriate day, reminding you to proceed with your checks.

Protecting your system involves many tools, including antimalware tools and regular system updates. By adding Secunia Software Inspector to your toolbox, you can help ensure that your major add-ins are patched in addition to Windows.

 Scott Dunn is associate editor of the Windows Secrets Newsletter. He is also a contributing editor of PC World Magazine, where he has written a monthly column since 1992, and co-author of 101 Windows Tips & Tricks (Peachpit) with Jesse Berst and Charles Bermant.

Contents  Index

   
   
ADS
Backup your data with ZipBackup   Backup your data with ZipBackup
 Finally, a backup program that is easy to use. ZipBackup's Wizard makes backups a snap for beginners. Filtering, scheduling, and disk spanning make it a powerful tool for experts. For a limited time, Windows Secrets readers receive 25% off.
 www.zipbackup.com

Do-it-yourself home renovations   Do-it-yourself home renovations
 Highly recommended site for anyone who wants to build a set of stairs, construct a backyard shed, deck, picnic table, gazebo, dog house, etc., or even build their own house. Get e-mailed answers to your questions about your own project from an expert.
 www.daveosborne.com

More efficient than your anti-virus!   More efficient than your anti-virus!
 DefenseWall HIPS gives you real freedom from being infected by malicious software (spyware, adware, keylogers, rootkits) and viruses when you surf the Internet, open e-mail attachments and install new software — all in one easy to use package.
 www.softsphere.com

See your ad here

    
   
KNOWN ISSUES

How to fix problems Software Inspector finds

By Scott Dunn

In the Aug. 16 issue, I pointed out that the Secunia Software Inspector may find multiple versions of unpatched products on your system.

Older programs and Web sites may need the older versions of run-time software. But the old run-time code represents a security risk. For the greatest safety, uninstall the older files and then install updated software.
Removing outdated versions of risky applications

A number of readers seemed flummoxed by this situation. Chris Vetter gives us his take:
  • "Scott Dunn's article brought attention to the outdated versions of Java, Flash Player, QuickTime, and Adobe Reader existing on many people's computers. He failed to point out this is not necessarily because people fail to update, rather because applying the latest update does not remove the older versions. This helps explain why so many computers tested positive.

    "A step-by-step instruction is needed for the often-required manual removal of the artifacts of Registry entries and old folders."
In many cases, outdated versions can be eliminated by using the Add or Remove Programs applet in the Control Panel. Because you may need the older version, however, make a backup before continuing, as I advised in the last issue.

When you're ready to remove the software, open the Control Panel and double-click Add or Remove Programs. In the case of Java, an entry for each version normally appears in the Add or Remove Programs list. Select the version you don't want, click Remove, and follow any other prompts you see on screen. Repeat for each outdated version.

Note that not all versions have the same name. For example, the name of some entries for Java begin with "Java," some begin with "J2SE," and so on. So scan the list carefully to find the version you want to remove.

If the software you want to remove does not appear in the Add or Remove Programs list, you can always delete the outdated file or files listed in the Secunia report. This may not completely uninstall the product (for example, any Registry entries will be unaffected), but at least you will have removed the files that hackers need to cause harm.

For help on removing older versions of Flash Player, see the next section.

Ferreting out old versions of Flash Player

Many readers of the Aug. 16 story on Secunia Software Inspector had the same question as Gordon Pinkham:
  • "When I tell Software Inspector to browse in non-default locations for old media players, it comes up with quite a few, most particularly Macromedia Flash players. Unfortunately, they do not appear in the Control Panel, so they can't be deleted that way.

    "I have used Adobe's routine for uninstalling old Flash ActiveX controls. But that apparently doesn't work on old Macromedia players.

    "Can you tell me how to get rid of old Macromedia players?"
Fortunately for us all, reader Roger Hart sent in a link to an Adobe Web page where you can download an uninstaller that appears to remove a number of versions of Flash Player. (I tested it with versions 5, 7, and 8.) Thanks, Roger!

If that doesn't work for you, Adobe's support team has published a TechNote explaining how to manually remove Flash Players version 6 and earlier from your computer. Just follow the steps at the link.

Update Checker points to newest versions

Reader Tom Kustner points out another tool that checks your software for updates:
  • "I have also used the FileHippo.com Update Checker, which will look at your system and determine which packages need updating, including the ones you mentioned (Flash, Java, RealPlayer, WMP, etc). It gives you one-stop shopping for downloads."
Thanks, Tom. Unlike Secunia.com, Update Checker requires a downloaded utility rather than running from a Web site. In my quick test, Update Checker failed to find an older version of Java that I had on my system. On the other hand, it also found several nonupdated applications and drivers that Secunia did not report. This may be attributable to the fact that Update Checker looks for the latest version of products, while Secunia focuses solely on products that need critical security updates.

As Tom points out, the results page for Update Checker includes a download button for each. But a newer version is not always desirable in these cases — for example, when a product changes from freeware in one version to shareware in another. If you use Update Checker, look into the tradeoffs before you upgrade.

NetChk expiration forces a shift in tactics

In the July 13, 2006, issue, editorial director Brian Livingston recommended Shavlik Technologies' NetChk Protect. He described it as a way for experienced Windows users to avoid installing Microsoft's WGA (Windows Genuine Advantage) utility.

As reader Jon Bondy reminds us, NetChk Protect was free for users on up to 10 PCs for one year:
  • "I used Shavlik for most of a year, but it now says my trial version has expired. Many of your other readers are about to encounter the same situation. What do you recommend that we do?"
As Brian announced in a Nov. 30, 2006, article, Shavlik ended the 1-year trial offer and has been withdrawing from the consumer market.

For now, we recommend novices use Microsoft Update, which is an improvement over the built-in Windows Update. Change its setting to Notify me but don't automatically download or install them. Then keep reading Windows Secrets to learn which updates it may be inadvisable to install.

Advanced users who want a separate patch management system can check out the options listed on the Security Baseline page of the Windows Secrets Web site.

Don't lose those Office shortcuts

In the Aug. 16 issue, I explained how to create shortcuts to Microsoft Office applications with the PsExec utility. Office's default Start menu shortcuts do not have editable command lines. But reader Robin Penny points out an advantage of these installer-created shortcuts:
  • "These 'nonstandard' shortcuts not only launch the program but also initiate a self-repair process if key files or Registry keys are missing. I would advise users who create a PsExec shortcut for these to also retain a copy of the old shortcut in order to maintain an entry point to this self-repair mechanism."
Thanks for pointing this out, Robin. According to Microsoft Knowledge Base article 229396, these shortcuts also enable Office's "installed on first use" feature (for programs that are designated as such during installation). For more information on the repair feature, see KB article 822238. And keep those old shortcuts handy!

Readers Vetter, Pinkham, Hart, Kustner, Bondy, and Penny will each receive a gift certificate for a book, CD, or DVD of their choice for sending tips we printed. Send us your tips via the Windows Secrets contact page.

Contents  Index

   
   
ADS
The Big Event   Show off your goodies in L.A. on Oct. 5
 Just before the Christmas buying season gets into full swing, The Big Event comes to the Hollywood & Highland Ballroom in L.A. This 1-day event, attended solely by major media, helps your company get products on radio and TV. Enter SECRETS in the Notes field when registering.
 http://thebigevent.tv

Get your product seen by 270,000 readers   Get your product seen by 270,000 readers
 Does your company offer a product or service? Now you can place an ad in the Windows Secrets Newsletter and be seen by more than 270,000 active buyers of PC hardware and software. Bid as much or as little as you like to get the ideal ad placement.
 www.WindowsSecrets.com

See your ad here

    
   
TELL A FRIEND

How you can share this information

 We love it when you send your friends links to our articles. But please don't forward your copy of our e-mail newsletter to people, which subjects us to spam complaints. Instead, simply suggest that your friends visit this issue's permanent Web address, shown below. A complete index at the bottom of the Web page provides you with hyperlinks to any article you'd like to recommend.

The address of this issue is http://WindowsSecrets.com/comp/070906

 		   
   
EDITOR'S BOOKSHELF

Windows Vista Secrets Get the tips you need about Windows Vista
The all-new Windows Vista Secrets helps novices and experts alike understand Microsoft's latest operating system. "To really appreciate what is in Vista, you almost need to read through the leading book on the product, Windows Vista Secrets, by Brian Livingston and Paul Thurrott," writes Rob Enderle, principal analyst of the Enderle Group, in TechNewsWorld. "It's 595 pages of things you can do with this product — most of which you probably wouldn't have discovered for some time, let alone right at first." Check the book out now for tips you can use.
More information: United States (B&N) / Canada / Elsewhere

Spam-Proof Your E-Mail Address, 2nd Ed. Spam-Proof Your E-Mail Address, 2nd Ed.
This 32-page e-book by Brian Livingston gives you step-by-step instructions that can prevent 97% of the spam that would otherwise clog an e-mail account. You could call it "Livingston's Spam Secrets." The PDF e-book is the result of months of experiments and tests we conducted. We now receive little or no spam to the addresses we used as guinea pigs. These tests show that you can make your e-mail addresses invisible to spammers, not just battle an ever-growing flood. The methods we describe work with Windows, Apple, and Linux and don't require any filters or block lists — but you can use those in addition to the book's techniques, if you wish. More info

    
   

Contents  Index

   
   
WACKY WEB WEEK

 Danish engineers find low-tech speed limit fix

Traffic controllers
 Making motorists stay within the speed limit is a problem in every country. But not every nation brings the same level of creative problem-solving to the issue as Denmark. With 70% of motorists going over the speed limit, traffic engineers decided that something had to be done.

To the rescue come the Bikini Bandits, who are trained — and dressed — to get motorists to slow down. As a hilarious video by the Danish Road Safety Council shows, the solution is not without problems of its own. Note: Not safe for work, reveals bare torsos. Play the video

Contents  Index

   
   
INDEX

The following topics appear in the free version

TOP STORY   Unpatched software abounds on user systems
  Software Inspector finds many unpatched apps
  How to keep your system up to date
  Get an automatic reminder to check for updates
   
KNOWN ISSUES   How to fix problems Software Inspector finds
  Removing outdated versions of risky applications
  Ferreting out old versions of Flash Player
  Update Checker points to newest versions
  NetChk expiration forces a shift in tactics
  Don't lose those Office shortcuts
   
WACKY WEB WEEK   Danish engineers find low-tech speed limit fix
   
You get all of the following in the paid version

PERIMETER SCAN   Sony renews rootkit debate with USB drives
  Who infected my PC with a rootkit?
  Have you been "affected" by Sony?
  What to do about retail malware
   
PATCH WATCH   MS server error marks PCs as "nongenuine"
  WGA wreaks havoc on genuine users
  Was Skype taken down by Patch Tuesday?
  It's time for Daylight Saving patches again
  Should you update microcode or not?
  Malcious Software Removal Tool saves the day
  Windows Mail stuck in outbox and Outlook Express patches
  Repatching needed for Windows Media player
  Vista gets a "second" Patch Tuesday
   
Paid subscribers can access all old and new paid newsletter content
Make a contribution to support our research into Windows and you'll immediately be able to read and search through scores of valuable articles. In addition, paid subscribers are entitled to download valuable content that we license for you at least once every calendar quarter.

To upgrade, simply make a contribution of any amount you choose.
If you do this by Sept. 12, 2007, you'll instantly be sent the full, paid version of today's newsletter.

To upgrade to the paid version of the Windows Secrets Newsletter, please visit our upgrade page. Thanks in advance.

   
   

Contents  Index

   
   
YOUR SUBSCRIPTION

The Windows Secrets Newsletter is published weekly on the 1st through 4th Thursdays of each month, plus occasional news updates. We skip an issue on the 5th Thursday of any month, plus the week of Thanksgiving and the last two weeks of August and December.

Publisher: WindowsSecrets.com LLC, Attn: #120 Editor, 1700 7th Ave., Suite 116, Seattle, WA 98101-1323 USA. Vendors, please send no unsolicited packages to this address (readers' letters are fine).

Editorial Director: Brian Livingston. Editor-at-Large: Fred Langa. Associate Editor: Scott Dunn. Contributing Editors: Susan Bradley, Mark Edwards, Woody Leonhard, Chris Mosby, Ryan Russell. Research Director: Vickie Stevens. Program Director: Brent Scheffler.

Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, LangaList, LangaList Plus, WinFind, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of WindowsSecrets.com LLC. All other marks are the trademarks or service marks of their respective owners.

 HOW TO SUBSCRIBE: Anyone may subscribe to this newsletter by visiting our free signup page.

WE GUARANTEE YOUR PRIVACY:

1. We will never sell, rent, or give away your address to any outside party, ever.
2. We will never send you any unrequested e-mail, besides newsletter updates.
3. All unsubscribe requests are honored immediately, period.  Privacy policy

HOW TO UNSUBSCRIBE: To unsubscribe from the Windows Secrets Newsletter,
 Copyright © 2007 by WindowsSecrets.com LLC. All rights reserved.

Contents  Index