Software that updates your other software

Topic

New Reply

	TOP STORY Software that updates your other software
	By Fred Langa The release of Secunia Personal Software Inspector (PSI) 3.0 prompts a test drive of the new version, plus six alternative general-purpose auto-update tools. One surprise: Some of these automatic-update programs can worsen your PC’s condition.

---

The full text of this column is posted at windowssecrets.com/top-story/software-that-updates-your-other-software/ (paid content, opens in a new window/tab).

Columnists typically cannot reply to comments here, but do incorporate the best tips into future columns.[/td]

[/tr][/tbl]

Reply | Quote

Replies

Good solid advice – especially re drivers
Drivers were a major source of problems, 20 years ago.
But these days they are rarely a problem, and even more rarely a solution.

I took PSI 3.0 for test drive, went half way round the block and took it straight back to showroom.
Then I jumped into my trusty old PSI 2.0 and came home.

And I’m not the only one to have done so, https://secunia.com/community/forum/thread/show/12848/psi_3_0_huge_disappointment

All they’ve done is to implement a dumbed down user interface and removed the “advanced” mode.

I use Filehippo daily, PSI and CNET weekly; the latter with great caution.

Filehippo doesn’t push Pay4Me versions when you’re running a legit Free version, CNET does it all the time.
Filehippo only notifies, it does not do the download or the install, nor would I want it to.
“Settings->Results->Dont Show Beta Versions” – set and voila, beta versions out of sight.

CNET has better coverage, in the sense that it ”knows’ about programs that PSI & Filehippo ‘miss’
But I don’t trust it as a download site, let alone let it auto-install

I always get what PSI/CNET recommend from vendor site, or via the software’s built in updater, or another download site (rarely).
I would never download from PSI or CNET, on more than one occasion I’ve discovered that they don’t have the latest version.
CNET once offered a download that was a more that a year older than what I already had.

All three of them have trouble with applications that have 32 & 64 bit versions.

nW

Reply | Quote

I remember C/NET had an online program that did this but then they stopped supporting it (over a decade ago). I see they now have a new tool which is free. I enjoyed the article but now, for most of the programs that I use, I get an email alert when an update is available. I regularly go to my MB home site (bare bones) to check for driver updates, but the only driver that they ever offered for 64-bit Win7 was the audio driver and they had just had an update a month ago (they leave the other drivers for Windows I suppose). I have the NVidia Settings running in my taskbar and I get updates for my Video card (purchased last Christmas) a few times already. What I’m trying to say is I don’t really care to depend on auto-updaters anymore and prefer to check for updates myself. Still, I do appreciate this article and it might get me to change my mind (got red faced angry when C/NET took down their auto-updated those many years ago). 🙂

Reply | Quote

Very informative thanks! You have saved us from some nasty pitfalls.
QUERY: Some of us have machines of different vintages. Will it be possible in future to indicate basic level of resources needed. The impact on the system and broadband is unquantified. I have removed autostart of PSI on an XP laptop in an endeavor to speed it up. Are the other provisional options resource hungry?:confused:

Reply | Quote

Very informative thanks! You have saved us from some nasty pitfalls.
QUERY: Some of us have machines of different vintages. Will it be possible in future to indicate basic level of resources needed. The impact on the system and broadband is unquantified. I have removed autostart of PSI on an XP laptop in an endeavor to speed it up. Are the other provisional options resource hungry?:confused:

PSI when running locally was a huge resource hog. PSI 3 has reduced that load, but by all reports not gotten it totally under control.

-- rc primak

Reply | Quote

Fred,

As usual your articles are very useful, thanks!

Funny that Secunia doesn’t alert to update itself; wouldn’t it have been for your LangaNews, I’d have had no clue about Secunia 3.0.

In Secunia’s benefit FileHippo didn’t alert me either; this should be no surprise though…

After all the comments/advice on this Forum, I will stay away from 3.0 until 3.X or 4.0 comes.

Ramiro

Reply | Quote

I recommend PatchMyPC (http://www.patchmypc.net). I’ve been using it for a few months now and it works well. No adware. Not resource heavy. It doesn’t update drivers but does just about everything else.

Reply | Quote

I recommend PatchMyPC (http://www.patchmypc.net). I’ve been using it for a few months now and it works well. No adware. Not resource heavy. It doesn’t update drivers but does just about everything else.

I would NEVER let a third-party program patch Windows for me! I have had enough Windows Updates issues without having someone else decide for me what to patch and when. And if a patch is reoffered or fails to install, these third-party Windows patchers can get VERY badly hung-up.

-- rc primak

Reply | Quote

Be careful using FileHippo.com’s updater. Came across this on a users laptop along with Adaware from http://www.freeze.com. Disabled the updater and removed the Adaware. This is always a possibility.

Reply | Quote

I recently had to uninstall after using for several years. Secunia use java run environment and will not work without it. The run environment has had issues of late and I removed it from my system. Guess I will check out the others.

Reply | Quote

This is a very good point that was overlooked previously. An updating tool that has the weakness of necessity to require one of the very platforms it is actually employed to audit in the first instance! I iterate once more. Ninite is an updater, it does not use any of the very add ons that you’re checking in the first place to actually do the job. I’ve managed to thankfully live without Java more recently, finding it was only really needed for some speed test sites. One other thing I’ve also noticed is that when deploying a Ninite updater installer file, it completes without presentation of any additional EULA’s. The annoying EULA pop ups with the original third party vendors update might include these if additional wording does bundle such extras like the toolbars, trials or even other browsers.

Since I now use Windows 8, & have no Java installed, & since flash is already integrated in IE10 & updated with the browser itself (not as an add on), I just use a Ninite updater installer file (which I keep on the desktop) & deploy it at audit, at will, or whenever I am notified by my pdf reader (sumanta), or quicktime player (only need that for MPEG 4 codec in my video editor), that an update is available. I never follow through with the vendors prompt to update (because clicking next, next, next & an additional EULA is always required, along with the precautionary hunt for covert toolbars etc. All of that is completely unnecessary by simply instantly deploying a tailored Ninite installer file instead.

Reply | Quote

😎 secunia updater

I recently had to uninstall after using for several years. Secunia use java run environment and will not work without it. The run environment has had issues of late and I removed it from my system. Guess I will check out the others.

Secunia Personal Software Inspector (PSI), which is the subject of this thread, does NOT require Java.

Only Secunia Online Software Inspector (OSI), which does not need to be installed, uses Java.

Bruce

Reply | Quote

All recommendations re. Java are to disable Java in all your browsers, not to discard it totally. and that is done easily – except for IE. But if someone still uses IE it’s their problem anyway.
The current risks are only when Java runs in the web browser.
Ask some of my customers about taking Java away? They will scream and yell at me because their beloved free web games require Java.
But surely your mileage is different.

Reply | Quote

All recommendations re. Java are to disable Java in all your browsers, not to discard it totally. and that is done easily – except for IE.

Unchecking Enable Java content in the browser disables it for all browsers, easily, including IE.

Bruce

Reply | Quote

Not a fan of the new PSI either.
One app I do really like though is “Allmyapps”.
Have also used the FileHippo one but it doesn’t have great app coverage.

Reply | Quote

Excellent article. But i would have thought, fred, that it might have been worth mentioning a way to update all the main important third party apps like Java, flash, & pdf readers etc, without actually installing another app. I use the excellent Ninite (http://www.ninite.com) to not only install with one click any essential apps, but also to actually keep them up to date. Once chosen products are selected (just the important third party apps that actually access the internet for example), and the ninite shortcut put on the desktop, it can be deployed at any time with one click to literally update said apps in one foul swoop. Should updates not exist, ninite just leaves existing products intact. Naturally there are no toolbars selected. If you find it only necessary to update essential security risk programs. This is really easy. Great if you prefer not to install an additional program like Secunia PSI. I used to use their OSI but found it typically slower than ninite since it would only check items and present links, where ninite completes in one hit instantly. Job done.

Reply | Quote

Excellent article. But i would have thought, fred, that it might have been worth mentioning a way to update all the main important third party apps like Java, flash, & pdf readers etc, without actually installing another app. I use the excellent Ninite (http://www.ninite.com) to not only install with one click any essential apps, but also to actually keep them up to date. Once chosen products are selected (just the important third party apps that actually access the internet for example), and the ninite shortcut put on the desktop, it can be deployed at any time with one click to literally update said apps in one foul swoop. Should updates not exist, ninite just leaves existing products intact. Naturally there are no toolbars selected. If you find it only necessary to update essential security risk programs. This is really easy. Great if you prefer not to install an additional program like Secunia PSI. I used to use their OSI but found it typically slower than ninite since it would only check items and present links, where ninite completes in one hit instantly. Job done.

Ninite is not an updater. It’s supposed to be used with a new Pc installation to rapidly load up some popular titles. Not a real updater.

-- rc primak

Reply | Quote

But if you run the ninite installer again, it will automatically update those programs if they are behind.

Also, there is allmyapps.com that will install and keep your apps up to date. It really doesn’t work too well under Windows 8, which is what I’m running (and if I get my butt in gear, for not too much longer…), constantly stalling on my system for some updates. It also scans your other installed programs (although it doesn’t find them ALL, curiously, it never saw my text editor UltraEdit) and works to keep them updated, although some I disabled it from looking for scans, the programs themselves were sufficient (CDBurnerXP for instance).

When I get Windows 7 reinstalled on this machine, I will definitely be giving it another try.

Reply | Quote

Ninite is not an updater. It’s supposed to be used with a new Pc installation to rapidly load up some popular titles. Not a real updater.

Sorry but ninite IS an updater to the extent that it can successfully be used to update third party apps. Not just on new pc installations, but on old ones too. You don’t need to install anything. Just select the programs to update, download the file to deploy, keep it on the desktop ready for anytime and it will update said apps on demand. Please check things before you make incorrect statements.

Reply | Quote

Sorry but ninite IS an updater to the extent that it can successfully be used to update third party apps. Not just on new pc installations, but on old ones too. You don’t need to install anything. Just select the programs to update, download the file to deploy, keep it on the desktop ready for anytime and it will update said apps on demand. Please check things before you make incorrect statements.

Not free though, if you want to be told when updates are available: Introducing The Ninite Updater — Starting at $9.99 a year

Bruce

Reply | Quote

Yes, Ninite IS free. The paid version you refer to does ‘automatic updating’. The ninite i refer to is free. It is not automatic. Just a one click updater that purges existing versions. This means nothing runs in the background. Since i find it only necessary to update apps that access the internet. It is ideal when manually deployed with one click from time to time.

Reply | Quote

Yes, Ninite IS free. The paid version you refer to does ‘automatic updating’. The ninite i refer to is free. It is not automatic. Just a one click updater that purges existing versions. This means nothing runs in the background. Since i find it only necessary to update apps that access the internet. It is ideal when manually deployed with one click from time to time.

But “from time to time” puts the free Ninite in a different class from other updaters discussed here; which all notify you when updates are advisable, like the paid version of Ninite.

Bruce

Reply | Quote

No. Fred talked about the Secunia OSI, which is what i used to use before the free Ninite. The OSI checks your software but DOES NOT update it. (It presents links to actually allow you to do so manually). You are required to follow through such links, sometimes with multiple clicks. With Ninite, unlike the OSI, the updating is done. There is no requirement or presentation of follow through links, since all the software you required was originally pre selected permanently. This not only places it in a category similar to the OSI, but also surpasses it in terms of advantage & faster performance of getting the updates done (not only with a single click), but also without any ‘are you sure’ prompts, or extra toolbars!

Reply | Quote

No. Fred talked about the Secunia OSI, which is what i used to use before the free Ninite. The OSI checks your software but DOES NOT update it. (It presents links to actually allow you to do so manually). You are required to follow through such links, sometimes with multiple clicks. With Ninite, unlike the OSI, the updating is done. There is no requirement or presentation of follow through links, since all the software you required was originally pre selected permanently. This not only places it in a category similar to the OSI, but also surpasses it in terms of advantage & faster performance of getting the updates done (not only with a single click), but also without any ‘are you sure’ prompts, or extra toolbars!

Fred talked about both OSI and PSI, but his focus was on the new PSI 3, which has been updated to deal with user complaints that it wasn’t showing enough information, and that it didn’t have enough options for customizing the updating process. I must admit, I am impressed with Secunia’s response so far.

I must repeat, paid or free, Ninite is NOT intended to be used as a software updater service. It is intended to load up a new PC with “recommended” software, in case you aren’t intelligent or diligent enough to choose programs for yourself. Then it keeps the “recommended” software up to date, with all their defaults, toolbars and all.

These days, name me one Application which NEVER accesses the Internet, not even to check for updates?

-- rc primak

Reply | Quote

I must repeat, paid or free, Ninite is NOT intended to be used as a software updater service. It is intended to load up a new PC with “recommended” software, in case you aren’t intelligent or diligent enough to choose programs for yourself. Then it keeps the “recommended” software up to date, with all their defaults, toolbars and all.

These days, name me one Application which NEVER accesses the Internet, not even to check for updates?

Good point about naming one application which NEVER accesses the internet. However the Secunia OSI offers a fast way to scan your PC for the most common programs and vulnerabilities, thus checking if your PC has a minimum security baseline against known patched vulnerabilities.

Just because a program accesses the internet, it does not mean that you have to install it on your system. In terms of a minimum, the OS (eg Windows 7), can handle the patching of its own vulnerabilities. It is only any added third party essentials (that are usually browser based, browser plug-ins, platforms or runtimes), that require internet access, not just to update their program versions and features but more importantly their specific vulnerabilities.

I find that I can get away with flash (haven’t given up on that just yet), Java, a pdf reader (I use sumantra pdf specifically because it has fewer vulnerability updates than adobe), VLC media player and QuickTime.

Incidentally, the Secunia OSI ironically, actually requires Java to be able to run at all, something that free ninite does not need, but of course can be installed if selected. Also there are no ‘tool bars and all’ associated with ninite. It does not require unticking of boxes or clicking of Next, Next, Next on installers. I seem to remember Java sometimes including Google toolbars on update, also having to click Next, Next, Next through secunia. This is not something that is needed using free ninite at all, even if by your definition, it is not intended to be used as an updater, I have certainly been using it as one.

The Secunia offers an ‘automatic mode’. In my experience though, ‘automatic’ updates usually just mean either a start-up registry entry, or some kind of periodic scheduled check. Where relied upon by convenience, I have known this to be unreliable, and prefer to manually check for updates from time to time for peace of mind.

Ninite also actions updates for VLC media player, which when completed presents on the windows start menu “reset VLC media player preferences and cache files” ready for use.

31596-ninite

Reply | Quote

IMHO the big problem with all “automatic” updating is:
The updater goes to the vendor’s download page where all too often you get an installer with some foistware. And automated installers just can’t read the text in the little windows where the cheeky “offer” to install XYZ toolbar or worse is pre-selected.

Totally agree with northwood2222. When it was new I took PSI 3 for a spin and reverted lightning fast to PSI 2.x. I use it’s warnings to do the update manually.

Filehippo checks only for programs on their download site and nobody has everything.

I have told my customers for years to stay away from CNET’s Download.com and similar sites. You can find more details here.

Reply | Quote

If you use SUMo, be sure to download the .zip/.7z file or go directly to the “free of all sponsors download links” just below the list on KC Software’s download page. Doing either will avoid all the pitfalls mentioned in the article and allow you to use SUMo. If you do, you will like some of its detection features – its database stores far more software than even TechTracker’s. Updating using SUMo is a little tedious, but it’s a good addition to your arsenal.

I agree about PSI 3. Tried the beta, dumped it because of the lack of control. Tried it when it was released as final and dumped it because it really chewed up a huge percentage of my processor and interfered with everything else. I ended up reinstalling PSI 2.x, and running it on demand every week rather than on startup.

Reply | Quote

It is a module that adds its self to a WSUS server interface. I tried it and it does a good job of reports. I thought the interface was a little cumbersome but looked like it could get the job done. I was just testing but my company did not want to spend the money on it yet to automate our manual update process for 3rd party apps. I’d like to know how eminentware stands up to PSI! In the near future Im going to bring the 3rd patching issue back up to try and get a patching product.

Reply | Quote

It is a module that adds its self to a WSUS server interface. I tried it and it does a good job of reports. I thought the interface was a little cumbersome but looked like it could get the job done. I was just testing but my company did not want to spend the money on it yet to automate our manual update process for 3rd party apps. I’d like to know how eminentware stands up to PSI! In the near future Im going to bring the 3rd patching issue back up to try and get a patching product.

WSUS is not the Microsoft Updates for consumer versions of Windows. It is designed to work with Servers or Volume Licensed buseness installations of Windows. However, there may be Lounge visitors who would like to use products or services aimed at businesses. So thanks for posting.

-- rc primak

Reply | Quote

When it was new I took PSI 3 for a spin and reverted lightning fast to PSI 2.x. I use it’s warnings to do the update manually.

How did you manage that? After running in to a problem with PSI 3 it was removed, but there is no option that I could find to download PSI 2. Hence have to use the online version.

Reply | Quote

How did you manage that? After running in to a problem with PSI 3 it was removed, but there is no option that I could find to download PSI 2. Hence have to use the online version.

PSI 2 is still available at http://secunia.com/PSI2Setup.exe

But the PSI 3 updated today doesn’t lack any real features.

Bruce

Reply | Quote

PSI 2 is still available at http://secunia.com/PSI2Setup.exe

But the PSI 3 updated today doesn’t lack any real features.

Bruce

Bruce,
Not sure if you will see this, as the thread is rather old now, but I have only just remembered to look and see if I had a reply – busy watching the Olympics.

Thanks for the link, PSI 2.0 reinstalled, but it’s showing an out of date VLC Media Player, although that has been uninstalled. I’ll have to hunt for any remnants left behind.

Regarding PSI 3, I removed it because there was no opportunity to do a scan on demand, has that been rectified now?

Having ignored one of the updates that Susan Bradley said to leave for now, I eventually became fed up with the red icon in the task bar and installed it, but PSI still showed it as needing to be updated, and with no option to do a scan to rectify that, wanted to revert to the previous version. Perhaps I’ll try v. 3 again.

George

Reply | Quote

Regarding PSI 3, I removed it because there was no opportunity to do a scan on demand, has that been rectified now?

It has a Scan Again button for all programs, which takes about 5 minutes for me with 236 programs, but you still can’t re-scan a single program with PSI 3.0.

Bruce

Reply | Quote

It has a Scan Again button for all programs, which takes about 5 minutes for me with 236 programs, but you still can’t re-scan a single program with PSI 3.0.

Bruce

Not a deal-breaker, but it was handy to be able to rescan an item when I had over 1000 detected items in PSI 2 on my Windows XP laptop. That resource-challenged laptop would take over 12 minutes to complete a scan and display results in PSI 2.

-- rc primak

Reply | Quote

How did you manage that?

George,

I always keep the “previous version” installer around until a “new version” of the target program runs to my satisfaction. That is to say I very, very rarely “Run” an installer right out of the browser download, I almost always “Save” the installer first.

I am still on PSI 2.0. I watch it’s tray icon; if it turns yellow I open the PSI GUI and check what is causing it and then ALWAYS go the manufacturer’s web site to download and install the new version manually. IMHO that is the best way of staying away from foistware.

Then I let PSI “Scan my system” to get back to it’s coveted green tray icon.

All the above I do on my system only, the vast majority of my customers simply can not be expected (bothered with) to do these things, except for Windows Update. My customers get “an earful” and have to pay me when I discover that they have not done their weekly check with/for Windows Update.

Windows Updates are not an issue for me since I check manually once every week.

Reply | Quote

I always keep the “previous version” installer around until a “new version” of the target program runs to my satisfaction. That is to say I very, very rarely “Run” an installer right out of the browser download, I almost always “Save” the installer first.

I am still on PSI 2.0. I watch it’s tray icon; if it turns yellow I open the PSI GUI and check what is causing it and then ALWAYS go the manufacturer’s web site to download and install the new version manually. IMHO that is the best way of staying away from foistware.

Then I let PSI “Scan my system” to get back to it’s coveted green tray icon.

A couple of great ideas, particularly the one about letting PSI find what you need, and then you manually get it yourself.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

PSI is the worst program for false positives. Use File Hippo and you will never have a problem.

Reply | Quote

Not sure why I couldn’t Edit my previous post but I am with a company of 300 Windows computers and manage MS patch updates with our WSUS server. Our users are restricted users that cant install patches themselves just authorized patches from the WSUS server.

Reply | Quote

PSI is the worst program for false positives. Use File Hippo and you will never have a problem.

What do you mean by “false positives” with PSI? Remember, this program finds ALL instances of an insecure program or plugin. In the cases of Flash and Java Runtime, there could be many different locations, and per-user instances, of the older, insecure versions, and these are not always cleaned up with a single update installation. Please post specific “false positives” you have experienced with PSI 2 or PSI 3.

-- rc primak

Reply | Quote

I don’t bother with any of these update programs.
I find them confusing, fickle and un-reliable..

If my programs are working properly then I leave them alone..

I know others like to use them and find them useful but I am not one of them..

Reply | Quote

I think their is a real need to keep Adobe flash, Reader and Java updated for our buisness environment to keep the security issues patched.

Reply | Quote

I too have used PSI 2 and updated to PSI 3. The main problem is that after starting windows, PSI 3 really uses system resources to analyze the system for updates – which slows down being able to actually use my system (this is a Win7/64 i5 system which normally is very responsive). I like the free Web-based tool much better – I can run it when I need to check for updates (probably once a month along with the Windows updates) – and I prefer being able to choose what I want to update. The automatic updates in PSI 3 can be very slow – I have had some program updates take 30 minutes or more.

Reply | Quote

I too have used PSI 2 and updated to PSI 3. The main problem is that after starting windows, PSI 3 really uses system resources to analyze the system for updates – which slows down being able to actually use my system (this is a Win7/64 i5 system which normally is very responsive). I like the free Web-based tool much better – I can run it when I need to check for updates (probably once a month along with the Windows updates) – and I prefer being able to choose what I want to update. The automatic updates in PSI 3 can be very slow – I have had some program updates take 30 minutes or more.

The ad-free version of SUMo does not have to run at Windows Startup, and when it is run, it only uses system resources for a short time, while it does its local scan. After that, the online checking is pretty easy on resources, at least with my slow DSL and old Windows XP laptop.

-- rc primak

Reply | Quote

“One surprise: Some of these automatic-update programs can worsen your PC’s condition.”

If Fred had been using software update checkers or automatic updates installers for a few yearrs as I have, this would come as no surprise. You must be very careful where you get your updates and how you install them.

True, if the update isn’t a security update, sometimes the old version works better. I am not referring just to Beta releases, which are a whole other story.

Drivers are a good topic for an entire other article. But generally, Fred is right: If it isn’t broken (unstable), and if there are no security isssues or other direct advice from Microsoft or the manufacturer to update, it’s best to leave drivers alone. (I am not recommending getting driver updates from Microsoft. If MS Updates says in a KB article (linked under “Details”) that you may need a driver update to install a patch or a service pack, head directly to your computer’s manufacturer website to see what’s acvailable. Do not install Microsoft offerings of drivers. Rather than do this, skip the patch or service pack.) Driver instability signs include slow loading and conflicts with other drivers.

Based on the interface changes, I am not as enthusiastic about PSI 3 as Fred. But there are user controls, even if you have to dig deeper than before to access them. I recently had an exchange with BruceR in The Lounge about this update to PSI. So I won’t rehash the details.

7-ZIP betas and even alphas have in my experience, rarely caused any issues. This and Flash Player (64-bit) are among the very few betas I will allow on my computers. 7-ZIP has a habit of keeping new versions in beta status for months or even years. This is in my experience unnecessary caution on their part, so I use their betas and even alphas with little hesitation. The choice is always up to the user, as the “stable” versions are not usually insecure at any moment.

BEGIN RANT
SUMo gets a bad rap from Fred, largely because he did not dowlnoad the correct, sponsor-free installer version. It’s a very tiny link on the SUMo Downloads Page, and even I didn’t see it until BruceR pointed out to me that it exists. With this sponsor-free version, there are no sponsor offers, no aggressive adware, and no spyware. Malwarebytes does NOT flag anything in this clean installation of SUMo as a Trojan. Again, the rogue Registry entries Fred refers to are not found in the sponsor-free SUMo installation. All of this points to the probability that Fred installed the RK spyware along with SUMo, which I have repeatedly shown in The Lounge is the wrong installer to use for this product.

If you accept the setting to “allow betas” in SUMo, you will be bombarded by update notices which are not going to be the stable versions. Also, SUMo does not distinguish between applicatiion software and OEM driver-related software. As a result, there are a lot of what I consider to be false positives to update driver software or OEM software. These notices are totally irrelevant to keeping a computer up to date and secure. I have been in email contact with KC Softwares’ Kyle Katarn about this issue, but he has not seen fit to bring about changes in SUMo which would alleviate this issue with the SUMo updater.

Mr. Katarn also has posted at the KC Softwares website, a very poorly supported argument as to why he “needs” to include spyware and adware with his software offerings. This is the saddest piece of nonsense I have ever read about piggybacking potentially unwanted software at any vendor website. I have also read why Open Source authors, especially at Sourceforge, claim they “need” to sneak OpenCandy Adware into their installers. (OpenCandy does not always have an opt-out. And when it does, it’s in the form of a Run with Parameters Windows Commmand from an Administrator Account. Not easy for casual users!) Very sad and very disturbing. Adware is becoming more and more prevalent with free software offerings these days. SUMo is neither the worst offender, nor the most difficult to cleanly install. (Try getting a recent version of ImgBurn without OpenCandy — it’s impossible in my searching. I chose StarBurn partly because of this issue.) Once installed, OpenCandy leaves behind unremovable Registry entries, at least as dangerous as anything Fred may have found when he uninstalled SUMo and RK.

None of the issues I’ve had with SUMo would prompt me to use Filehippo or CNet updaters, as both contain push-adware which cannot be avoided nor uninstalled without uninstalling the entire updater software package. And CNet’s downloads come with a “download helper” which is adware. Neither Filehippo nor CNet updaters have anywhere near the number of software titles (paid and free) tracked, compared with SUMo. Still, I wish there were a better alternative.

I totally agree about GlarySoft — they are not any good at updates tracking and should stick with their core competency (system cleanup and related utilities).

I am not familiar with Carambis, nor Nabber.

I use SUMo with caution, and check its recommendations against the software vendors’ websites and recent software reviews whenever I have the slightest question about its recommendations. As I would with any software updates tracker, even PSI. With drivers, I have just posted advice which closely agrees with Fred’s advice. So with SUMo, my Ignore List is a bit lengthy, but there is no other updater I’ve tried which gives me as many options to update (or not) as SUMo. Just do look for the tiny link to the clean download when installing this updater.

I don’t use PSI, as when I do use SUMo, I get the security-based updates along with some of the new versions from vendors whom I trust. (My list of trusted vendors in this regard is not very long, but it is too long for posting in a Lounge thread. And I don’t use all the types of software out there, so my practices in this regard should bear little weight with other PC and laptop users.)

And yes, it bears repeating — with very few exceptions, I follow the practice of not accepting beta updates. I have been burned by these on occasions, so I know it isn’t worth the risks — with a very few exceptions. For VLC Player, for exampkle, I have both the stable 32-bit version and a 64-bit experimental beta version. But I would not recommend having the 32-bit beta version, as it may be a bit buggy still. Same with Flash Player.

Also worth repeating — do not attempt to update OEM software or drivers from updates checker recommendations. This almost never resuilts in a happy outcome.

/END RANT

-- rc primak

Reply | Quote

Mr. Katarn also has posted at the KC Softwares website, a very poorly supported argument as to why he “needs” to include spyware and adware with his software offerings. This is the saddest piece of nonsense I have ever read about piggybacking potentially unwanted software at any vendor website. I have also read why Open Source authors, especially at Sourceforge, claim they “need” to sneak OpenCandy Adware into their installers. (OpenCandy does not always have an opt-out. And when it does, it’s in the form of a Run with Parameters Windows Commmand from an Administrator Account. Not easy for casual users!) Very sad and very disturbing. Adware is becoming more and more prevalent with free software offerings these days. SUMo is neither the worst offender, nor the most difficult to cleanly install. (Try getting a recent version of ImgBurn without OpenCandy — it’s impossible in my searching. I chose StarBurn partly because of this issue.) Once installed, OpenCandy leaves behind unremovable Registry entries, at least as dangerous as anything Fred may have found when he uninstalled SUMo and RK.

Bob: Here is an article from Tech Support Alert (Gizmo’s website) concerning OpenCandy:
http://www.techsupportalert.com/content/controversial-advertising-program-now-being-embedded-more-software.htm

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

I personally like Sumo and haven’t had any issues with it as long as I watch during the install. But I am going to try that “lite” non-adware version and see how that looks.

Here’s another up-date program that I have used successfully and which wasn’t mentioned:
http://www.software-uptodate.de/cms/us/home/

Reply | Quote

I would point out for server systems that WSUS isn’t the paragon of virtue that some people suggest – the infamous and notorious update KB2720211 to WSUS completely wrecked WSUS itself about a month ago, and we still haven’t found a way out of the mess…

BATcher

Plethora means a lot to me.

Reply | Quote

Secunia PSI 3.0 has today been updated to include most (if not all, except “secure browsing notifications”) of the features that users of PSI 2.0 had found missing:

Version 3.0.0.3001 (26th July 2012)

This is a minor maintenance release. The primary changes are:

[*]Detailed view: The user can decide whether to view the list of programs as a detailed view or an icon view
[*]Criticality: The detailed view now includes criticality ratings for programs that need updating
[*]Number of installations: The detailed view shows the number of installed program versions
[*]More information: Right-clicking a program that is not up-to-date now provides a link to more information (the Secunia Advisory on the Secunia website)
[*]Add notification to install Microsoft Update if it is not installed
[*]Bug with “long scan time for initial scan” has been fixed
[*]Language selection when upgrading between major versions has been fixed
[*]Ignore rules created in PSI2 are now ignored after upgrade (since the way ignored updates are handled has changed)
[*]Manual downloads for updates to 64-bit programs don’t try to download the 32-bit versions
[*]Warning about unknown variable has been fixed
[*]Updates to translations of non-English versions of the PSI
[*]Correct notice about trusted sites to point to psi3.secunia.com
[*]Various minor bug fixes

Bruce

Reply | Quote

Thanks, BruceR.

This may be one of two products Secunia has been promising for some time. The other might be a more detailed technician-level program, with more details available for viewing.

But whether or not any advanced PSI type of program ever comes out, it is obvious that Secunia has been listening to PSI users who were frustrated with the simplicity of the PSI 3.0 interface. I might (maybe) even try the new updated version myself on my Windows 7 installation and see if it can show the paths to all the insecure versions I may have in there. Then the acid test would be if it can live comfortably within the confines of my resource-challenged older Windows XP laptop.

I will not be bashing PSI 3 again until I have either further details and user comments, or else until I have had a chance to try it out for myself.

SUMo is designed not only to update insecure programs, but to allow notifications of updates which may include stability updates or updates with added features, which Secunia would not consider security updates. So PSI and SUMo might be a good combination. (Of course, that’s the sponsor-free SUMo.)

-- rc primak

Reply | Quote

Fred mentions VLC in the context of PSI. VLC is a good example of a problem with some applications, in as much as each VLC update overwrites the existing file associations in Windows 7 Control Panel > Default Programs. If you have more than one media player, as I do – Zoom Player, VLC and WMP (along for the ride) – then VLC’s updates are a problem. And it’s a known issue that no one on the VideoLan project has ever taken on.

Concerning Sumo: I have been using FileHippo but decided to take a look. Sumo’s install is full of adware and other crap, and even though I unchecked all the optional items, including Babylon, it still installed it. Thanks for the help…

Reply | Quote

When I have updated VLC Player, I have usually chosen to keep my old file associations, playlists and other settings. No other media player seems to have gotten its toes stepped on if I didn’t go for a clean install of the update.

-- rc primak

Reply | Quote

bobprimak,

First of all, the VLC forum admin says that the file association issue is known: http://forum.videolan.org/viewtopic.php?f=2&t=102494.

Then, second, I have to say that after using Sumo, which you highly recommended, I don’t know what computer you’re using, but Sumo is seriously flawed, and that’s putting it nicely:

1) The update results screen cuts off the Key to the result symbols (upper right), so that they can’t be read in full;

2) In the results, the first nine files show as needing to be updated – it looks like “Major,” but every one of them is wrong; that is, all are up to date. Moreover, one of the updates is for a very different printer (of the same brand). Besides that, the update links don’t go to an application’s site, but to google search results that may or may not be on the same subject, but have nothing to do with updating.

Reply | Quote

bobprimak,

First of all, the VLC forum admin says that the file association issue is known: http://forum.videolan.org/viewtopic.php?f=2&t=102494.

Then, second, I have to say that after using Sumo, which you highly recommended, I don’t know what computer you’re using, but Sumo is seriously flawed, and that’s putting it nicely:

1) The update results screen cuts off the Key to the result symbols (upper right), so that they can’t be read in full;

2) In the results, the first nine files show as needing to be updated – it looks like “Major,” but every one of them is wrong; that is, all are up to date. Moreover, one of the updates is for a very different printer (of the same brand). Besides that, the update links don’t go to an application’s site, but to google search results that may or may not be on the same subject, but have nothing to do with updating.

No updates checker I am aware of is without its faults. And SUMo is no exception. Updates checkers should not be used to update drivers or driver related software, as Mr. Langa and everyone else, myself included, has said repeatedly.

As stated in my posts on SUMo, you have to take any checking run with a grain of salt. This is especially true of the first run. Reference all the top “major updates” results vs. your OEM and driver software. As I stated, there is an issue which the folks at SUMo do not seem to want to fix, where SUMo does not distinguish these special cases from ordinary installed software which can and should sometimes be updated. Place these non-updates into the Ignore List and run again. And make sure you are not allowing betas in the SUMo settings.

I’ve had much more serious errors of this type with the updates checkers from Filehippo, GlarySoft, Software Informer and CNet. These updates checkers couldn’t even get normal installed software right. And all recommended updating software which is driver related.

I’ve never had a display rendering issue with SUMo on Windows XP (old laptop) nor Windows 7 nor Windows 8 (newer laptop). So it must be something on your computer. On my computers, hovering over a highlighted SUMo result will also show the full path to where the software was detected on my computer. That is how SUMo is supposed to work. Sorry it did not work on your computer. The SUMo display window can be widened or lengthened using the standard Windows methods for grabbing a side with your cursor and dragging it outwards. This may help.

I do not doubt that the VLC Player file type association issue is real and documented. I am just saying that in my experience on both laptops and all three Windows versions, I have been able to control this annoyance by being selective in the installation options during an update to VLC Player. I do not have every Media Player out there, so maybe some play better with VLC than others.

-- rc primak

Reply | Quote

No updates checker I am aware of is without its faults. And SUMo is no exception. Updates checkers should not be used to update drivers or driver related software, as Mr. Langa and everyone else, myself included, has said repeatedly.

As stated in my posts on SUMo, you have to take any checking run with a grain of salt. This is especially true of the first run. Reference all the top “major updates” results vs. your OEM and driver software. As I stated, there is an issue which the folks at SUMo do not seem to want to fix, where SUMo does not distinguish these special cases from ordinary installed software which can and should sometimes be updated. Place these non-updates into the Ignore List and run again. And make sure you are not allowing betas in the SUMo settings.

I’ve had much more serious errors of this type with the updates checkers from Filehippo, GlarySoft, Software Informer and CNet. These updates checkers couldn’t even get normal installed software right. And all recommended updating software which is driver related.

I’ve never had a display rendering issue with SUMo on Windows XP (old laptop) nor Windows 7 nor Windows 8 (newer laptop). So it must be something on your computer. On my computers, hovering over a highlighted SUMo result will also show the full path to where the software was detected on my computer. That is how SUMo is supposed to work. Sorry it did not work on your computer. The SUMo display window can be widened or lengthened using the standard Windows methods for grabbing a side with your cursor and dragging it outwards. This may help.

I do not doubt that the VLC Player file type association issue is real and documented. I am just saying that in my experience on both laptops and all three Windows versions, I have been able to control this annoyance by being selective in the installation options during an update to VLC Player. I do not have every Media Player out there, so maybe some play better with VLC than others.

I’ve never had a problem with what FileHippo shows, only what they don’t, and it’s no big deal. SUMo isn’t in the ballpark. Other than resetting file associations in Windows, I know of only one way to deal with the VLC problem, and that’s to change VLC’s default file associations during each version install (custom?, I’m forgetting). Do you have another?

Reply | Quote

I’ve never had a problem with what FileHippo shows, only what they don’t, and it’s no big deal. SUMo isn’t in the ballpark. Other than resetting file associations in Windows, I know of only one way to deal with the VLC problem, and that’s to change VLC’s default file associations during each version install (custom?, I’m forgetting). Do you have another?

I guess we’ll have to agree to disagree about Filehippo vs. SUMo.

Actually, what you say about keeping a close eye on the File Associations and using Custom Install during a VLC Player update is exactly how I maintain consistency in that program. I guess it’s a few extra steps, but for me, definitely not a problem.

Thanks for your point of view on both sub-topics. It’s good to have various points of view expressed here in The Lounge, so that folks can decide for themselves based on the materials presented or referenced by each Lounge member.

-- rc primak

Reply | Quote

Fred,

I’ve become a fairly strong fan of PSI because, for the most part, it takes away a lot of the chasing and guess work. V3 cleans up piles of problems and confusion from earlier versions. I do have some issues; 1. I get notified that I need to update webex manually. I click through, and it takes me to the webex site where now I have to figure out what I need to download to update what I currently have. I ended up removing webex; I figure the next time I need it to connect to something, when I try to get on it will tell me what I need to install. But this is not ideal. 2. For some software, like the DVD software that gets bundled in some PC’s, it tells you that you need an update. Except that the only update available may cost $100 or more. Not so good either. But overall, I trust PSI enough that every PC I own has it, including that of a child in college, who has to run it far from home. The latest version is a lot nicer.

Reply | Quote

Fred,

I’ve become a fairly strong fan of PSI because, for the most part, it takes away a lot of the chasing and guess work. V3 cleans up piles of problems and confusion from earlier versions. I do have some issues; 1. I get notified that I need to update webex manually. I click through, and it takes me to the webex site where now I have to figure out what I need to download to update what I currently have. I ended up removing webex; I figure the next time I need it to connect to something, when I try to get on it will tell me what I need to install. But this is not ideal. 2. For some software, like the DVD software that gets bundled in some PC’s, it tells you that you need an update. Except that the only update available may cost $100 or more. Not so good either. But overall, I trust PSI enough that every PC I own has it, including that of a child in college, who has to run it far from home. The latest version is a lot nicer.

This is exactly what both Fred Langa and I have warned everyone about. Updates checkers, including PSI, do not distinguish between special driver related software and ordinary installed programs. Drivers cannot be updated safely in most cases through software updates. And they generally are not insecure unless the manufacturer has issued an updated version for your hardware.

Updating software properly will never be a no-brainer. This is why I would never permit automatic updating using third-party updaters. I check out each and every recommendation of each and every updater except those included with the software programs themselves. Only Flash Player and a very few other plugins get to auto-update themselves on my computers. And even then there have been occasional issues and disasters. I don’t even let Windows Updates from Microsoft run automatically. I reference articles and blogs by Woody Leonhard, Susan Bradley and others before doing any MS Updates.

What PSI and SUMo do is offer you information about available and recommended updates. This is only a beginning. You have to do your own referencing and only do those updates which make sense for your computer and your preferences. I don’t recall ever saying otherwise. I look for an updater which gives me the most information without excessive false recommendations.

Don’t worry — over time, you will develop a memory of which software is OEM or driver related, and you will add these items to the updates checker’s Ignore List. Whether it’s PSI or CNet or SUMo, the same process of paring down the available information to only display what’s relevant is the best approach to using updates checkers. I do not recommend using them to auto-update. Never have, never will. There is just too much which can differ from one computer to another.

SUMo is far from perfect in this, but it gives me more information about more software, with fewer false recommendations, than any other updater I have tried. And it still stinks, due to recommending updating OEM and driver software. But it’s a good starting point, and it does cut down my updating time by about nine-tenths, vs. going through every piece of software and every plugin I have installed on three Windows versions across two very different laptops. A manageable amount of garbage to wade through beats an enormous pile of individual programs to check one by one, if you ask me. (My last SUMo count on my XP laptop was over 1,000 items, to be approximate. Windows 7 is over 600, and Windows 8 is over 250. And Win 8 doesn’t even have all my productivity software installed yet.)

I don’t think I can make myself any more clear. Think before you update anything. It’s never a no-brainer if you want to avoid update disasters.

-- rc primak

Reply | Quote

I disagree strongly with Fred Langa’s opinions on SUMo, but that’s because I’m always careful to download the non-RK version of SUMo. Kyle Katarn, the author of SUMo, has a page on his site where he points out that versions of all his software are available without the “Relevant Knowledge” toolbar that Fred Langa was so upset about. I actually prefer to use the portable version of SUMo, which comes with no adware or toolbars. From the SUMo download page, click the “ZIP” icon next to SUMo and you’ll get a clean version.

[*]SUMo download page: http://www.kcsoftwares.com/index.php?download
[*]Direct link to current clean SUMo ZIP file: http://www.kcsoftwares.com/files/sumo.zip

---

KC Softwares – http://www.kcsoftwares.com/?rk

Reply | Quote

While Tech Tracker used to be good, it now is often wrong and worse when you download from there it tries very hard to auto install toolbars etc. UNLESS you are very diligent to avoid them.
I use their service to note new updates and then go to the OEM site to get a download directly (if it makes sense to update; adding a new language that I don’t use is not a good reason to update)

Reply | Quote

I don’t understand. Why add yet another background program when the individual programs handle this (informing you that updates are available) anyway? Have I missed the point?

Reply | Quote

I don’t understand. Why add yet another background program when the individual programs handle this (informing you that updates are available) anyway? Have I missed the point?

I think you raise an interesting point for discussion. But many programs have only started checking for updates automatically quite recently, and quite a few still don’t.

Then there’s the question of whether it’s more convenient to have an update session where you update all your outdated programs, rather then each one individually only when you try to use them.

Bruce

Reply | Quote

I don’t understand. Why add yet another background program when the individual programs handle this (informing you that updates are available) anyway? Have I missed the point?

Because the original programs don’t notify me. I have over 1,000 program components in Windows XP, over 600 in Windows 7 and over 250 in Windows 8. I get updates notices for only less than one percent of Windows XP program components, 5 percent of Windows 7 and ten percent of Windows 8 components from the original programs. Nir Sofer’s utilities, Microsoft Technet’s Sysinternals and many other utilities do not give notice, and do not have auto-updating for their components. And that’s only the tip of the iceberg. And when a program like LibreOffice or NitroPDF Reader gives me a notice, it’s often weeks out of date. SUMo and other updaters give much more prompt notice, and can be used to update beta and DEV Channel versions of things like 7-ZIP, VLC Player and Chrome browser, for those of us who are experimenting with Windows 8 RP. Many, many reasons to use a single-source updates checker, once you learn what they can and cannot do for you.

I also have a few “stand-alone” or “portable” programs, like the Pegasus Mail email client, which are not installed programs at all, but updates checkers often do track them and can tell me when they are insecure or out of date. In these versions, these programs rarely have internal updates checkers.

SUMo and other well-behaved updates checkers do not run in the background. They scan on demand and then go online only at those times to check local versions vs their remote databases. PSI is unusual in that it does run in the background (although users can turn off this behavior — it does not have to Start With Windows –) and monitors constantly to keep users secure. Think of PSI as one more layer in your security defenses.

-- rc primak

Reply | Quote

Because the original programs don’t notify me. I have over 1,000 program components in Windows XP, over 600 in Windows 7 and over 250 in Windows 8. I get updates notices for only less than one percent of Windows XP program components, 5 percent of Windows 7 and ten percent of Windows 8 components from the original programs. Nir Sofer’s utilities, Microsoft Technet’s Sysinternals and many other utilities do not give notice, and do not have auto-updating for their components. And that’s only the tip of the iceberg. And when a program like LibreOffice or NitroPDF Reader gives me a notice, it’s often weeks out of date. SUMo and other updaters give much more prompt notice, and can be used to update beta and DEV Channel versions of things like 7-ZIP, VLC Player and Chrome browser, for those of us who are experimenting with Windows 8 RP. Many, many reasons to use a single-source updates checker, once you learn what they can and cannot do for you.

I also have a few “stand-alone” or “portable” programs, like the Pegasus Mail email client, which are not installed programs at all, but updates checkers often do track them and can tell me when they are insecure or out of date. In these versions, these programs rarely have internal updates checkers.

SUMo and other well-behaved updates checkers do not run in the background. They scan on demand and then go online only at those times to check local versions vs their remote databases. PSI is unusual in that it does run in the background (although users can turn off this behavior — it does not have to Start With Windows –) and monitors constantly to keep users secure. Think of PSI as one more layer in your security defenses.

I have also found it useful to visit the FileHippo, DownloadCrew, and a couple other websites regularly. They note new versions of the software they track, and it’s a way for me to see what new versions are out there, then decide what to install.

Reply | Quote

I have used Secunia PSI for a number of years with no problems. I tried 2 different versions of CNet’s TechTracker with disastrous results every time. I installed the software. As soon as I tried to run it, Windows 7 (and earlier Vista) started opening up uncountable numbers of windows.

When this happened I lost any control over the computer. The only way to stop the program was to turn off the power. Not only could I not stop the run away program I could not even shut down and restart Windows using the Start button.

I tried TechTracker a second time thinking the program has been fixed. The results were exactly the same. I had to uninstall it. If the program has been starting automatically I am not sure I would have been able to uninstalled it. I might have had to reinstall Windows 7 to regain control of the computer.

Reply | Quote

If the program has been starting automatically I am not sure I would have been able to uninstalled it. I might have had to reinstall Windows 7 to regain control of the computer.

You probably could have restarted the computer in Safe mode and ininstalled it that way.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

Thanks for pointing me towards TechTracker, which I have tried and uninstalled. It throws up far too many false positives – programs that it thinks need to be updated, when I already have the latest versions installed – to be of any use. I am happy with FileHippo, which strikes just the right note of being helpful and yet not intrusive, and Secunia PSI, where my vote remains with 2.0 after a brief flirtation with 3.0.

Dell E5570 Latitude, Intel Core i5 6440@2.60 GHz, 8.00 GB - Win 10 Pro

Reply | Quote

Not free but Ninite does have an updater:
https://ninite.com/updater/

Jerry

Reply | Quote

Browser based programs are not the only items which open (unlabeled) unprotected IE windows or make (unannounced) unprotected IE calls. Nearly all programs for Windows these days do some of this type of activity. there’s no avoiding it.

I wouldn’t pay Ninite to update its own inventory of programs. That would be throwing money at a service which is the source of the problem. And I betcha they install all the defaults — toolbars, spyware and all.

[–KBomb] Be careful using FileHippo.com’s updater. Came across this on a users laptop along with Adaware from http://www.freeze.com. Disabled the updater and removed the Adaware. This is always a possibility.

Yep, this is what I’m talking about.

-- rc primak

Reply | Quote

I wouldn’t pay Ninite to update its own inventory of programs. That would be throwing money at a service which is the source of the problem.

What problem is Ninite the source of?

And I betcha they install all the defaults — toolbars, spyware and all.

They don’t. It’s right there near the top of their home page; “No Toolbars – Ninite automatically says “No” to toolbars and other junk.”

Bruce

Reply | Quote

The paid version of Ninite, (which they actually label or ‘brand’ as an updater) simply gives the additional automatic updating facility by way of a start up entry or scheduled check. The free version (not labelled as an updater by branding), updates only on demand when run. You could of course, script its created shortcut to run on a schedule anyway, or just deploy it when you feel like it.

Yes most if not all third party programs might access the internet, even if they don’t access the browser. But you do not have to install those unnecessarily in the first place! If you’ve already got unnecessary programs on your system that might access the internet get rid of em. If however they are absolutely necessary, then you probably do need an updater with the ‘automatic’ check feature. Bear in mind though, that it could just be a scheduled ‘time based’ check for updates, not a real time automatic deployment the ‘true minute’ that any program is actually patched.

Don’t forget the minimum security baseline, with the minimum ‘required’ amount of browser plug ins installed (say just flash, java, and a pdf reader), can be maintained with the automatic checks that the third party vendors already offer for these programs by default. Even though I use the free ninite to occasionally manually purge my system for updates to those said installs, I still ensure I keep the start up entries supplied by those programs active to maintain their already built in automatic notification functions, thereby allowing them to report and deploy any necessary patches ‘automatically’ anyway.

I have never experienced spyware, installation of toolbars, additional installs, or the requirement to ever click Next, Next, Next with Ninite. These do not exist. For this reason, I prefer to do the updates themselves through Ninite and NOT the vendor, (because the vendor might actually offer a toolbar with the follow through of their automatic update, which is never present when deployed through Ninite).

Reply | Quote

What problem is Ninite the source of?

They don’t. It’s right there near the top of their home page; “No Toolbars – Ninite automatically says “No” to toolbars and other junk.”

Bruce

Ninite would be the source of the need to update if it installs a predetermined package of recommended software. I am not really arguing that anyone has to accept this package, but it is the default with Ninite to accept at least a minimal package of programs the firs time you install and run it.

Ninite may say one thing about no toolbars, but I seriously doubt they can avoid some of the built-in adware which piggybacks along with most free software these days. In particular, OpenCandy. To avoid that adware, it is necessary to Run as Administrator using the Windows Run Command and at least one parameter (/NOCANDY). I doubt that any automatic updater is intelligent enough to know to do that trick. Last I counted, about one-third of my own favorite free programs (not counting Nir Sofer’s utilities nor Technet’s Sysinternals utilities, which are groups of ad-free programs) were using OpenCandy or other no-opt-out adware. I’ve actually stopped using some free programs because of the lack of opt-out options.

All things considered, I’d rather folks would use Ninite than not update programs at all. My whole point about updaters accessing unprotected IE calls is that these updaters do not label their windows (if a window pops up at all) as using IE. They should do so, and somewhere in their documentation remind users that direct calls to IE are not protected by browser security plugins, nor by most active antivirus components. But of course, such disclaimers would hurt their business and the business of the plugins creators.

All of this said, I do use an updater which can install its own spyware (not the Lite version, but the default when updating SUMo from within the program) if you aren’t careful when updating the updater. I accept this risk and allow that others may accept the actual risks and inadequacies of using other updaters. Choose what works for you on your system and remain vigilant with periodic AV/AS scans. Remove any adware which slips through, if it is removable. And where possible, when manually updating, avoid getting the piggybacks onto your computers in the first place. At least Ninite tries to do this. Some automatic updaters don’t even try.

It is good to update software for security reasons. Anything we in the Lounge can do to encourage this best practice is good advice to readers and participants.

-- rc primak

Reply | Quote

I’ve used Ninite on new PCs and have never found it to install any extra software or toolbars.

Jerry

Reply | Quote

I have used CNET-TechTracker for a couple of years for updates. I just now noticed that I have files in “My Documents” called “CNET1 TechTracker 2-1-0-7-3 Setup. exe” The numbers go from 1 to 16 from 9/18/12 to 11/23/12. What are thse files and can I delete them? Maybe they leave a file each time I update from them. I would like to get rid of them if possible. I hope I posted this in the right place.

Thanks, Twinkie

Reply | Quote

Hello Twinkie;

Please read this article on my blog, there I talk in a bit more detail about Cnet.

The short of it is: You can delete that junk.

Don’t download programs into the Documents folder. Do you like to find nails and screwdrivers in the compartment for spoons in your kitchen drawer? There should be a Downloads folder; location depends on operating system version.

Check your list of installed programs for Cnet and “downloader” programs and uninstall/remove them.

I Hope this helps.

Reply | Quote

Don’t download programs into the Documents folder. Do you like to find nails and screwdrivers in the compartment for spoons in your kitchen drawer? There should be a Downloads folder; location depends on operating system version.

I have a DOCS folder on my C: drive. Under there, I have a folder for each person who uses the computer, as well as a DOWNLOADS folder. I find at least two advantages to using this approach:

1. Each person can easily access their own folder, or others’ folders.

2. If I backup the DOCS folder, I have backed up everything I really need, and not much more.

In this way, no one has to wade through all of the excess junk that Windows puts in the C:Users folders.

This approach isn’t “secure”; but on our home computer, we don’t really need “security”.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

Thank you for the info. I think from now on I’ll do my best to download updates from the maker’s web site. I don’t really know how those CNET download got in MY Documents, as I have a download folder and don’t remember there being an option as to where to save.

Thanks, Twinkie

I really appreciate all the help I get from Windows Secret Lounge

Reply | Quote