Two great security tools get free updates

Two great security tools get free updates

By Fred Langa

Two outstanding security apps, Microsoft Security Essentials 2.0 and Secunia Personal Software Inspector 2.0, are now available.

The original versions of these programs were great, but the new versions are even better; they’re must-have software — and they’re still free!

Beefing up Microsoft Security Essentials

In December, after a four-month beta test, Microsoft quietly released a major revision of its impressive and free Security Essentials anti-malware tool. The new version is slowly being rolled out via Windows Update, but you can — and I think you should — grab it right away.

MSE 2.0 is a nearly total rewrite of Microsoft’s security tool. Although there are some visual changes in the software (more on that in a moment), the most significant enhancements are under the covers.

The most important change: MSE 2.0 now uses heuristic malware detection in addition to the same definitions-based malware detection methods employed by MSE 1.0. Heuristic technology has been around for years and is designed to detect new malware based on behavior, thus protecting you against threats that aren’t yet in the definitions database. MSE2 calls this feature behavior monitoring. (See Figure 1.)

Figure 1. Microsoft Security Essentials 2.0 broadens its protections with the addition of behavior-based heuristic malware detection and network-traffic filtering.

Another major change, also shown in Figure 1, is network inspection, which monitors network traffic, looking for suspicious activity and network-based attacks. It works by hooking into the Windows Filtering Platform (WFP) that’s part of Win7 and Vista. (You can read more about Windows Filtering Platform at an MSDN site.)

XP lacks the built-in WFP services, so unfortunately, MSE 2.0’s network inspection is not available on that OS.

These two new features alone make MSE 2.0 a worthwhile upgrade, but 2.0 also offers some additional, less significant improvements.

Better integration with Windows components

On all versions of Windows, including XP, MSE 2.0 integrates better with the operating system and other security components. For example, the new software checks to ensure that a firewall is present and active; it offers to turn on and configure the Windows firewall if no other firewall is found.

Also, you can now limit how much CPU time MSE consumes during a scheduled scan. The default is a maximum of 50% CPU utilization. But you can set it as low as 10% (should you want the scan to have minimal impact on other tasks) or as high as 100% (if you want the scan to complete as quickly as possible). (See Figure 2.)

Figure 2. MSE 2.0 lets you control how much CPU time the software can consume during scheduled scans.

Using the Advanced settings, you now can force the quarantine folder to empty itself after a set amount of time, from days to months (as shown in Figure 3).

Figure 3. If you wish, you can set the quarantine folder to clean itself out periodically.

You’ll notice in Figure 4 that MSE 2.0’s new visual design (top) has not strayed far from the original (bottom). This freshening is mostly decorative — and that’s good, because MSE remains extremely easy to use; there’s nearly nothing new to learn.

Figure 4. MSE 2.0’s interface (top) looks a bit more graphically sophisticated than 1.0’s (bottom) but retains the original’s functional simplicity.

Multiple paths to installing MSE 2.0

In the past, Microsoft has used both MSE’s built-in update mechanism and Windows Update to roll out updates (see Microsoft Knowledge Base article 975959), and it’s a safe bet that this upgrade will use the same mechanisms. But as of this writing, none of my PCs had been offered version 2.0 — neither automatically nor by any other means.

Wait for MSE 2.0 to be offered if you wish, but I recommend grabbing it right away. It’s available either from the MSE home site or Microsoft’s MS Download Center. It’s the same software in either case.

MSE 2.0 will run on 32- and 64-bit versions of Vista or Win7 and on 32-bit XP. It’s the same MSE 2.0 setup whether you’re installing it new or upgrading from MSE version 1.0.

A nice touch: If you’re already running MSE 1.0, you don’t have to uninstall it first. Just download and run the 2.0 setup — it will handle the uninstallation of the earlier version for you.

Another nice touch: The 1.0 uninstall is complete. Everything, including version 1.0’s original /Program Files/Microsoft Security Essentials folder, is deleted. In its place, MSE 2.0 installs a wholly new folder called /Program Files/Microsoft Security Client.

If you’re running any antivirus tool other than MSE 1.0, you should uninstall it before installing MSE 2.0. (This is standard procedure; in general, you should never have two security tools trying to do the same job at the same time.)

The safest way to handle the transition between security tools is to download the MSE 2.0 setup file and then disconnect your PC from the network. You can do this by turning off or disabling the connection in software or by physically unplugging the network cable.

Exit all nonessential software; ideally, you want nothing but the operating system and your current antivirus tool to be active. Then, with your PC safely isolated from the network, uninstall your old antivirus tool. Reboot when you’re done.

After the reboot, start the MSE 2.0 setup program and let it run to completion. When it’s up and running, you then can reconnect to the network and resume using your PC normally.

Once installed, MSE 2.0 immediately updates itself with the latest definitions and offers to do an initial scan of your PC. Let it do its thing; once it’s set up, MSE is one of the least obtrusive security tools you can use.

MSE 1.0 was a winner, but I personally think Version 2 is the best free AV tool, period. Highly recommended!

The best way to manage multiple app updates

Secunia’s free-for-personal-use Secunia Personal Software Inspector (PSI) Version 1 was already in my must-have security software collection. Version 2 is even better, with a new look (see Figure 5) and enhanced updating tools.

Like the original, PSI 2.0 scans your installed software and builds a database of application version numbers. It then compares what it found on your system to Secunia’s central database of latest-available version numbers. (The central database contains version information on a huge range of software.)

Figure 5. Secunia Personal Software Inspector 2.0 sports an entirely new look and feel. But more important, it now can completely automate the process of keeping almost all your software up-to-date.

When PSI detects that you’re running an out-of-date version, it alerts you: it tells you the risk of using the older version and gives you a ready-made link to download the latest software patch, upgrade, or update from the software’s publisher (as shown in Figure 6).

Figure 6. PSI 2.0 gives you a detailed assessment of whether your software is current.

But PSI version 2 adds a new wrinkle: If you allow it (see Figure 7), PSI automatically downloads and installs the latest versions of your apps for you — fully automatically or by first giving you a chance to review what’s going to be updated.

Figure 7. Secunia Personal Software Inspector (PSI) 2.0 automatic-update option.

I heartily recommend PSI 2.0 because it eliminates the need to have lots of small, separate, auto-update programs running — you know, the Apple updater, the Adobe updater, the Java updater, and so on. Instead, this one tool makes keeping your key software up-to-date a nearly effortless task.

You’ll find the download link for PSI 2.0 on its info page. Installation is easy; just follow the prompts. If you have the original PSI version installed, the 2.0’s setup will automatically uninstall it for you.

Start the new year right, and get all your software updated today!

Fred Langa is a senior editor of the Windows Secrets Newsletter. He was formerly editor of Byte Magazine (1987-91), editorial director of CMP Media (1991-97), and editor of the LangaList e-mail newsletter from its origin in 1997 until its merger with Windows Secrets in November 2006.

WOT gives shocking warning during Web browsing

By Tracey Capen

A Web of Trust (WOT) warning about a seemingly innocuous site has a Lounge member wondering whether WOT is crying wolf.

Lounge member peterg was doing research on the Web and received a “ferocious” WOT screen. It even refused to let him read the intended site’s content.

In his Lounge post, peterg asked whether WOT protection needs to be as shocking as he finds it, and he gets a quick tutorial on what WOT does (or is supposed to do). More»

The following links are this week’s most interesting Lounge threads, including several new questions that you may be able to provide responses to:

☼ starred posts — particularly useful

If you’re not already a Lounge member, use the quick registration form to sign up for free. The ability to post comments and take advantage of other Lounge features is available only to registered members.

If you’re already registered, you can jump right in to today’s discussions in the Lounge.

The Lounge Life column is a digest of the best of the WS Lounge discussion board. Tracey Capen is editor in chief of Windows Secrets.

Stand-up sports choreography

By Revia Romberg In some stadiums, the action to watch is not just on the field. And we’re not talking about fancy scoreboards and instant replays. Watch as hundreds of exuberant — and disciplined — fans, costumed and in constant, choreographed motion, cheer on their team. Play the video

Brute-force cure for excessively long shutdowns

By Fred Langa Sometimes, to fix a Windows problem you have to take the gloves off. Slow Windows shutdowns are almost as annoying as long startups — but there are ways to force a quick shutdown.

No-fooling fix for two-to-three-minute shutdown

Reader Jim Ellis used “nagging problem” in his e-mail, but I think he understated it. Plodding shutdowns are a pain, especially when you’re done pounding the keyboard and in a hurry to leave.

Although his is an XP setup, the following cures apply to all versions of Windows.

• “I have a Windows XP system that is kept updated to the letter.

  “I am wondering if anyone has any idea why my system takes two or more minutes to shut down. Eventually, it shuts down and all seems OK, but it’s really troublesome that it takes so long.

  “I tried to keep System Manager active to see what was taking up all the CPU and I/O time, but that didn’t work. Any ideas would be appreciated.”

Normally, when you tell Windows to shut down, it sends a shutdown signal to all running software. Windows then allows time for all open apps to wrap things up, avoiding potential problems with open files or uncompleted tasks.

Windows does not normally shut itself down until all other running software has had an ample chance to sign off.

Unfortunately, some software does not respond properly to the shutdown signal. Assuming the software is still running, Windows waits … and waits … and waits.

Eventually, Windows gives up and (if it can) pulls the virtual plug on the running software. But in the meantime, you sit there twiddling your thumbs and saying, “Come on! Why won’t this thing shut down?”

Unresponsive software is by far the most common cause of delayed shutdowns. And the worst culprits are third-party drivers.

Older hardware drivers that have been brought into newer operating systems as part of an OS upgrade are frequent troublemakers. The old driver works, sort of, but doesn’t integrate well with the new OS. Shutdown problems are one result.

So even if you think your system is fully up-to-date, Jim, double-check. Make sure all your software really is correct and current. Pay special attention to drivers. Just because a driver isn’t flagged as “not working” doesn’t mean it’s actually the best available driver for your setup.

Next, do a thorough system cleanup. Windows does a lot of housekeeping at shutdown, and huge Recycle Bins, vast e-mail folders, extreme fragmentation, and other issues can all add up to delays.

For some specific cleanup tips, see my August 12, 2010, Top Story, “Preparing Windows XP for the long haul.”

If your shutdowns are still too long, there’s only one thing left: brute force.

A forced shutdown is a special command that tells Windows to ignore any nonresponsive software. In a forced shutdown, Windows sends the shutdown signal normally but doesn’t wait to see whether other software is complying. The shutdown simply proceeds, full speed ahead and damn the torpedoes! (See Figure 1.)

Figure 1. A “forced shutdown” command tells Windows not to wait for slow or unresponsive applications or drivers during shutdown.

All recent versions of Windows — XP, Vista, and Win7 — support forced shutdowns. See the February 18, 2010, article, “Wanted: easy desktop-shutdown options” for version-specific information.

Are older firewall tests still valid?

William Peek asks a very perceptive question.

• “I was reading through the Dec. 23, 2010, article, ‘The best of LangaList Plus 2010,’ and was interested in the topic, ‘Get free firewall testing with online services,’ in which Mr. Langa refers readers to Steve Gibson’s ‘Shields Up’ and ‘LeakTest’ pages.

  “I have used the Shields Up site in the past but never the LeakTest, so I decided to read Mr. Gibson’s LeakTest page and see what it was all about.

  “The further I read, the more dismayed and confused I became — because a lot of the references were to firewalls, some of which were no longer in existence.

  “Also, when I got to the end of the LeakTest site page, I noticed that the last time it was edited and updated was in February 2008.

  “I, for one, will not return to a site if I know that information is not kept up-to-date.”

You’re being careful, William, and that’s a very good thing!

But in this case, you needn’t worry. LeakTest’s descriptive text may be old, but the test still does just what it’s supposed to.

There are many low-level functions and tests that don’t change much — if at all — as operating systems evolve. Just to pick a random example: Windows’ built-in ping test for network latency hasn’t fundamentally changed in almost 20 years. It doesn’t need to. It still works fine. (In case you’re curious, check out MS TechNet ping info.)

The LeakTest software hasn’t been updated because it doesn’t have to be. It still detects phone home behavior on your system, just as it did on the day it was first released.

But again: Good on you for being so careful!

Version differences in Windows names, locations

JJ Hay found a problem in a recent article.

• “Fred Langa’s [Dec. 16, 2010] article, ’10 great “Do these first” tweaks for Windows 7′ contains an error. Under Fred’s heading, ‘Use the new Create a system image tool,’ he says, ‘Win7 makes image backups a snap. Open the Control Panel and, under System and Security, click Back up your computer. In the left pane, select Create system image and follow the steps.’

  “In my Win7 Home Premium ACER OEM version, the correct location is actually ‘Control Panel > Backup and Restore’ (not System and Security — that location does not exist).”

Thank you, JJ. Now, please cover your ears for a moment.

Arrggh!

There. I feel better now.

There are 30 or so different variations of Windows XP, Vista, and Win7 in current use: all the Basic, Home, Premium, Business, Professional, Enterprise, Ultimate, Server, and whatnot editions — which are in 32- and 64-bit flavors and in retail and OEM versions.

I try to give advice that works across all the major variations, or I try to call out specific differences when they’re important. But it looks as if I missed this one. I apologize.

You did the right things by (1) searching your local help system for the equivalent information — that almost always works and is a great way to make sure that the general information you read here is indeed correct for your specific setup — and (2) letting me know, so I can tell other users who run into the same situation.

Thanks, JJ!

Windows 7’s Search feature loses another customer

Robert Hamilton joins the ranks of users unhappy with Win7’s Search.

• “What is with Win7 Search? XP has a great search option. I could find anything, if it was on the computer. But when I type terms such as .exe or *.exe in the Win7 search window, it shows everything except what I asked for. The responses might not even be related to what I am searching for!”

I agree with you, Robert. Microsoft developers changed the Win7 search syntax to make it more powerful, but they actually made it much harder to perform simple, routine searches. D’oh!

I gave up on the built-in Windows Search some time ago and now almost always use Google Desktop’s Search (download site) instead. It’s fast, free, and easy to use.

Other alternatives, including online guides, can take the mystery out of the Win7 Search. Check out the links listed in the July 1, 2010, item, “He hates Win7’s Search, wants alternative.”

Changing back to the correct DVD region

Alan Rutherford’s DVD player has locked him out of his own geographic region.

• “I have a problem with a DVD drive. I am in Region 4 for DVD, and for some unknown reason the region setting has reverted to Region 1 (which is of no use to me). When I looked at the Properties window, it was grayed out and impossible to change. I didn’t reset the region; XP seems to have done this by itself. How can I get back to Region 4?”

There are many ways to do this, Alan. It’s easy (and legal). In fact, many DVD drives for PCs allow you to change regions up to five times, and you can choose from lots of software to reset your region setting. DVD viewer software is usually even easier to change, if it pays attention to the region code in the first place. (Some DVD player software, such as the open-source VLC [download site], simply ignores the region code entirely.)

You’re using XP, so Mark Salloway’s XP-specific article, “DVD region codes,” is probably best for you.

But you can find tons more information — and free region-changing software — available online for all versions of Windows as well as for the Mac and Linux. The online info can help you with both the DVD player hardware and software.

The best search phrase is change region DVD player.

Happy region-changing!

Fred Langa is a senior editor of the Windows Secrets Newsletter. He was formerly editor of Byte Magazine (1987–91), editorial director of CMP Media (1991–97), and editor of the LangaList e-mail newsletter from its origin in 1997 until its merger with Windows Secrets in November 2006.

Twenty-six ways to work faster in Windows 7

By Lincoln Spector The easiest operating system Microsoft has ever released, Windows 7 gives you all sorts of slick and simple ways to open folders, navigate windows on the desktop, and launch applications — so many, it’s hard to remember them all. Here’s our compendium of tips for working faster in Win7, none of which requires downloading or installing anything. Some are new, some recycled from XP and Vista.

Seven fast ways to open a folder

How do you get to your favorite folder? Many users probably still click the Start orb, select Computer, and navigate the left pane. But with a few seconds of setup time, you’ll find so many easier ways to do it.

• Put it in Windows Explorer’s Favorites: Select the folder inside Explorer and drag it to the Favorites section at the top of the left pane. Once there, it’s always in easy reach when you’re in Explorer.
• Include it in a Library: Below Favorites, you’ll find Libraries. There are four of them by default: Documents, Music, Pictures, and Video. You can put folders into these libraries (or create a new one of your own) by right-clicking and dragging them to a library and selecting Included in library. To create a new library, right-click the Libraries label in the left panel and select New, then Library.

  (It’s important to know that Win7 libraries are not folders — they’re just an organizational tool for your real folders and files. Deleting a library does not delete any of your documents.)

• Access it from the taskbar’s Windows Explorer icon: If you use a certain folder frequently, there’s a good chance you’ll find it in the Frequent list. Simply right-click Explorer’s taskbar icon and select the folder or file from the pop-up list. The same trick works with applications pinned to the taskbar, whether the app is open or not.
• Pin it to the taskbar’s Windows Explorer icon: If you want to make sure it remains on that list, right-click it on the Frequent list and select Pin to this list. (See Figure 1.) You can also drag the folder from an open Explorer window to the taskbar.

  
  Figure 1. Frequently used files and folders can be pinned to the Win7 Frequent list (left figure). The file will remain at the top of the list (right figure) as long as you need it.

• Pin it to the Start menu: Drag the folder from Explorer to the Start Orb. When you release it, the folder will be pinned to the top of the Start menu. (This trick works with files, too.)

  
  Figure 1. Frequently used files and folders can be pinned to the Win7 Frequent list (left figure). The file will remain at the top of the list (right figure) as long as you need it.

• Create a shortcut on the desktop: Right-click-and-drag the folder (or file) to the desktop and select Create shortcut here. It’s so much faster than creating a desktop shortcut in XP.
• Just type the name: Having difficulty finding a folder? Click the Start orb and start typing the folder’s name. When the folder appears in the search results, press Enter. It’s that easy!

Seven ways to alter the desktop with a keystroke

The Windows desktop can easily become a crowded and confusing profusion of open windows. Here are a few quick and mouseless ways to bring forward the program you want to work in — or get to the desktop behind all the windows.

• Minimize everything open on the desktop: Press the Windows key + D. This is a toggle; do it again, and all the windows come back.
• Minimize everything but the current window: Windows key + Home. (Note: This does not work with all applications.)
• Turn open windows temporarily invisible: Windows Key + space. It’s useful when you want to quickly see icons on the desktop.
• Move the current window to the left or right side of the screen: Windows key + left- or right-arrow key. With dual displays, repeating this sequence moves the window from screen to screen.
• Maximize the current window: Windows key + up-arrow key.
• Restore the current, maximized window to pre-maximized size, shape, and location: Windows key + down-arrow key.
• Move the current window to the other monitor in a two-monitor setup: Shift + Windows key + left-arrow key or Shift + Windows key + right-arrow key.

For a complete list of Win7 keyboard shortcuts, check out the Windows Help & How-to site.

Five ways to launch an application

How do you start an application that’s not already running? You can click the Start orb, select All Programs, and search the menus; it’s a great experience if you’re feeling masochistic. But these ways are better:

• Just type it: Click the Start orb and start typing the program’s name. When the program is selected, press Enter.
• Pin it to the taskbar: With a program open, right-click the program’s taskbar icon and select Pin this program to the taskbar. Even when the program is closed, its icon remains on the bar.
• Select it from the Start menu: Avoid the hassle of All Programs. The Start menu’s left pane lists programs you run frequently.
• Pin it to the Start menu: If you want to make sure it remains on that list, right-click it and select Pin to Start menu. (Or select Pin to Taskbar.)
• Create an Icon on the Desktop: Quick shortcut — find the program in the Start menu’s All Programs section and drag it to the desktop. If you right-click and drag, you are presented with three options: Copy here, Move here, or Create shortcut here.

Three mouse-free ways to select a program

Hardcore keyboard jockeys typically have a bunch of programs up and running. You can switch between them without taking your fingers off the keyboard.

• The old-school way: Press Alt + Tab to bring up a panel displaying thumbnails of your running windows. Continue holding down Alt as you press Tab until you’ve highlighted the one you want. Then release Alt.
• The prettier way: Press Windows key + Tab. This works like Alt + Tab, but it looks cooler on screen (see Figure 2), and you get a better view of the currently selected window.

  
  Figure 2. In Win7, pressing Windows key + Tab launches a sort of 3-D display of your open applications.

• By the numbers: Pressing Windows key + 1 brings up the first program on the taskbar, Windows key + 2, the second, and so on. (Selecting a closed application’s icon launches the app.) This is particularly handy with programs you keep pinned to the taskbar.

Two Windows Explorer shift + right-click tricks

When you right-click a file or folder in Windows Explorer, you get a context menu of things you can do with it. But if you hold down Shift while you right-click, that menu offers new choices such as Open in new process, which is not simply a new window but an entirely new instance of Explorer. (SevenForums has a good discussion on opening a new process.)

Here are two favorite shift + right-click additions to Explorer’s context menu that you might find handy:

• Open a Command Prompt window in the folder of your choice: If you want to work in that old-time DOS-like environment but don’t want to bother with a CD (change directory) command, shift + right-click the folder you want to work in and select Open command window here. (That option appears only if you right-click a folder or drive, not a file.)
• Copy a folder or file’s path: If you want to tell a program exactly where to find a file or folder, shift + right-click the file or folder in Windows Explorer and select Copy as path. Then you can paste the full path — such as “C:UsersLincolnDocumentsCurrent Articles7 Ways Faster Win7Twenty-six ways to work faster in Windows 7.doc” — anywhere you like.

One way to copy/move files to an unopened place

Everyone knows how to copy or move a file in Windows: you drag it from one folder to another. But if you don’t happen to have both folders open at the same time, here’s a method that’s far more convenient:

Select the file or folder, then press and release the Alt key to bring up the Windows Explorer menu. Select Edit, then either Move to folder or Copy to folder. A dialog box will let you select where to put it, as shown in Figure 3.

Figure 3. Windows 7 makes it easy to copy or move a file to an unopened destination.

For even greater convenience, you can put those two commands on the context menu. Find out how in a TechRepublic tip.

One way to tame the User Account Control

Just about everybody who has ever used Vista or Win7 hates the User Account Control (UAC) dialog box. There’s nothing like having your screen go black before you’re asked if you really want Windows to do what you just told it to do.

Windows 7 lets you tone down or turn off the UAC. Click the Start orb, type uac in the search box, and press Enter for the User Account Control Settings dialog box.

There you can choose your own compromise between horribly annoying and downright dangerous. Personally, I like the second-lowest setting (see Figure 4): Notify me only when programs try to make changes to my computer (do not dim my desktop).

Figure 4. If you’re frequently annoyed by Win7’s nanny-like User Account Control, it’s easy to change its notification settings.

These are just a few of the ways Windows 7 has made working on your PC faster and — in some ways — more fun. Spend a bit of time to find your favorites.

Lincoln Spector writes about computers, home theater, and film and maintains two blogs: Answer Line at PCWorld.com and Bayflicks.net. His articles have appeared in CNET, InfoWorld, The New York Times, The Washington Post, and other publications.

More unpatched vulnerabilities than patched ones

By Susan Bradley 2011 is not getting off to a good start for Windows vulnerabilities — we’re starting the new year with more unpatched known vulnerabilities than ones we’re able to fix through updates. Most of you will see just one official Patch Tuesday security update. But there are workarounds and mitigations you might need to consider.

Rating the risk of unpatched vulnerabilities

Microsoft’s Security Research & Defense blog took time out to recap all the unpatched vulnerabilities.

I’m highlighting two of these threats: the first was covered in my Jan. 6 story, “Protecting your browsing with EMET,” and the second I discuss in the next item.

The Jan. 6 article discusses the recently released Enhanced Migration Experience Toolkit (EMET) 2.0 and how it can be used to protect Internet Explorer from a cascading style sheets bug.

► What to do: If you haven’t installed EMET, try out the Microsoft Fixit for cascading style sheets in Support article 2488013. In a future Patch Watch, I’ll remind you to remove the Fixit when the final patch is released.

2490606
Fixit for Windows Graphics Rendering bug

The second unpatched Internet Explorer vulnerability is described in TechNet Security Advisory 2490606. Exploiting a bug in the Windows Graphics Rendering Engine, an attacker can use a malicious thumbnail image to take control of any current Windows system.

► What to do: I recommend using Google Chrome for general Web surfing. But if you visit sites that work best with IE (financial sites, for example), consider installing the Fixit contained in Support article 2490606. (Be sure to remove the Fixit when MS releases a patch.)

MS11-002 (2451910)
Database connector software vulnerable to attack

Microsoft Data Access Components (MDAC) is software used by developers to connect databases on your machine to remote servers.

The patch is rated critical for Windows XP, Vista, and Windows 7; and important for Server 2003, Server 2008, and Server 2008 R2. It also impacts the beta versions of Windows 7 Service Pack 1.

Figure 1. So far, January is light on Windows patches.

► What to do: You’re vulnerable to attack via malicious websites, even if none of your applications uses MDAC. Install the appropriate patch in MS11-002 as soon as you can. Even if you primarily use Chrome or Firefox, there are some websites that need Internet Explorer.

MS11-001 (2478935)
Vista-specific patch for backup application

Vista has a flaw in its Windows Backup Manager software. In this case, users open a backup file that’s in the same remote directory as a hacked library file. Backup Manager then loads the malicious library file and in turn lets an attacker take control of a Vista system.

This patch is only for Vista workstations and is rated important.

► What to do: If you’re still running Vista, be careful about the backup files you load, and install the update in MS11-001 (2478935) when offered. And think seriously about migrating to Windows 7 soon.

2412171
Problematic Outlook patch is back again

In the Dec. 16 Patch Watch, I recommended putting a hold on a nonsecurity Outlook 2007 update included in MS Support article 2412171. Some folks using Gmail reported problems with the patch. (The original purpose for the update was to add Exchange 2010 archive support to Outlook 2007, as stated in a Microsoft Exchange Team blog.)

Well, the update is back for another try.

I’m playing it safe this time. While the wording in the Jan. 11 update of article 2412171 hints that the Gmail issues are fixed, I recommend waiting a while before installing the patch. Let someone else find out whether there’s still a problem.

Figure 2. For now, say “no” — again — to patch KB 2412171.

► What to do: Uncheck KB 2412171 in Windows Update; then right-click the update’s name and select Hide update. At this time, I don’t need the Exchange 2010 support, and I’m betting you don’t either.

MS10-090 (2416400)
Internet Explorer gets October updates again!

You may have been surprised by Windows Update or Microsoft Update offering the October Internet Explorer patch again — especially since it came on the heels of the December IE update.

Normally IE updates know that they’ve been superseded by the next update that comes out. But the December patch made registry changes that rendered previously-released IE patches active. As described by MS employee Doug Neal in a listserve article, systems set to “Download updates but let me choose” or “Check for updates” saw the October patch offered to them again.

While it didn’t hurt to reinstall the October update again, it was certainly very confusing.

► What to do: Keep your Windows (or Microsoft) Update setting at “Download updates but let me choose” or “Check for updates.” In this case, the update glitch was benign — but that’s not always the case. The wise will continue to manually review patches before installing them on systems.

MS10-092 (2305420)
Corrupted-tasks error after Task Scheduler patch

I’m tracking a known problem with the patch in MS10-092 (2305420), which Microsoft released in mid-December to fix a security flaw in Task Scheduler. This patch was rated important because the vulnerability could not be exploited remotely. However, there have been attacks by hackers using flash drives.

Attackers gained control of systems by spoofing Windows tasks; the malicious code then gave attackers higher privileges to the systems. The fix strengthens the encryption used by stored tasks.

This new problem with the patch occurs after upgrades from Vista or Windows Server 2008 to Windows 7 or Server 2008 R2, according to Microsoft. However, some of the folks reporting the problem in an MS WindowsServer forum were running Vista. Those affected received the following error message: “The task image is corrupt or has been tampered with.”

► What to do: Currently, the only fix is a confusing workaround that cleans up the registry and removes any corrupted task. You’ll find the specific steps in MS Support article 2305420. My recommendation? Call Microsoft’s main support line (1-800-PCsafety in the U.S. and Canada) or your local Microsoft support services.

2454826
Windows 7 reliability update not so reliable

Just as I was wrapping up this column, I received reports that a Windows 7 reliability update is causing problems. Several posters in a Micrsosoft Answers forum described freeze ups and BSODs after the update.

► What to do: Hold off installing the patch (KB 245826) in Support article 2454826 until we know more precisely who’s affected and what’s the solution.

The Patch Watch column reveals problems with patches for Windows and major Windows applications. Susan Bradley has been named an MVP (Most Valuable Professional) by Microsoft for her knowledge in the areas of Small Business Server and network security. She’s also a partner in a California CPA firm.