Installing and upgrading the Secunia PSI

1. I get an error saying - Installer integrity has failed. Common causes include incomplete download and damaged media. Contact the installer's author to obtain a new copy.

Registration

1. Do I need to register to use the Secunia PSI?
2. I registered from within the Secunia PSI, and now I don't have a password! How do I log in to the forum?
3. How do I cancel my registration??
4. What happens when I cancel my registration?
5. I have more than one home computer. How do I register each one?
6. I have tried to register but nothing happens. What can I do?

Running and scanning

1. How do I configure the Secunia PSI not to scan certain folders?
2. Why am I experiencing 100% CPU utilization when it comes to the "Checking for Windows Updates" part of the inspection?
3. The Secunia PSI is stuck at "Verifying Internet connection..." and won't start. What can I do?
4. For the items marked as Insecure, how do I upgrade to the new, secure version?
5. For the items marked as Insecure, do I need to uninstall the old version before updating?
6. How do I uninstall items that are not in the "Add or Remove Programs" section?

Secunia Scan Results

1. Why are there so many detected files for program X?
2. Windows Update says my Windows files are up to date, but the Secunia PSI is still reporting my software as insecure. What should I do?
3. I have already updated my software version, but the Secunia PSI is still reporting my software as insecure. What should I do?
4. My software has an Automatic Update feature but the Secunia PSI is reporting the version as "Insecure". What should I do?
5. What can happen if I choose not to upgrade or update my insecure or end-of-life software?
6. The PSI detects my software as secure, but I know that there is a more recent version of the software. Does this mean that I am really secure?
7. I recently updated my vulnerable software to a BETA version, and now the Secunia PSI does not detect it anymore. What happened?
8. My default browser is not IE, but the links in the Secunia PSI keep opening in IE. Why is that?
9. The PSI says "An error occurred while attempting to open the specified URL" when I click links. How can I solve this?
10. What is the difference between the Secunia PSI and the Online Software Inspector (the 'OSI')?
11. What is the difference between the Secunia PSI and the Secunia CSI (for enterprise networks)?
12. How often do you update version rules?
13. Where can I get more information on the security patches that the Secunia PSI tells me I need?
14. Can I use the Secunia PSI even when I am not connected to the Internet?
15. How can I suggest a feature or report an error in the Secunia PSI?
16. I have some programs that the PSI does not detect. What can I do to add them?
17. When I try to suggest a program the PSI shows 'C:\FakePath' (or similar) instead of the file's location. Why is this?
18. Which information should I include when asking for help?

Differences between PSI 1.x and PSI 2.x Series

1. Why does the PSI 2.0 Appear to detect less software than previous versions?
2. I can't find the Secure Browsing tab! Where did it go?

Installing and upgrading the Secunia PSI

1. I get an error saying - Installer integrity has failed. Common causes include incomplete download and damaged media. Contact the installer's author to obtain a new copy.

   The download has been corrupt. Please try clearing your browser's cache and temporary files, or try using a download manager, a newer version of your current browser, or a different browser.

Registration

1. Do I need to register to use the Secunia PSI?

   You do not need to register to be able to use the Secunia PSI. However, registering lets you log directly in to the Secunia Community Forum from within the PSI itself, and furthermore allows you to tie your Secunia System score to your forum profile.

2. I registered from within the Secunia PSI, and now I don't have a password! How do I log in to the forum?

   You can assign a password to your profile by resetting the password. This can be done by following this link:
   http://secunia.com/community/profile/forgotpassword

3. How do I cancel my registration?

   To cancel your registration and delete your Secunia profile, you can simply write an email to support@secunia.com and state that you wish to have your profile deleted. See below for information about our profile deletion policy.

4. What happens when I cancel my registration?

   When you cancel your registration/profile, you will no longer receive newsletters or be notified of new versions of the Secunia PSI by email. It also means that all data collected and sent to Secunia about the installed programs in your computer is immediately deleted. However, you will still be able to use the Secunia PSI.

5. I have more than one home computer. How do I register each one?

   You can use the same registration for all your computers. To use the registration from a second computer, enter the appropriate data in the "Recover existing registration" field under Configuration > Secunia Community Profile, and click the confirmation link in the email you will receive.

6. I have tried to register but nothing happens. What can I do?

   Verify that you can access https://psi.secunia.com, and that no firewall or security solution is blocking your access to it. If this has not resolved the issue, walk through the steps outlined in this item of the FAQ.

Running and scanning

1. How do I configure the Secunia PSI not to scan certain folders?

   On the Scan Results tab, you can expand the entry for any program by clicking the "+" to the left of the program entry. To the left of each detected entry of the program in question there will be 2 buttons.
   The leftmost of the 2 buttons (the one with a red 'dot' over the folder icon) next to each instance will add an ignore rule for the selected program, which will prevent it from being included in future scans or statistics, and it will immediately remove it from the scan results.
   
   You can also manage your ignore rules under Settings > Ignore rules.

2. Why am I experiencing 100% CPU utilization when it comes to the "Checking for Windows Updates" part of the inspection?

   To inspect for missing Windows updates, the Secunia PSI runs the Automatic Update service, which causes an instance of the svchost.exe file to execute. Under some circumstances, such as if you have a certain Windows hotfix installed, this can lead the svchost.exe file to stop responding.
   
   This is a known Windows issue that has a resolution. You can read more about it in this Microsoft Support article.

3. The Secunia PSI is stuck at "Verifying Internet connection..." and won't start. What can I do?

   The Secunia PSI needs to be able to connect to Secunia's servers to complete a scan. To make this possible, you may need to change some of your Internet options.
   
   To do this:

   1. Open the control panel
   2. Open Internet Options > Security tab. In Windows7/Vista you may need to click 'Network and Internet' to access the Internet Options
   3. Select the Internet zone and click on the Custom Level button.
   4. In Security Settings, go to the Scripting>Active Scripting option.
   5. Make sure that Active Scripting is enabled (rather than Disabled or Prompted).
   6. Press OK then Yes.
   7. Back in the Security tab, select the Trusted sites zone and click on the Sites button.
   8. Type in the following and press the Add button to add it to the Trusted Sites list:
      https://*.secunia.com
   9. Press Close, then OK.
   10. Run the Secunia PSI again to view the scan results.
   
   If this has still not fixed your problem, go back to the Internet Options, then go to Tools->Internet Options->Advanced->Security->Check for server certificate revocation.
   
   The Secunia SSL certificate is signed by Thawte. If the Thawte site is not accessible from the computer, and if this option is selected, then the PSI will fail to connect to our site. So please remove the check at “Check for server certificate revocation". However, please understand that this means your computer would not notice if a site publisher revoked his/her certificate, which could indicate a theft or loss. If you are concerned about this, try the steps outlined below before this one to see if they solve the problem
   
   If this has still not allowed you to open the PSI, please go to Start > Control Panel > Administrative Tools > Services and ensure that both the 'Secunia PSI Agent' and 'Secunia Update Agent' services are set to 'Started' under status and 'Automatic' under 'Startup type'
   
   If that did not resolve the problem either, and you are using Windows XP, try these steps:
   
   1) Go to where you installed the PSI (Probably C:\Program Files\Secunia\PSI, or C:\Program Files (x86) for 64-bit systems), right-click PSI.exe, click Properties, go to the Compatibility tab, and set a check at 'Turn off advanced text services for this program'
   
   If that did not resolve the issue, then you can try
   
   2) Go to Control Panel > Regional and language options > Languages Tab > Details > Advanced. From here, set a check at 'Turn off advanced text services' (Please note that this is a global setting unlike what is described in step 2).
   
   

    

4. For the items marked as Insecure, how do I upgrade to the new, secure version?

   You can click the Solution button from within the Secunia PSI on the Scan Results tab, which in the majority of cases will link to either an executable file with the patch, or the vendor's download site.
   
   Some applications can be automatically updated with the PSI - for these applications the auto-update should be the easiest method around.
   Other programs have the ability to update themselves. If possible, use this functionality. Otherwise you can contact the vendor to obtain the patch.

5. For the items marked as Insecure, do I need to uninstall the old version before updating?

   The procedure for updating a specific application depends on how the vendor's installer is prepared. It is recommended that you read the product documentation or contact the product's vendor to determine the best course of action.

6. How do I uninstall items that are not in the "Add or Remove Programs" section?

   For programs that are not included in the programs list in the "Add or Remove Programs" section, you should contact the vendor, or refer to the software documentation, for instructions on how to remove the item. In addition, please note that some applications detected by the Secunia PSI may be components of, or bundled with, other applications. In this case, you should refer to support and documentation of the main application.
   
   Alternatively, you can ask for help at our forums, located here.
   
   Before posting on the Community Forum, please read this item of our FAQ to see which information you need to include to get a quick response.

Secunia Scan Results

1. Why are there so many detected files for program X?

   Frequently when installing newer versions of a program, the vendor-provided installer/updater will occasionally not remove older versions of a program, and simply leave them on your hard-drive. These programs will typically not be shown in Add/Remove on the control panel either.
   
   The PSI will group multiple detections of the same program together into one instance, and will rate the program's overall security based on the whether or not an up-to-date installation is present. The leftover files are known as 'zombie files'.
   
   In earlier versions of the PSI (pre-2.0) it could appear that a program had not been updated because newly installed and updated version would be added to the 'Patched' tab, and the old and insecure versions would be left on the 'Insecure' tabs, apparently without changing. In the PSI 2.0, both insecure and secure instances of a program will be grouped together.
   
   This prevents the worst confusion for users, and still allows advanced users to make full use of the PSI's capabilities.
   
   For advanced users, it might be helpful to see the 'File Path' for each of the leftovers. To see this information, click "+" next to the detected program's entry, or double-click the program for more information. You can also sort the Scan Results based on how many detected instances are located on your system for a specific program by clicking the "#" header.

2. Windows Update says my Windows files are up to date, but the Secunia PSI is still reporting my software as insecure. What should I do?

   Frequently, Windows updates require you to reboot, or may be installed over several turns. To ensure you are really up to date, try following this procedure:
   
   1) Check Microsoft Update, install all patches marked as 'critical'
   2) Reboot your system
   3) Repeat step one, and go to step 2 if anything was installed at this step (repeat as needed)
   4) Run a full rescan with the PSI

3. I have already updated my software version, but the Secunia PSI is still reporting my software as insecure. What should I do?

   There is a slight delay between the time you update your software and the time that your Secunia PSI installation checks the Secunia database for updated scanning rules. If you would like to update the scanning results immediately after updating your system, run a full rescan from the Scan Your PC tab.
   
   By clicking the "+" button next to the program entry on the Scan Results tab, you can see the "installation path", which is the location of the file the PSI is detecting. If this file is located on a backup drive, or somewhere other than the default install location, the vendor's upgrades may have problems installing.
   
   However, if you have the 'program monitoring' feature enable the PSI should notify you of the change within minutes.

4. My software has an Automatic Update feature but the Secunia PSI is reporting the version as "Insecure". What should I do?

   In this case, Secunia recommends that you update your software manually even if your program has an Auto Updating feature.

5. What can happen if I choose not to upgrade or update my insecure or end-of-life software?

   Secunia recommends that you upgrade your insecure or end-of-life software to the latest secure version as specified by the relevant Secunia advisories to ensure that your system is protected against vulnerabilities in this software.
   
   However, it is of course your prerogative not to upgrade or update as you see fit. In this case, it is important that you understand possible consequences of not performing the update. These include the possibility that your system may experience various malicious attacks (phishing and hacking attacks, automatic installation of malware and spyware in your system) and, in the case of end-of-life software, the discontinued support of the vendor.

6. The PSI detects my software as secure, but I know that there is a more recent version of the software. Does this mean that I am really secure?

   Software can be detected by the Secunia PSI as secure, even if the vendor has released a more recent version. This is because vendors release software updates not just to patch vulnerabilities, but also to fix software bugs or introduce software enhancements. These fixes and enhancements may be non-security related (for example, adding new functionality or features). Therefore, prior versions of software can be secure even if they are not the most recent ones, as long as no known vulnerabilities are reported in them.
   
   In these cases, Secunia recommends that you read the vendor release notes to determine if you prefer to install the update or not.

7. I recently updated my vulnerable software to a BETA version, and now the Secunia PSI does not detect it anymore. What happened?

   The Secunia PSI does not monitor and detect BETA versions of software. However, the next stable release after the BETA version will, of course, be detected by the Secunia PSI.

8. My default browser is not IE, but the links in the Secunia PSI keep opening in IE. Why is that?

   Some links are set by the Secunia PSI to open in IE. This is because Windows Update is unable to function properly when opened by a browser other than IE, since this website employs ActiveX technology only implemented in IE.
   
   For information on how the PSI determines which browser to use, see the FAQ entry below this (Here).

9. The PSI says "An error occurred while attempting to open the specified URL" when I click links. How can I solve this?

   This error occurs because the registry key specifying your default browser is not properly set. To solve it, try setting your preferred browser as default again.
   
   If this has not resolved the problem, you can examine the registry key the PSI uses to determine your default browser. To see this, open the Registry Editor by typing "regedit" in either the Run box (WinXP) or in the "Program search field" (Vista/7), both found in the start menu.
   
   Then navigate with regedit to "HKEY_CLASSES_ROOT\HTTP\shell\open\command". This registry key configures your default browser, and the program specified here is what the PSI is having problems executing. Verify that the path points to your preferred browser, and that the browser indicated has not been removed and is still functional.
   
   These are some typical registry keys from the most used browsers known to work with the PSI as an example. Please note that these examples are provided only as a courtesy, and Secunia does not officially recommend changing your registry to any of these values.

   1. Internet Explorer
      "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome
   2. Internet Explorer 32-bit on Windows 64-bit
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" -nohome
   3. Mozilla Firefox
      "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url
   4. Mozilla Firefox on Windows 64-bit
      "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1"
   5. Opera
      "C:\Program Files\Opera\Opera.exe" "%1"
   6. Opera 32-bit on 64-bit Windows
      "C:\Program Files (x86)\Opera\Opera.exe" "%1"
   7. Google Chrome
      "C:\Documents and Settings\Administrator\Local Settings\Application Data \Google\Chrome\Application\chrome.exe" -- "%1"
   Substitute your username for \Administrator\ for this to work
   
   
   8. Apple Safari
      "C:\Program Files\Safari\Safari.exe" -url "%1"
   9. Apple Safari 32-bit on 64-bit Windows
      "C:\Program Files (x86)\Safari\Safari.exe" -url "%1"
   
   
   Please be aware that modifying or deleting the wrong registry key can effectively break your system. If you are not comfortable working with the registry, it is recommended that you request assistance on our community forum.
   
   

    

 

10. What is the difference between the Secunia PSI and the Online Software Inspector (the 'OSI')?

    The Secunia Software Inspector identifies a few dozen of the most common applications, while the Secunia PSI can identify thousands. In addition, the OSI is run using the web browser, while the Secunia PSI is downloaded and installed.
    
    Furthermore, the PSI provides a range of capabilities not found in the OSI version, such as automatically running scans a week after your last scan, automatic program updates, notifications for unpatched security issues in browsers and browser-plugins, and so on.

11. What is the difference between the Secunia PSI and the Secunia CSI (for enterprise networks)?

    The Secunia CSI is a commercial product designed to allow you to scan other computers within a network (such as in an office environment), making it ideal for corporate users. For sales and pricing inquiries please contact sales@secunia.com or visit the Secunia CSI page.
    
    In contrast, the Secunia PSI is a free program designed for private users, and only scans the computer in which it is installed. However, both the CSI and PSI identify the same number of applications.

12. How often do you update version rules?

    Secunia Support develops new version rules when a vendor releases a security patch for any vulnerability in a product detected by the Secunia PSI.
    
    The version numbers shown as Secure by the PSI are based on Secunia Advisories and our internal tests.

13. Where can I get more information on the security patches that the Secunia PSI tells me I need?

    More information on the detected software is available in the Online References section of the details screen available for each of your detected programs. To access the details screen, double-click the application in question on the Scan Results tab.
    
    For insecure programs, this includes the Secunia Advisory, which contains details on the vulnerability affecting your software, as well as patch information and links.
    
    Furthermore, the PSI contains a link to the section of the Secunia Community Forum dedicated to that specific product, where you can benefit from and exchange experiences about patching the product in question. You can access this link by clicking "Problems / Discussions" in the Online References section.
    
    Before asking for help on the community forum, please refer to this item of our FAQ:

14. Can I use the Secunia PSI even when I'm not connected to the Internet?

    The Secunia PSI is able to identify what software you have installed by matching the file information of scanned files to the Secunia Database.
    
    To check which programs may be vulnerable and which ones aren't, it uploads the information from your computer to the Secunia server. Because of these dependencies, you cannot use the Secunia PSI offline, as it requires an Internet connection to both identify the software and give you the results.

15. How can I suggest a feature or report an error in the Secunia PSI?

    For all feature requests or error inquiries, please submit your suggestions or error reports to support@secunia.com (including screenshots, whenever possible).
    
    You can also post to our community forum, found at http://secunia.com/community/forum/

16. I have some programs that the PSI does not detect. What can I do to add them?

    Go to the Scan Results page, click "Are you missing a program?", fill in the fields and select a file related to the program you wish to suggest. The more information you include, the higher the chance we can include the software in our database, or correct already-existing rules.
    
    Please make sure that the file you suggest contain correct file information, such as filename and version numbers, as this is the information the Secunia PSI uses to detect the program and to determine which version you have installed.

17. When I try to suggest a program the PSI shows 'C:\FakePath' (or similar) instead of the file's location. Why is this?

    This is because https://psi.secunia.com is not added to 'trusted sites' as per section S3 of our FAQ. Without this configured, your system blocks the PSI from uploading the required file information from your system.

18. Which information should I include when asking for help?

    When asking for help, either on the community forum or by contacting Secunia support, you should include the 'Troubleshoot Report' for the application in question. To obtain the Troubleshoot Report, double-click the problematic program on the Scan Results tab, click 'Troubleshoot Report', and follow the instructions presented.

Differences between PSI 1.x and PSI 2.x Series

1. Why does the PSI 2.0 Appear to detect less software than previous versions?

   The underlying scan technology of the PSI has not changed radically, and so the PSI will detect exactly the same amount of programs, or more, as previous versions.
   
   However, some changes has been made to how results are displayed and counted in statistics that could make it appear like the PSI is suddenly no longer detecting programs it used to find.
   
   In the new version, several results from one program have been grouped together, to avoid the confusion over 'zombie files', as explained in section Q1 of this FAQ.

2. I can't find the Secure Browsing tab! Where did it go?

   In the PSI 2.0, this tab has been disabled by default. You can enable it by setting a check in 'Enable "Secure Browsing" page' under settings.