When you install XP SP2, if you're on a network, turn on File and Printer Sharing. By default, networking is disabled. If you still have a problem, use the Windows Help for networking.There will be a joint SVCS and SPAUG meeting next month, November 10, here at the Elks Lodge.
Microsoft will make the presentation.
Read Hank's advice in the General Meeting notes following this, and take it!
When you install XP SP2, if you're on a network, turn on File and Printer Sharing. By default, networking is disabled. If you still have a problem, use the Windows Help for networking.
Spyware and Malware are a huge problem. Microsoft's operating system is not optimized for security; it is for ease of use. Therefore, it is very susceptible to malware disguised as an application or service. Linux and Unix were designed from the beginning to be more secure, so are much less susceptible to malware. Most of the systems Hank has fixed recently have been badly infected with malware, and about 10% could not be fixed even after hours of work, and had to have the OS reloaded (losing any data that was not backed up). The later versions of Windows have such a high complexity and size that malware can easily hide in the registry or among the system files. Hank has to scan drives outside their computer so nothing is running, and even then some malware escapes. The antivirus applications do not address malware; they only find viruses. Malware does not replicate, but slows down the system (sometimes dramatically, and sometimes crashes), can send information (including passwords and other sensitive data) about you and your computer to the malware owner. The malware is usually installed on your computer without your knowledge or permission, and hides in the background doing its dirty deeds. It can come from a download, or even from just visiting a website, which opens ports on your computer. Your browser downloads files to the Temporary Internet Files area, and also runs many script files, like JavaScript, Java, Shockwave, ActiveX, etc. Malware can be hidden in seemingly useful software that you run (i.e. a Trojan).
You need a hardware firewall (router). The output from your cable or DSL modem should feed into it. You can get a simple router from Fry's or Microcenter for $20-30; or a 4-plug router for a little more, so you can share your Internet connection and printer; or with a wireless antenna so you can connect to your laptop. Some optional upgrade SBC DSL 2Wire (www.dslreports.com/faq/twowire) modems come with a built-in router, but they are more expensive, and only have one outlet, unless you buy the even more expensive 4-outlet model. You also need a software firewall (you can use WinXP's built-in firewall, which is turned on by SP2). But firewalls do not stop malware, because when you download or browse to a site, this opens your computer to that website. Along with the HTML there could be a malicious script that gets on your computer. You need to train your firewall (if it monitors and can block outgoing communications - Microsoft's firewall does not, but ZoneAlarm and others do). You tell the firewall which programs are allowed to access the Internet, and which ones are not allowed access; you can also require any program to ask your permission before it is allowed to access the Internet. This way, you can be notified if malware is trying to communicate with its outside owner. You can also set safe, or “trusted” zones, for your network.
Linux and Unix servers are 70% of those in service, and are pretty secure; but the other 30% are Microsoft servers, which are vulnerable to being hacked. In addition, Linux and Unix can be patched without being shut down and restarted, a real advantage in 24/7 operations. Microsoft servers must be shut down to apply patches, which come out quite often, and sometimes have bugs themselves. Many large companies' websites are hosted on server farms (large numbers of computers in a central location), and if the servers get infected or subverted, they can pass the infection on to millions of computers that connect to the servers. This happened at Yahoo recently.
Hank is a contract worker to smaller companies that cannot afford a full-time dedicated IT staff. He gets called when there is a problem, rather than being called to keep everything safe and secure. So he's in a reactive mode, trying to root out the viruses and malware that has gotten into the computers.
Spyware is mostly financially motivated. The perpetrators get paid for obtaining your information, or information about your computer use - where you browsed, what you bought, your bank and password, etc. This is often the financial model for the “free” software you download.
Use Spysweeper, Spybot S&D and AdAware to scan for malware. Periodically also use TrendMicro House Call online checkup. Panda Software also has a free online scanner called Panda ActiveScan (www.pandasoftware.com/products/activescan), which found a really insidious piece of malware on Hank's computer that was hijacking his browser. The other scanners missed it (Panda's full security suite is available for about $79, a reasonable price for what you get). This is the reason you should use several different scanners regularly, but be sure to have an antivirus program working in real time checking your email and downloads. There are probably 100,000 different malware applications, any or many of which may be on your computer. Be sure to use the Immunize feature of Spybot S&D, and update the list of malware periodically, especially before starting a scan. Spybot has other features, including Tea Time, in the Advanced mode. [N.B. - Tea Time is not turned on by default. See the documentation online.] Don't worry too much about cookies, they are almost never malware. Some of them are beneficial, making your browsing easier by allowing sites to "remember" you and your preferences, even allowing automatic login.
If you have Norton Internet Security suite installed, remove it before upgrading to SP2. It will cause your system to slow way down. Removing it may be difficult, you may need to go to the Symantec site to get uninstall files or help. Microsoft unofficially says Panda, Trend Micro and a few others have the least problem, but Norton has “many issues”. Hank says the antivirus program is good, but the security suite will gunk up your system. Actually, it would be good to remove any antivirus and other security programs before upgrading to SP2. You certainly have to turn them off before doing the upgrade. Then be sure to reinstall them after upgrade.
Windows relies on the Registry to keep track of all its components and programs. This is not the best design, and causes a lot of problems, especially when software is removed. Linux and Unix do not have a registry, so avoid a whole host of problems. The registry grows over time, causing gradual slowdown. Old program residue is still there, slowing the system response. Many program uninstalls purposely do not remove their entries from the registry, because that might cause a problem elsewhere, if any of the code is used by other applications. This is even more of a problem if you often add and remove programs like games. By contrast, the Linux core is compiled, and doesn't get affected. The new Mac OS is based on Linux, so enjoys a much greater protection from virus and malware infection. Some people are trading in their PCs for Macs, especially small companies that run servers, because of increased security and lower cost of applications.
Hank expects Microsoft to lose operating system market share over the next few years. Linux will gradually take over as it becomes more supported by applications, and easier for inexperienced users to operate. Already a Linux operating system emulates Windows. Openoffice.org software [N.B. - it is on the club CD, and has been demonstrated several times] has all the functionality of Word, Excel and PowerPoint, can read and save as Microsoft file types, and it is free. For just a few dollars, you can get Star Office, a full-featured office suite. Many companies are starting to recognize Linux, but a lot of hardware and software sold today is either for Mac or Microsoft, not Linux. Over time, an increasing number of vendors will add Linux compatibility. Even now, you can get the software drivers for most hardware somewhere online.
Mozilla Firefox and Thunderbird are good alternatives to the Microsoft Internet Explorer and Outlook/Outlook Express. They are less subject to problems. You do need to get a lot of plug-ins to take advantage of many multimedia effects. But you avoid the ActiveX problems. You can get them for Linux, too.
If you have problems finding malware, one option is to start in Safe Mode. Usually you repeatedly hit the F8 key during boot up until the system recognizes the command. It looks ugly, 640x480, strange colors, different icon sizes, etc. But only the really core programs are running, not the malware. This is a good place for running the malware scanners. Unfortunately, there is no Internet connection so House Call and Active Scan won't work. Another option is to use the Process view screen (accessed from Alt-Ctrl-Del). Windows uses many programs, but if unexpected programs are running, you should be suspicious. Google any suspicious names to determine if they are malware.
Hank has started providing Linux on computers he sells, if requested. Companies find reliability and cost advantages from running Linux, especially as servers. There is still a problem with hardware compatibility, although many sources of drivers, especially for older hardware, exist, and many drivers are already included in commercial versions of Linux (like Red Hat, Mandrake, Suse, etc.). If you just want basic functionality, Linux should be fine; but if you have specialty or proprietary hardware or software, be careful to check for compatibility. Things are improving, but there is still a way to go. If you want to try Linux, get the Wal-Mart $200 computer that has the Linspire OS (name changed from Lindows due to a lawsuit). It will run most Windows programs.
Linux is very configurable; you can customize it to your heart's content. Fortunately, Linux core code is very standard from manufacturer to manufacturer. Hank thinks three years will make a big difference in Linux becoming mainstream. You can add Linux to a new partition on your hard drive, and then make your computer dual boot. Or buy the $200 Wal-Mart computer and a $20 keyboard/monitor switch from Fry's, then you have two boxes with one monitor/keyboard/mouse; you can network them if you want.
Don't bother buying CPUs with speeds over 3 GHz. The 2.3-3 GHz chips are suitable for all the hardware and software available today. Rather than higher speeds, go for dual chips eventually. 64-bit chips are on the way, but almost no software takes advantage of them yet.
Hank showed his new favorite file server, a Linux based 250 GB hard drive from Buffalo Systems. That is only $330 for a file server in a very small, portable box. It has USB and FireWire connections. Connect it to a home or small office computer, and you have a great NAS (network attached storage) backup device. Hank was up and running in just a few minutes. Hank is using it to carry around all his software tools he needs to work on computers. For sources, click one of the Sponsored Links on the right of this Google search result, or go to Buffalo Hard Drives at PC World.
Hank showed a 2 GB portable hard drive the size of a pack of cigarettes. It connects via USB, and is invaluable for transferring large files. Hank then showed his newest “latest and greatest” personal model computer, with a modernistic design, small footprint, Pentium 3 GHz CPU, 512 MB RAM, 120 GB HD, Pioneer DVD writer, floppy, 6 USB ports, Ethernet, 5.1 sound . Buy an external USB 2.0 hard drive for backups. Hank showed his case for $59, 40 GB laptop style for $110. He can plug it into any computer for backups, or to download his tools to a problem setup.
The door prizes were distributed. There was a scanner, a gift certificate to Microcenter.
The following URL is one of the references that is especially cogent on how to, in fine detail, control malware on your computer:
Spyware/AdWare/Malware FAQ and Removal Guide
Submitted by Jim Dinkey
From one review I read I understood that there was essentially no difference between AdAware and AdAware SE if one only used the free version of each. And if you use AdAware SE in its paid version, you must be sure to have the latest update, as the earliest versions had some very serious security holes.
Spyware Blaster isn't directly comparable with AdAware, as the former is proactive while the latter is (as I understand it) only effective when it is invoked. (It may have some resident module, especially in the paid version, with which I am not familiar.)
AdAware and Spybot Search & Destroy are quite comparable, with their main means of action being at the user's request. In Spybot S&D version 1.3 they added the (optional) TeaTimer module which is a resident program that asks you each time some other program attempts to change certain significant registry settings--specifically to set up a new program to run at Windows startup.
Spyware Blaster (and Spyware Guard) are constantly in place, attempting to stop any other program from installing spyware on your system. I find they work extremely well. (I used to regularly find, using either AdAware or Spybot S&D, several dozen threats. Now, aside from the cookies that are basically not real threats, I rarely find any spyware that's gotten installed. IMPORTANT WARNING: You do need to update Spyware Blaster's database at least weekly to get the full benefit of the program. I've not seen nearly as many updates to Spyware Guard, although I have both installed and have checked for updates on each at least once a week. [And, I also have AdAware and Spybot S&D installed, but only in their limited, free versions.
I've seen no reason to think there is any conflict between them, except that Spybot S&D warns it might find something that AdAware has taken care of and think it still it a problem--a scenario I have yet to encounter, despite the warning.]
Build your music library: You have a bunch of audio CDs and a CD player, but if you have good speakers hooked up to your computer, you can actually have more fun listening to that music through your PC. With Windows Media Player (WMP) you can call up any song instantly, create playlists, and make custom mixes on recordable CDs. First you need to transfer those tunes from your CDs to your hard drive. Click Tools, select Options, and click the Copy Music tab. Use the options to set up how you would like WMP to copy your discs. Select the Copy CD When Inserted checkbox under Copy Settings and click OK. Next time you insert a music CD in your CD drive, WMP will automatically begin to transfer your music to your computer. What's even better is that WMP can figure out the album name, artist, and song track titles on its own as long as you have your computer connected to the Internet.
News on the Free Antivirus front. Grisoft, makers of AVG, my favorite anti-virus program, will discontinue their version 6 at the end of the year.
"Grisoft announces the end of support for AVG version 6.0 effective on December 31, 2004 for technical reasons. This version has been available since 1999. Its structure does not allow for further improvements planned for version 7 nor improvements in detection techniques expected to come in the future. End of support means we will no longer provide program updates or Virus Database updates for version 6.0 and therefore, within days, this version will not protect against new virus outbreaks! Current AVG 6.0 users should upgrade to AVG 7.0. Information on upgrading to version 7.0 can be found at www.grisoft.com/us/us_upgrade.php." AVG will continue with a free version. There's an update coming that will include many of the features in the Pro (paid) version. The reason, according to the PR rep, is the engine in the older 6.0 free version isn't the same as the paid version. The new beta--and its subsequent release--will use the new engine. Updating AVG's virus signature will be easier, even on dialup.
AVAST, the AVG Alternative
The alternative is AVAST, which is also a freebie. Rod Ream uses it, though I found a noticeable slowdown of my system when I tried it (yet it was fine on my wife, Judy's machine). Go figure.
1. Uninstall whatever antivirus program you're using: Control Panel --> add/remove. Find AVG and uninstall it.
2. Reboot your system.
3. Head for Avast's site.
4. Fill in the registration form for the free product. Use your real e-mail address; fill in the balance with whatever you think it appropriate.
5. Tuck away the URL for the registration, you'll need to do it again. AVAST insists on registration every so often.
6. Download the English version of AVAST.
7. Install AVAST; follow the directions and use whatever settings they recommend.
Newsletter Details
This E-letter may be forwarded or reproduced for non-commercial use, either in part or in its entirety, provided the following is included:
This message is brought to you by Steve Bass. The content reflects his personal opinion and not that of PC World.
• Subscribe: stevebass-subscribe@yahoogroups.com
• Subscribe: PCW's Home Office Newsletter
• Steve's new book: PC Annoyances
• Copyright 2004 by Steve Bass, reprinted with permission.
