SPECIAL INTEREST GROUPS:
If you would like to meet in a small group to discuss one of the following subjects, contact the following people.

Web 2.0 and Portable Computing.

By John Abbott, member of the Bentsen Grove Resort Computer Club, Mission Texas

www.bgrcc.com   john@bgrcc.com

 Portable Computing has always lagged behind the rest of the computing market.  This is probably because there are currently less mobile devices than computers.  But that is about to change. According  to Steve Rupel (leading PR company on the planet) billions of mobile devices will reach the market this year and by 2010 there will be 50 million of them sold quarterly.

 Mobile device? You won't be calling them Pocket PC or Cell Phone long; maybe PCC for Personal Communication Center.  The merger of all forms of digital communications is rapidly taking shape.  Cell phones now contain very limited access to the web, receive very limited email, and take limited resolution pictures – oh and they work as phones too.   With smaller and more low  powered devices quickly coming on scene these limits will expand exponentially.

My project over the past month has been the installation of an Operating System on a USB Flash-memory Device (UFD).  I started with a full blown Linux distribution on a USB 80 gigabyte micro hard drive. Well after some real torture and lots and lots of reading I managed to get it operational. However, in editing the boot file I managed to misspell something and now I've got to start all over again.

 But I did find a couple of small Linux distributions; Damn Small Linux and Puppy Linux.  I downloaded the ISO files for each and started working on a flash drive.  Today I managed to get the thumb drive fully functional.    Along the way I've learned a lot about what I still need to learn about executing from a CD or a UFD.  But DSL in a tube really works.

 Why do this?  Well because I know that Web 2.0 is going to dominate the future of the web.  With more and more of the platform being located on the Internet, less and less will be required on your local computer.  The computer will take on more and more of the role of thin client (from a client/server relationship where all the applications are on the server).  This in turn will have a direct impact on the cost of computers which will no longer have to come with expensive 3^rd party software.  So I created a portable thin client.

 Web 2.0 (platform on the web) will take away a great deal of the chest thumping over O/S because the web interacts with all operating systems.  The feature rich web already offers on-line mail processing that works perfectly with thin client or host computer.   I am an advocate of Google's Gmail.  I can access it on the web where it neatly threads my messages and stores up to 2.5 Gigabytes of mail in the in-basket or in the search able archive.   From within that mail system I can also originate chats with my friends and maintain my calendar.  I can make my calendar or part of it accessible to colleagues for event coordination.

 I can use Zohowriter.com for my word processor.  Zoho is a full strength word processor with all the power you find in Works, Word or Open Office (or any of the dozen or so word processors available. I am able to store my documents on-line, download them to my computer, publish them on the site so they can be collaborated by associates whom I have previously arranged access.  I can upload files from remote files (my computer or yours) and modify and store or simply store them on-line.   And as an added feature I can use Zoho as a mail client; sending, receiving and originating email.  Zoho automatically assigns you an email account when you register (free).

 There will be some who say: “well I can have several programs open at once on my desktop.”  And my response would be, fine, I have multiple web pages open on my computer as I use Zoho to write this. I have a page set up with Wikipedia to check facts, The weather, my Google mail, my personal mail web account, XM radio playing great jazz.  And in a few moments I'll open another and watch the news on TV – all from my thumb drive.  I sure hope my Gizmo or Skype phones don't ring during the news!

 There is no restriction against any non-profit group using this article as long as it is kept in context with proper credit given the author.  The Editorial Committee of the Association of Personal Computer User Groups (APCUG), an international organization of which this group is a member, brings this article to you.

Improving PC Performance Without Upgrading Your Hardware

 Boosting up the performance of your PC doesn't have to be difficult or expensive. Here's a step-by-step guide on how to do it.

By Kevin J. Vella, Public Relations Manager, Uniblue Systems Ltd
kevinjv@uniblue.net      http://www.uniblue.com/

 Nine things that Chip Manufacturers and PC retailers don't tell you!

 The most common reasons for PC slowdowns are viruses, spyware, too many temporary files, software conflicts, residues from unwanted (and uninstalled) trial downloads and other applications, and, sometimes, just too many applications running at the same time hogging all or most of your computer resources.

 The following are nine things that Chip Manufacturers and PC Retailers don't want you to know or how to perform. Following this advice will drastically increase your PC performance and help you regain your sanity while saving loads of money. And, if your PC is three years old and can't afford to upgrade yet, you will be able to squeeze out some more juice out of the old thing!

 1. Know What You Are Running:

Sometimes slow downs occur because you have too many programs open at the same time. Shutting down those programs that you are not using will immediately boost performance.

 2. Monitor Windows Processes:

If you press CTRL+AL+DEL you will call up Tasks Manager which lists most of the processes that you are actually running.

 Although limited, Task Manager will give you a reasonably good overview of what's running. But before ending processes to increase your performance please exercise extreme caution and learn what the processes do. Look at the article Maximizing PC Security to get a good overview of how you can do this.

 You will find that either there is too much running or there is something hogging your CPU and memory. With certain Windows Utilities you can even set-up your computer to run certain system configurations depending upon the type of application/s you are running at the moment. These utilities also give you an insight on resource allocation and, with the help of graphs, can help you identify which application and/or process is most likely to slow or crash your computer.

 3. Have a Clean System:

One of the most common reason (probably the most common) for slow downs is viruses and/or spyware. Sometimes even spyware residuals that have escaped your anti-spyware products can plague you for months. I had a problem with MSAA.EXE which was not caught by three spyware scanners - I eventaully figured out what I had running because of point #2 above!

 Virus and spyware authors just love creating menaces that hog your system resources and the only protection you have is to have everything up-to-date.

 Make sure your antivirus software is up to date with current virus definitions. Then scan your computer for viruses. Make sure your Spyware software is up to date with current definitions - because of the way spyware works you should try and use at least two different programs to scan your system (scanners are usually free of charge and Microsoft have a free Anti-Spyware product which you should use). Firewalls are also an important security tool but beware as having an active firewall may slow performance.

 What you may do once you are 100% sure that your system is clean is turn off your security only when not connected to the Internet. This should help you increase your performance too. But remember to switch everything on before going online. Otherwise, you will be immediately at risk.

 4. Update Your Operating System

Having the latest updates of Windows may not generally increase system performance. However, Microsoft are continually patching up any security loop holes or performance related glitches. So in the long run, your system will be better off with the latest OS updates.

 5. Disk Clean-ups

Defragging and disc repairs are also extremely important. Defragging is the process of locating and consolidating your files and folders sitting on your hard drives. This can be done automatically by Windows and as a result your system can access these files and folders (and new ones) more efficiently and quickly. Regular defrags and disk repairs will keep your computer running at optimum levels.

 6. Temporary File Management:

Cleansing your temporary files including your Internet history including cookies gives you a larger amount of hard disk space to work with. This, in turn, gives more space for Windows virtual files (Page File memory). I go as far as limiting how much space Windows uses to create temporary files. For example, my setting is 1 Mb. In other words, at any point in time Windows is only allowed 1 Mb of space to store cookies, activeX controls etc..

 7. Start-up Management

Next time you start up your PC just time how long it takes to boot and let you start using your applications. If you are lucky, start-up times should be no longer than seconds. In most cases, however, it takes minutes.

 The Windows Startup Folder tells you most of the more visible processes that are running in your system. However this is not enough - many installed applications start up processes at boot up that you don't even know about. Not that these are harmful, they're probably useful and required. However, by monitoring what is starting up, you have a good chance of finding out what should and what should not be started. Such utilities as performance optimizers (see #9 below) will automatically identify your start-up files and allow you to disable some or all of them. Again, exercise caution here. Be sure to disable only those start-up processes that are superfluous.

 My start-up times (and as a result my CPU and MEM Usage) were very short until I installed a particular program which I needed. However I made the mistake of setting up the server version when I don't really need it - I confess, it wasn't a mistake it was a program that impressed me so much that I decided to install the server version because I thought that I would have more visible functionality. However I was wrong. To cut a long story short, I had some system files installed on my system which were needed if my PC were actually a server (and not a client). One particular process hogged my system and used a constant 10,820 K of my memory when working in the background. Reinstalling the version I needed improved my performance without my having to spend as much as one penny.

 8. Caution: Download in Progress

Be honest, whatever they tell you about security (although very true and serious), you just can't resist downloading and trying out new products and utilities. It's fun! I just love scouring the Internet looking for some new utility to try out.

 A few weeks back I needed software that lets me sort out the myriad of documents I have on my PC. Thing is I didn't want to spend too much money so I started looking at Open Source products that are free of charge. Well, I must have downloaded and installed at least 10 different programs. I liked none so in a second round I found the one I wanted. However, when uninstalling all the programs I tried, I had to be very careful. The uninstall operation of most applications or programs almost always leaves residual files or folders in your system. No uninstall operation will leave your system the way it was - dlls, processes such as schedulers that kick in at start-ups, and other legitimate processes that, with the main program being uninstalled have no specific function except to hog your system unnecessarily.

 What I usually do after I uninstall and reboot my machine is use a Windows Utility (WinTasks) to help me identify the processes which are unnecessary and just block or delete them. Again exercise caution when doing this - make sure that you have all the program and its sub components uninstalled, then reboot, then try the manual clean up. If you are unsure, it is better to leave them in your system but making sure that they are blocked.

 9. Use Performance Optimizers

Finally, if either you don't want to perform many of these things manually or you have exhausted all possible avenues, you may want to consider a Performance Optimizer.

 Even the more experienced users cannot manage to fully control and monitor all that is happening within their system without a small toolkit of software utilities that generally includes a sturdy performance optimizer.

 If anything these utilities do the work automatically. I use performance optimizers because they can do the job better and in as little time as possible. When I use a computer I am either working or playing some game - I just don't want to hassle myself tweaking and looking under the hood of my PC. Performance optimizers have been designed to inch their way into the system and help you boost your PC performance drastically. These utilities usually don't cost more than $25 to $30 and give you much more value than investing in RAM simply because they seek and solve slowdown problems rather than mask it.

 Sometimes RAM is necessary. But, I believe that following these nine steps and principles you can get much more out of your PC. Plus, performance optimizers go the extra mile because they improve your system's overall operation beyond any level that you can manage on your own steam; simply because operating systems are getting more complex by the upgrade and it is almost humanly impossible to keep track of all that goes on in your computer.

 There is no restriction against any non-profit group using this article as long as it is kept in context with proper credit given the author.  The Editorial Committee of the Association of Personal Computer User Groups (APCUG), an international organization of which this group is a member, brings this article to you.

What Is Spyware

by Anton Chuvakin, Security Strategist with a major information security company

Published online at O’Reilly® Windows DevCenter (www.windowsdevcenter.com)

 Spyware

Spyware is a new strand of malicious software (or malware), annoying, and capable of robbing computer users all over the world.

 In This Article:

1. How Spyware Works

2. Protecting Yourself

3. The Future

 Spyware is such a broad term that even the definition of this computer scourge is fuzzy. So, what is spyware? The best definition out there is given by Wikipedia:

 "Spyware is a broad category of malicious software intended to intercept or take partial control of a computer's operation without the user's informed consent."

Thus, spyware has come to mean not only the "software that spies on you," but also the software that performs other kinds of abuses and annoyances, outside the traditional virus-and-worm world. For example, displaying unwanted ads is a primary purpose of "adware," which is often categorized as a type of spyware. In fact, some people even extend the definition to cover browser cookies, relatively innocuous pieces of text used by websites for user tracking.

One angle missed by the above definition is that while some folks are known to launch viruses and worms, two well-known types of computer nasties, "just for fun," spyware is usually written for somebody's direct monetary benefit, often in the form of good old cash. This aspect is one of the keys to the dramatic rise of spyware.

Spyware emerged in recent years to "entertain" computer users. This emergence coincided with a sea change in the world of mainstream computer attackers that shifted their focus from having fun at somebody else's expense to making money at somebody else's expense. Spyware, along with spam, phishing ("social engineering" attacks via email intent on stealing credentials), and pharming (DNS attacks aimed at attracting users to malicious websites), is one of the most noticeable computer threats of the day. We did say "noticeable," although spyware is often engineered to be hard to find, hard to notice, hard to pay attention to (that is, hidden in a lengthy license) and, obviously, hard to remove. Spyware evolved in the same time frame as e-commerce and online banking. As business use of the internet was growing up, so was business abuse.

 The world of spyware is extremely broad and the mechanisms of its operation range from a mundane social engineering ruse (e.g. three pages of license "blah-blah-blah" followed by "and we will also steal your cookies and browser history for 'marketing purposes'") to a "zero-day" (that is, previously unpublished) exploit launched against the victim's Internet Explorer by malicious or compromised websites.

 Here are some of the commonly identified types of spyware:

 Browser objects (IE hacks, ActiveX controls, malicious toolbars, and so on)

 Bots and rootkits (allow others to control your system remotely)

 Keyloggers (record your keystrokes looking for sensitive data)

Bundled parasite software (miscellaneous nuisance)

 Adware (run on the system or in the browser to display advertisements)

 Let's look at some common spyware specimens. As reported by commercial anti-spyware company Sunbelt Software, these spyware programs were common in September 2005: Claria.DashBar, AvenueMedia.DyFuCA, IST.SlotchBar, ABetterInternet, and IST.ISTbar, to name a few. Most of the above are "adware" specimens (they display ads that can potentially generate revenue for the software creator) and do not spy on the victim, but others (such as IST.ISTbar, a malicious browser toolbar) actually collect web usage information and may install other, more harmful spyware on the user's system.

 How Spyware Spreads

There are many mechanisms for spreading spyware, employed by their creators. Let's look at a few common ways spyware can infect:

 When installed by other spyware (unlike viruses and worms, spyware rarely treads alone; some machines analyzed by the anti-spyware vendors were found to have hundreds of spyware specimens)

 When installed by malicious websites through flaws in Internet Explorer (so called "drive-by downloads")

 When bundled with "free" or sponsored applications (unfortunately, with permission of the application creators)

 Later we'll cover some of the things all computer users should do to lower the risk of "catching spyware."

Spyware's Impact on Your PC

Overall, what can spyware do on your system? For that, we will refer you to Microsoft's Ten Immutable Laws of Security. While it might be ironic that such laws are formulated by the makers of the most common spyware platform -- Windows -- they do provide vital insight into security. For example, Law 1 proclaims: "If a bad guy can persuade you to run his program on your computer, it's not your computer anymore." Thus, the above question becomes "what can spyware do on their system?" The answer to this one is really easy: everything that its creator wants. Common changes due to spyware include registry changes, browser configuration and settings modification, new program installation, as well as using your system for whatever else is needed. In other words, spyware, when installed and running, can do everything you can do on your system (and sometimes more).

 Table 1 shows the direct damage you might suffer from spyware.

 Table 1. Types of loss caused by spyware

 Protecting Yourself

Now that the evils of spyware are understood, let's use the well-known security mantra "prevention/detection/response" to focus on what you can do to:

 Prevent spyware from happening to you

Detect that it might be sneaking by the defenses

After it happens anyway, respond by cleaning your systems

First, will an antivirus solution will take care of all spyware problems? The answer is a resounding "no." Many anti-spyware products (both freeware and commercial) have features to block (prevention), scan for (detection), and remove the offending program (response), but PC Magazine's recent anti-spyware and antivirus software review, which compares stand-alone anti-spy defenses, indicates that antivirus solutions still do not do a good job of fending off hordes of spies.

Fortunately though, there are several simple things every computer user can do to lower the risk of spyware infection:

 1. Keep your Windows systems up-to-date by using Microsoft Update, which will update both your Windows and MS Office software. Installing Windows XP SP2 (Service Pack) is also important.

 2. Restrict some of the Internet Explorer settings (refer to Google for tips) or use Firefox, which significantly decreases the chance of spyware infestation. Here are some of the important settings to tweak: block popups using Windows XP SP2 popup blocker or another solution, limit or block ActiveX controls, and limit file downloads via the IE settings panel.

 3. Use antivirus and anti-spyware tools, and frequently update them using each tool's own automated update mechanism. The best free programs to use are Spybot Search and Destroy, Ad-Aware, and Windows AntiSpyware (to be renamed Windows Defender later this year). Most antivirus vendors, such as Symantec, McAfee, and Trendmicro are launching their own anti-spyware solutions. However, stand-alone anti-spyware companies such as Webroot and Sunbelt Software still outperform them. Also, make sure that you not only run the anti-spyware software, but also use it to perform spyware scans on a periodic basis, just like you do with an antivirus software.

 4. Use a personal firewall with outbound protection; it might notify you when the spyware that sneaked in tries to "extrude" the stolen information to its "mothership." It is important to note that at the time of this writing, Windows' built-in firewall didn't offer this protection, so other free (such as ZoneAlarm from Check Point) or paid (such as Norton or McAfee) software solutions should be used.

 5. Use only software obtained from trusted sources. For those needing a more specific suggestion, downloading from a random site from the Internet or receiving it from a "friend" you just met online does not count.

 If you think your system is acting suspiciously, you need to determine if spyware is the factor to blame. Since there are so many parts of the system that can be modified by spyware, the best way for users to detect spyware is to run any of the free anti-spyware tools mentioned above. For better results, run multiple tools, since recent tool surveys indicate that no commercial or free tool will detect all spyware specimens. Some of the tools will also attempt to clean spyware traces, which brings us to the next item: response to spyware infections.

 As far as responding to a spyware infection, the only guaranteed 100 percent effective measure a user can take is to rebuild a system. Only this will guarantee removal of all traces of malicious software from a system. On a typical Windows system there are numerous places where a piece of malicious code might reside. In a more real-world situation, where it is not possible or desirable to rebuild the entire system, try looking for spyware removal tools, sometime published by anti-spyware and antivirus vendors. All of the above anti-spyware solutions provide this functionality and will clean the spyware traces with varying degrees of efficiency (often depending on the type of malicious program). Same applies to the antivirus tools with anti-spyware defenses. However, note that the latter category is more likely to leave the risk alone and just warn the user about its presence.

 Microsoft, which is now an anti-spyware vendor due to a recent acquisition, often publishes stand-alone removal tools for various malware. Microsoft's Malicious Software Removal Tool, which is updated monthly, can be downloaded to your system via Automatic Updates or the above link. It can be run online from the above link (via an ActiveX control).

 Removing complicated spyware manually, such as a driver-based keylogger, will often render the system inoperable and should only be undertaken by those intimately familiar with their system internals. On the other hand, instructions for removing simpler specimens, such as adware, are often published online and can be followed by anybody who maintains their own PC.

 The Future

To conclude, we will try to peek into our crystal ball, a necessary tool for an enlightened security professional. What's next for spyware? Will spyware bother us for years to come? It sure looks likely; there is no reason why the spyware creators will stop since -- guess what -- it pays the bills and there is no clear way to make such practices "prohibitively expensive" for their creators.

 Anton Chuvakin is a Security Strategist with a major information security company.

 There is no restriction against any non-profit group using this article as long as it is kept in context with proper credit given the author.  The Editorial Committee of the Association of Personal Computer User Groups (APCUG), an international organization of which this group is a member, brings this article to you.