Wrong, Every Step She Took Wrong

Original text of email I got from a long ago customer:

Recently our Microsoft Essentials "little house"  has been erratic in its stability.  We have done full scans and quick scans with it staying green for a short period of time changing to orange and then eventually to red.

I googled this question and received an answer that Microsoft is not updating this since last year - so the definitions are not really up to date.  Is this true?
It was suggested that I get AVG Anti Virus which is Free.  I did do this and it  appears to be doing the job with the green circles, etc. 

On that same page there is a area where I can check to "fix performance".  It is a PC Analyzer - After doing this, the report was: many errors in various areas and they said it could be fixed for fee/one time and/or I could get a program for 1 year.  I would not need one for one year but I would like take advantage of the free analyzing of this performance.  Do you think I should do this and is AVG a good solution if indeed Microsoft has stopped updating?

... [I] realize we will have to update to windows 10 when they force us to do so.  If we do not do this will they charge us?

 And here is the original text of my reply, please judge for yourself:

Thanks for asking. If you remember I do not express myself politically correct so please brace yourself for some rough truths:

• The "little house" you refer to represents Microsoft Security Essentials which was your anti virus program until you installed AVG.
• ANY anomaly with your anti virus should have rang a LOUD alarm bell.
• If it has not updated since last year your computer potentially was not protected against common viruses.
• AVG is a program that I urge my customers to stay away from!
• It installs really crappy programs, that is how AVG (the company) makes money nowadays.
• PC Analyzer IMHO is known malware.
• I bet you that almost ALL the errors that you get shown are false messages meant to scare you into installing even more useless programs.
• Keep going with these silly suggestions and soon your computer will likely not be usable any longer.
• No, DO NOT take "advantage" of the "free" solution that you mention, it will make it only worse.

I believe I still could fix the situation and hopefully repair your computer. I guarantee that the free solution will not work to your satisfaction. 

The question about "they" ( I assume you mean Microsoft?) charging you only Microsoft can answer and they, MS, has been asked the same thing thousands of times; so far MS has only replied with marketing blah-blah; we just do not know. My personal suspicion is yes, no later than January 2020 when in MS's view Windows 7 comes to the end of it's supported lifetime.

In case my replies offended you I apologize, that was and is not my intention at all.

For my readers here: No further comment from my side; please come to your own conclusion and PLEASE, don't make similar or the same mistakes.

Stay safe.
 

"Free" Security programs - For A Price

I stumbled over this article on How-To-Geek.

I wan to save you the hassle and time to read this lengthy article your self and will quote a few selected and IMHO most relevant snippets.

My stance toward the remaining "free" security programs as well as the well known commercial offerings is known; I have expressed this here repeatedly. So let's begin:

1. Free antivirus applications aren’t what they used to be. Free antivirus companies are now bundling adware, spyware, toolbars, and other junk to make a quick buck.... At one point, free antivirus was just advertising, pushing users to upgrade to the paid products. Now, free antivirus companies are making money through advertising, tracking, and junkware installations.
    
2. Comodo ... change[s] your web browser’s search engine to Yahoo! and bundles the GeekBuddy paid tech support software. It also bundles other Comodo products you might not want, including changing your DNS server settings to Comodo’s servers and installing “Chromodo,” a Chromium-based browser made by Comodo. ... As the Comodo-affiliated PrivDog software contained a massive security hole similar to the one Superfish had, there’s a good chance you don’t want a bunch of other Comodo-developed software and services thrown onto your computer.
    
3. Lavasoft’s Ad-Aware pushes “Web Protection” that will “secure your online search” by setting SecureSearch as your web browser’s homepage and default search engine. Despite the name, this isn’t actually a security feature. Instead, it just switches your web browser to use a branded search engine that actually uses Yahoo! in the background — this means it’s powered by Bing.
   If you prefer Bing, that’s fine — just use the full Bing website. You’ll have a better experience than using Lavasoft’s rebranded, stripped-down search engine.
    
4. Avira encourages you to install “Avira SafeSearch Plus.” This is just a rebranded version of the Ask Toolbar, redirecting your search results through a rebranded version of Ask.com’s search engine. If you wouldn’t want the Ask Toolbar installed, you wouldn’t want this rebranded version of it installed either.
    
5. ZoneAlarm also wants you to enable “ZoneAlarm Search” as your browser’s default homepage and search engine, along with installing a ZoneAlarm toolbar that is - once again - a rebranded version of the Ask Toolbar.
    
6.  Panda {Free Antivirus] attempts to install their own browser security toolbar as well as change your browser’s search engine to Yahoo, and its home page to “MyStart,” which is powered by Yahoo. To Panda’s credit, they at least don’t attempt to trick you by offering you a renamed Yahoo search engine or home page.
    
7. avast!’s installer also tries to install additional software you might not want. We’ve seen Dropbox offered here in the past, but avast! attempted to install the Google Toolbar when we tried installing it.
   Programs like the Google Toolbar and Dropbox are high-quality software you might actually want, so avast! comes out looking very good compared to the other options here. But even avast! has done done some questionable things in the past — witness the avast! browser extension inserting itself into your online shopping.
    
8. AVG has its own suite of obnoxious utilities, including the AVG Security Toolbar, AVG Rewards, AVG Web TuneUp, and SecureSearch.
    
9. BitDefender offers a stripped-down free antivirus. ... BitDefender is still pursuing the strategy of attempting to upsell you to the paid product.
    
10. MalwareBytes doesn’t attempt to install any extra junk on your computer, although the free version doesn’t offer real-time protection. To their credit, MalwareBytes is offering a free tool that’s useful for manual scans - it even picks up and detects [and removes!] much of the adware other programs install - and encouraging you to pay for a more full-featured product.
    This tool could be quite useful in combination with another antivirus, like Microsoft’s free Windows Defender or Microsoft Security Essentials solution. But it’s not a standalone free antivirus you can depend on, as it lacks the real-time scanning.

 Not too nice a situation out there, right? You either pay up or you have to live mostly with junk you did not want in the first place.


Don't despair, a good, time proven free solution is available since about 2009.

For now over 13 years I "fix" my customer's home computers by removing all sorts of viruses and other malicious or obnoxious software. Most of my customers call themselves "computer illiterate". All of them have lived safely with mostly little or no manual effort.

The only malware infections happen now when someone "falls" for a social engineering trick; that is in effect when the customer for a moment was inattentive. And hat is just a human weakness, I know from my very own experience.

If you want to know details about this solution plese drop me a personal email; thank you.

AVG + Google Chrome = TROUBLE

Happy and healthy New Year to everybody!
... It's the first post in 2016 ...

The title describes the newest formula for disaster.

For years I have advised against using Google Chrome as your primary web browser.

For years I have advised against using AVG's free "security" programs.

Now this combination has become a wide open barn door for malicious software and/or viruses to take over your computer. You can read more about the details here.

If you use AVG I recommend to uninstall it and instead rely on Microsoft's Defender respectively Security Essentials in Windows 7. If you run into problems when you uninstall AVG you find AVG's special removal programs here. Take care to download the correct "bittedness" version for your version of Windows.

I you use Google Chrome I recommend to install Mozilla's Firefox browser; in Firefox you need to install two extensions or add-ons:

1. Adblock Plus and  
2. WOT (Web Of Trust)

After you install Firefox go to the Bookmarks manager (Bookmarks, Show All Bookmarks. Import and Backup, Import Data from Another Browser, select Google Chrome) and import bookmarks ONLY! When you have your bookmarks in Firefox please uninstall Google Chrome.

That plus some applied common sense is all you need to be and stay safe on the Internet.

If you want to do more against eventual advertisement malware and so called PUPs then download THE FREE version from here. Install Malwarebytes only AFTER you read this article about how to install and use it correctly.

Stay safe!

2014 Update On Malicious Programs

As far as malicious software is concerned much has changed since I last wrote about it. So here is an updated report on the current situation (summer 2014) ans my personal advice on how to stay safe on the Internet. I will talk about

• Definitions
Protective tools for the home user
• How to avoid these troubles and a
• Conclusion

Definitions:

Malware: Short for malicious software. It is a general term used to describe all viruses, worms, spyware, and pretty much anything that is specifically designed to cause harm to your PC, steal your information or throw never ending torrents of advertisements at you.

Virus: A program that copies itself and infects a PC, spreading from one file to another, and then from one PC to another when infected files are copied or shared.

Spyware: Any software that collects your information without your knowledge and usually sends that information back to the creator(s) so they can use that personal information in some nefarious way.

Scareware: A relatively new type of attack, where a user is tricked into downloading what appears to be an antivirus application, which then proceeds to tell you that your PC is infected with hundreds of viruses, and can only be cleaned if you pay for a full license. Of course, these scareware applications are nothing more than malware that holds your PC hostage until you pay for the “full” version. In many cases you can't uninstall them and/or the render the PC unusable.

Trojan horses: Applications that look like they are doing something innocuous, but secretly have malicious code that does something else. In many cases, trojans will create a backdoor that allows your PC to be remotely controlled, either directly or as part of a botnet—a network of computers also infected with this trojan and/or other malicious software. The major difference between a virus and a Trojan is that trojans don't replicate themselves—they must be installed by an unwitting user.

A computer worm uses a network to send copies of itself to other PCs, usually utilizing a security hole to travel from one computer to the next, often automatically without user intervention and often via email.

Ransomware usually encrypts your files that then are useless to you and some even “lock” your computer. The software requests an often quite substantial payment for the means to restore your files into usable form – which even after payment sometimes fails. 

Protective tools for the home user

You will always want to run a specialized anti virus program and a specialized on-demand only malware removal tool. I will recommend the only two programs I have learned to trust over the years – and that are easy enough to handle for the home user.

Anti virus: The release of Microsoft Security Essentials has changed the landscape of antivirus software. We finally have a completely free application that protects against viruses, spyware, and other malware without killing system performance like some of the "suites" tend to do. In my extensive personal experience it barely slows down even relatively slow machines and it's user interface is the easiest to use of all I know.

Don't only take my word for it. AV-Test.org found that it detects 98% of their enormous malware database and AV-Comparatives (a widely known anti-malware testing group) found that MSE was one of only three products that did well at both finding and removing malware.

Anti malware: Modern malware, mostly called PuP (potentially unwanted program), is very different from classic viruses. Most anti-virus programs can not detect PuPs and thus do nothing about it. And, as if to add insult to injury, most of them come on the computer because the user got tricked into allowing their installation.

I recommend Malwarebytes Anti-Malware (MBAM for short). Please download it from these two links only (they both go to the same destination).

MBAM is a time proven product and available in a totally sufficient free version. You have to watch during the original install and when you install a program update. The last window of the installer looks like this:

Please pay attention to the marked entry; it's check box is preselected! That means the “trial version” will be activated and after the trial period ends you would have to pay for using the program.

You have to uncheck this check mark.

Eventually the program itself needs to be updated; the installer will run again and again you have to pay attention to this little detail to avoid the for-pay version!

See this article on how to correctly use MBAM.

How to avoid all these troubles

When it comes to protecting yourself, it's laughable how many people install multiple antivirus applications but don't keep their system updated with the latest patches for the operating system.

If everybody would simply keep their system and all programs up to date, we wouldn't have to worry so much about these problems. If the constant rebooting action of Windows Update has you frustrated, you can always temporarily delay the reboot; remember, only after the reboot the patches are completely installed and active to protect your computer..

Keeping your applications updated is critically important to protect your computer's security. Your firewall won't protect you, and an antivirus software is unlikely to help if you're using an old, vulnerable version of Adobe Flash or Adobe Reader.

Conclusion

In the end, good browsing habits and common sense should be your first line of defense against any kind of malware. I recommend to always run a good security suite like MSE and additionally to use MBAM as an on-demand scanner. That way you're as well protected as easily possible and you can scan your system for malware whenever you want.

So here's the bottom line: In my not so insignificant experience MSE and the on-demand free version MBAM work very well together . Coupled with good browsing habits and common sense this a good combination of security tools and judiciously using them should keep you well protected.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

10 Commandments Of Safe Computing

1. Thou shalt read and think(!) before you click. 
2. Thou shalt check for updates every week but ONLY on Windows 7/8!
   
3. Thou shalt check Security Essentials (Win 7) or Defender (Win 8 & 10) every week.  
4. Thou shalt ask if thou knowest not.  
5. Thou shalt use only safe passwords.
6. Thou shalt use common sense.
7. Thou shalt not use Internet Explorer or MS Edge.
8. Thou shalt not use any Microsoft email program/service.  
9. Thou shalt not use Bing for the bling.
10. Thou shalt not visit pornographic websites.

As usual I welcome suggestions and comments right here in the blog.

Computer 101 - The 2012 Edition

Disclosure:
Recently I found this article on a blog called The Consumerist. I liked the contents of this article very much but it clearly was written by a computer nerd for other computer nerds.

I took the liberty to re-write most of the article in a form and language that I hope is better suited for my customers. Here it is:  

1. Keep all your data backed up.
    
   Put your data on an external disk drive, upload it to a safe storage website, copy it to another computer or even on a CD or a DVD (most cumbersome!), somewhere, anywhere but please back up your data files!
   
   I am perfectly aware that many of my customers will have issues in setting everything up correctly but as usual I can help.
   
   Having your data on your computer only is NO GOOD, having data files in two places is a MUST. If one of these sets of data files fails you need to create another second storage location! This will save you $$ and a lot of aggravation.
   
   Manufacturer warranties do not cover your data files; you need to protect them yourself. Back up your documents, pictures, emails, email addresses (or contacts), bookmarks (or favorites), tax files, music, videos and ANY business information you may have.
   
   The only exception to my rule "free software for everything" covers data backup. You need a sufficiently large external disk drive and a piece of software costing $30 per computer.
   
   If set up correctly this program will keep all your data files automatically up to date on the external disk drive without you having to do anything except the initial set up. As usual I can help with that.
   
   
2.  Have a current recovery disc for each computer you have.
   
   This is your licensed copy of your OS. You no longer get operating system disks with a new computer; it’s all stored on the disk drive. It is specific to your computer's internals like processor, mother board, sound and graphics. It has the device drivers your computer needs to do its most basic tasks. Burn a recovery disk on to DVDs right away when you get your computer and put the DVD somewhere safe. It may easily take up to 3 hours to do.
   
   If you lose the recovery disk then you can order a new one from your manufacturer for between 15 and 50 dollars, depending on the brand. HP is usually cheaper, Sony is wickedly expensive. They take about 2 or 3 weeks to arrive; that is a looong wait if you need them NOW to replace a hard drive or to fix Windows.
   
   There is a significant difference between recovery disks and a repair disk that you need to be aware of. You can read about that here. You have to be aware of that significant difference. And you have to be aware of the fact that if you have to use these recovery disks your computer will be thrown back to exactly the state it was in at the very moment when the recovery disks where created! Here I am talking about recovery disks created with the standard Windows Vista and Windows 7 system tools, not disks created with manufacturer specific programs; the latter reset your computer to original factory new state. You don't want to go back there losing all updates and so on.
   
   If for whatever reason you can neither buy recovery disks from the manufacturer nor create your own disks then, as a last resort, you can purchase a full copy of Windows 7 for about $100.
   
   
3. One antivirus at a time, please.
   
   Two antivirus programs running concurrently is like pushing two fat pigs together through a dog door, neither can get through the door correctly and they block each other from functioning properly.
   
   Two antivirus or security programs can tear nasty holes in your operating system depending on which ones you are trying to combine (I have seen it!) or at least they will SLOW DOWN YOUR COMPUTER TO A CRAWL because two systems are trying to scan your every move as well as each others moves.
   
   More than one antivirus or security program running concurrently is usually LESS protection than one good one.
   
   Your new computer most likely came with a trial of some sort of “security” software pre-installed. All these pre-installed antivirus or security programs will cost money, every year! Remove this stuff because you don’t need to pay for a good antivirus program!
   
   Remove the “old” antivirus program before installing a new one; even if they are expired they will get in each other‘s way! And some of them don’t even uninstall correctly. I have uninstalled Norton, McAfee and other security programs and upon detailed inspection found some left over parts of these systems still sitting in and actually running on the computer. This inspection is not trivial at all; it takes very special programs and a lot of detailed know how to do it correctly.
   
   Install the free program Microsoft Security Essentials; you can read here how to do that correctly.
   
   
4. Do not install any tool bars. 
    Did you hear me?  Please DO NOT INSTALL ANY TOOL BARS!
   
   ALL toolbars are bloatware, they will slow down your internet connection and eventually even crash your web browser.
   
   You don't need any of them, no matter how well known the company is that wants to force the tool bar on your computer!
   
   Tool bars take up screen space and they will end up affecting performance and sometimes even security. 
   
   Please DO NOT INSTALL ANY TOOL BARS!
   
   
5. "Free" stuff can be expensive:
   
   Web sites that offer free games, movies, music (torrent sites!), pornography and even free social networking sites are riddled with viruses. Virus removal can be time and thus $$ consuming.
   
   Viruses are a software issue and are considered private data, they are not covered by any manufacturer warranty.
   
   Be safe and smart on the internet, use common sense and be vigilant.
   
   Keep your important software up to date; read more details about updating here.
   
   
6. Despite everything said in paragraph #5 above: Excellent free software is available for almost any functionality you can imagine and I can point you in the correct direction, I can show you where to find it.
    
7. Computers don’t like liquids.
   
   This includes water, coke, beer, soup, bodily fluids and excessive and/or aggressive cleaners.
   
   Don't spray screen cleaners directly on your screen, spray it on your lint free cleaning cloth and then wipe the screen. Even a mist of any liquid can cause damage.
   
   Computers also don’t like gravity or being punched. Throwing or punching a computer  will probably cause a lot more damage and not fix any issue, be it speed or erratic behavior.
   
   
8. No computer is immortal.
   
   Computer technology changes at an extremely fast rate. Average computer life spans are mere 2-3 years for laptops or closer to 4-5 years for desktop computers. This makes sense, because laptops undergo more stress from movement, impact and temperature changes. Many laptops are prone to overheating if you have them sitting “just” on your lap, on a table cloth(!) or on a pillow. NEVER EVER do that, always have your notebook computer on a solid, even surface like wooden tabletop, a counter top or a board.
   
   Your computer uses electricity that circulates through lots of electronic components that in turn can get really hot. Many portable computers eventually burn out. And if you have your data backed up, you'll be up and running on a new computer in no time.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

Slow Computer? Boot Your bleeping Security Suite!

In the last three days I had three customers who were complaining about their slow computers. Customer number one had an older but fairly well equipped Windows XP machine with paid AVG, number two a Vista computer with Kaspersky Security Suite (paid) and number three was running Windows Vista Basic on a computer with limited main memory and Trend Micro Security Suite (paid).

In all three cases the machines were between four and six years old, that is just on the border where I begin to evaluate the worth of investing money into an aging computer versus buying a new computer.

In all three cases the customers choose to have me try removing the installed "security suites" and replace them with Microsoft Security Essentials before they made their choice between fix old or buy new.

Number one was a no brainer; original words of the customer: "Wow; that box NEVER before worked that fast!". He still is using Windows XP and he is a happy camper.

Number two was trickier because his machine had over time caught about 340 pieces of malicious software, among others two very nasty Rootkit viruses, a couple of Trojan horse programs and it was missing half a ton of updates. The clean up and updating took some time, I removed Kaspersky and installed Microsoft Security Essentials and guess what, the customer said he'd happily pay me, give the computer to his daughter in college and asked me to advise him what to replace his computer with!

Number three is so happy they gave me an excellent tip in the form of home made dill pickles, yummy! Thank you Fred and Judy! They will keep using their computer until they can afford a new one. And I got an additional job from them, thanks for that too.

Why do I tell these stories? Because that's the reality out in the field of home computing, not what I witnessed last (Black) Friday in a local Best Buy store where almost every customer who talked to the Best Buy sales people about a computer got pestered to buy one of  Kaspersky's security suites.

All these by now massively complex programs in my opinion are not worth the money compared to Microsoft Security Essentials.

MSE "speaks" only understandable English,
MSE is absolutely unobtrusive,
MSE does not slow down your computer,
MSE does not block your computer while it is scanning,
MSE updates in the background when the computer is otherwise idle and on top of all
MSE is free, free as in no money!

Sounds like a no brainer to me.


As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

Virus Check Any File

Today a customer told me that she actually reads this blog and that she would like to see something about virus-checking any given file. Thank you Rose K. for reading this blog and for the suggestion.

I can think of many scenarios where you have a file, any kind of file, that you feel you better check for viruses before you "work" with it. And you may want something like a "majority vote" because just the other day you read in the newspaper that scary article saying that one anti virus program may not be enough to know "the truth".

As with increasingly many things around computers the Internet can help with a service that will allow you to upload any file up to a size of 20MB; this service then will submit your file to currently 40 (forty!) different anti-virus programs and give you the results.

This free service is called VirusTotal. Here is a partial screenshot of  an example output:

When you click on the Show All button the list gets much, much longer.

In the Result column on the far right you see what every anti-virus program says about the file. No entry here means that the AV program does not qualify the file as containing a virus.

Yes, above mentioned newspaper article is technically correct, one vote is not enough to really matter. But when only 5 of 40 results mark the file as virus infected you can with some degree of reliability assume that these five positive results may be so called "false positives". 

A word of warning: I can imagine that only a few AV programs mark a file as infected while the majority does not and the file actually contains a brand new virus that the majority of AV programs can not yet detect! Depending on the circumstances you may react super carefully rather than too trusting.

Again another good example that computer safety benefits from an open mind, common sense, a good measure of caution and careful consideration of all aspects of the given situation.

The only problem with common sense seems to be that it ain't that common..

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

Set-Up Job

Edited March 24, 2018: Problems with Windows 10 "Feature Updates" (twice every year!)Edited March 9,   2016: Block Windows 10 from snooping and Picasa discontinued
 
Every brand name computer you buy in a store or on the internet brings with it three areas of concern: Gunk software, missing updates and costly and questionable "security" software. I'll address these three concerns separately and then offer my suggestion to deal with these concerns before they become a problem.

1. Gunk software: Brand name computers come with some (and sometimes a lot of) "gunk" software pre-installed. You'll find anything from trial versions of programs that will cost additional money to outright spyware and even back door programs.

It goes without saying that this gunk should be removed before you even connect the computer for the first time to the internet.

I even consider programs like Microsoft's Internet Explorer and MS's email programs and Microsoft Office trial versions to be "gunk". By virtue of the very technology used TO WRITE them (called ActiveX) they will enable a large percentage of malicious software to be executed on your computer. Just by using alternative programs that were built without ActiveX technology you avoid all this malicious ActiveX software automatically.

Microsoft's Office is by now always a trial version; it will cost you additionally about $100 to $150 depending on where you buy the product key that you will need to use MS Office for more than 60 days.

There is a commercial program being offered to do this removing of gunk software but the computer manufacturers regularly modify what they pre-install and the names of what they install. Thus a program attempting the clean-up will almost always be outdated and work only incompletely. Or it will offer you a list of installed non-Microsoft programs and ask for your decision on what to remove; and you bought the program because you don't know that in the first place!

2. Missing Updates: The brand name computer you buy was designed and originally configured months ago, sometimes many months ago. For good reasons software companies like Microsoft, Adobe and others regularly release security relevant updates. Microsoft used to do that up to Windows 7 on a monthly schedule; since Windows 8 MS updates more or less continually.

All these mandatory updates from when your computer model was designed until when you bought it are missing. That mostly is a lot to download and install. These downloads should be done in a safe environment to protect the machine from eventual hack attacks before all required updates are installed.
Edit March 2018: Microsoft has a new method to upgrade Windows 10 every six months. These upgrades are HUGE and can take many hours to download and run. IMHO it is imperative to supervise this process and to know what to do (or not to do) when problems arise.
There sheer size and the volume of work to install them is the main reason that I recommend to buy computers with SSD drives; with HDD drives these big updates just take too long!  

3. "Security" Software: All of the commonly preinstalled anti virus programs or "security systems" will in the future cost additional money. Some are considerable, clearly perceivable heavy workloads making your computer slow; see this article for real life experiences with security suites slowing down perfectly well working computers.

Some others are not always working correctly and/or proving their questionable quality by not
uninstalling correctly or quietly stopping to work altogether.

After seemingly error-free uninstalling of some security suites I have found that they left sometimes parts of their software still running. Due to the nature of what these programs have to do these left-over drivers and orphaned processes can wreak havoc.

This clearly calls for a knowledgeable human doing the uninstalling and checking for left-overs.

My Solution: I offer a set-up job for new computers; I even offer a fixed price if I can do it at my house because I can overlap some of the time with answering my emails and other activities.
This set-up job includes:

• De-gunking the computer (manually and completely removing unwanted, potentially risky programs and all kind of trial software)
• Updating the operating system and all other software in a safe environment.
• Installing and updating (or enabling) free security software (currently Microsoft Security Essentials on Win7, enabling Windows Defender on Windows 8.x and Windows 10)
• Edit March 2016: On Windows 7, 8.1 and 10 I install a free program that blocks Windows from reporting back to Microsoft what you do and how you do it (I call that spying!).
  Since about November 2015 Microsoft has begun to "enhance" Windows 7 and 8.1 with some of the reporting features of Windows 10. That is called progress...
• Installing Mozilla's Firefox web browser, my choice as alternate web browser including the best available advertisement blocker and a utility that warns you if search results would lead to known malicious web sites
• Installing Mozilla's Thunderbird email client if so desired including the best available advertisement blocker
• Installing Libre Office (Microsoft file compatible office software)
• Installing Google Earth
• Installing Picasa (photo management and editing program) if so desired;
  Edit March 2016: Only upon request; the Web Album Service was discontinued by Google;
  you can keep using Picasa to organize, edit a.s.o. locally stored pictures just as in the past; there will be no more program updates for Picasa (the current version is VERY stable!).
  
• Installing an easy to use screen shot program (so you can send me a picture of the pesky error message that is bugging you)
• Installing a remote control program that enables me to give you remote support  
• Replacing the always out-of date preinstalled version of Adobe Reader with a free, faster and safer alternative called PDF-XChange Viewer
• Installing a virtual PDF printer; it creates PDF files from anything you can print. You don't want to email a job application as a Word document that anybody could modify! 
• Establishing desktop icons leading directly to Documents, Downloads, Pictures and so on. 
• On Windows 8 and Windows 10 install a proven, small program that starts the computer directly into desktop mode and establishes a Start button and a Programs menu like we have been used to since Windows XP (that is since 2002)!

All above mentioned software is of excellent quality, officially FREE for home use and guaranteed to be free of advertisements and spyware.

All this can take many hours and will seriously confuse the normal "non geek" computer user.
If I can do the Set-Up job at my house I offer it for a flat fee! Should you be interested please send a personal email to ejheinze_at_gmail_dot_com; thank you.


As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Stay safe!

Windows 7 - Everything Else Is FREE

I read a two part article series on the WindowsSecrets blog written buy Woody Leonhard. If you follow my blog you have read about WindowsSecrets before. I like the skinny of these two articles so much that I "stole" their text from the second part of the article to post it here, with some textual changes and additions to enhance the readability and understanding by non-geeks, IMHO at least.
Most if not all of the software that stores will try to sell you when you buy a new computer does not need to cost any additional money. But since stores and dealers live from selling you something they will try - and sometimes really hard. The most often applied method to up-sell an unsuspecting not-too-PC-literate customer is good old FUD, Fear, Uncertainty, Doubt. The sales guys in some stores can scare the daylights out of you just to get you to buy some additional software.
The kicker is that if you steadfastly refuse these software add-ons they sometimes even will throw it in the bag anyway "because it's free"; stuff they five minutes ago wanted to charge you for! If my customers got any antivirus program in this manner I always tell them to give it as a gift to their best enemy.
If you buy a new PC with Windows7 Home Premium pre-installed then there is hardly anything else you need to pay money for besides your fast Internet connection.
Let me go into a few more details for the most commonly offered add-on packages. This first part is from the WindowsSecrets blog with some textual additions.

Antivirus: Microsoft Security Essentials is free and works for the average PC-user just as good as commercial products and often even better.
It runs totally unobtrusive in the background and it's work load balancing is so good that even on weaker older computers you hardly ever will recognize that it is running.
Even while it is scanning your machine you can still work with your computer; I don't know any other antivirus program that does that in such a graceful way.
And if it has to "talk" to you it speaks in clear, simple English; you don't need a college degree to understand what it's telling you.
Backup programs: Windows 7 backup isn't particularly neat or fancy, but it covers the bases automatically and (almost always) works well.
I strongly recommend to invest a little bit of time to learn the ins and outs; it's all right there in the Windows 7 Help and Support displays.
And I strongly recommend to buy an external disk drive to keep the backups outside of the computer. A backup on the C: drive is no backup at all, at best it's a fig leaf.
Defragmenters: Windows 7 defragments your drives automatically (once a week by default), and you don't need to lift a finger or spend a penny. But you can set it to your liking, like have it defragment daily at a certain time - or only manually started. The latter then very soon gets forgotten anyway.
Disk Partitioning: Windows 7 does all you'll need!
No, Windows 7 doesn't have a full-fledged disk-partition manager. But it does everything with partitions that most people need (if you need it at all!) -- and it gets the job done without messing up your hard drive. Which is more than I can say for some third-party disk-partition managers.
Where is Windows 7's partition manager you ask? In an administrator account, click Start and in the Search box type "Administrative Tools", without the quotes naturally. In the resulting window double-click Computer Management. In the left panel, under Storage, click Disk Management.
You will see all your disk drives and the partitions on the disk drives.
Again, I strongly recommend to invest a little bit of time to learn the ins and outs; it's all right there in the Windows 7 Help and Support displays.
Registry Cleaners: Some do more harm than good.
I have never seen a real-world example of a Windows 7 machine that improved in any perceivable way after running a registry cleaner. Registry cleaners and Defragmenters may have been useful for Windows XP (before SP 2) and certainly were a good thing for Windows 98 and ME as long as these programs worked correctly - what sometimes they did not. With Windows 7 I think they're useless, if not worse than useless.
In my experience, working with hundreds of Windows 7 machines, I have never found a single Registry cleaner that caused any perceivable change in performance.  The Registry is an enormous database, and all this cleaning really doesn't amount to much. It is like sweeping out one parking space in a parking lot the size of Texas.
Even Microsoft has abandoned its Registry cleaners. E.g. Windows Live OneCare (precursor to Microsoft Security Essentials) once included an online scanner and Registry cleaner.
(Disclaimer: I can not confirm this claim but usually Woody Leonhard is a dependable source of such information.)
Windows 7's Firewall works only one way, that is inbound.
Like its predecessors, the Windows 7 firewall only keeps outside threats from getting in — it is an inbound firewall. Outbound firewalls alert you when an unauthorized program attempts to send data out of your computer. At least that's the theory. In practice, many outbound firewalls bother you mercilessly with inscrutable warnings saying that obscure processes are trying to send out data.
If you simply click through and let the program phone home, you're defeating the purpose of the outbound firewall. On the other hand, if you take the time to track down every single outbound event warning, you might spend half your life chasing firewall snipes.
Some people think an inbound-only firewall is woefully inadequate. I think it's good enough for almost everybody. It certainly is big time good enough for the computers in my household.

It's surprising how much old advice isn't valid any more!

So much for the part that was inspired by and partly copied from WindowsSecrets. Let me add a few categories that are not part of MS Windows.
Office software: Almost all new brand name computers I have seen over the last 6 or 7 years came with some Microsoft Office package pre-installed.
When you just start to use these programs they will work for 30 or even 60 days. After that point in time you will have to buy a license from Microsoft or your favorite computer store. Depending on the version of MS Office the sales clerk talks you into that is anything between $100 and $300. Ka-ching says the cash register and sales guys in the store smile.
You don't need to pay for this! There are at least three packages with office programs around that will not cost you a single penny! They can read and write files in the commonly used Microsoft formats, at least for texts, spreadsheets and presentations.
Currently I favor LibreOffice; it covers 99% to 100% of what the average home user ever uses or needs; only in very "tricky" formatted text or spreadsheet files you will find some features that maybe are not 100% compatible; in this case the Help forum mostly has a workaround.
A category by itself: Google Earth just because it is such a great toy. Whether you want to check out a new vacation location before you book or just see the Kremlin or Tiananmen Square from the birds eye view, it is worth trying it. Even on average decent basic computers like I recommend to my customers it works very well; the speed of the Internet connection is much more important.
Photo Management and Editing: For the average home user Google's program Picasa IMHO is unbeatable. just watch it finding and removing the red rabbit eyes from the photos of your loved ones. And that for FREE! You can build albums with it, publish photos to the internet so the family members on the other side of the planet can see them and, and, and…
Web browser: If you are my customer or listen to me on WTKM then you know that I strongly favor Mozilla's Firefox web browser. Although quality and security wise Google's Chrome browser is a very serious contender as well.
Email Client: If you are my customer or listen to me on WTKM then you know that I strongly favor Mozilla's Thunderbird email client. I don't even know whether there is another alternative still around.
Should you require any other software and don't know where to begin to look for it, I will gladly help. For much if not most of what you may want to do on your computer there likely is a free solution available.
As usual I welcome comments and suggestions right here in the blog. Thank you in advance.
Click here for a categorized Table Of Contents.

Manual Upgrade for Microsoft Security Essentials

Recently some customers had problems upgrading Microsoft Security Essentials to the new version 2.

If your firewall is turned ON you can do that yourself:

1. Go to this Microsoft web page.
2. Click Download and choose the version of MSE that is correct for your OS.
3. Open Control Panel.
4. In Vista/7 open Programs and Features,
   in XP open Add/Remove Programs.
5. Uninstall (or Remove) Microsoft Security Essentials.
6. Restart the computer.
7. Run the installer program you downloaded in step #2 and follow the prompts.

Everything should be okay again.

You will loose the desktop icon for MSE; the new version does not have it anymore.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

Remarks on Security Suites

 

In the paid version of the Windows Secrets blog I read an article; among others it talks about an anti virus suite causing horribly long boot times. Due to the rules and organization of this blog I can not link directly to this part of the article. So I quote the relevant pieces here.

To set the stage: Generally I recommend to remove all those big, cumbersome and expensive security suites like McAfee, Norton, Trend Micro and so on. When I try to get the customer’s permission for this the most common question I encounter all too often is “Why?”. Here are some of the many more relevant answers, as I said above quoted from an article in the paid version of the Windows Secrets blog.

Feature duplication: 

For example, Trend Micro lists 13 major features and subsystems in its security suite, McAfee lists 14, and Symantec lists 33!

Many of these features duplicate abilities already built into Windows and the major browsers. For example, Internet Explorer and Firefox have built-in link-checkers, pop-up-blockers, parental controls, and more.

Windows itself (especially Win7) has a capable firewall built in.

Overhead:

So the large security suites are including features you probably already have, and all of these redundant features consume memory and CPU time.

Solution:

… my current favorite security tool, Microsoft's free Security Essentials (site), lists just two major functions: antivirus and anti-malware protection.

When used with Windows' built-in firewalls and a fully current browser (say, IE8 or Firefox 3.6.x), you end up with essentially the same capabilities provided by the huge commercial security suites.

Price:

What's even better, it's all free!

I hope this is enough to convince even those people that say “But I paid for it”.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

How to Install and Use Microsoft Security Essentials

This article assumes that you have my “classic” computer setup with Avast, Ad-Aware, Spybot and SpywareBlaster. These instructions can easily be modifies to apply to any other combination of security programs.

If you run Windows XP you can skip the next paragraph because your Windows XP is definitely a 32-bit system.

If you run Windows Vista or Windows 7 it is from now on imperative that you know what type of the Operating System (OS) you are using; since Vista there are two types of OS, 32-bit and 64-bit. You can find out what type yours is by right clicking Computer and left clicking Properties. You’ll see something like this: 

In System type it will say either 32- or 64-bit OS.

The sequence of steps I will describe may by some people be considered overkill; I have in mind the majority of my customers who refer to themselves as being “computer illiterate”; I want to give them something as foolproof and simple as possible.

I recommend to print this text so you have it available during the process. At the end of this article is a "Print this post" link. 

1. Download Microsoft Security Essentials from here. As usual you need to know the name of the file being downloaded and where the download will be stored, mostly either on your desktop or on XP in the My Documents\Downloads folder and on Vista/7 in the \<username>\Downloads folder.
   
   
2. Physically disconnect your computer from the Internet, that is disconnect the networking cable that comes from your router or modem from the computer.
   
   
3. Un-install all security programs one by one, beginning with your anti virus program or security suite. Restart the system when prompted. Ignore browser windows that may pop up.
   
   And for those that don’t seem to know what “all security programs” means: Yes, that includes Ad-Aware, Spybot Search and Destroy and Spywareblaster! I apologize for being a bit facetious but I have gotten this question too many times.
   
   
4. Check that the Windows Firewall is turned on; Control Panel, Windows Firewall. If it is not on then turn it on! 
   
   Some so called security software does not turn the Windows firewall back on or outright clobbers it! 
   
   If you get an error message your computer either was messed up  by a virus or you have used a “security” program other than AVG or Avast! and you have ended up in the deep end. If you can fix it yourself, congratulations; otherwise you should call your computer helper immediately. Do NOT go back online without the firewall working!
   
   
5. If the Windows firewall is turned On then it is time to re-connect the networking cable, the one you un-plugged in step #2.
   
   
6. Restart the computer!
   
   
7. Check that you can get any web page other than your home page; try http://www.netmanners.com/.
   
   Serious problems? You have ended up in the deep end. If you can fix it yourself, congratulations; otherwise you should call your computer helper.
   
   
8. Find the file that you downloaded in step #1 and run it, that is double click it. Follow the instructions and prompts.

MSE is running? Congratulations!

All you have to do with Microsoft Security Essentials is check if it's tray icon (bottom right corner of the screen) looks like this: 

Important is the color green. If this icon changes to yellow or red you need to give it immediate attention. Click on this icon and MSE will come up with the program window telling you exactly what needs to be done and a big yellow or red button to do it.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.

Microsoft Security Essentials Officially Released

Without any fanfare Microsoft released their new security offering Microsoft Security Essentials (MSE) earlier last week.

I read about the release in an informational third-party newsletter I receive, not a single word about it in Microsoft's own publication about new downloads. Hardly believing I went to microsoft.com, searched for "microsoft security essentials" and got to this MSE home page with a working download link. What a change to former MS tactics of having a lot of fanfare and sometimes flaky or questionable stuff in the end.

First time I wrote about MSE July 22nd 2009. A follow-up was published August 22nd 2009. In the meantime I have taken to install MSE on my customers computers; it replaces 4 (FOUR!) other security related programs that the customer had to run manually about once very week.

On one machine MSE found and removed a clear leftover from some malicious stuff that the other programs had overlooked and on yet another machine MSE removed a Trojan horse virus that had so far escaped any detection. I know this is not representative and only anecdotal but nevertheless it again points in a very positive direction.

If you use MSE all you have to do is have any eye on it's little icon in the system tray.As long as this tray icon is green all is well.

If it ever turns yellow or orange double click it and the program window will tell you clearly what to do and have a big fat yellow button right there for you to click.

If the icon ever turns red you better give it immediate attention; double click it and the program window will tell you clearly what to do and have a big fat red button right there for you to click.

I am expecting "official" comparisons between MSE and other security suites to be available in a few weeks time. Here is a first example from The Washington Post.

If future results are anything only close to that good I will definitely keep using MSE and recommend to my previous customers to switch over. The ease of use IMHO is unsurpassed. 

As usual I welcome comments and suggestions right here in the blog.

Thank you in advance.

First steps with Microsoft Security Essentials

Here are my first impressions of MSE.

Currently I have MSE installed on

• my XP notebook, an important computer for me; I use it at customer service calls;
• one Win7 RC test system that I currently use to write this blog entry;
• one Vista notebook destined to be a birthday gift and
• three brand new Vista notebooks owned by customers who had agreed to “guinea pig” status.
  Thanks Toby, Fred and Todd.

“My” current individual take on MSE:

1. It really seems to be install and forget, on Vista and Win7 at least.
2. On my “production” XP notebook I manually ran Microsoft Update today and I was offered two definition updates for MSE.
   That indicates that MSE’s own update feature seems not to be fully automatic yet, on XP at least. For a limited time I could live with having to check for MSE updates manually.
3. I am still waiting for first reports from independent test institutes on MSE’s effectiveness.

All of the following is an update August 24th, 2009:

Today I installed MSE on another customer's really old computer (ca. year 2000) on Win XP and it runs like a charm; it immediately updated automatically the program and the definitions. It is getting better.

I found a comparison from July of this year where someone had compared MSE's detection results against 25 other established anti virus programs.
MSE finished second best! This certainly is only a hint of where it's heading and not a thorough test; but only Sophos AV was better and Sophos is one of the most expensive anti virus solutions out there; it is something like the Rolls Royce of AV programs.

If Microsoft's MSE keeps its quality promise and manages to slowly either push Norton, McAfee, Trend Micro and others out of business or force them to substantially improve and get cheaper at the same time than Microsoft would have done the public a huge favor. I never believed I would say that!

As usual I welcome comments and suggestions right here in the blog.

Thank you in advance.

News: Microsoft and Anti Virus

Okay, I am dating myself now but then, my age is no secret at all. I "know" MS Windows since versions 3.1 and 3.11; before 3.1 I much preferred DOS for my purposes.

For all that Windows past as I remember it we needed a third party anti virus program like a fish needs water; before August 2004 when XP Service Pack 2 was released we needed additionally a dependable firewall program. Working without a firewall was playing Russian Roulette with a revolver that had 5 chambers loaded.

Recently Microsoft has released a public beta test of a new free security product "Microsoft Security Essentials" or MSE for short. You can read a fairly comprehensive article about it on ED Bott's ZDNet blog.

What makes me write about it here are two things:

• Comment number 68 by Diane Wilson to Ed Bott's blog because it reflects my philosophy to computer security; quote follows.
  
• Implications on future decisions about security software especially on Windows 7 systems.

Here is the quote from Diane Wilson's comment with some commenting by me in italics:

1. Stay behind a router. NAS is a great filter for many attacks.
NAS seems to be a typo. I am sure she means NAT, the major security feature of any decent router.

2. Use a firewall. Windows firewall works well enough.
YEAH, YEAH, YEAH; that's what I have been preaching since early 2005!

3. Keep your OS up to date, not just in updates, but in versions. I'm already running Win 7 RC as my primary system at home, and I'll be on Win 7 for good as soon as it goes RTM. Remember (or learn) that security must be pro-active, and that Vista and Win7 took huge steps in this direction. Address space randomization. Array and string range-checking to limit buffer overruns. And more.
I totally agree.

4. UAC. Live with it. It's your friend.
In Vista it's a drag, in Win7 it is okay! What do they say? Win7 is Vista done right.

5. 64-bit. Required driver signing is your friend.
But beware the potential pitfalls if you have "older" printers, scanners and so on.
And be aware that the vast majority of applications still is 32-bit software; you get some serious translations permanently going on just for the communication from 32-bit application to the 64-bit OS and vice versa. On some systems that will cause a performance hit!

6. IE protected mode.
Or use Firefox in the first place. MUCH less worry.

7. Data Execution Protection, turned on for everything. No exceptions.

8. Windows Defender.
Likely as of release of MSE a non-issue; MSE seems to be really good.

9. Oh, one more thing. Anti-virus software.
Only time can tell if Microsoft gets it right with MSE. The early signs are promising though and then adios Norton and the likes of it. 

Already now I am running a Windows 7 RC machine; on this machine I will install MSE to replace "my" mix of security programs.

Let's see how I fare.

Added August 30th 2009:

Here are two more links if you are interested:
PCWorld's article First Look: Microsoft Security Essentials and from
PCWorld's BizFeed OPINION: Pigs Fly! Microsoft Leads in Security.

The latter is an article with a more general view on Microsoft and security that I found especially interesting. I see the results clearly in MSE and Windows 7.

As usual I welcome comments and suggestions right here in the blog.

Thank you in advance.