PC tools, Utilities and software

Cyber Security

2012-02-05T06:43:00.001+02:00

Electronic communications networks must be ultra secure in order to build confidence, disposal of physical documents also poses a security risk

INFORMATION security experts last week urged businesses in SA that deal with personal information to review their cyber security and the disposal of physical documents practices constantly to protect clients’ and employees’ information.

Data events such as hacking, data loss, unauthorised data use, and the physical disposal of documents all present risk to businesses and consumers.

According to Metrofile , an information and records management firm, secure disposal of hardcopy documents is often overlooked and yet it is a crucial aspect of data protection.

Communications Minister Dina Pule said last week that cyber crime was a drawback that went with advances in technology. She said, "our electronic communications networks must be ultra secure in order to build confidence amongst the users of e-commerce platforms".

The Department of Communications plans to present the National Cyber Security Policy Framework to the Cabinet next month.

Last Saturday was Data Privacy Day — an international awareness day aimed at educating governments, businesses, industries and citizens on the importance of protection of personal information. While the day was recognised globally by business, corporate SA was grappling with privacy legislation, Dean Chivers, a director of tax and legal affairs at Deloitte, said last week.

As the Protection of Personal Information (PPI) Bill looms, many companies are racing against time to grasp the compliance demands of the legislation, he said.

"The PPI bill is a natural progression for SA. At its most basic, the legislation reinforces every South African’s constitutional right to privacy," he said. "At the other end of the scale, it brings the country into line with most of its significant international trading partners, a factor that builds confidence when information is transmitted across borders."

Mr Chivers said: "While companies will need to reassess their data management process, analyse their security, amend processes and change their contracts, companies should not look at the Protection of Personal Information Bill as purely an inconvenience.

"Rather, by aligning the requirements of the bill to existing projects and reporting structures, the bill can offer a sustainable and measurable return on investment".

Gianmarco Lorenzi, the CEO of Cleardata, part of Metrofile, said it was ironic that most businesses would spend thousands of rands protecting their electronic data through the use of firewalls and high-tech information security, but would let their paper leave the building in the hands of a stranger.

Mr Lorenzi said physical records containing personal information, including copies of identification documents, street addresses and banking details, must be destroyed in a manner that prevents reconstruction in an intelligible form if financial, reputational and legal repercussions are to be avoided.

"The shredding of unwanted documents remains the most effective way for businesses and industries to practice document reconstitution," he said.

Posted on BusinessDay

THABISO MOCHIKO

What's best for my computer: Hibernate, sleep, or shut down?

2011-11-06T08:16:00.000+02:00

Q: Does putting my computer to sleep help extend the battery life? What else can I do to save energy and make my new computer last?

A: We’ve all heard stories about what's best for a computer’s battery. That’s why I was excited to make friends with Fred Peters, president of Huntington Beach IT Services.

In addition to teaching computing courses in Orange County, Calif., Peters happily makes house calls to revive frazzled computers and the people who rely on them.

Here are his expert tips on how to keep your new laptop running smoothly.

Sleep mode vs. shutting down

Peters notes that your work process will determine whether it’s more efficient to use “Sleep” mode or simply shut down the computer. “It is never fun to have to consistently wait any amount of time if the shut downs are too frequent,” he says. "‘Sleep’ requires more power, but it boots up faster, while ‘Hibernate’ uses less power, but takes longer to come online.” That same logic applies to shutting off your computer completely.

“Your computer will become obsolete before you wear out your computer by turning it on and off a lot,” he adds. “It also doesn't take more energy to start a computer than to keep it running.”

Sleep mode requires a constant, though reduced use of power (0-6 watts). Peters also notes that colorful screensavers do nothing to conserve energy. Accessing your computer remotely with the Wake on LAN feature also can drain the power.

To get the most for your money, Peters advises adjusting power settings so that it automatically goes into Sleep/Standby mode after about 15 minutes of inactivity, and then shut it down at the end of your day.

Bionic battery life

To get the most out of your computer battery, Peters says to you have to give it a workout. Don’t keep your machine plugged in to an outlet. Instead, discharge the battery daily.

Size does matter

By purchasing a laptop, Peters says that you are ahead in the energy-saving game. Laptops use about 15-60 watts, while desktops use 65-250 watts — plus another 15-80 watts for a monitor.

He also adds that you can further conserve energy by using an LCD monitor and ditching the high-end video card unless it’s absolutely necessary. Also, turn off printers and other peripherals when they are not in use.

To kill “vampire power,” TreeHugger.com suggests purchasing a power strip. With all peripherals connected to one source, it’s easy to simply flip the switch on power hogs any time.

Establish a backup process

In addition to Peters’ great advice about conserving energy, I discovered the hard way that it also pays to save backup versions of your work. Invest in an external hard drive to hold your digital music library, special photos, and other key documents. Frequent backups ensure that your data doesn’t die with your laptop.

While you are in the process of backing things up, create an emergency file (on good old-fashioned paper) that contains your computer’s serial number along with other key data such as your credit card numbers and phone numbers to reach each company, along with contact info to your insurance company. Access to that information is vital, particularly in the event of an accident, fire, computer theft, or other catastrophe.

Peters warns that those key pieces of information are not safe on your computer. If you are like me and absolutely need a digital holding space for those nuggets of information, he suggests sites like LastPass as your online vault.

Originally posted on Yahoo Green

Cyber Threats Forecast for 2012

2011-10-17T23:40:00.000+02:00

The year ahead will feature new and increasingly sophisticated means to capture and exploit user data, as well as escalating battles over the control of online information that threatens to compromise content and erode public trust and privacy. Those were the findings announced by the Georgia Tech Information Security Center (GTISC) and the Georgia Tech Research Institute (GTRI) in today's release of the Georgia Tech Emerging Cyber Threats Report for 2012. The report was released at the annual Georgia Tech Cyber Security Summit, a gathering of industry and academic leaders who have distinguished themselves in the field of cyber security.

According to GTISC, GTRI and the experts cited in the report, specific threats to follow over the coming year include, among others:

* Search Poisoning -- Attackers will increasingly use SEO techniques to optimize malicious links among search results, so that users are more likely to click on a URL because it ranks highly on Google or other search engines.

* Mobile Web-based Attacks -- Expect increased attacks aimed specifically against mobile Web browsers as the tension between usability and security, along with device constraints (including small screen size), make it difficult to solve mobile Web browser security flaws.

* Stolen Cyber Data Use for Marketing -- The market for stolen cyber data will continue to evolve as botnets capture private user information shared by social media platforms and sell it directly to legitimate business channels such as lead-generation and marketing.

"We continue to witness cyber attacks of unprecedented sophistication and reach, demonstrating that malicious actors have the ability to compromise and control millions of computers that belong to governments, private enterprises and ordinary citizens," said Mustaque Ahamad, director of GTISC. "If we are going to prevent motivated adversaries from attacking our systems, stealing our data and harming our critical infrastructure, the broader community of security researchers -- including academia, the private sector and government -- must work together to understand emerging threats and to develop proactive security solutions to safeguard the Internet and physical infrastructure that relies on it."

Today's Georgia Tech Cyber Security Summit is one forum where the IT security ecosystem can gather together to discuss and debate the evolving nature of cyber threats, and to chart the course for creating solutions through collaborations among industry, government and academia. The Summit was keynoted by Admiral William J. Fallon, U.S. Navy (retired) and included a panel of security experts from Equifax, The Financial Services Roundtable, Mobile Active Defense, Reputation.com and GTRI.

"Our adversaries, whether motivated by monetary gain, political/social ideology, or otherwise are becoming increasingly sophisticated and better funded," said Bo Rotoloni, director of GTRI's Cyber Technology and Information Security Laboratory (CTISL). "Acting as individuals or groups, these entities know no boundaries, making cyber security a global problem. We can no longer assume our data is safe sitting behind perimeter-protected networks. Attacks penetrate our systems through ubiquitous protocols, mobile devices and social engineering, circumventing the network perimeter. Our best defense on the growing cyber warfront is found in cooperative education and awareness, best-of-breed tools and robust policy developed collaboratively by industry, academia and government."

The Georgia Institute of Technology is one of the nation's leading public research universities and the home of groundbreaking cyber security research and academic initiatives through GTISC, GTRI and other facilities across campus. These efforts are focused on producing technology and innovation that will help drive economic growth, while improving human life on a global scale. The complete 2012 Cyber Threat Report is available at: http://gtsecuritysummit.com/report.html

Speed Up Your Windows XP

2011-10-16T08:13:00.000+02:00

Pursue Some tricks we can make our Windows more faster that never happen before and usually these all are unnecessary for each time. Some features are usually for only looking attractive. Optimizing Display Settings Windows XP mostly like for its visual interface. We do not interfere that but on this visualization has more extra feature that does not need ever without wasting system resource. Lets see how we can disable it-
1. Go to Start Menu
2. Click Setting.
3. Click Control Panel
4. Click System.
5. Go Advance Tab
6. Click Setting under Performance group
7. Off only the following ticked
* Show Shadows under Menu
* Show Shadows under Mouse Pointer.
* Show Translucent Selection Rectangle
* Use drop shadows for icons labels on desktop.
* Use visual style on windows and buttons

OPTIMISE YOUR PAGEFILE

If you give your pagefile a fixed size it saves the operating system from needing to resize the page file.
1. Right click on My Computer and select Properties
2. Select the Advanced tab
3. Under Performance choose the Settings button
4. Select the Advanced tab again and under Virtual Memory select Change
5. Highlight the drive containing your page file and make the initial Size of the file the same as the Maximum Size of the file. Windows XP sizes the page file to about 1.5X the amount of actual physical memory by default. While this is good for systems with smaller amounts of memory (under 512MB) it is unlikely that a typical XP desktop system will ever need 1.5 X 512MB or more of virtual memory. If you have less than 512MB of memory, leave the page file at its default size. If you have 512MB or more, change the ratio to 1:1 page file size to physical memory size.

REMOVE THE DESKTOP PICTURE

Your desktop background consumes a fair amount of memory and can slow the loading time of your system. Removing it will improve performance.
1. Right click on Desktop and select Properties
2. Select the Desktop tab
3. In the Background window select None
4. Click Ok

REMOVE FONTS FOR SPEED

Fonts, especially TrueType fonts, use quite a bit of system resources. For optimal performance, trim your fonts down to just those that you need to use on a daily basis and fonts that applications may require.
1. Open Control Panel
2. Open Fonts folder
3. Move fonts you don’t need to a temporary directory (e.g. C:\FONTBKUP?) just in case you need or want to bring a few of them back. The more fonts you uninstall, the more system resources you will gain.

SA Symantec Intelligence Report

2011-10-12T13:43:00.000+02:00

Johannesburg - Symantec on Tuesday announced the results of the September 2011 Symantec Intelligence Report, which saw phishing attacks in South Africa increase once again.

The country is now positioned as the most targeted geography for phishing, with one in 133.1 emails.

This month’s analysis also reveals that a deluge of malicious email-borne malware has left a clear mark on the threat landscape for September. Approximately 72 percent of all email-borne malware in September could be characterised as aggressive strains of generic polymorphic malware, first identified in the July Symantec Intelligence Report. At the end of July, this rate was 23.7 percent, in August it fell slightly to 18.5 percent before soaring to 72 percent in September.

“This unprecedented high-water mark underlines the nature by which cyber criminals have escalated their assault on businesses in 2011, fully exploiting the weaknesses of more traditional security countermeasures,” said Paul Wood, Senior Intelligence Analyst, Symantec.cloud.

Further analysis reveals that the social engineering behind many of these attacks has accelerated with the adoption of a variety of new techniques, such as pretending to be an email from a smart printer/scanner being forwarded by a colleague in the same organisation has been detected.

“The idea of an office printer sending malware is an unlikely one, as printers and scanners were not actually used in these attacks, but perhaps this sense of security is all that is required for such a socially engineered attack to succeed in the future,” Wood said.

Although spam levels remained fairly stable during September, Symantec Intelligence observed the use of identified vulnerabilities in certain older versions of the popular WordPress blogging software on a large number of web sites across the internet. Spam emails containing links to these compromised web sites are being spammed out. It is however important to note that blogs hosted by WordPress itself seem to be unaffected.

Additional research reveals that JavaScript is becoming increasing popular as the programming language used by spammers and malware authors. Spammers use it to conceal where they are redirecting pages, and in some cases, to conceal entire web pages.

“For spammers, hosting simple JavaScript obfuscation pages on free hosting sites can increase the lifetime of that site before the site operator realises the page is being used for malicious activity,” Wood said. “JavaScript is popularly used for redirecting visitors of a compromised web site to the spammer's landing page. While some of these techniques have been common in malware distribution for some time, spammers are increasingly using them.”
Originally posted on iol scitech

Make Your Computer Energy Efficient

2011-09-19T15:09:00.000+02:00

I know that my computer has energy-efficiency settings. Yours does, too. But I almost never mess with them. For some reason, for a lot of us, messing with the settings is one of those things you hear about, and know about, but put off to take care of “later,” when you find yourself at the computer with “some free time.” But let’s be honest—your free time at your computer (and mine!) is a lot more likely to be devoted to trolling gossip sites and Facebook than to fine-tuning your computer’s energy settings. So let’s take a minute and change that today. Here’s some very simple advice—some of which you can put into action right now, while you read this entry. You’ll save energy going forward, and you’ll assuage that guilty conscience by finally taking some easy little steps toward a more efficient home or office.

* Hibernation: With winter dragging on and on, doesn’t hibernation sound so appealing right now? Well, your computer feels the same way. Allow it to take nice little naps during the day when you wander away on coffee breaks, lunch breaks, talk-to-your-coworkers-in-the-hallway breaks, or whatever it is you do when you’re not doing what you’re supposed to be doing. Ok, first, go into your computer’s power management panel… Seriously, do this right now! Now, set the display and the hard drive to both go to sleep after 10 minutes or less of inactivity. Next, make sure the entire system is set to go into standby/sleep mode within 20-30 minutes. The lower you can keep the numbers in these settings, the better. That was so easy, right?

* Screen saver = energy waster: Can you believe it? Well, it’s true! Screen savers are a leftover idea from the early days of picture tube monitors, completely unnecessary for today’s monitors. They actually use a lot more energy than simply setting your monitor to dim itself before going to sleep would. So ditch the scrolling photos of frogs and blades of grass for some truly green action: Set your monitor to dim after 5 minutes or less of inactivity.

* Dim your watts: The brightest setting on your monitor causes it to gobble up twice as much energy as the dimmest setting. Save those wasted watts by keeping the monitor running on a much dimmer setter all the time. As the daylight changes wherever you’re using your computer, adjust the brightness.

* Strip smarter: Need we have the power strip conversation again? So, you know that it’s a good idea to plug electronics into a power strip to avoid that phantom load we’ve talked about before. This is an especially good idea when it comes to your computer, which tends to hang out with a lot of power-hungry friends like printers and speakers. The best solution of all is to get a smart plug strip, which will automatically cut the power flow when your computer and its posse aren’t in use. Automatic is good, because it’s one less thing for you to remember!

BioPDF PDF Writer

2011-08-31T23:34:00.000+02:00

BioPDF PDF Writer
Version: 6.0.6.745
License Type: Free
Price: Free
OS: Windows 2000, Windows XP, Windows Vista, Windows Server 2003, Windows Server 2008
File Size: 3987 KB
Author: BioPDF

Download Now

BioPDF PDF Writer installs easily, automatically downloading and installing the Ghostscript Light PDF printer driver for which it's a front-end. It also offers the same watermarking, password protection, and merging. The only real differences seem to be a slight variation in the install routine and pricing. Where Bullzip is free but will accept donations via PayPal, BioPDF can be registered and paid for at the program's Web site.

As downloaded, BioPDF PDF Writer is free for personal use. No matter which version you opt for, opt for one. Bullzip and BioPDF PDF Writer are in a class of their own when it comes to ease of installation, ease of use, and features. Another big plus--no nags or ads.

For admins, bioPDF is simple and flexible to adapt and deploy, with support for unattended setup scripts, Citrix Metaframe, and more. End-users find the PDF writer fast and intuitive to use, emboldened by the fact that the interface is localized into multiple languages. This leads to swift adoption and low support requirements. When all users can and do print to PDF, fewer potentially harmful or unreadable file formats are distributed and paper use is greatly reduced throughout the organization.

How Does it Work?

The bioPDF PDF Writer works as a Microsoft Windows printer and allows you to write PDF documents from virtually any Microsoft Windows application.

Feature Overview

Print to PDF from almost any Windows application.
Supports 64-bit operatings systems.
Direct output to the same file each time or prompt for destination.
Control if the printer should ask if you want to see the resulting PDF document.
Control settings and prompts programmatically.
Setup can run unattended.
Graphical user interface.
Password protect PDF documents.
128/40 bit encryption.
Quality settings (screen, printer, ebook, prepress).
Set document properties.
Watermark text, size, rotation, and transparency.
Superimpose/background documents.
Appending/prepending documents.
User interface control.
Command line interface to all settings.
COM/ActiveX API interface for programmatic control.
Microsoft.NET API and command line API.
Support for Citrix MetaFrame
Support for Windows Terminal Server
Create BMP, EPS, PS, PNG, PCX, JPEG, and TIFF files as alternative to PDF documents.
Create linearized PDF files for optimized web viewing.
Initial zoom settings.
Page thumbnails.
Create one PDF for all pages or one file per page.
Individual horizontal and vertical resolution for image creation.
Configure text and graphics alpha bits to support smooth edges in images.

Download and See For Yourself

How safe are our Windows PCs from malware?

2011-08-13T07:47:00.001+02:00

What percentage of PCs in the United States are infected with malware? If you’ve been following the mainstream press recently, you might have read an alarming statistic: “Nearly half of personal computers in the U.S. are compromised by malware.”

That statement is an outright fabrication. It is not true. It is not even remotely accurate, based on objective data. The actual number varies, depending on where you are in the world, but for Windows users who have automatic updates turned on, the worldwide average is somewhere between 1% and 2%. In my opinion, if you practice the basics of online security, the likelihood that your Windows PC is infected by malware is a tiny fraction of 1%.

And yet that alarming and bogus 50% number was stated as if it were a fact in a feature story last week at CNNMoney.com. That story has so far been recommended by 371 people on Facebook. The same “fact” was repeated in a variety of other online sources, including thestreet.com, CNBC.com, businessweek.com, businessinsider.com, and boston.com, to name just a few.

It hit my radar when I saw the number quoted in a tweet from Mark Russinovich, a Technical Fellow at Microsoft and one of the smartest people I know.

My first reaction was “Oh really?”

My second reaction was to do some research. It took me less than 15 minutes to knock down this story, which is just the latest example of a depressing truism: If you give the mainstream press a computer story, you can usually count on them to get it wrong. If you give them a sexy press release with a provocative number, you can cinch the deal.

This case starts with a press release from Staples, dated April 5, 2011. Here’s the part that sucked in that CNN staff writer:

A common misconception uncovered in the IT IQ survey is that we falsely presume our computers are well-protected from the viruses, spyware, and other malware that put our personal information at risk and decrease performance. 83 percent of the survey respondents stated that they are somewhat or very confident their computer is free of malware. Yet, nearly half of personal computers in the U.S. are compromised by malware.*

That asterisk was in the original. It leads to this footnote at the bottom of the press release:

*According to findings released by PandaLabs in February 2011.

There’s no link to that study, but it took only seconds to find the original report from Panda Security:

According to data gathered by the free online antivirus Panda ActiveScan, 50 percent of scanned computers were infected with malware, mostly Trojans.

So, the sample consists of people from around the world who were suspicious that their computers were infected and went to an online virus scanner? That’s a far cry from “nearly half of all computers in the U.S.” (Amusingly, a commenter on the Panda blog points out that the sample is “highly flawed,” and a response from Panda Security acknowledges that fact: “The data are taken from our online scanner ActiveScan. … Some people may think that the result is biased because some of those users suspect that they could be infected, which in fact is true.”)

Update 19-Apr: In response to this post, a spokeperson for Panda Security just contacted me. The company has edited the misleading headline on the press release to more accurately reflect its contents. The original headline read “In January, 50 percent of computers worldwide were infected with some type of computer threat.” The revised headline reads: “In January, 50 percent of computers scanned by Panda ActiveScan worldwide were infected with some type of computer threat.”

So why does Panda want to publish such an alarming and yet admittedly incorrect number? Because they’re trying to scare the crap out of you so they can sell antivirus software. Why does Staples want so spread that frightening but bogus statistic? Because they’re trying to scare the crap out of you so they can sell their EasyTech services. The original press release isn’t even subtle about it: “Our certified EasyTech associates are highly trained with expertise in diagnostics, repair, virus/malware removal and data back up solutions to name a few.”

The best numbers I’ve seen from an independent source (i.e., one that isn’t trying to sell a security product) are in Microsoft’s annual Security Intelligence Report. The Malware Trends section of the most recent report contains telemetry data drawn from more than 600 million Windows computers worldwide by a number of different Microsoft security tools and services, including the Malicious Software Removal Tool (which is included with automatic Windows updates every month), the free Microsoft Security Essentials and Windows Defender programs, and Microsoft’s enterprise security software.

According to the most recent data, covering a one-year period that ended in mid-2010, the five worst locations in the world (in terms of active malware infections that had to be cleaned) were Turkey, Spain, Korea, Taiwan, and Brazil. The infection rates for those regions varied from quarter to quarter, but they ranged from 30 to 60 infections per 1000 computers—worldwide, the number is roughly 10 infections cleaned per 1000 PCs. That’s about 1% on average, and about 6% in the worst cases. Update: Although the MSRT doesn’t remove every species of malware, it covers every widespread family—more than 150 in all—so I expect its figures to be representative of general infection rates.

If you use Windows and you have automatic updates turned on, you’re in that sample. If you’re even moderately cautious about how you use the Internet, your risk of infection is probably well below the midpoint of that sample.

Obviously, the rate of malware infection is unknown (and probably considerably higher) for people who refuse to update their computers. But those people are unlikely to pay a tech at Staples to clean up their PC.

Originally Posted on ZDNET

Google Warning - Two Million user's computers have been infected by a virus

2011-07-24T15:08:00.000+02:00

Google has started warning more than two million internet users that their PC has been infected with a virus.
The malicious software hijacks Google browser searches and redirects people to websites containing fake security programs that pay the scammers for traffic.
Those affected by the virus will be greeted with a yellow warning at the top of their search results.

According to the company, the malware found its way onto computers via fake anti-virus software.
Then, when a Google search is entered it is sent to servers, controlled by the cyber criminals, which modify and redirect the traffic.

Writing on Google's blog, security engineer Damian Menscher said: 'The malware appears to have gotten onto users' computers from one of roughly a hundred variants of fake anti-virus, or 'fake AV' software that has been in circulation for a while.'
Google uncovered the mass scam while carrying out routine maintenance at a data centre.

Customers affected by the malware are issued with instructions on how to remove the virus from their computer.
Google's swift response is further evidence that large internet firms are vulnerable to cyber crime.
Apple has long boasted of the Mac's immunity to viruses and malware - but online security experts recently warned that the computers are facing an increased threat from criminals because of their popularity.
They said that Macs are now a more attractive target for hackers due to the rising number of people who choose them over a PC.

Originally posted on dailymail

Skype stopped working Win XP

2011-05-27T07:48:00.000+02:00

When skype stops working and crash on launch try the following to correct the problem.

Do not just install "over" the old version quite often some files are not updated correct.

Please delete config.xml

To be found in C: Documents and settings → Your profile name → Application data → Skype → Skype User name → delete config.xml any changes manually edited in this config.xml will be lost.

This config.xml will be rebuilt without any data loss, but hopefully error free, with next start of Skype. You only must log in newly and Skype will rebuilt a new and correct config.xml and will download all your contacts.

IF Still not working

Reinstall Skype

Control Panel → Add/Remove Programs → Use add/remove Skype → Allow deleting personal data
Now check, C: Documents and settings → Your profile name → Application data → There should be no more any folder called Skype. If still exist→ delete
Go to C: → Documents and settings → All Users → Application data → there should be no more any folder called Skype.If still exist → delete

Download RegSeeker (freeware)
http://www.hoverdesk.net/freeware.htm
Install RegSeeker. Go to "Search" in Regseeker Type "Skype" delete ALL entries regseeker was finding.

Install Skype and Reboot

Skype stopped working Windows 7

2011-05-26T22:38:00.001+02:00

The whole world increasingly relies on Skype. Unfortunately, recently this causes for many of us big trouble. What’s going on? Is today’s downtime just another coincidence? Fortunately, for today’s issue a fix is now available.

Around noon several people contacted us what was going wrong with their Skype. A little bit later it appeared Skype was facing serious trouble. Many users world wide were unable to use the service. It became clear we were not suffering alone.

Temporary fix available
A temporary fix has been announced on Skype’s blog, follow them for more updates. The proposed fix can be found below. Update: We added some screen shots because we received several questions about the Windows procedure.

Windows

Click Start (Windows button left bottom corner), type run and press Enter. (On Windows XP: Click Start and then Run.)
Type %appdata%\skype and click OK (see image below).

3. Locate and delete the file shared.xml.

4. If you cannot find this file:

Click Start, type run and press Enter. (On Windows XP: Click Start and then Run.)
Type the following and click OK. control folders
In the View tab, ensure that Show hidden files and folders is enabled.
Repeat steps 1-3.

5. Restart Skype.

IF still not working

1. Reinstall skype

Click Start
Control Panel
Programs and Features
Click Skype in the list and Uninstall

2. Click Start (Windows button left bottom corner), type run and press Enter. (On Windows XP: Click Start and then Run.)
3. Type %appdata%\skype and click OK
4. Delete all files in the window.
5. Reinstall Skype

6 Registry Tweaks to Make Your PC Faster

2011-05-25T08:01:00.000+02:00

Registry tweaks to speed up boot times and make Windows a bit more responsive.

The Windows Registry is a database that holds your operating system's configurations and settings. This includes everything from how long your mouse must hover over a taskbar icon before the preview pops up (in Windows Vista and Windows 7) to performance settings.

Windows 7 (and Vista) have more eye-candy features built into the operating system, but a number of Registry hacks and tweaks can speed up--or, at least, appear to speed up--the performance of your computer. Before we start mucking around with your PC's guts, however, we're going to make sure that you have a reliable backup of your Registry in case something goes sour.

Though editing the Windows Registry is not nearly as scary as it sounds, making an incorrect change can cripple your system. To ensure that this doesn't happen, it's important to take the precaution of backing up part, or all, of the Registry before you proceed.

Back Up the Entire Registry To back up your Registry, you can use the free Registry-specific backup tool ERUNT (Emergency Recovery Utility NT). ERUNT is simple to use, more reliable than System Restore, and works with Windows XP, Vista, and 7 (even 64-bit versions). ERUNT also saves each restore point independently of the other points, unlike System Restore (in System Restore, all restore points are dependent on other points). Download ERUNT here

Back Up Part of the Registry

If you're changing just one part of the Windows Registry, and you know which part that is, you don't have to back up the entire Registry. Instead, you can back up the part you plan on changing using the Registry's export feature.

First, go to Start, Run, type regedit, and press Yes. This will open the Registry Editor.

Next, find the part of the Registry you're going to change. Right-click on the Registry key you plan on changing, and click "Export." The Registry Editor will prompt you to save a .reg file to your hard drive.

To undo Registry changes, just find your .reg file and double-click it. The .reg file will reset your Registry values to their existing values (but will not remove values that you've added).

Hack Your Registry
Now that you've backed up your Registry--perhaps more than once--it's time to start hacking away. To get to the Windows Registry, go to Start > Run (in Windows Vista/7 you will have to type run into the Start menu search bar and press Enter). Type regedit, click Yes, and the Registry Editor will open.

Tweak 1: Speed Up Aero Peek
Windows 7's Aero Peek lets you see the desktop when you move your mouse cursor over to the "show desktop" button at the end of the taskbar. The standard delay time for the Aero Peek preview is 500 milliseconds, or half a second. Here's how to speed it up:

Open the Registry Editor and go to HKEY_CURRENT_USER > Software > Microsoft > Windows > CurrentVersion > Explorer > Advanced.
Right-click on the right pane and click New > DWORD (32-bit) Value. Name the new DWORD "DesktopLivePreviewHoverTime."
Double-click on DesktopLivePreviewHoverTime to open it. Under "Base," click Decimal and then enter the delay time (in milliseconds) in the "Value data" field. Click OK, and your Aero Peek time will be set. You can set the value to higher (a longer delay time) if you're activating it too often by accident, or to lower (a shorter delay time) if half a second is just too long.
Log off and log back on for the change to take effect.

Tweak 2: Speed Up Taskbar Previews
When you roll over taskbar icons in Windows Vista and in Windows 7, little previews appear. The standard delay time for these previews is 400 milliseconds, or just under half a second. If this is too slow (or too fast) for you, you can adjust the delay time with an easy Registry hack.

Open the Registry Editor and go to HKEY_CURRENT_USER > Software > Microsoft > Windows > CurrentVersion > Explorer > Advanced.
Right-click on the right pane and click New > DWORD (32-bit) Value. Name the new DWORD "ExtendedUIHoverTime."
Double-click on ExtendedUIHoverTime to open it. Under "Base," click Decimal and then enter in the delay time (in milliseconds) in the "Value data" field. Click OK to set the time (default is 400 milliseconds).
Log off and then log back in for the change to take effect.

Tweak 3: Speed Up Menus
If you'd like to speed up the menus in Windows Vista or Windows 7, try this easy Registry tweak:

Open the Registry Editor and go to HKEY_CURRENT_USER > Control Panel > Desktop.
Find MenuShowDelay and double-click to open. Adjust the value in milliseconds (the default is 400 milliseconds, or just under half a second).
Log off and then log back on for the change to take effect.

Tweak 4: Prevent Reboots
If you have a habit of leaving your computer on all the time (as do I), you'll occasionally run into the problem of automatic system reboots. These usually happen after Windows downloads some sort of important update, and will usually be preceded by a notification (that gives you about 10 to 15 minutes warning, unless you click it away). If you're not around to see said notification, and you have a lot of windows or important documents open on your computer, these reboots can be a hassle.

So here's how to keep your computer from automatically rebooting with an easy Registry hack. This hack works for Windows XP, Windows Vista, and Windows 7.

Open the Registry Editor and go to HKEY_LOCAL_MACHINE > SOFTWARE > Policies > Microsoft > Windows.
Right-click in the right pane and select New > Key. This will create a new folder. Name the new folder "WindowsUpdate."
Open WindowsUpdate and right-click in the right pane (there will be a value already in the pane called "Default"). Select New > DWORD (32-bit) Value. Name this DWORD "NoAutoRebootWithLoggedOnUsers."
Open NoAutoRebootWithLoggedOnUsers and change the Value data to 1. Do not change the Base button to "Decimal"; instead, keep it at "Hexadecimal." Click OK.
Exit the Registry Editor and log off and log back in for the settings to take effect. Your system will now never force a reboot without your explicit permission.

Tweak 5: Disable Notification Balloons
If you hate pop-up notification balloons on your Windows Vista or Windows 7 taskbar, you can disable them using a simple Registry tweak:

Open the Registry Editor and go to HKEY_CURRENT_USER > Software > Microsoft > Windows > CurrentVersion > Explorer > Advanced.
Right-click on the right pane and select New > DWORD (32-bit) Value. Name your new DWORD "EnableBalloonTips."
Double-click on EnableBalloonTips and set the Value data to 0. It doesn't matter if you have Decimal or Hexadecimal clicked under "Base," because 0 is 0 in both decimal and hexadecimal.
Log off and log back on for the change to take effect. You'll no longer see any annoying notification balloons from the taskbar.

Tweak 6: Boot XP Faster
Is Windows XP booting too slowly? Here's how to speed up your boot-time with a quick Registry tweak.

Open the Registry Editor and go to HKEY_LOCAL_MACHINE > SYSTEM > CurrentControlSet > Control > ContentIndex.
In the right pane will be a value called "StartupDelay." Double-click on StartupDelay to open it. Change the "Base" from Hexadecimal to Decimal, and enter 40,000 (the default setting is 480,000).
Exit the Registry Editor and restart your computer. Your computer should boot up considerably faster--while this worked for me on my Windows XP laptop, values lower than 40,000 didn't produce a noticeable difference.

Originally posted PCWorld

Surf Safer With IE9

2011-03-16T08:35:00.000+02:00

Throughout the beta testing phase of Internet Explorer, and the days and weeks leading up to its official launch, much has been made of the blazing performance of IE9's hardware accelerated graphics, and the overall immersive experience of the new browser. Another facet of IE9, though--which has received less attention--is the improved security of the browser. Here are four features of IE9 that make it safer and more secure:

1. Tracking Protection. If you are concerned with the privacy of your online browsing activities, Microsoft's hybrid approach to the "do not track" dilemma seems to be the best option currently on the table. Microsoft combines Tracking Protection Lists in IE9--which essentially blacklist specific sites to block them from gathering tracking data--with the more proactive approach of alerting sites to your privacy wishes using information in the HTTP header of your Web traffic. Between the two approaches, unwanted tracking of your browsing session should be minimized.

2. SmartScreen Application Reputation. You have probably seen at one time or another the Microsoft warning that "this type of file may harm your computer" when downloading files from your browser. The problem is that the warning is too generic and applies to virtually all downloads. With IE9, Microsoft strives to reduce the number of frivolous warnings, and provide more information for downloads that are truly potential threats. The SmartScreen Application Reputation protection assesses the reputation of a given file or download based on whether it has been signed by its author, the established reputation of the author, and the number of times it has been previously downloaded by others to determine the relative trust the file should be given.

3. Browser Segregation. When you use the pinned sites feature of IE9 and Windows 7 to access a website, the site opens in its own browser session, independent of the desktop browser. The browser session segregation means that session cookies are not accessible by other tabs or windows in the main desktop browser, and are safe from any compromise or abuse from other sites.

4. Stripped Down. Another function of running a site as a pinned site in IE9 and Windows 7 is that the browser session opens without any browser helper objects (BHO) or add-on toolbars that might be installed in the desktop browser. With fewer extraneous apps running within and alongside the browser session, the potential attack surface is minimized and there are fewer opportunities for malicious exploits to attack.

There are other features and functions of Internet Explorer 9 that provide a safer and more secure Web surfing experience. IE9 also includes protection such as DEP and ASLR which have been proven to be vulnerable, but still provide additional layers of protection that can prevent the vast majority of Web-based attacks.

Orignal posted on yahoo.news

Tips to Troubleshoot a slow pc

2011-01-12T08:37:00.000+02:00

If your PC is running a bit more slowly than when you first bought it, you’re not alone. And, luckily you don’t have to just accept a slow computer. During this week’s TR Dojo episode, I explore five common culprits of system slowdowns and tell you how to address them.

For those who prefer text to video, you can click the Transcript link that appears below the video player window or check out Debra Littlejohn Shinder’s article, “10 tips for troubleshooting PC system slowdowns.”

Rogue Utilities

2010-12-17T07:04:00.001+02:00

This week the Rogue Blog reports a strong surge in a different type of rogue, one that pretends to be a system utility. Typical scareware pretends to be antivirus software, "finds" all kinds of threats, and demands that you pay before it will clean up the pretend problems it found. Utility-style scareware follows a similar pattern. It pretends to find errors on your system such as disk fragmentation or file system integrity problems. Naturally the scan is free; naturally you have to pay if you want to fix the alleged system problems.

The Rogue Blog post pointing out this trend includes numerous screenshots and identifies many of the culprits by name. UltraDefragger, ScanDisk, and WinHDD are among the real-sounding names used by current fraudulent system utilities.

How can you distinguish a fake optimization tool from a real one? If you see a report from a utility that you never installed and never launched, it's probably a fraud. If the utility comes advertised in a spam message, Sunbelt suggests you avoid it. The rogues invariably display dire warnings about system problems, but don't reject every warning. A legitimate disk utility might do the same if your system is truly failing.

Here's an odd one: apparently these rogue utilities will often tell you that you must update your browser to a version earlier than what you're actually running. If you're careful you can avoid getting burned. Don't ever rely on a third-party system utility that you didn't install or launch, as it's almost certainly a fraud.

Your antivirus software or security suite should protect you from rogues of any kind, providing you keep it up to date. And when you go shopping for disk tools do a little research to make sure they're legitimate. Check PCMag.com for reviews, to start, and Google the name to see if others are reporting problems. If you're still not sure, a visit to the Rogue Blog should clear up any confusion.

Originally posted on Yahoo News

Tech Scams to Avoid This Holiday

2010-11-25T15:00:00.000+02:00

The holiday shopping season is a great time to get tech products at discounted prices, but it also creates a golden opportunity for the Web's scam artists. The FBI, McAfee, the Better Business Bureau and F-Secure are all warning about cybercriminals who will try to take you for a ride this holiday season. Here are their most pertinent warnings and tips for staying safe:

The Infamous Free iPad

Bogus free iPad offers started popping up immediately after Apple's tablet went on sale, and they've since been banned from Facebook. Still, you might see similar offers around the Web, McAfee says, prompting you to buy other products as a condition of getting the free iPad. By now, you should realize it's too good to be true.

Gift Card Scams

That free $1,000 gift card offer you saw on Facebook? Bogus, of course. McAfee says that cybercrooks lure people into giving away their personal information or taking quizzes in exchange for these cards, which never arrive. The information is then sold to marketers or used for identity theft.

The FBI also says to use caution when purchasing gift cards through auction sites or classified ads. These can be fraudulent, and you won't get your money back. Buy directly from retailers instead.

Bogus Auctions and Classifieds

Here's a particularly tricky scheme pointed out by the FBI: On auction and classified sites, fraudsters use their own order forms to get payment details from holiday gift buyers. Then, they charge the victim's credit card and use a stolen credit card to buy the actual item, which is sent directly to the victim. In other words, you'll still get the product, but you might be liable for receiving stolen goods. To avoid this scam, be sure to use legitimate payment services like Paypal instead of providing money directly to the seller.

The feds also warn of a related scam for free or reduced-price shipping offered on auction and classified sites. The fraudsters provide fake shipping labels to the victim, and the product ends up being intercepted in transit, never delivered to its destination.

Malicious websites

For cybercriminals, spamming Google with bogus holiday gift pages is a yearly tradition. These pages could be loaded with malware or payment forms intended to steal your identity. F-Secure has created a list of what it thinks will be the highly targeted search terms this year, including Kinect for Xbox, Call of Duty: Black Ops, Amazon Kindle and Apple iPad.

Visit retailers' websites directly when possible, use Internet security software if you must and always check for "https" in the URL bar before ordering online to ensure that the page is secure.

Wi-Fi Hackers

Public Wi-Fi networks will get a workout this holiday season as people travel, McAfee notes. This is especially true with Google offering free Wi-Fi on domestic flights from three major airlines. Check out our security tips from Google's free Wi-Fi offer at airports last year, most of which are still relevant in the skies. Number one tip: Avoid shopping and paying bills over a public network.ls over a public network.
Originally posted on PCWorld

Smart Online Behavior Prevents Malware

2010-11-19T13:44:00.002+02:00

Malware is a term used to describe a broad category of damaging software that includes viruses, worms, trojan horses, rootkits, spyware, and adware. The effects of malware range from brief annoyance to computer crashes and identity theft. Malware is easier to avoid than it is to remove. Avoiding malware involves a two-part strategy. Follow these guidelines for staying safe.

The single biggest factor in preventing a malware infection on your PC is you. You don't need expert knowledge or special training. You just need vigilance to avoid downloading and installing anything you do not understand or trust, no matter how tempting, from the following sources:

From a website: If you are unsure, leave the site and research the software you are being asked to install. If it is OK, you can always come back to site and install it. If it is not OK, you will avoid a malware headache.

From e-mail: Do not trust anything associated with a spam e-mail. Approach e-mail from people you know with caution when the message contains links or attachments. If you are suspicious of what you are being asked to view or install, don't do it.

From physical media: Your friends, family, and associates may unknowingly give you a disc or flash drive with an infected file on it. Don't blindly accept these files; scan them with security software. If you are still unsure, do not accept the files.

From a pop-up window: Some pop-up windows or boxes will attempt to corner you into downloading software or accepting a free "system scan" of some type. Often these pop-ups will employ scare tactics to make you believe you need what they are offering in order to be safe. Close the pop-up without clicking anything inside it (including the X in the corner). Close the window via Windows Task Manager (press Ctrl-Alt-Delete).

From another piece of software: Some programs attempt to install malware as a part of their own installation process. When installing software, pay close attention to the message boxes before clicking Next, OK, or I Agree. Scan the user agreement for anything that suggests malware may be a part of the installation. If you are unsure, cancel the installation, check up on the program, and run the installation again if you determine it is safe.

From illegal file-sharing services: You're on your own if you enter this realm. There is little quality control in the world of illegal software, and it is easy for an attacker to name a piece of malware after a popular movie, album, or program to tempt you into downloading it.

Remove Malware With the Right Software

Chances are that no matter how careful you are, you will be infected some day. That's because malware is designed to sneak onto your computer in ways you can't possibly foresee. Enlist the help of the following software:

An updated operating system: Use Windows Update. Take advantage of its ability to automatically notify you of updates, or better yet, to automatically download and install updates.

An updated browser: No matter which browser you use, keeping it current is vital to preventing infection. Take advantage of your browser's pop-up blocking, download screening, and automatic update features.

Antivirus software: You must run an antivirus program to be safe. Keep it updated, turned on, and schedule a scan to run at least once a month. (Don't run two antivirus programs; they will interfere with one another.)

Anti-malware: Also called anti-spyware, many antivirus applications include an anti-malware component. If yours does not, install and use a standalone anti-malware program that does not conflict with your antivirus program. Keep it updated.

Firewall: If you aren't running a third-party firewall, use Windows Firewall. (Don't run two firewalls at once; they will interfere with one another.)

Spam filter: If your e-mail program is not adequately filtering spam from your in-box, consider additional spam filtering software. If your security software is a security suite, spam filtering may be a feature that you need to switch on.

Identity Theft Misconceptions

2010-11-18T07:03:00.000+02:00

A recent survey by Kindsight revealed some misconceptions by internet users what they perceive as identity theft risks.

Anyone living in the modern world can't help but be aware that identity theft is real, and that it's a real problem. But how well do people understand what their own risks are? Not surprisingly, virtually all of those questioned had some understanding of identity theft. However, many had only a limited understanding of just what kinds of behavior put them at risk.

It appears that many consumers still are not entirely sure of what type of activities to avoid, and what they can do to protect their identities online. Five key misconceptions about cybersecurity emerged:

Misconception #1 I’m safe because I never shop online
Misconception #2 I’m safe because I have anti-virus protection
Misconception #3 I’m safe because the website is secure
Misconception #4 I’m safe because it’s easy to recognize fake sites
Misconception #5 Facebook is safe enough; no need to worry

Cybercriminals are becoming more sophisticated and always looking for new and better ways to steal your identity online.

Optimize Your PC: CCleaner 300

2010-11-10T07:36:00.001+02:00

Want to clean and optimize your PC? You've probably heard of CCleaner, arguably the world's most popular tool for doing the job. Developer Piriform just released CCleaner 3.0.

The big news in this update? A native 64-bit version for use with like editions of Windows. Like the last release, CCleaner clears out temporary files, cleans the Windows Registry, erases browser histories, and so on. Version 3.0 also sports new icons, various interface improvements, better support for Google Chrome and Internet Explorer 9, and newly added support for programs like AVG AntiVirus 10.0, Audacity, LogMeIn Hamachi, BitTorrent, and Windows Game Explorer.

I particularly like the way it intelligently scans for cookies you'd want to keep, like those for Google and Yahoo. In short, the ultimate system-cleaning tool just got better. It's still free, thankfully, though you can purchase a priority-support license for $25.

As with any tool of this kind, I strongly recommend making a full system backup and creating a new system-restore point before using it. Better safe than sorry!

Operating Systems: Windows NT, Windows 98, Windows 2000, Windows Me, Windows XP, Windows Vista, Windows 7

License Type: Free
Price: Free

Security Tips for PDF users

2010-11-04T09:54:00.002+02:00

The good thing about Adobe's PDF format is that nearly everybody uses it--and if you just need to read those documents, it's free. Sadly, the program's very popularity is what attracts the bad guys. Hackers, say the security experts, look for a "target-rich environment," and with tens of millions of users, Acrobat and Reader fit the bill.

So what can you do to stay secure? I wish I had advice that went beyond the conventional wisdom, but I don't. I contacted security experts at Adobe and Symantec, and they both said pretty much the same thing. Marc Fossi, Manager, Research and Development, Symantec Security Response said this:

1. Consumers should make sure to keep their software up-to-date with all the most recent versions and security patches at all times. An easy way to do this is to ensure that applications are configured to retrieve updates automatically whenever there is a live Internet connection.

2. Using a full security software suite that includes antivirus and intrusion prevention capabilities can also protect against these types of threats.

Sure, Symantec is in the business of selling security software, so naturally they'll tell you to use their product. But in this case, put aside your skepticism and do what the man says. Newer security programs really do filter out lots of malware. And while it may seem utterly obvious, I'll repeat this old chestnut: Don't open attachments from people you don't know.

If you're running version 9 of Reader, you'll be prompted to download a security patch within the next few weeks. Do it.

LimeWire music -sharing service shut down

2010-10-28T23:53:00.001+02:00

A U.S. federal judge on Tuesday granted the music industry's request to shut down the popular LimeWire file-sharing service, which had been found liable for copyright infringement.

The ruling by Judge Kimba Wood in Manhattan federal court halts one of the world's biggest services for letting consumers share music, movies and TV shows for free over the Internet.

Saying that LimeWire's parent Lime Wire LLC intentionally caused a "massive scale of infringement" involving thousands of works, Wood issued a permanent injunction that requires the company to disable its "searching, downloading, uploading, file trading and/or file distribution functionality.

" Record companies "have suffered -- and will continue to suffer -- irreparable harm from Lime Wire's inducement of widespread infringement of their works," Wood wrote. She called the potential damages "staggering," and probably "well beyond" the New York-based company's ability to pay.

The signed ruling was made available by The Recording Industry Association of America, which represents music companies. It has said Lime Wire has cost its members hundreds of millions of dollars in revenue. A copy of the ruling was not immediately available on the public court docket. Read more

Google Spying?

2010-10-28T23:39:00.001+02:00

MPs have accused internet giant Google of deliberately spying on households for commercial gain.

Tory Robert Halfon said it was "hard to believe" that Google could copy millions of computer passwords and email details and "not know what it was doing". And Liberal Democrat Don Foster said it was "not surprising" that the company "want to capture as much of the data as they can to use it for commercial purposes".

Google has admitted "mistakenly" collecting information from wireless networks as its vehicles drove around residential streets taking photographs for its Street View mapping product. The Information Commissioner's Office (ICO), the UK's privacy watchdog, is now investigating the matter.

During a Westminster Hall debate on privacy and the internet, Mr Halfon said: "It's not good enough, as Google have suggested, that the whole thing was an innocent mistake. "That was their line when Street View uploaded images of naked children without the consent and knowledge of those involved. That was their line when a Google engineer was able illegally to access children's private email accounts and telephone records - and then Google took disciplinary action only after parents complained that the engineer had illegally used Google data to harass their children. "I find it hard to believe that a company with the creative genius and originality of Google could map the personal wifi details, computer passwords and email addresses of millions of people across the world and not know what it was doing.

Mr Foster said: "It is for commercial purposes that they (Google) are doing this. Only today we have had revealed the latest figures on the value of e-commerce in this country, which has gone in a very, very short number of years from nothing to £100 billion, which is 7% of the economy of this country - and we all know it's going to rise. So it's not surprising that Google want to capture as much of the data as they can to use it for commercial purposes."

Mark Lancaster, Tory MP for Milton Keynes North, spoke of a women's refuge in his constituency whose need for anonymity had been "ignored" by Google. "Imagine their (potential refugees') great concern when on entering the name of the organisation on Google, a picture of the building the refugees use and also their address appear on the search engine," he said.

Requests to Google to remove the women's refuge from the map had received no response, he added. Mr Halfon called for a "serious commission of inquiry" that would seek to "redress the balance" between the freedom of the internet and users' civil liberties. This commission of inquiry would be composed of members with expertise on civil liberties, the internet and commerce, he said.

Originally posted at Yahoo news UK

Guide to Your own VPN

2010-10-26T17:36:00.002+02:00

How to connect computers over the Internet

There is a way to setup a private connection to your computer at the office/ home from your laptop, the way to do this is to use a Virtual Private Network, or VPN. A VPN is a secure, private network connection or “tunnel” that runs between two or more PC, across the Internet. Even though a VPN’s data travels across a public network like the Internet, it is secure because generally VPN products will make use of very strong encryption.

There are several ways of setting up such a VPN. You can either make use of a specialised consumer VPN router, or install VPN software, which is the more widely used method. There have been some outstanding advances in DIY VPN software over the years, with the entire process being greatly simplified.

Hamachi:

LogMeIn Hamachi is one of the better VPN clients I’ve seen. You can get up and running very quickly with almost no configuration needed. This product will let you connect to an entire network and share network drives. Free for non-commercial use.

RealVNC:

RealVNC means Virtual Network Computing. It is remote control software which allows you to access a server computer from another one named viewer. The two computers do not even have to be the same type. VNC is freely and publicly available and is in widespread active use by millions throughout industry, academia and privately.

New "Attack Page" Scam in Firefox and Chrome

2010-10-21T06:54:00.000+02:00

F-Secure reported a new malware campaign takes advantage of the "malicious site" warnings commonly displayed by both Firefox and Chrome to trick unsuspecting users into downloading a rogue antivirus application

The attack happens when Web surfers visit a page offering "SecurityTool," a known malware application that purports to be antivirus software. On both Firefox and Chrome, a fake warning page then pops up that mimics the messages those browsers normally give users who visit suspect sites.

On Firefox, the warning alert is titled, "Reported Attack Page!" while on Chrome the page reads, "Warning: Visiting this site may harm your computer!" Both such warnings invite users to "Download Updates." Users who click the download button then end up with a file called "ff_secure_upd.exe" on Firefox or "chrome_secure_upd.exe" on Google's browser; either way, what they really get is the rogue antivirus file and an invitation to pay a license fee for supposed protection.

Firefox users with scripts enabled, in fact, don't even have to click the "Download Updates" button--rather, they'll just be prompted to click "OK" to download "Firefox secure updates." Clicking "Cancel" only results in a repeated warning that updates need to be downloaded, F-Secure reported.

In addition to the "scareware," a hidden iFrame that's also part of the attack loads a Phoenix exploit kit from a different site, the security researcher noted, thereby exposing users to further exploitation. This latest attack is very similar to one uncovered in July, through which SecurityTool used a similar technique purportedly prompting Firefox users to update their Adobe Flash Player. In that case, the attack presented users with a fake version of the Firefox "Just Updated" page, which is typically shown when users open the browser for the first time after an update is downloaded.

On the fake version, however, the message warned that Adobe Flash Player hadn't yet been updated, and it prompted the user to download a file that is in fact the rogue antivirus software, according to F-Secure. The new "Reported Attack Page!" alert, however, relies particularly heavily on Firefox users' uncertainty as to what genuine warning pages look like. In fact, such pages never request that users download updates; rather, they give the option of either leaving the site or overriding the block and continuing to load the page. F-Secure's blog post includes an authentic Firefox block page for users who want a reliable visual image.

Originally posted at Yahoo News

Clean up Your PC: Multiple Options

2010-10-19T07:16:00.002+02:00

Your PC will slow down over time. Here's how to clean it up without having to reinstall Windows or reformat your hard drive.

You can, of course, manually clean out a lot of the junk on your system. Here are some ways to tackle the job.

Disk Cleanup

The past few versions of Windows have shipped with the Disk Cleanup utility, which you can launch by clicking Start, All Programs, Accessories, System Tools, Disk Cleanup. When I used this tool on my machine, I discovered 16.3 gigabytes of Zune temporary converted files.

You can manually clean out old system files, as well--but that can be perilous, so delete such files with care. Also, Disk Cleanup allows you (under the More Options tab) to delete all but the most recent System Restore and Shadow Copy files. I recommend avoiding that--you never know if you'll need an older restore point to get a usable machine back if you run into problems.

Defrag Your Drive

Defragmenting your hard drive is useful after you've performed a sweep with Disk Cleanup. During the defrag process, your system performance will slow down, since the defragger keeps the hard drives pretty busy. The Windows 7 defrag utility is somewhat smart about this, but your PC will still be less responsive during the process; it's best to run the utility when you don't need timely system access.

System Configuration Utility

This tool is more commonly referred to as Msconfig. You launch it by typing msconfig in the Run bar. Using Msconfig lets you manually specify services to run, as well as startup applications. It's far from perfect, however: It doesn't give you any advice as to what services can be safely disabled, though you can hide Windows services, which makes the Services tab a little more manageable The Startup tab is more useful. The caution here, though, is that if you disable everything willy-nilly, some of your applications (such as your antivirus software) may not work. Still, stuff like the QuickTime Helper app and the Adobe Acrobat helper can be safely disabled.

Registry Editor

Use the Windows Registry Editor, aka "regedit," with caution. You could easily delete keys from the Registry permanently, and render your system unusable. A less serious risk is that you could make applications unusable, and then have to reinstall them. I've run into situations, however, in which a partial Registry edit makes it impossible to uninstall or reinstall an application--but the app won't run. If you're going to edit the Registry yourself, back it up first.

This screenshot of the Registry Editor shows only the first-level view; on lower levels the typical Registry contains many thousands of entries, often with arcane names such as

HKEY_LOCAL_MACHINE\SOFTWARE\{9F5FBC24-EFE2-4f90-B498-EC0FB7D47D15}. Understanding what to delete and what to keep can be fraught with peril.
If you're trying to root out Registry entries for an incompletely uninstalled piece of software, the editor does allow you to search. If you do this, be very specific with the search string. The application name is much better than, say, the company name. Searching for "Zune," for instance, will likely yield much safer results than searching for "Microsoft."

Maintaining a Clean System: Steps to Take

Once you've cleaned out the junk, how do you keep your Windows system relatively clean? Here are several pointers. If an application has an "advanced" install option, use it. Go ahead and install to the default locations (if you want), but check what's being installed. Sometimes you'll have the option of telling the program not to run anything at system startup. Always watch the installer dialog box. Many users merely click the Next button every time the application's installer prompts them to do so.

But often the window will have checkboxes that install additional items, such as browser toolbars, quick-startup utilities, or other junk. If a window pops up in your browser asking you to install something, make sure you know what it is. It may just be a simple tool to help your browsing, or it may install something that runs at startup and saps your system resources. (Weatherbug, anyone?) In the worst-case scenario, it will install malware. Use tools such as Soluto and Msconfig frequently to make sure useless junk isn't running at startup. Clean your drive frequently, particularly temporary Internet and temporary installation files.

It takes only a few minutes a week to keep your system relatively clean, and if you do that, you'll likely be able to postpone the dreaded reformat and reinstall for a very long time.

PC tools, Utilities and software

Cyber Security

What's best for my computer: Hibernate, sleep, or shut down?

Related articles

Cyber Threats Forecast for 2012

Related articles

Speed Up Your Windows XP

Related articles

SA Symantec Intelligence Report

Make Your Computer Energy Efficient

BioPDF PDF Writer

How safe are our Windows PCs from malware?

Google Warning - Two Million user's computers have been infected by a virus

Skype stopped working Win XP

Skype stopped working Windows 7

6 Registry Tweaks to Make Your PC Faster

Surf Safer With IE9

Tips to Troubleshoot a slow pc

Rogue Utilities

Tech Scams to Avoid This Holiday

Related articles

Smart Online Behavior Prevents Malware

Identity Theft Misconceptions

Optimize Your PC: CCleaner 300

Security Tips for PDF users

LimeWire music -sharing service shut down

Google Spying?

Guide to Your own VPN

New "Attack Page" Scam in Firefox and Chrome

Clean up Your PC: Multiple Options

System Configuration Utility