This page is designed to provide some basic technology information to parishioners, such as what the parish technolofgy plan is, what our technology future might be, what virus or malware threats are highly important, and some basic recommendations for open source software that might make your computer systems more secure.

End of Support for Windows XP SP2, Windows 2000, and Windows Vista RTM
Support for Windows XP Service Pack 2 (SP2) and Windows 2000 will
end on July 13, 2010.   If you are running Windows XP, stay more secure
by moving to Windows XP Service Pack 3 (SP3) or migrating to Windows
7. If you are running Windows 2000, we recommend that you move to Windows
7 as no additional support or updates will be offered for the Windows 2000
operating system.

Microsoft Security Bulletin Advance Notification for March 2010:
www.microsoft.com/technet/security/bulletin/ms10-mar.mspx
This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on March 30, 2010. The bulletin is being released to address attacks against customers of Internet Explorer
6 and Internet Explorer 7. Users of Internet Explorer 8 and Windows 7 are not vulnerable to these attacks. The vulnerability used in these attacks, along with workarounds, is described in Microsoft Security Advisory 981374. The out-of-band security bulletin is a cumulative security update for Internet Explorer and will also contain fixes for privately reported vulnerabilities rated Critical on all versions of Internet Explorer that are not related to this attack.

=================================================================

From the Windows Secrets Newsletter, Issue 222, Nov 19, 2009...

TOP STORY

Your Windows 7 migration problems solved

By Woody Leonhard

The Windows 7 rollout has gone extraordinarily well, with millions of machines upgraded in just a few weeks.

But some Win7 upgraders have encountered problems ranging from installation headaches to missing games to confusing — boy howdy, really confusing — licensing questions.

Why does the Windows 7 installer freeze?

• "I downloaded and ran the Windows 7 upgrade. I keep getting an error message saying, 'We are unable to create or save new files in the folder in which this application was downloaded.' I have all sorts of room on that hard drive. What's happening?"
  

This is the most common installation error I've seen. If you downloaded your Windows 7 upgrade from Digital River, you have my sympathies. Digital River provided order fulfillment for Microsoft's Windows 7 Academic Store. I don't know why, but Digital River decided to offer the download in .box files instead of the more-common .iso format.

There was no end of problems with the .box files. Microsoft has a voluminous post on the problems — including resolutions — in its Answers forum. Ultimately, Digital River started offering .iso files. Go back to the Digital River site and download the Win7 upgrade again. Problem solved — after much wailing and gnashing of teeth.

• "I tried to run an in-place upgrade from Vista Home Premium to Windows 7 Home Premium, but the installer gets stuck at 62%. I turn off the computer, turn it back on again, and Vista rolls itself back fine. But when I run the Win7 install again, it gets stuck at 62%. Again. Why?"
  

I mentioned in my Nov. 12 Top Story that running a Windows 7 in-place upgrade over Vista is like building a new house on an old landfill — there are reasons why I always recommend custom/clean installs, folks!

That said, it seems that 62 is Windows 7's unlucky number. Lots and lots of in-place upgrade attempts stall at 62%, and there seem to be several causes for the problem.

Fortunately, the solution is easy — if you know where to find it. Microsoft provides an automated Fix-it button in Knowledge Base article 975253. This service reaches into your Vista machine and adds an "environment variable" called:

MIG_UPGRADE_IGNORE_PLUGINS

This variable instructs the upgrade installer to ignore a program called IphlpsvcMigPlugin.dll. (Remember Superman and Mr. Mxyzptlk? Must be related.) That does the trick.

• "I'm trying an in-place upgrade from Vista to Windows 7, and the installer goes into endless reboots. I get an 'installation failed' message and the PC reboots, only to go back to the installation again, a failure, and another boot. Haaaaalp!"
  

There are myriad reasons why this is happening, but one in particular seems to come up fairly frequently. Jerry Ham was able to reproduce the error, as he explains in a blog post on the MS Answers forum. The glitch appears to be caused by a misdirected Documents folder.

Thankfully, Jerry's post also provides a solution. Instead of redirecting the Documents folder to a subfolder of Documents also named Documents, Jerry points it to the primary Documents folder. After this change, the upgrade proceeds without a hitch.

Hey, where did Windows 7 put my games?

• "I encountered problems with XP, so I decided to upgrade to Windows 7. I had it installed by a professional. Now when I click Start, Games, I can't see any games! I am a FreeCell addict. Looking on the Web for an answer only made me more frustrated. Who stole my games?"
  

Several people have asked me the same question. I have no idea why your games disappeared, but I do know how to bring them back. Click Start, Control Panel, Programs (in Category view), Programs and Features. Select Turn Windows features on or off in the left pane, make sure the box next to Games is checked, and click OK. The games will then appear on the Start menu, right where they belong.

How many upgrades am I allowed per install disc?

• "I recently upgraded my desktop PC from Vista to Windows 7 and it works beautifully! I also have a laptop running Vista. My question is, can I use the same software to upgrade my laptop as well? Some people have said yes, and some absolutely not — could you help me out here?"
  

Technically, it's possible to use the same DVD to upgrade any number of PCs. But when the time comes to enter the validation key, the second (or third or fourth) machine won't pass muster. Microsoft makes its money by selling those keys, so you'll have to buy one for each system you upgrade.

The exception is the Windows 7 Home Premium Upgrade Family Pack, which lists for US $150, but you can get it cheaper. The Family Pack lets you use a single key to upgrade three different PCs. Microsoft's Family Pack page provides more information about this multiple-PC upgrade option.

• "The Windows 7 upgrade box I bought has two DVDs in it — one for the 32-bit version and one for the 64-bit version. Does that mean I can install it on two PCs?"
  

Nope. You can install Windows 7 on as many systems as you like, but the key in the box will activate only one of them. The same key will activate either the 32-bit version or the 64-bit version, but not both.

Can I use the OEM version of Windows 7?

• "I am about to buy a copy of Win7 Pro. I can get it from any number of places, but one in particular [name withheld to protect the guilty] offers it at a very reduced price. I was wondering if you have any info on the legitimacy of this site."
  

A quick search brought up several warnings about the site and company you mentioned. In general, I recommend that people avoid buying OEM system-builder versions of Windows. They aren't supported by Microsoft, and many online stores selling OEM versions are, ahem, less than trustworthy.

In spite of what you may have heard — indeed, in spite of what you may have read on the Microsoft site years ago — the OEM license allows you to install an OEM version only on PCs that you or your company sell and support. Confusing? You bet.

On Nov. 15, ZDNet blogger Ed Bott posted a very thorough analysis of the situation. Even though many reputable retailers are openly selling the OEM package to end users, the license stipulates that the OEM version may not be installed on a PC that you've built for your own use. Bott recommends in the conclusion to his post that you go ahead and do it anyway.

With the price of Win7 Home Premium upgrades running in the fire-sale range, why sweat it? Get an upgrade and don't muck around in the OEM shenanigans. (I'll go into more detail about the Windows 7 system-builder option in a future article.)

Why can't I change Starter Edition's wallpaper?

• "Yes, I know you told me that I shouldn't bother with Windows 7 Starter Edition, but I found a fantastic deal on a netbook with Starter Edition installed. I don't want to pay for Win7 Home Premium. Why can't I change the wallpaper (er, background) on my netbook?"
  

In my July 16 Top Story, I explained why I recommend that netbook users choose Windows 7 Home Premium over Starter Edition. I also discussed in my June 4 Top Story the restrictions Microsoft places on hardware vendors who want to preinstall Win7 Starter Edition.

The inability to change wallpaper amounts to little more than a marketing gimmick. It's one of the features that differentiate Starter Edition from the other Windows 7 editions. It also represents one of the carrots Microsoft dangles in front of you to coerce you into paying another hundred smackers or so for a real version of Win7.

In fact, changing Starter Edition's wallpaper is easy — if you know the trick.

Simply download and install the free MyColors utility from the Stardock Design download page. You'll have to change the entire Win7 theme, because MyColors lets you change only the theme, not the specific wallpaper. MyColors lets you choose a built-in Win7 theme or any of several free themes that are bundled with MyColors. Alternatively, you can buy a theme from Stardock.

Can I upgrade 32-bit Win7 to the 64-bit version?

• "I bought a PC with 32-bit Win7 Home Premium preinstalled. Can I do an in-place upgrade to 64-bit Home Premium?"
  

Nope. The Windows Anytime Upgrade is the collection of products that allow you to upgrade from one version of Windows 7 to another. Unfortunately, Anytime Upgrades don't support a move from 32-bit to 64-bit. You can upgrade, say, Win7 Home Premium 32-bit to Win7 Pro 32-bit — but not to 64-bit. You can't cross the bit divide via an in-place upgrade.

Similarly, the regular upgrade versions of Windows 7 don't allow you to move between 32-bit and 64-bit. Your only option is to buy a Win7 Home Premium upgrade package and perform a custom (clean) install. That wipes out your programs and settings, but if you have CDs for all of your applications and you use Windows Easy Transfer (which is on the upgrade DVD), you shouldn't have any problems.

It's an expensive solution to a dubious problem, because right now very few people need 64-bit. I went into more detail on the question of 32-bit vs. 64-bit in my Nov. 12 Top Story. And in his Best Software column today (paid content), Ian "Gizmo" Richards provides an in-depth examination of the state of 64-bit desktop computing.

Windows 7 has taken the world by storm — rightfully so, in my opinion — but a certain percentage of new Win7 users will have problems no matter what. In upcoming articles, I'll have more answers to your pressing Windows 7 questions.

Are You Sending E-mail Attachments That Show Up as Winmail.dat Files?

Check this out.... from Microsoft...

     support.microsoft.com/kb/138053

and another perspective...

     email.about.com/od/outlooktips/qt/et121705.htm

(Updated 1/21/2010)

January 2010

National Cyber Alert System
Technical Cyber Security Alert TA10-021A

Microsoft Internet Explorer Vulnerabilities
   Original release date:
   Last revised: --
   Source: US-CERT

Systems Affected
     * Microsoft Internet Explorer

Overview
   Microsoft has released out-of-band updates to address critical
   vulnerabilities in Internet Explorer.

I. Description
   Microsoft has released updates for multiple vulnerabilities in
   Internet Explorer, including the vulnerability detailed in
   Microsoft Security Advisory 979352 and US-CERT Vulnerability Note
   VU#49251.

II. Impact
   By convincing a user to view a specially crafted HTML document or
   Microsoft Office document, an attacker may be able to execute
   arbitrary code with the privileges of the user.

III. Solution
   Apply updates

   Microsoft has released updates to address these vulnerabilities.
   Please see Microsoft Security Bulletin MS10-002 for more
   information.
  
   Apply workarounds
  
   Microsoft has provided workarounds for some of the vulnerabilities
   in MS10-002.

IV. References

 * Microsoft Security Bulletin MS10-002 -
   <http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx>

 * Microsoft Security Advisory 979352 -
   <http://www.microsoft.com/technet/security/advisory/979352.mspx>

 * US-CERT Vulnerability Note VU#49251 -
   <http://www.kb.cert.org/vuls/id/492515>
 ____________________________________________________________________
   The most recent version of this document can be found at:
     <http://www.us-cert.gov/cas/techalerts/TA10-021A.html>
 ____________________________________________________________________

   Feedback can be directed to US-CERT Technical Staff. Please send
   email to <cert@cert.org> with "TA10-021A Feedback VU#49251" in
   the subject.
 ____________________________________________________________________

   For instructions on subscribing to or unsubscribing from this
   mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
 ____________________________________________________________________

   Produced 2010 by US-CERT, a government organization.

   Terms of use:

     <http://www.us-cert.gov/legal.html>

(Updated Dec 11, 2009)

Rogue Anti-Virus Scareware on the Rise

Date: Fri, 11 Dec 2009 04:19:40 -0600 (CST)
From: InfoSec News <alerts@infosecnews.org>
Subject: [ISN] Rogue anti-virus takes off
To: isn@infosecnews.org
Message-ID:
    <Pine.LNX.4.61.0912110419200.32436@conundrum.infosecnews.org>
Content-Type: TEXT/PLAIN; charset=US-ASCII

Forwarded from:

http://www.itweb.co.za/index.php?option=com_content&view=article&id=28736

By Kirsten Doyle
ITWeb portals editor
8 Dec 2009

Scareware, fake anti-virus (AV) programs alarming users into thinking their machines are infected, is on the rise.

So says Sergey Golovanov, senior malware analyst, non-Intel research group manager at Kaspersky Lab, during an interview at the company's New Horizons media tour. These programs are widespread and are being used by cyber criminals more and more. To date, the company has seen around 320 families of fake AV.

The security giant discovered around 3 000 rogue AV programs in the first half of last year. The same period of 2009 saw over 20 000 samples being identified. Kaspersky Lab discovers between 10 and 20 new programs of this kind every day. A few years ago, a new program of this type only appeared once every two days.


Distribution techniques

Golovanov says scareware ends up on victims' machines, much in the same way as malware. A Trojan-downloader can covertly download such programs, or vulnerabilities in compromised or infected sites can be exploited to perform a drive-by download.

He says, however, that these programs are usually downloaded by users themselves, as cyber criminals use dedicated programs or adverts to con users into doing this.

Internet advertising and spam are other methods used by criminals to distribute scareware. Many sites, even legitimate sites, host banners advertising a product that claims to solve all sorts of malware issues.
In addition, when surfing the Internet, a user may also find pop-ups appearing in the browser window offering a free anti-virus download.


Clever imitations

According to Golovanov, rogue AV carefully mimics genuine programs. The programs will scan, and then display a sequence of messages, notifications of an error, followed by a message claiming that malware has been found on the system. Following this, it will pop up a message offering the user the opportunity to install an anti-virus program to deal with the malware, at a price of course.

Once a free trial version that allegedly detects, but does not fix the malware problem, has been downloaded, a message is displayed saying the full version should be activated at a cost. These programs often appear very genuine, as the more people are conned, the more money ends up in the pockets of cyber criminals.

According to Kaspersky Lab, programs often use the same mechanisms as polymorphic worms and viruses to combat AV solutions. The main body of the program is encrypted to conceal strings and links. To ensure the program runs correctly, dynamic code within the file decrypts the body of the malware prior to the payload being delivered.


How to protect

Although fake infections do not damage the victims' machines, cyber criminals are using these programs to extort money from novice users. He advises that legitimate programs designed to combat malware will never first scan a computer and then demand money for activation. Be aware that you should never pay for a product which does this.

He urges users to click only on messages from a legitimate AV solution installed on the PC, and ignore any warning messages that pop up randomly while surfing the Internet.

<And it's true...  In the last month I've had to save 3 PCs from this type scareware, one PC twice within 2 weeks..  Notice the comment that most of the time the user themselves download the malware!!  Exercise Caution!!>

>>>>>><<<<<<>>>>><<<<

Check out these sites for an easy way to test if you have been infected by the Conficker worm...

www.confickerworkinggroup.org/infection_test/cfeyechart.html

or

iv.cs.uni-bonn.de/fileadmin/user_upload/werner/cfdetector/

(March 30, 2009)

CERT Advisory -----

National Cyber Alert System

              Technical Cyber Security Alert TA09-088A

Conficker Worm Targets Microsoft Windows Systems   Set to Activate April 1, 2009

   Original release date: March 29, 2009
   Last revised: March 30, 2009
   Source: US-CERT

Systems Affected

     * Microsoft Windows

Overview

   US-CERT is aware of public reports indicating a widespread infection of the Conficker/Downadup worm, which can infect a Microsoft Windows system from a thumb drive, a network share, or directly across a corporate network, if the network servers are not patched with the MS08-067 patch from Microsoft.


I. Description

   Home users can apply a simple test for the presence of a Conficker/Downadup infection on their home computers.  The presence of a Conficker/Downadup infection may be detected if a user is unable to surf to their security solution website or if they are unable to connect to the websites, by downloading detection/removal
   tools available free from those sites:
(copy any of these below these into your browser.)

 
   * http://www.symantec.com/norton/theme.jsp?themeid=conficker_worm&inid=us_ghp_link_conficker_worm
   * http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx
   * http://www.mcafee.com
  
   If a user is unable to reach any of these websites, it may indicate a Conficker/Downadup infection.  The most recent variant of Conficker/Downadup interferes with queries for these sites, preventing a user from visiting them.  If a Conficker/Downadup infection is suspected, the system or computer should be removed from the network or unplugged from the Internet - in the case for home users.

II. Impact

   A remote, unauthenticated attacker could execute arbitrary code on a vulnerable system.

III. Solution

   Instructions, support and more information on how to manually remove a Conficker/Downadup infection from a system have been published by major security vendors.  Please see below for a few of those sites. Each of these vendors offers free tools that can verify the presence of a Conficker/Downadup infection and remove the worm:
  
   Symantec:
   http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-011316-0247-99

   Microsoft:
   http://support.microsoft.com/kb/962007
  
   http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx
  
   Microsoft PC Safety hotline at 1-866-PCSAFETY, for assistance.

   US-CERT encourages users to prevent a Conficker/Downadup infection by ensuring all systems have the MS08-067 patch (see http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx), disabling AutoRun functionality (see http://www.us-cert.gov/cas/techalerts/TA09-020A.html), and maintaining up-to-date anti-virus software.

From Slashdot 3/14/2009
+--------------------------------------------------------------------+
| Romanians Find Cure For Conficker |
|   from the cheer-goes-up dept.                                     |
|   posted by timothy on Friday March 13, @02:11 (Worms)             |
|   http://it.slashdot.org/article.pl?sid=09/03/13/0234213           |
+--------------------------------------------------------------------+

[0]mask.of.sanity writes "BitDefender has released what it claims is the [1]first vaccination tool to remove the notorious Conficker virus that infected [2]some 9 million Windows machines in about three months. The worm, also known as Downadup, exploits a bug in the Windows Server service used by Windows 2000, XP, Vista, Server 2003 and Server 2008. It spreads primarily through a buffer overflow vulnerability in Windows Server Service where it disables the operating system update service, security center, including Windows Defender, and error reporting. The Romanian security vendor said its [3]removal tool will delete all versions of Downadup and will not be detected by the virus."

Discuss this story at:
    http://it.slashdot.org/comments.pl?sid=09/03/13/0234213

Links:
    0. mailto:darren_pauli@idg.com.au
    1. http://www.computerworld.com.au/article/279991/romanians_find_cure_conficker
    2. http://www.computerworld.com.au/article/273431/amazing_worm_attack_infects_9_million_pcs
    3. http://bdtools.net/
(copy these links into your browser)

^{_{Biggest Worm Attack in Years!}}

The Downadup worm is now estimated to infect 1 in 16 PCs!  Find out how to protect yourself...  Check out these articles, and UPDATE your computers!!

www.networkworld.com/news/2009/012009-faq-how-to-protect-your.html

www.networkworld.com/news/2009/012109-panda-security-downadup-worm-now.html

 and apparently Microsoft's published "solutions" will not entirely resolve the problem -

www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9126478

==================================================

Got one for Christmas or a Birthday??

Message: 1
Date: Mon, 5 Jan 2009 02:00:20 -0600 (CST)
From: InfoSec News <alerts@infosecnews.org>
Subject: [ISN] Popular photo frames carry risk of infection
To: isn@infosecnews.org
Message-ID:
    <Pine.LNX.4.61.0901050200100.18377@conundrum.infosecnews.org>
Content-Type: TEXT/PLAIN; charset=US-ASCII

http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2009/01/01/BUV9150IH8.DTL

By Deborah Gage
Chronicle Staff Writer
January 2, 2009

Digital photo frames were one of the best-selling consumer electronics products this holiday season, but some of them carried a nasty surprise
- malicious software code that tried to hop onto personal computers when the frames were plugged in.

These popular devices are now so powerful that they've become computers in themselves, although people who buy them don't always realize that.
And like computers, the frames are capable of carrying code that logs keystrokes, steals data and calls out to other malicious code once it's installed itself on a PC.

"Users don't realize that bad guys can make use of each and every computer they can control, even if you don't do Internet banking or have any sensitive information," said Karel Obluk, the chief technology officer of AVG, a security vendor with offices in the United States and Europe. "They can profit by spam or other illegal activities and make
(your) PC part of an illegal network. It's something that users should always be reminded of."

No one knows how many infected digital photo frames are out there. But the Consumer Electronics Association estimated that 7.4 million such frames were sold in 2008 - up 41 percent from 2007 - and projected that sales would jump again this year by 33 percent to more than 9.8 million frames.

Among the frames reported to be infected this holiday season were a Samsung 8-inch frame sold by Amazon.com, an Element 9-inch frame sold by Circuit City and a Mercury 1.5-inch frame sold by Wal-Mart.

Amazon.com has e-mailed warnings to its customers about the Samsung frame, but a Circuit City spokesman said the retailer wasn't aware of any infections. After being contacted by The Chronicle, a Wal-Mart spokeswoman said the company would remove the Mercury frames from its Web site.

In 2007, Sam's Club - owned by Wal-Mart - also sold infected frames over the holidays, according to customers who bought them, as did Best Buy, Target and Costco.

American consumers shopped hard for bargains this year, and digital photo frames have been good deals. Wholesale prices continue to drop - Wal-Mart has been selling the Mercury frame, which comes embedded in a key chain, for $24.

But the infected frames also show how risky it is to live with a global supply chain where the cost of buying products at the lowest price means those products can vary widely in quality.

[...]

==========================================================

Recent Microsoft Internet Explorer Problem:

A new zero-day Internet Explorer 7 exploit is now out in the wild. It's a drive-by dropper that resides on malicious Web sites.  This exploit has already been incorporated into Chinese exploit toolkits and is actively being used to install information stealing Trojans that target online games. Microsoft has finally acknowledged the problem in Security Advisory (961051):

    For those looking for more info on the Internet Explorer problem, check http://blogs.technet.com/swi/archive/2008/12/12/Clarification-on-the-various-workarounds-from-the-recent-IE-advisory.aspx

Nutshell:  There are nine different workarounds, but none of them are complete.  Best solution is not use IE if you can avoid doing so.

 The explot compromises almost all versions of Internet Explorer, from version 5.01 even up the latest beta of the next version of Internet Explorer,  v8.

UPDATE:  Microsoft has said they will issue a separate "out of cycle" security patch on December 17 to supposedly fix this issue.  Stay tuned for more info...

 UPDATE 2: Microsoft is now saying that the Remote Execution bug was patched on Dec 17, so make sure you update your systems ASAP, but another XML  bug won't be fixed until early 2009.....

HOTMAIL Spam

Hotmail seems to be the latest e-mail domain from which spammers are spewing out their tons of junkmail.  I receive over 100 a day from Hotmail.  The only reason I receiive these is a couple of my friends and family members use Hotmial for their free e-mail service.  I'm tired of having to go through all these messages to sort the wheat from the chaff. 

I have advised my family and friends to stop using Hotmail, at least until this latest spam attack subsides.  I am setting my e-mail filter to trash all e-mails from Hotmail.

 If you need a free e-mail service, try using G-mail (www.gmail.com) or Yahoo (www,yahoo.com), or one of the several other free services.

Open Source software does not necessarily mean free software.  It is your obligation to ensure you properly purchase any software that requires payment.

All software recommended on this website is copyright protected by  the individual owners or by the GPL or other licensing mechanisms.  Unless stated otherwise (with the $$ symbol), all recommended software is provided free of charge by the author.  As well, all software is provided on an "as is" basis without warranty of any kind, express or implied.

Under no circumstances and under no legal theory, whether in tort, contract, or otherwise, shall St Mary's parish or school be liable to you or to any other person for any indirect, special, incidental, or consequential damages of any character including, without limitation, damages for loss of goodwill, work stoppage, computer failure or malfunction, or for any and all other damages or losses.

If you do not agree with these terms, you are advised to not use the software.  PLEASE be sure to test the software in a TEST environment before you use it!!

Sorry about all that legal talk, but it had to be said. I hope i didn't scare you off.

 

Anti-Virus
Norton Suite ($$)	www.symantec.com/downloads/
Avira Anti-virus Personal	www.avira.com/en/download/index.html
AVG Anti-virus Free Edition	free.avg.com/download
ClamWin Anti-virus	www.clamav.net/download/packages/packages-win32
Avast Anti-virus	www.avast.com/eng/avast_4_home.html
Spamfighter	www.spamfighter.com
Microsoft Security Essentials	www.microsoft.com/security_essentials/
Anti-Malware
Spybot Search and Destroy	www.safer-networking.org/en/download/index.html
Microsoft Malicious Software          Removal Tool	(comes with Microsoft updates)
Microsoft Security Essentials	www.microsoft.com/security_essentials/
Anti-Spyware
Super Anti-spyware	www.superantispyware.com/
AVG Anti-spyware	free.avg.com/
Ad-Aware	www.lavasoftusa.com/
Spybot Search and Destroy	www.safer-networking.org/en/download/index.html
HiJack This	www.download.com/Trend-Micro-HijackThis/3000-8022_4-10227353.html
Threatfire	www.threatfire.com/
Microsoft Security Essentials	www.microsoft.com/security_essentials/
Anti-Spam
SpamFighter	www.spamfighter.com/Product_Info.asp
Microsoft Security Essentials	www.microsoft.com/security_essentials/
Firewall
PC Tools Firewall	www.pctools.com
Comodo Firewall	www.personalfirewall.comodo.com/
Zone Alarm	www.zonelabs.com
Web Content Filtering
Bluecoat K-9	www1.k9webprotection.com/
McGruff Safeguard for Kids	www.gomcgruff.com/m/index.asp
Backup
Encryption Software
Truecrypt	www.truecrypt.org/
AxCrypt	www.axantum.com/AxCrypt/
Misc
Secunia Personal Software Inspector	secunia.com/vulnerability_scanning/personal/
CCleaner	www.ccleaner.com/
PCdecrapifier	www.pcdecrapifier.com/
Process Explorer	technet.microsoft.com/en-us/sysinternals/bb896653.aspx
Process QuickLink	www.processlibrary.com/quicklink/
Registry Cleaners
Screen Capture
Gadwin Printscreen	www.gadwin.com/printscreen/
Create PDFs
PrimoPDF	www.primopdf.com/
Wordprocessing, Spreadsheet, Presentation Suites
Open Office	www.openoffice.org
Microsoft Office ($$)	www.microsoft.com/office
Web Browsers
Firefox	www.mozilla.com/en-US/firefox/
For COX Internet Subscribers- a free McAfee Security Suite...	omaha.cox.net/cci/promotions/coxmain/support/security/index.html

 (Updated 4-21-2010)

($$) means it is a pay for program, NOT free...

Disclaimer:  Please remember - we are simply making recommendations, based sometimes on actual experience, but also on reading periodicals, blogs, reviews, user groups, or hearing from friends or colleagues.  CAVEAT EMPTOR- please test any software on your system AFTER you have done some reading about the minimum requirements needed.  St Mary's assumes NO responsibility for how any recommended software works on your system, nor any responsibility for fixing/unhorking your system if you install something and your system becomes (the technical term) hosed....