Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

How Spyware Took The Next-Gen Threat Crown (On The Internet's No #1 Threat Today MUST READ!!!)
ESecurityPlanet.com ^ | 12/20/04 | Sonny Discini

Posted on 12/21/2004 2:39:48 AM PST by goldstategop

Spyware used to be defined as applets, cookies or any other method used to collect statistics on your browsing habits. Gone are the days of such a benign interpretation. Spyware has evolved into a problem that surpasses those posed by traditional worms, viruses and Trojans.

Today, these once relatively innocuous apps have evolved from anonymous, and often invisible, traffic statistics gatherers into beasts capable of crippling your PC's performance by installing unwanted toolbars, pop-up ads, desktop icons and many other nuisances.

If that's not bad enough, some Spyware will modify system files, change security zone settings, keylog your sessions, spawn Trojans and change start page settings. Today, the term "spyware" is, in my opinion, synonymous with virus, and as usual, you have been left to deal with this on your own.

How did this happen?

Like many age-old schemes, the desire for easy money has driven spyware development into the darkest corners of the Internet. Unscrupulous individuals use flaws in the Windows operating system in combination with Microsoft's browser, Internet Explorer, to distribute their wares, or more accurately, infect your machine.

Countless types of applications, browser helper objects, cookies and bots are now competing for your finite system resources in order to pitch pop ups, report your internet activity, modify OS settings and steal personal information. Simple site statistics are no longer sufficient to sustain the beast.

Spyware companies are making millions of dollars by evading laws, finding loopholes, exploiting vulnerabilities and making their products resistant to removal. When compared to what we all know as a traditional virus, spyware is much worse because viruses are not nearly as tenacious when it comes to re-propagation or resistance to removal.

This may sound like the work of evil, globally dispersed hacking networks but many spyware developers are operating within U.S. borders without so much as a hiccup from the legal system. Although as of late, the spyware problem has generated some rumblings on Capitol Hill.

Another punch to the gut is that it is very easy to track who is benefiting from your pain. Spyware partners are typically paid on a, 'per installation' basis. This means that there is a unique ID associated with each installation so that the partner can get paid. This information is easily acquired, yet no one is doing anything about it.

To further entertain us, Spyware companies are very shrewd and typically add verbiage on their sites to make you believe that all their software is installed only with your consent. What's even more hilarious is how the worst offenders have anti-spyware animations running on their sites.

If you look closely you would almost believe that you are reading a legitimate EULA when in fact, you're reading deceptive or flat out inaccurate information. Many of them tell you that the apps can be easily uninstalled using the add/remove programs feature in Windows. In my experience, this does not work. In fact, there have been times when I have seen what appears to be a complete uninstall only to find that the Spyware is still operating in the background.

My anti-virus suite will surely help me, won't it?

No. If you look at this from the standpoint of AV providers, there is no financial benefit, thus, there is no motivation to add spyware removal features.

Many of the best removal tools are freely available for download. It does not make sense to attempt to develop something better than people already expect for free. Additionally, it is much harder to keep up with spyware than worms, viruses and Trojans because most of the aforementioned were not designed for financial gain and were typically developed by loose bands of unfunded hacking groups to prove a point.

When compared to the financial forces that are backing spyware, the cost to AV companies to keep up would be astronomical. Without a significant increase in product costs, AV companies cannot allocate resources to battle what has become the new front on the assault of your Internet experience.

I have a personal firewall and I patch my system all the time. Shouldn't I be safe?

Absolutely not. For openers, Microsoft is slow to deliver patches in relation to the speed and efficiency that malware developers disseminate their apps. Statistics show that browsing a single site can yield over a dozen infections.

What's worse is that Browser Helper Objects (BHOs) are invisible to personal firewalls. The traffic is seen as originating from your browser, not the malicious helper. Spyware developers know precisely how personal firewalls behave and their apps are written to take advantage of allowed protocols and applications. Adding insult to injury, spyware uses Microsoft's own zone security model against them by simply placing malicious sites in Internet Explorer's trusted zone.

OK so which spyware removal tool is the best?

There is no single tool out there that can rid you of your troubles. Typically, running two or three different scanners will yield different results. A popular tag team approach to vanquishing the unwelcome code includes installing both Lavasoft's Adaware and Spybot Search and Destroy.

Also, detecting spyware is completely different from removing it.

As of late, spyware makers have started delivering apps that cannot be removed with automated tools so even if you ditch IE in favor of an alternate browser you may still find yourself spending hours trying to remediate infections. Sadly, users end up lost in search engine results and scanning forums hoping to find a remediation process that worked for other poor souls.

In some cases, a complete OS reinstall is quicker than bearing this pain. You may also find yourself victimized by your own desire to remove spyware. Some crooked coders have actually developed what look to be legitimate spyware scanners, which are, in fact, spyware propagators.

What can we do?

Sadly, the funding that's fueling spyware development is far greater than the funding devoted to stopping it. Until the playing field evens out, spyware is going to continue to invade our privacy, steal information and cause financial and personal loss.

For now, the best thing you can do is visit trusted sites and be vigilant about scanning your machine with a variety of anti-spyware tools. Keep in mind that most bona fide removal tools are developed by independent groups of developers and small development firms. Paying for anti-spyware software is not an indicator that you are getting a superior product over free, open source alternatives.


TOPICS: Business/Economy; Crime/Corruption; News/Current Events; Technical
KEYWORDS: computers; exploit; getamac; internetexploiter; lookoutexpress; lowqualitycrap; malware; microsoft; patch; removalcleanup; scumware; securityflaw; sonnydiscini; spyware; threat; trojan; virus; windows; worm
Navigation: use the links below to view more comments.
first 1-5051-100101-150151-169 next last
A good discussion of the growth of spyware into a menace that can cripple your PC's performance and compromise your safety, privacy and security online. Plus advice on how to get it off and how to keep it off. MUST READ!!!
1 posted on 12/21/2004 2:39:48 AM PST by goldstategop
[ Post Reply | Private Reply | View Replies]

To: goldstategop

ping for later


2 posted on 12/21/2004 2:47:30 AM PST by raybbr
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

bump


3 posted on 12/21/2004 2:49:16 AM PST by ml/nj
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop
Thanks many of us wish we had known about this six-eight months ago... If I am an example there is now a market for hunter-killer software to destroy this stuff. I wonder that there are not pay offs going on to stop that from happening. My own opinion is that anything that takes over your private computer without your informed consent should be illegal and that anyone distributing such programs and those paying to have it distributed (the engine that drives this train) should be held criminally responsible. A politician who would undertake such legislation would have an instantaneous, nation-wide following... a political hero (are you listening out there W?)
4 posted on 12/21/2004 2:58:15 AM PST by RedEyeJack
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

marker


5 posted on 12/21/2004 3:07:50 AM PST by dasboot
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop
A follow-up from Paul Thurrot's Supersite For Windows - an interview and explanation of GIANT SOFTWARE COMPANY founder Andrew Newman on what spyware means and how the company's software fights it. It's an involved look at the new Microsoft subsidiary:

Microsoft Anti-Spyware Preview

On December 17, 2004, Microsoft announced the acquisition of an anti-spyware company, surprising many in the industry. The acquisition is notable for two reasons. First, Microsoft had already revealed its intention to get into the anti-spyware market. Second, the company it purchased, Giant Software Company, was largely an unknown in the industry. Largely, that is, except for me. In a rare moment of luck, I'd actually been a fan, customer, and advocate of Giant AntiSpyware, as their anti-spyware solution is logically named, for several months. In fact, I've found it to be far more effective than the industry darlings, Ad-aware and Spybot Search & Destroy. And I've been recommending it to friends and family ever since.

But wait, the luck doesn't end there. While months of experience with Giant Antispyware gives me a unique perspective of this product, I was also lucky enough to interview Giant co-founder Andrew Newman just days before his company was purchased by Microsoft. Newman discussed with me Giant's plans for future versions of the product, including a centrally-managed enterprise version (Figure) that, I suspect, played a large part in Microsoft's interest. Newman explained to me why Giant's approach to tackling spyware is superior to that of the competition, and provided some valuable insight into how spyware can be confronted and defeated.

First, a bit about Giant

Giant Software Company was founded by Ron Franczyk and Andrew Newman in Chicago in November 2000. The pair were both working in corporations and were frustrated by spam and the horrible anti-spam solutions that were available at the time. Rallying around the message "Online Peace of Mind," the two started Giant Software Company with the goal of creating a better anti-spam mousetrap. The resulting product, Giant Spam Inspector, now protects over 2 million email inboxes from spam.

Despite their name, Giant Software Company was never a giant company. It grew from the two cofounders to 11 employees who are today based in Chicago, Atlanta, and New York, and it also sells a pop-up ad blocker and the anti-spyware solution that we're now most interested in. But Giant has been profitable and self-sustaining since its inception, Newman told me, and its products are currently used by almost 1 million customers. That success, he said, has been driven by Giant's community-based approach.

"We decided to leverage the power of community and create an anti-spam community," he said. "Many products are like that now, including Cloudmark and others. But there wasn't anything like that four years ago. We allow the Internet community to help us solve a huge problem, and we build into that system an intelligent approach to anti-spam that combines [traditional anti-spam] rules with heuristics."

About a year ago, Giant began looking into anti-spyware for both consumers and enterprises. Here, the company knew it could use some of its existing anti-spam technology. But it also solidified its community-based approach into a community Web site called Spynet, which helps ensure that Giant customers know about spyware threats before anyone else. Spynet was an immediate success, with over 200,000 contributors in its first month alone.

Why Giant AntiSpyware is better

Because many of the companies that are getting into the anti-spyware market come from an anti-spam background, they tend to bring with them the habits and methods that worked there. That makes some sense, Newman told me, because spyware is essentially an extension of spam, or the technological successor to spam. However, Newman told me that battling spam and spyware are not identical. That's because spyware is typically more pathological and invasive than is spam.

"Windows was developed as a platform, and is extremely extensible, so we can integrate into the system," Newman said. "The problem is, anyone can do that, including malware writers." To effectively fight spyware, he said, you need software that can do more than just look at a file, poll a list of known bad files, and identify it as good or malicious. Spyware often imitates legitimate files, or finds ways of hiding itself on your system. For this reason, Giant AntiSpyware uses logic that is based partially on feedback from Spynet to examine the "genetic fingerprints" of files and determine whether those files are valid. "We can detect variations of files," Newman said. "The way anti-virus works is it looks at strings and patterns in file. This looks at the file as a whole. They're completely different approaches."

Indeed, the signature-based methods used to combat spam are ineffective against spyware, because the methods spyware use to attack your system change so often. Newman said Giant AntiSpyware provides a three-pronged attack on spyware. First, the product can perform spyware scanning and cleaning, as you'd expect. Second, the aforementioned Spynet provides Giant with valuable community contributions. And third, Giant AntiSpyware runs constantly in your system, providing real-time protection from spyware, preventing it from getting a foothold in your system. It's better to prevent an attack from happening than to try and remove malware after it's already infested your system.

"Real-time protection is the key," Newman told me. "Spyware has to integrate into your computer somehow, using a Brower Helper Object or whatever. The real-time protection monitors virtually every single auto start point on your system, detecting changes and notifying you, via a pop-up window, when anything changes." If you're installing an application, for example, you will know to dismiss the pop-up, because you've instituted the changes it's detecting. But if you're browsing the Web (with IE, no doubt), and you receive such a notification, it's time to start paying attention.

In my own admittedly unscientific testing, Giant AntiSpyware has proven notably superior to perennial favorites like Ad-aware and Spybot Search & Destroy. Indeed, I find it interesting that so many reviewers recommend that users install both Ad-aware and Spybot in order to fully protect themselves from spyware. That's because neither seems to be able to remove all of the spyware on any PC I've tested. I've had much better success with Giant AntiSpyware. And I'm not alone: In a Spywarewarrior.com product tests, Giant AntiSpyware came out on top, detecting 111 of 138 possible spyware installs, compared to just 79 for Ad-aware (second place) and 69 for Spybot (fourth place). None of those programs reported any false positives, though another popular product, Pest Patrol, suffered a whopping 10 false positives and found just 55 real spyware installs.

Effectiveness is obviously the most important aspect of any spyware solution, but I'm also a big fan of Giant's user interface, which is far nicer than that of Ad-aware or Spybot, and more Windows-like. Let's take a look.

A look at Giant Antispyware

If you set it up correctly, you'll never see the AntiSpyware application after your first manual spyware scan, because it will sit resident in your system and automatically deal with most spyware attacks, prompting you only with pop-up windows occasionally as needed. However, Giant AntiSpyware, unlike some other spyware solutions, presents a pleasant, easily-navigated user interface that is similar, in some ways, to a Microsoft taskpad or activity center.

Spyware Scanning

There are three main screens. From the Spyware Scan screen, you can initiate a manual spyware scan, set scan options, and view information about prior scans (Figure). If you choose to run a scan now, Giant AntiSpyware can perform a number of scan types, including a deep scan, which scans all files and folders, and a more typical intelligent scan, which will just test common entry points for spyware. When a scan is complete, you can view the scan results (Figure) and then optionally decide what to do with any found spyware (Figure); spyware can be ignored, quarantined, removed (the default), or always ignored.

Real-time Protection

In the Real-time Protection screen (Figure), you can configure whether the real-time protection feature is active and view the status of Giant AntiSpyware's three agent types (Internet, System, and Application). The Internet Agents prevent applications from modifying or monitoring your Internet connection and settings. The System Agents prevent against threats making unauthorized or hazardous changes to your system, including alerting security permissions. The Application Agents prevent threats from installing, deleting, or modifying Internet Explorer or downloading ActiveX controls, which can contain malicious code.

Currently, these three agent types protect 58 so-called system checkpoints, entry-points in your system where malicious code can be inserted. For example, one typical checkpoint is called process execution. This checkpoint prevents spyware from executing processes (applications or services) on your PC. If an unknown process attempts to execute on your computer, the process will be blocked and you will receive an alert, which lets you remove the process. This is, possibly, the most critical function of this software: It blocks errant software from executing on your system, before it happens.

From the Real-time Protection screen, you can also access information about blocked events, which are changes to your system that you have chosen to block.

Advanced Tools

The third screen, Advanced Tools (Figure), provides you with links to numerous other functions, including System Explorers, which are system settings that are often hard or impossible to otherwise configure. For example, you may be familiar with the new Manage Add-ons functionality that is included with the Windows XP SP2 version of Internet Explorer; this feature lets you enable or disable Browser Helper Objects and other IE plug-ins. However, the Internet Explorer System Explorer in Giant AntiSpyware also lets you permanently remove such add-ons, which, frankly, is exactly what you need (Figure). There are all kinds of System Explorers in Giant AntiSpyware, and if you're interested in security, you should spend some time here. You can configure such things as which applications run when Windows starts, which ActiveX controls are installed, and which processes are currently running. It's a wonderful set of functionality that Microsoft should bubble up more obviously from within Windows itself.

Other Advanced Tools include System Inoculation, which examines your PC for possible security holes (Figure); Browser Hijack Restore, which helps restore features of IE that have been hijacked by malware (Figure), Tracks Eraser, which can be used to remove the history of your activities in a surprisingly wide range of applications and system services, such as Adobe Acrobat Reader, Microsoft's Windows Common Dialog, the Google Toolbar (Figure); and Secure File Shredder, a wonderful utility that can be used to completely eliminate files from your PC using US Department of Justice (DOJ) recommendations for secure file destruction (Figure). How this product doesn't have the word "suite" in its title is beyond me.

AntiSpyware pop-ups

Like a firewall or anti-virus application, Giant AntiSpyware more typically makes itself known by popping up the occasional pop-up window in the lower right corner of your desktop. These pop-ups arrive when the product detects a potential spyware attack, or, by default, when it's completed a spyware scan (you can turn that latter feature off, which I recommend).

Some of the pop-ups are innocuous. For example, you may upgrade a product to a newer version. In such a case, Giant AntiSpyware will typically note that an acceptable application change has occurred and let you get on with your life without having to approve the change (Figure).

Some of the pop-ups, however, warn of more dangerous problems. Perhaps you've navigated to a malicious Web site that is attempting to install some spyware. Or maybe you or an application is attempting a system configuration change with which Giant Spyware is not familiar. In such a case, you're provided with information about the change and prompted to Allow or Block it.

Enter Microsoft

So now that Microsoft has purchased Giant and its anti-spyware solution, attention logically turns toward what the company will do with it. Previously, Microsoft had revealed that it would release an anti-spyware solution in 2005, a year ahead of the mid-2006 release of Longhorn (where its anti-spyware solution was originally set to appear). The company has internal anti-spyware and malware projects, codenamed Strider and GhostBuster, respectively, which would have fulfilled those goals, and sources I've spoken with suggest that Microsoft understands, perhaps better than anyone, how today's malicious spyware is now hooking into Windows systems and intends to rectify that situation.

To date, Giant AntiSpyware has been made available as a yearly subscription fee, and my expectation is that Microsoft will continue using that model. However, that isn't, in my opinion, what the company should do. Instead, I'd like to see Microsoft offer Giant AntiSpyware free to all Windows users, as a benefit of using their OS. Frankly, it is the architectural problems in Windows that lets spyware and other malicious malware infect users' systems, and Microsoft should fix that problem for free. For now, the software giant says it hasn't yet decided on licensing and pricing.

Time will tell, of course. I'll be talking to Microsoft soon about its anti-spyware plans, and the company will ship a public beta of its Giant AntiSpyware-derived anti-spyware solution before the end of January 2005, so I'll be looking at that to see whether it's any different from the product I'm already using. When those events transpire, I'll update this preview as needed. In the meantime, I'm ecstatic that Microsoft purchased Giant. They made the right decision about the anti-spyware solution acquisition. Let's hope the good decision making continues.

--Paul Thurrott

6 posted on 12/21/2004 3:10:18 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

I added Prevx
http://www.prevx.com/
to my toolbox and it has stopped several hundred attempted intrusions. The price is right: free.


7 posted on 12/21/2004 3:15:02 AM PST by Joe Bfstplk (We in the right are on the right.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Joe Bfstplk

I run Pivx's Qwik Fix. It actually hardens Windows at the source by shutting down known vulnerabilities. http://www.pivx.com


8 posted on 12/21/2004 3:16:25 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 7 | View Replies]

To: goldstategop
Site Meter

AD AWARE PRO - by Lava Soft works well. I run it twice a day... and have been intrustion free for sometime now...
Sharper Minds Daily
9 posted on 12/21/2004 3:19:05 AM PST by KMC1
[ Post Reply | Private Reply | To 1 | View Replies]

bttttttttttt


10 posted on 12/21/2004 3:21:26 AM PST by dennisw (Help put the "Ch" back in Chanukah)
[ Post Reply | Private Reply | To 8 | View Replies]

To: goldstategop

bttt


11 posted on 12/21/2004 3:21:31 AM PST by Chapita (There are none so blind as those who refuse to see! Santana)
[ Post Reply | Private Reply | To 6 | View Replies]

To: goldstategop
Frankly, it is the architectural problems in Windows that lets spyware and other malicious malware infect users' systems, and Microsoft should fix that problem for free.

Microsoft ain't stupid.

First, they save money with sloppy coding and patching. Then they let users "beta test" released versions (i.e., YOU find the errors, then report them). Then they charge for help. Now they want to sell you anti-spyware to plug the holes in their sloppy code.

12 posted on 12/21/2004 3:23:04 AM PST by P.O.E. (Thank you, Vets!)
[ Post Reply | Private Reply | To 6 | View Replies]

To: KMC1

For extra protection, install IE Spy-Ad. Its a simple Registry patch that adds thousands of malware sites to the Restricted Zone of Internet Explorer so they can't run any code that could install spyware or otherwise harm your computer. FREE to all users. https://netfiles.uiuc.edu/ehowes/www/main.htm


13 posted on 12/21/2004 3:24:05 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 9 | View Replies]

To: sneakers

bump


14 posted on 12/21/2004 3:24:46 AM PST by sneakers
[ Post Reply | Private Reply | To 9 | View Replies]

To: P.O.E.

If they screw up, they should fix it. Until we get Longhorn, we'll have to put up with a patched system.


15 posted on 12/21/2004 3:25:47 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 12 | View Replies]

To: goldstategop

The last time I scanned with Ad-Aware and Spybot S&D, I ran Earthlink's spyware scanner just out of curiousity and found stuff that was missed by the other two. I got hit with Cool Web about six months ago on my old computer, and it completely took over my machine. Later, after I thought I had it removed and the coast was clear, I was logging into my online banking page. As I was beginning to type the password, my modem hung up, and then started dialing another number that I had never heard of. I immediately shut down the computer. It took several runs of CW Shredder to completely remove this garbage. These people coming up with this stuff are getting much better at it. A lot of them are in former East bloc countries and are out of reach, and their governments are of no help.


16 posted on 12/21/2004 3:29:29 AM PST by flair2000
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

ping


17 posted on 12/21/2004 3:30:21 AM PST by Critical Bill
[ Post Reply | Private Reply | To 6 | View Replies]

To: flair2000

Coolweb and its affiliates are in Russia. To keep them disabled, add IE Spyad to your computer. Look here for peace of mind: https://netfiles.uiuc.edu/ehowes/www/main.htm


18 posted on 12/21/2004 3:31:19 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 16 | View Replies]

To: goldstategop

The BEST solution for getting rid of alot of this stuff is
1) Firewalls
2) Virus software
3) ad and spy software
4) GET RID OF INTERNET EXPLORER AND MOVE TO FIREFOX


19 posted on 12/21/2004 3:35:22 AM PST by chronic_loser (Go to my blog: http://snarktown.blogspot.com)
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

Good Post. Personal experience with this problem. My wife didn't keep up the anti-virus and anti-spyware programs she had on her computer. As much as her daughter and I told her to run scans and update the software, she just didn't take the time to do it. It got to the point finally that the computer basically quit working. I tried running the anti-virus software and it wouldn't even run. In this case I got lucky. Her daughter came over and we finally got the anti-spyware to run and there were thousands of files infected with spyware. Then the anti-virus program would run. When all was said and done we were able to get the computer back up and running but one of my favorite programs will not run on this computer now because at least one file is quarantined and Gateway did not supply the Windows XP disc with the computer when we bought it so that I could reinstall the files I need. My wife did learn a valuable lesson though. She now keeps the anti-virus and anti-spyware definitions up-to-date.


20 posted on 12/21/2004 3:37:28 AM PST by MadAnthony1776
[ Post Reply | Private Reply | To 1 | View Replies]

To: chronic_loser

Anti-scumware Bump!


21 posted on 12/21/2004 3:37:31 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 19 | View Replies]

To: dennisw

Heh ... just fired up my two anti spy ware programs for the first time in a month. And it's definitely true that one should use at least two programs ...... They don't pick up the same spy ware and crap ware.


22 posted on 12/21/2004 3:39:25 AM PST by dennisw (Help put the "Ch" back in Chanukah)
[ Post Reply | Private Reply | To 10 | View Replies]

To: goldstategop

thanks


23 posted on 12/21/2004 3:40:08 AM PST by flair2000
[ Post Reply | Private Reply | To 18 | View Replies]

To: goldstategop
I was running as the article suggested Ad-aware and Spybot together and then tried Webroots Spy Sweeper which found several undetected BHO's, so I use Spy Sweeper only now although I have just downloaded 'Prevx' to try thanx.
24 posted on 12/21/2004 3:40:18 AM PST by Critical Bill
[ Post Reply | Private Reply | To 1 | View Replies]

To: MadAnthony1776

Anti virus programs come first for me. Spy ware can endanger your security but for the most part it's just a dang nuisance and intrusion into "my space".


25 posted on 12/21/2004 3:42:15 AM PST by dennisw (Help put the "Ch" back in Chanukah)
[ Post Reply | Private Reply | To 20 | View Replies]

To: flair2000

I agree wholeheartedly with the suggestion to switch to Mozilla Firefox. Two months ago my 70 year old father called me because his 'internet was gone'. After two days of trying I ended reinstalling windows xp on his machine. I then installed Firefox, removed access to IE, and he has been in fine shape since.

Personally, I switched to the Macintosh platform last spring, and have no intention of going back to Windows if at all possible!


26 posted on 12/21/2004 3:45:31 AM PST by spower
[ Post Reply | Private Reply | To 23 | View Replies]

To: Critical Bill

Don't forget to download JavaCool Software's Spywareblaster. It keeps the nasties from ever installing on your computer by setting killbits in the Registry that prevent them from running if they do somehow get on your computer.


27 posted on 12/21/2004 3:45:40 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 24 | View Replies]

To: goldstategop

IMHO this issue is why windoze is what it is...a leaky program designed to surreptitiously aid and abet the marketing industry.


28 posted on 12/21/2004 3:45:56 AM PST by mo
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

Another good reason to switch to a Macintosh.

Work on your work, not your computer.

: )


29 posted on 12/21/2004 3:46:57 AM PST by Barney59 (Merry Christmas & a Happy New Year)
[ Post Reply | Private Reply | To 1 | View Replies]

To: dennisw

You need a good anti-Trojan scanner as well as anti-intrusion software like Prevx or Pivx's Qwik Fix. Then get a HOSTS file that blocks malware sites from loading and make it read-only so it can't be changed by scumware hickjackers.


30 posted on 12/21/2004 3:47:53 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 25 | View Replies]

To: dennisw

In my wife's case there was so much spyware that it prevented the anti-virus program from running. You really need both.


31 posted on 12/21/2004 3:48:41 AM PST by MadAnthony1776
[ Post Reply | Private Reply | To 25 | View Replies]

To: mo

Good third party security software does what Windows ought to have done in the first place - make Internet browsing safe.


32 posted on 12/21/2004 3:49:26 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 28 | View Replies]

To: MadAnthony1776
Her daughter came over and we finally got the anti-spyware to run and there were thousands of files infected with spyware.

I recently had to put my computer in the shop and use a loner. The loner had not been cleaned up or restored – and it seems the previous user was very heavy into Internet games and porn.
The first thing I did was delete several dozen bookmarks and run Norton. Norton removed a few dozen files. I kicked back and forgot about it – until CoolWeb started showing up as my homepage. I prefer Google. I then ran several other virus and spyware programs – and found over 1,200 infected and malicious files. Several could not be removed either automatically or manually. I went to safe mode as the administrator and ran everything again – which resulted in eliminating all but one file. I had to go into the registry and close every program one at a time until I found it, a very long and laborious process. When I found it I could not delete it but had to replace it with a dummy program.
33 posted on 12/21/2004 3:50:19 AM PST by R. Scott (Humanity i love you because when you're hard up you pawn your Intelligence to buy a drink.)
[ Post Reply | Private Reply | To 20 | View Replies]

To: MadAnthony1776

An anti-virus program (such as Norton Anti-Virus) is good at locating viruses and worms. Its not too good at detecting syware, trojans and keyloggers. That's where a good anti-Trojan scanner like Ewido Security Suite comes into play. Its picks up stuff an anti-virus scanner misses. So you need both. Then you need a good firewall (Norton Personal Firewall) to stealth your ports on the Internet. Then there's a spyware prevention software like Spywareblaster to prevent drive by installations of rogue software behind your back and spyware scanners like Ad-Aware and Spybot Search& Destroy to detect and remove installed spyware programs. For the ultimate in peace of mind, anti-intrusion software like Prevx or Pivx's Qwik Fix, shuts down potential Windows vulnerabilities that hackers and scumware pushers use as avenues of attack. Having as many tools in your Windows security kit will keep you from having the nightmare of others taking over your computer for less than benign purposes.


34 posted on 12/21/2004 3:56:56 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 31 | View Replies]

To: goldstategop

my point though is that when superficially things don't make sense....i.e. why "can't" bill Gates build a tight OS ...is that, IMHO, by following the money trail, I would speculate MS receives some type of kickback somewhere, from the marketing industry, for allowing them to access info re what people are using their boxes for....


35 posted on 12/21/2004 3:58:13 AM PST by mo
[ Post Reply | Private Reply | To 32 | View Replies]

To: R. Scott

You could have saved a lot of labor with CoolWeb Shredder. http://www.intermute.com


36 posted on 12/21/2004 3:58:41 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 33 | View Replies]

To: goldstategop

Tell me about it! A friend of mine brought her laptop to me and I worked on it three days before getting out all the viruses and malware. Stinger found three worms, AVG found one virus and Ad-Aware found 130 incidents of Malware. Her original complaint was that when she got online a box would pop up and shut her down in 60 seconds. Ok, sounded like Blaster, Sasser or one of the variants. I turned off System Restore and ran both fixes in safe mode and they didn't find anything. I ran a DOS scanner and it didn't find anything. I finally downloaded Ad-Aware and it found 130 incidents. I traced the problem to two programs and uninstalled them. Ran it again and found 84 incidents of Malware so I removed them. Installed a program called SpywareBlaster for future prevention and one called CWShredder and ran them. I hooked the laptop to my LAN and went online to Windows Update. She needed 56 critical updates. I didn't have any trouble getting them and haven't had anymore shutdowns so it appears that the problem is gone. Did I tell you that this girl is so computer illiterate that she has never updated her virus scanner that I put in there when I set up the system, never goes to Windows Update site and doesn't know what "reboot" or "desktop" means? She and I are going to have a very long talk when she picks this laptop up. I don't mind helping but there will be no more jobs like this done for free because of stupidity. She also has a 19-year old son that installed a program called Soap Internet Washer. It was causing problems so I asked her about it. She asked what it was and I told her that a lot of people use it to cover their tracks if they go on porn sites. She said to remove it because she didn't put it there but "he wouldn't do something like that". Yeah right!


37 posted on 12/21/2004 4:00:07 AM PST by Melinda in TN
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

I run Symantic Anti-virus and Ad-aware Anti-Spyware programs. They both work good.


38 posted on 12/21/2004 4:00:10 AM PST by MadAnthony1776
[ Post Reply | Private Reply | To 34 | View Replies]

To: mo

Read the EULA. If you don't know what the software's going to be doing - don't install it! 'Nuff said.


39 posted on 12/21/2004 4:01:41 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 35 | View Replies]

To: Melinda in TN

Pay a couple of extra dollars and have updates downloaded and installed automatically. And with Windows Update, keep automatic updates turned ON. There, its not so hard to protect a computer!


40 posted on 12/21/2004 4:04:37 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 37 | View Replies]

To: RedEyeJack
"I wonder that there are not pay offs going on to stop that from happening"

Agree. I keep wondering why Gates and his company are not the object of serious legal and legislative assault. All of their software products are, when used as directed (And expected I might add) simply defective. The problem is these "Defects" are really not such from Gate's standpoint and are engineered into the software. In this sinister process they are 1) Not disclosed to the consumer and 2) Exist for the sole enrichment of Microsoft itself or other Third Parties and to the detriment of Microsoft's customers.

Like you, I suspect Micro and it's cohorts have spent millions lobbying our lawmakers to ignore this issue - All to the enormous detriment of Computer and Internet users worldwide.

There - Now I've vented! :-)

41 posted on 12/21/2004 4:04:59 AM PST by drt1
[ Post Reply | Private Reply | To 4 | View Replies]

To: chronic_loser

Absolutly. Since I installed Firefox, I've had no spam or pop-up problems.


42 posted on 12/21/2004 4:06:52 AM PST by jdinsight
[ Post Reply | Private Reply | To 19 | View Replies]

To: RedEyeJack
A politician who would undertake such legislation would have an instantaneous, nation-wide following... a political hero (are you listening out there W?)

If you're calling W for assistance you're barking up a wrong tree. Do you really expect W to be concerned about the integrity of your or my computer if he doesn't even give a rip about the security and integrity of our borders?

43 posted on 12/21/2004 4:09:37 AM PST by varon (Allegiance to the constitution, always. Allegiance to a political party, never.)
[ Post Reply | Private Reply | To 4 | View Replies]

To: goldstategop

I tried that when I first set up the system. The virus software was set up to download automatically and so was Windows Update but she's on dialup and nothing would get finished before she disconnected. I told her that when she dials up in the future, before she goes to a website or checks her mail, she must update the virus scanner, no exceptions. I'm also going to tell her that if this happens again she will either learn how to fix it herself or pay a tech $100 to $300 to fix it. If I thought she could learn something different I would install Mozilla in it but there is no way.

We have three desktops and my laptop at our house and each one is setup to do all of it automatically but I still run the spyware updates on all of them weekly.


44 posted on 12/21/2004 4:10:32 AM PST by Melinda in TN
[ Post Reply | Private Reply | To 40 | View Replies]

To: goldstategop

bump


45 posted on 12/21/2004 4:11:35 AM PST by Skooz (The "holiday" has a name.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop


46 posted on 12/21/2004 4:19:35 AM PST by KoRn
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

bttt


47 posted on 12/21/2004 4:21:49 AM PST by no more apples (God Bless our troops)
[ Post Reply | Private Reply | To 1 | View Replies]

To: goldstategop

Hey, y'all...I need some advice: I think I have what I need to protect my computer, but I'm not sure.

My computer is 6 yrs old, uses Windows 98, I just recently downloaded the Mozilla-Firefox browser, & my computer is a slow 56k....& the 3 programs I'm using against spyware makes it even SLOWER. It's really aggravating, & I dunno what to do about it (I'm definitely NOT a computer geek!). Here's what I have:

-- Spyware Doctor,
-- Ad-Aware SE Personal, &
-- Spybot Search & Destroy

Is that ENOUGH? How often should I run these programs? Do y'all have anymore advice? THANK YOU very much! :-)


48 posted on 12/21/2004 4:25:16 AM PST by libertyman
[ Post Reply | Private Reply | To 1 | View Replies]

To: libertyman

Delete Spyware Doctor and get Spyware Blaster and apply immunization to Internet Explorer and Firefox browsers. Then get Eric L. Howes' IE Spy-ad to add thousands of malicious websites to the Registry so they can't run and execute hostile code on your computer. https://netfiles.uiuc.edu/ehowes/www/main.htm


49 posted on 12/21/2004 4:30:06 AM PST by goldstategop (In Memory Of A Dearly Beloved Friend Who Lives On In My Heart Forever)
[ Post Reply | Private Reply | To 48 | View Replies]

To: R. Scott

Yeah, I've had my homepage hijacked too! It may have been CoolWeb, that name sounds familiar (it was a few months ago). I'm scared sh*tless about this! What do I do? Please notice my other post up above.


50 posted on 12/21/2004 4:30:41 AM PST by libertyman
[ Post Reply | Private Reply | To 33 | View Replies]


Navigation: use the links below to view more comments.
first 1-5051-100101-150151-169 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson