Sneaky Spyware Becomes Internet Scourge

By ANICK JESDANUN, AP Internet Writer

NEW YORK - Spyware, an amorphous class of software that mostly gets onto computers without their users' knowledge, has become epidemic in the past year as people spend more time online and spyware developers get more aggressive. The resource-hungry programs often render machines unusable.

(snip)

As part of a government-backed study, technicians visited Jenna Dye recently in Young Harris, Ga., and found 1,300 spyware-related items on her machine.

(snip)

Until the machine was cleaned up, Dye and her husband would make 2 1/2 hour trips to the nearest mall to avoid shopping online. "We use it every day now again," she said. Spyware was found on the computers of 80 percent of participants in the study, conducted by America Online Inc. and the National Cyber Security Alliance.

(snip).

The most common type of spyware is more properly termed adware, its main goal to generate pop-up and other ads... The most common way to get spyware, including adware, is to download file-sharing software, screensavers and other free programs that rely on revenues from such tagalong programs to cover costs. Spyware developers consider it part of the bargain, though they also depend on users' fascination with freebies.

More..

http://story.news.yahoo.com/news?tmpl=story&u=/ap/20041030/ap_on_hi_te/tangled_in_spyware


Anick Jesdanun can be reached at netwriter(at)ap.org.

:)

Spyware is nonexistent. :-)

It is a threat but Apple is very good about releasing Security Patches. They are far more responsive to vulnerabilities. I had to run Ad-aware on my PC all the time because it would get slow and I would have Spyware issue. I haven't had any issues since switching to the Mac... Just my $0.02..

They won't even know you're there.... :D

Not much need to find out what the 230 odd people that use it are doing I guess.....

Software is also nonexistent for it.

There is plenty of software for linux.

OpenOffice or StarOffice
the gimp for photo editing (yes yes, I know it's no Photoshop, are you a graphic designer)
Plenty of music production software (audacity,sweep, hydrogen, rosegarden)
Lots of programing software

Linux servers make up about 28% of the market (source: http://www.itfacts.biz/index.php?id=P1298) and it's projected to continue growing.

Thanks for playing though.

edit: oops replied to the wrong post. You're even more wrong for the Mac OS. The only exception would be games. Yes, windows has a lot more games than Mac.

If more people used Macs or Linux, they, too, would be inundated with spyware. Spyware, worms, and viruses are often designed to target Windows-based PC's because they are the most common computers on earth!

In addition, the reality is that many of the features that make a PC "user friendly" also make it vulnerable to spyware, worm, and virus attacks. For instance, one can avoid most worms and viruses circulated by e-mail by simply disabling scripting in Outlook/Outlook Express or by using a more primitive e-mail program (like Eudora) that does not allow scripting. When I worked at a place where the nimrods running IT were completely incompetent and incapable of defending the network against worm attacks and the like, I disabled scripting in my e-mail application, and interestingly, there were many times when I was the only person whose computer did not get infected with the latest virus or worm.

As to spyware, one can avoid much of this by simply avoiding certain "freeware" which often has spyware bundled with it. I wished that I had a nickel for every time that "Gator" tried to install on my system (I've even had this pop up while surfing the web!)--it's called "Gain" now so when you see Gain, do NOT let it be installed on your computer! Another nasty one is "Hotmail" which also puts you on a zillion spam lists. I have an aunt who refuses to download ANY software from the internet, and to date, she is yet to get inundated with spam or spyware after two years with the same computer! Now, this means that she has no software for playing media or anything like that, but she is unwilling to take the risk of even installing Microsoft's media player!

Hence, for those who do have a problem with spam, spyware, worms, and viruses, you might take a look at what software you have downloaded from here, there, and yonder. Although I use both Ad-Aware and Spybot Search-and-Destroy, I will always check what software is installed via the Control Panel before even running either program! Some spyware is really insidious (like "Gain") and will re-install after you have removed it. For anyone curious about "Gain", just go to PCPitstop.com--they have an entire section devoted to this one!

Spyware blaster is free and good, I use that also.

I converted to Linux about two years. I feel bad for my friends and family but its getting to the point were I can't relate to their problems it's been so long. I just don't worry about that stuff anymore. I've become quite comfortable now and switching was far easier than I ever thought.

I've been using Linux since 1995.

Download CD images here:

http://www.linuxiso.org/

For Linux beginners, I recommend the Mandrake Linux distribution.

Linux is a great way to get out from under the boot of a corporate monopoly.

after I tried uninstalling internet explorer and it blew away XP. I was done with microsoft at that point and can't believe I didn't do it sooner. Until I switched, using the computer and the internet became a real pain in the ass. It was well worth the $80 investment to have peace of mind.

who uses a PC may be suffering.

http://www.safer-networking.org/en/mirrors/index.html

It has four mirrors. Just pick any one.

And why they are called mirrors?

there are programs that test which will download quicker at a particular time, but this isn't an issue unless you do a lot of downloading or it's a huge file. If you know the location, you might guess that a mirror site that is currently at a low use time would be quicker. Mirrors are sites that each provide a copy of the same file.

Mirrors are basically just different computers around the world that store the file for you to download.

http://mvps.org/winhelp2002/hosts.htm

and Zone Alarm firewall (they have a free version available as well as one that costs)
http://www.zonelabs.com/store/content/home.jsp

.

SpyBot and Ad-Aware.

I have been using only SpyBot lately and my system has been quite slow. I updated Ad-Aware and now my system is much faster.


Thanks again.

JetCityLiberal

SpywareBlaster.

www.javacoolsoftware.com/

I found out this morning that there was a lot of stuff Spybot didn't catch because it was mostly ad-related. So I installed Adaware and it caught it. I was especially angry about an IE plugin search bar that kept popping up in my system tray. I could not get rid of it. I think Adaware finally di though.

I have that but the oddest thing---if I don't Delete my cookies then i will have a lot of AdAware entries but when I DO Delete my Cookies before clicking on AdAware I have nthing.???

... and see what it does, how it works, how it infects your machines, and the deceptive practices used...it's litterally like looking into the pits of human depravity.. no joke

... I can tell you this, people who make and send spyware are right up there with child pornographers on my popularity list... it's the prinicpal of the way they do things.

If they'd ever show their faces, I'd slap their teeth all the way back to the dentist's office.

Heyo

They're on par with child pornographers.

after going thru this 4X in the last year, spent over $500 cleaning up my registry until I learned how to do it; Justifiable homocide!It takes hours to fix this shit and I am tired of it!

I fought the abandonment of Internet Explorer as a browser. Now I won't go back. I have a dozen software programs to detect and remove spyware. Now I don't use them. Ever. I use Firefox. Firefox is a browser that has extensions that make it lightyears ahead of IE. I used to freak out when I clicked a bad link, and suddenly I had a computer full of spyware, and altered settings. I've spent up to a week trying to identify and rid spyware. Not anymore. I didn't pay attention to people who advocated Firefox. Now I'm doing it. That's because it's GOOD.

Yes, use Firefox; set it up to surf through proxies; then use a freshly updated copy of AdAware to catch any of the bugs that Spybot lets slip through the cracks.

Found this site.

http://www.mozilla.org/products/firefox/

Another helpful site.

http://vancouver.cbc.ca/nerd/

Thanks!! Not one popup today and I'm feeling good about that!!

A couple of days ago, I suddenly started getting popup ads. Every time I logged onto DU, I'd get an ad telling me how I could make $4000 a month without lifting a finger.

I ran Spybot and cleaned out about 40 suspicious items, but the ads were still coming through. Then I checked my options (Tools / Options / Web Features) and found that "Block Popup Windows" had mysteriously gotten unchecked. So I put the checkmark back and all was well.

I don't know if there's now spyware that can turn off popup blockers, or if was just a glitch in my system, but I wanted to spread the word.

w/only 1 gig of unused space get rid of them? About a month ago, I was bombarded w/pop-ups. I found one app called "Quick Browser" and killed it. But once that one died, others have taken its place (they do not show up as applications.)

Most spy killer programs take up so much power, I can't run my computer.

HELP!

Spybot is free, and Ad-Aware has a free version that works perfect, so don't worry if you don't want to fork out money for the paid version.

Once you get rid of them, use a browser other than Internet Explorer, any other browser.

Some guy named Merijyn wrote a program to defeat this garbage. I got rid of a nasty browser hijacker using it...run a search for Hijack This, download, and scan your system. Then carefully and judiciously delete registry entries that look suspicious. It's freeware w/ a small footprint.

they will help you and they have tutorials on how to do things.

http://www.bleepingcomputer.com/forums/

I made $100 this evening cleaning it off a client's computer. He was so happy he gave me a $20 cash tip!

Nope, I don't mind it at all! :evilgrin:

Killing off spyware. I like spyware. Love it long time.

My own machine runs Linux. ;-)

I have spent the better part of this year trying to get rid of that shit on my computer, and I still have one or two reoccurring files that spring back up every 6-12 hours.

I hope all those fucking filthy cocksuckers who make this shit die and go to hell.

You're giving cocksuckers a bad name.

Here is a recent article about one of the individuals behind spyware.

A hated man

steal my personal information. it is wrong and should be a felony...

if these assholes 'walked' into my house to do the same thing to my computer, I would shoot them DEAD.

I hate this bullshit, it is not just an annoyance it is Theft and breaking and entering.

I am so worried because I have a PC?

"It makes you want to throw your computer out the window," Eckstein said.

I had a spyware infestation a month ago. (W95 and MSIE 5.5). It took hours to get rid of it. There is no death too painful for the people writing it.

I went to the Alexandria VA library last week and while there, tried to do a card catalog search. On the first terminal I tried, I was the 1001st visitor and had won a prize. On the second terminal I tried, I was once again the 1001st visitor and again had won a prize. That's right; even the library's online card catalog has been attacked by spyware.

The woman working at the desk said they were aware of the problem and had been trying to eliminate the spyware for some time. The library does have an IT specialist.

...don't put anything on your computer you don't want to lose.

Reinstall your software every year or so.. or sooner if you need to.

If its important, print it out.

"I went to the Alexandria VA library last week and while there, tried to do a card catalog search. On the first terminal I tried, I was the 1001st visitor and had won a prize. On the second terminal I tried, I was once again the 1001st visitor and again had won a prize. That's right; even the library's on line card catalog has been attacked by spyware.

The woman working at the desk said they were aware of the problem and had been trying to eliminate the spyware for some time. The library does have an IT specialist."

------------------------------------------------------------------

I can't believe they have an "IT Specialist" and still have spyware problems! That is wrong, they should fire that person immediately because that person is not doing their job. I manage over 100 PCs and never have any Spyware problems because you can stop it within the operating system. Windows XP/2000/NT can be "secure" if the IT people took the time to "secure" it. I wrote some of my own system policies that prevent spyware, adware or malware from being installed on a PC. Not that hard to figure out.

"Until the machine was cleaned up, Dye and her husband would make 2 1/2 hour trips to the nearest mall to avoid shopping online."

What does that have to do with spyware?

It's called 'suggestive selling'?

Hardly spyware if the cache is full, yer cookies are refreshed and JS saves every little kB stroke...and some scripts see a pattern to your online 'activity' and, so, your online shopping habits become public record...hardly a problem...

Consumerism IS a public ritual and the companies that sell you shit want to know what you want!!!

Let lose the dogs of consumerism! In all of it's many colours

I am working on getting this stuff off my computer. Since my computer is slower now, I don't shop at the sites that take longer to download. This is not personal shopping but purchasing supplies for my business.
Until I get this squared away I will only do business with those I already know.

I am also shopping locally even though the prices are higher, because of this.

My guess is that there are a lot of people who have been put off internet purchasing by this mess. Not everyone is computer savvy enough to fix all of this quickly, nor can we stop work to fix it. We find alternatives.

A very good and useful tool is Spyware Blaster. http://www.javacoolsoftware.com/ The most important step you can take is to secure your system. And SpywareBlaster is the most powerful protection program available. Prevent the installation of ActiveX-based spyware, adware, browser hijackers, dialers, and other potentially unwanted pests. Block spyware/tracking cookies in Internet Explorer and Mozilla/Firefox. Restrict the actions of potentially dangerous sites in Internet Explorer.And unlike other programs, SpywareBlaster does not have to remain running in the background. IT IS FREE!!!
Also, you can go to www.download.com/downloads and click on the most popular d/l's and look for SpyBot S&D. There is no conflict with SWBlaster. Also, Spybot S&D is free.
Now if you want added protection, then download Ad-Aware SE. All three work in concert and there is no conflict between the 3.
Now if you use Zone Alarm Pro, then use the Tracking Cookie Cleaner in the Cache Cleaner in the Privacy Tab. You need a fire wall on your system and if the cost of ZA is too much then go to www.zonealarm.com and download the free ZA Firewall. Rated the best even if it is free.
Just a few points to those that do not have any type protection for their puter.

this stuff anyway. Spybot S&D, and Adaware are a couple of free excellent scanners that clean up all kinds of stuff. You gotta remember to update it all regularly. ZoneAlarm is an excellent free firewall that works well with any OS. Good suggestions BD. The thing is to check for updates to all these programs, especially your anti-virus, on a regular basis.

Jazzgirl

everyone should make it a habit to update all their programs and get into the habit of doing it at least once a week.... JazzGirl, I thank you for that reminder...... REMEMBER FOLKS YOU CANNOT PROTECT YOURSELF IF YOU LEAVE THE FRONT AND BACK DOORS OPEN......

avoid spyware in the first place. It's actually very easy to avoid this junk if you know how:

1. Set up a "junk" email account somewhere if you haven't already, and use THAT account for the address webforms ask for. Check it once or twice a week to empty the inbox, and retrieve reg codes for websites and such other information like online receipts as needed. Nobody but you and the spammers should know of this account so you don't get confused or confuse people you want to email you. I use Hotmail; I know, I know, and I need to get a different account somewhere, as too many evil spammers now know about it. The good part is, I don't have to care.

2. Never, ever, under any circumstances, open an unknown attatchment from any unknown party. I'm very liberal when applying this principle; "any" unknown party would include email lists of any kind, and any unsolicited email. Treat it all as spam unless you asked for an email or it relates directly to your job.

3. Never click yes (or 'accept', or 'go', or...) on a popup window without first reading every word in the window carefully. Only click yes when it's from a known party, such as Microsoft, Apple, Sun, etc. In this case, big corporate name=good and chimp throwing shit=bad. You'll need to do this to install certain things from those big name companies.

4. Don't surf pr0n sites. Unless you actually paid for it....

5. Do any or all the things the others in this thread are asking for. They'll make and/or keep you secure when online.

I generally format every couple months or so. But then, I tend to do a lot of things with my PC that I really shouldn't do :D

Take a glance at "add/remove programs" every once in a while and see if there is anything in there that you didn't install. Anything that refers to "save" or "search" or "toolbar" or "market" or "optimizer" more than likely is spyware...bargain buddy, gator... Sometimes this software is difficult to uninstall, sometimes after putting you through some strange hoops.

Definitely run AdAware. You can also use the list of domains that it received cookies from to block them under "sites" in the privacy tab of internet options. Spybot is good to run also, but I use it less frequently as a backup check.

IE is slightly better now that it has a pop-up blocker, I use Avant Browser which is still IE but had the added functionality of pop-up blocker before service pack 2.

If you have a system restore disk, use it once a year after backing up all your important files. That will fix a lot of things if you're squeamish about editing the registry.

..for a federal clamp down on the internet. Things like this, plus the recent hints at extending "election law" to the internet. They are looking for ways of controlling it as they do the 'mainstream media'; eventually they will figure it out.

Spam and spyware will grow so enormous and incapaciting that it will make probably a majority of average users happily give up their privacy for govt internet regulation and cyberlaw enforcement within the states.

maybe free market will produce programs to combat this IF no bs laws are passed,,,,,then again we are moving into soft fascism/oligarchy so who knows

and you'll have a lot less problems.

It's not that hard.

We have two machines that are Linnux only boxes and one that uses Windows. On the Windows unit, we run SpyBot and Ad aware at least 3-4 times a week, The amount of garbage that gets through is unbelievable. Almost no one writes Linnux based spyware.

using Linux which is a very good Idea. But most of the computer users don't even know about spyware or how to get rid of it or stop it from getting on their machines let alone install an OS that would be very difficult to understand for them. Most people use IE and thats the way it is. They buy computers off the shelf and some come with spyware already installed to enhance their surfing experience as the manufactures put it and then warn the user that if it is removed it will void there warranty. COOKIES are one of the main ways for spyware to get on a users machine. If you use IE there is a free program called CookieWall that will give you the option to allow or not allow Cookies on your machine. Some people think that cookies are needed but here is the truth. You only need cookies like this site gives you to log on. After that NO cookie is needed. I have surfed cookie and spyware free for 3 years. I use Firefox and it is set to ask for each cookie before I let it enter my machine. Some sites I click on I have to click out of 7 cookies to enter. Sites like that suck. I have Spybot and ad-aware installed and have used them for several years. But if you do not allow cookies you will very Rarely find any spyware on your machine. I see people all the time complain that there computer is running slow but never take time to study the reasons why. It's very easy to delete your History, Saved form information, download manager history, COOKIES, and cache. I do this every day.
I also seen a poster put up the addy to download HiJackThis program which is a very good program but DO NOT delete anything the program brings up without someones help that understands what NOT to delete or you will end up reinstalling everything again.
http://www.analogx.com/contents/download/network/cookie.htm?

at the link Ima put up where you can post your HT log and folks will help you delete the spyware entries. Berserker is correct; overenthusiastic use of Hijack This will wipe out programs you want to keep (when editing registry there ain't no undo).
http://www.bleepingcomputer.com/forums/forum22.html

http://hjt.wizardsofwebsites.com/

Very valuable resource for anyone just trying it out

I also use 'cookie wall'. It is EZ, EZ, EZ. A small box pops up alerting you that a site wants to place a cookie. You can chose
no, temporary or yes. You can keep or delete any cookie any time.
Newbies can figure this out in no time at all. It is a very small program.

Disable Active X controls and that will prevent many of the forced installations of "spyware".

Add this to your spyware protection list.

http://www.javacoolsoftware.com/spywareblaster.html


Or you could just switch to Firefox.

if you delete a "spyware" program that shows up in a scan (actually I think there are two of them) for MS Works - it will make it impossible to use spellcheck in Outlook Express.

All have one thing in common they were written by people. And people make mistakes. C and assembly underpin them all.

All have had major security flaws and exploits. Any system left unsecured can be hacked or infected with spyware.

Someone capable of running hardened linux is going to be able to secure any platform.

Linux has had the same types of security flaws I saw in AIX 3x over 9 years ago.

No system is perfect. Anything that has a connection to a network can be compromised.

An OS is like your car, it requires maintenance to keep running (secure).

They all must have long grey beards. This operating system is so old it still has utilities like IEBPTPCH for reading punch cards.

us old bastards can't help being old.

My point was that there are security issues with all operating systems. Most security problems with mvs were file permission issues or bad code shelling out with higher privs.

MVS worked like clockwork. I retired on Z/os another great operating system.

Although I have worked with Unix and NT over my career I still regard the IBM mainframe operating system as home. As a consequence I am really rather fond of it. Indeed, recently I have worked with its successor Z/OS as both a programmer and a database administrator. In my opinion the IBM mainframe platform is still the best around. I also think that, despite the initially higher costs of the hardware and software, it is still much cheaper to run than many of its competitors. Most of the negative comments I see about IBM mainframes posted on message boards are based on ignorance. In fact the Z/OS system offers all the web capabilities found on supposedly more sexy operating systems but has the advantage of being much more reliable and secure. Only top line hackers, who really now their stuff, would have any chance of cracking it. Script kiddies would just be wasting their time. I just find it funny that IBM never want to throw away any of the old utility programs. Do they really think that punch cards are going to make a come back ?

LPARS were coming in when I retired. Running as400s, linux partitions on a big box and dynamically allocating resources is pretty neat.


It was interesting to see the machines and operating systems grow over 20 years.

I gave up trying to figure IBM out 19 years ago..

to be viciously beaten and tortured.

Need a FREE Solution?
Do you want a firewall that's free for personal/home use? Get Sygate Personal Firewall Standard Now!

http://soho.sygate.com/default.htm

it allows a seperate window to be opened.

what a great New Search Engine.

I like the "workshirt" Clusty logo too...thanks.

Two years and counting. No popups, no spyware. Tabbed browsing with multiple windows, mouse gestures. Too many features to mention.

Best investment I ever made.