What Is Spyware?
Spyware is malicious software that installs on a computer in order to collect and transfer information on the environment in which it was installed, often without the user’s knowledge. The development of this type of software is associated with the Internet which serves as a means of transmitting data.
Spyware Diffusion
Spyware is often included in free software and are usually installed without the knowledge of the user. Spyware programs are usually active only after restarting the computer. Some, like Gator, are stealthy and do not find themselves in the process table (access: (Ctrl + alt + del for Windows), (‘ps’ for Unix). An anti-spyware however powerful can detect and send a warning before installation.
Use of Spyware
Spyware is developed primarily by companies offering advertising on the Internet. To enable the sending of targeted advertising, it is necessary to know its target. This knowledge can be easily obtained by profiling techniques including spyware is.
Spyware Operation
Spyware is composed of three distinct mechanisms:
- The mechanism of infection, which installs the software. This mechanism is identical to that used by viruses, worms or Trojans. For example, spyware Cydoor use consumer software such as Kazaa vector of infection;
- The mechanism for collecting information. For spyware Cydoor, the collection is to record everything the user searches and downloads through Kazaa.
- The mechanism for transmission to third. This mechanism is generally provided via the Internet. The third may be the program designer or company.
The spyware may display advertising offerings, download a virus, install a trojan (what WhenU.SaveNow, for example), capture passwords by recording the keys pressed on the keyboard (keyloggers), spying programs implemented at a given time, or even spy on websites visited.
Vectors of infection
The spyware often attack Microsoft Windows systems because of their popularity and especially the office launched with all rights mostly. Some Web pages may, once loaded, installed unbeknownst to the user spyware, usually by using security holes in the browser of the victim.
Spyware is often found in freeware or shareware, to return their development. Some freeware stop working after removing the spyware associated. There is no known free software – like Mozilla Firefox – which contain spyware.
Finally, some system administrators or network administrators install this software to remotely monitor the activity of their computers without having to connect it.
Popular software containing spyware:
- Kazaa, which includes Cydoor
- DivX, except for the paid version and standard version without the encoder
- The HP printer drivers and probably other brands send information of unknown nature to the site of the mark when printing
Control and Prevention of Spyware
Program that work against spyware
There are many specific software to detect and remove some of the software under Microsoft Windows:
(Warning: There are false antiespion software that install spyware on computers of their users!)
Free Anti-Spyware software:
- Ad-Aware, developed by Swedish company Lavasoft. Specializing in removing adware. There is a more sophisticated paid version.
- A-squared Free
- Spybot – Search & Destroy, a free program that can also suppress other markers of activity on the system (log files)
- Spyware Blaster protects your browser to install spyware.
- Windows Defender (formerly Microsoft AntiSpyware) (original included in Windows Vista and Windows 7)
- HijackThis, this software can detect and destroy all processes running on your computer
- Ewido Security Suite software detects and eliminates a large number of malware (free version for individuals). Is now called AVG Anti-Spyware.
- SmitFraudFix
- AVG Anti-Virus
- Super Anti-Spyware, Version individuals (Home edition), also known as SAS
- ComboFix for advanced users
Software-paying (or check, etc.):
- Spyware Doctor, a utility-class
- SpyBouncer, extensive database
- PestPatrol
- Spy Sweeper
- Spy Subtract
- CheckFlow software suite, anti-spyware, surf anonymously and parental controls (French publisher)
- Videotron Security Services Version comprehensive and effective.
Faux-Software (avoid).
This software, like antivirus, uses databases that are updated frequently. It is recommended to use several of these programs, because none detects all spyware. Even using them all, one detects a portion of existing spyware.
Spyware Prevention
Before installing software downloaded, make sure you have installed an anti-virus and anti-spyware. For added safety, take some additional information by searching for user reviews, which may indicate hidden threats of certain programs.
The use of free software is a good way to fight against spyware, since the sources of these programs are available, verifiable, modifiable, which allows the detection and removal of spyware programs. In the non-free software, as sources are not available, it is more difficult to detect this kind of threat and impossible to eliminate.
Finally, beware of traps. In the past, some programs supposedly designed to fight against spyware contain themselves what kind of threat or proved totally ineffective for the sole purpose of charging a license (if Spyware Assassin by example), etc.
The main vectors of infection are:
- Cracking software protection type cracks and keygens;
- False codecs;
- Free software;
- False security software;
- Surfing sites at high risk of infection;
- Attachments and instant messaging worms.
Controlling outflows
Controlling outflows is mostly carried by the network administrator. Through a firewall, the outgoing flow control block any connection that tries to be from the computer (or internal network) to the outside (usually the Internet), except connections allowed before (we usually allows connections to websites, but allows less often peer-to-peer).
Even if the control of outflow is still poorly developed at present, it is essential in understanding and blocking of certain problems, such as the presence of spyware, as they will be required to connect to the to send out the information they have collected.
Study: From Wikipedia, the free encyclopedia. The text is available under the Creative Commons.
~ No related posts.
Tags: Spyware Diffusion, Spyware Prevention, Vectors of infection, What Is Spyware