Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Top 10 "Most Unwanted" Spyware Named
TechWeb ^ | December 10, 2004 (2:48 PM EST) | Gregg Keizer,

Posted on 12/14/2004 6:22:01 PM PST by Ernest_at_the_Beach

A security firm named the top 10 spyware threats this week, saying that the secretly-installed software poses an "insidious" threat to consumers and corporations alike.

Webroot, which makes end-user and enterprise editions of Spy Sweeper, used its relationship with Internet service provider EarthLink to tally the most prevalent spyware, then selected the worst based on its knowledge of how each works and the damage it can cause.

"We use the P-I index," said Richard Stiennon, Webroot's vice president of threat research. "P is for prevalence, I is for insidiousness."

Each of the ten spyware programs cited by Webroot was spotted at least 50,000 times in the scans that the Boulder, Colo.-based vendor does free of charge on its own Web site, or in conjunction with EarthLink.

"The people who write this stuff are gaining sophistication in their coding practices as they attempt to evade detection and removal," said Stiennon. "These ten are the most insidious programs in terms of prevalence and effect."

Some of the software in Webroot's top 10 may be familiar to users, but most is a blur of anonymous titles that don't impart their potential impact.

Among the former is Gator (also known as GAIN), long infamous because it's bundled with the popular Kazaa peer-to-peer file sharing software. Gator/GAIN, said Webroot, made the top 10 list because it spews banner ads based on your surfing habits.

Others on the list, however, are unknown to all but the most dedicated follower of spyware. They include such programs as PurityScan, which puts up pop-up ads and tricks users into installation by claiming to find and delete porn on the PC; CoolWebSearch, which can hijack searches, browser home page, and IE's settings; and Perfect Keylogger, a spy that records all visited sites, keystrokes, and mouse clicks to, for instance, divine passwords, account numbers, and other sensitive information.

The rest of the list is fleshed out with the likes of n-CASE and KeenValue (adware), TIBS Dialer (software the usurps the modem and dials toll numbers, typically porn pay-by-the-minute phone sites), Transponder and ISTbar/AUpdate (spyware posing as browser assistants), and Internet Optimizer, which hijacks Web errors and re-directs them to its own site.

"It's our goal to inform Internet users of the ramifications of having potentially unwanted programs on their systems," said Stiennon, adding that, "it's their choice to keep or remove these programs. We're just making sure they have that information so they are making knowledgeable decisions."

Webroot isn't the only ranker or rater of behind-the-scene spyware. Computer Associates, which earlier this year purchased Webroot rival PestPatrol, recently added a spyware-only section to its online alert center, where it regularly lists the top 5 threats based on the number of reports it receives from users.

It's current list puts Kazaa at the top, with GameSpy Arcade, Download Accelerators Plus, Ezula, and Adopt.Hotbar.com rounding out the five.

Spyware plagues both consumers and corporations, according to data from analysts. In a recent survey done by IDC, for instance, enterprise users labeled spyware as the fourth-biggest threat to their company's security. They're reacting to the problem by spending money on additional security, a trend that will grow dramatically in the next several years.

According to IDC, anti-spyware software revenues will reach approximately $31 million in 2004, but skyrocket by nearly 10 times to $305 million in 2008.


TOPICS: Extended News; News/Current Events; Technical
KEYWORDS: exploit; getamac; internetexploiter; lookoutexpress; lowqualitycrap; malware; microsoft; patch; securityflaw; spyware; topten; trojan; virus; windows; worm
Navigation: use the links below to view more comments.
first previous 1-20 ... 61-8081-100101-120121-131 next last
To: Ernest_at_the_Beach
Mike Lin has some interesting stuff....you using any of it?


home SnapFiles Shareware - Try Before You Buy Freeware - free software Featured Downloads Find software

logo
WebAttack? | SnapFiles Pro | PocketPC | Top 100 | What's New? | Missing Files | Newsletter | Help  
SnapFiles (WebAttack) HostIndex.com - find a web host
space



Mike Lin
Country: country flag US

Additional information and support for Mike Lin's products is available from:
http://www.mlin.net/

Other products by Mike Lin that are listed at SnapFiles:

Startup Control Panel Startup Control Panel
Startup Control Panel is a nifty control panel applet that allows you to easily configure which programs run when your computer starts. It s simple to use , very small and won t burden your system. A
License: Freeware
Click here for details...

 
PathCopyEx PathCopyEx
A very simple shell extension that copies the text path of any file/folder in Explorer to the clipboard. Saves a bit of time on all those annoying Browse for Folder windows.
License: Freeware
Click here for details...

 
RdocEx RdocEx
You probably know that you can quickly access recently used documents from the Start/Documents menu. However, this only works with Documents like TXT, DOC etc. RdocEx is a nifty shell add-on that als
License: Freeware
Click here for details...

 
StartupMonitor StartupMonitor
StartupMonitor is a small utility that runs transparently in the background and notifies you when any program registers itself to run at system startup. You are then given the option to allow it, or
License: Freeware
Click here for details...

 
Clipomatic Clipomatic
Clipomatic is a clipboard cache program - it remembers what was copied to the clipboard even after new data is copied, and allows you to retrieve the old data. While there are many programs that do t
License: Freeware
Click here for details...

 






space

       WEBATTACK® and SNAPFILES are trademarks of WebAttack Inc. All rights reserved.
       Home  e-Mail  Privacy Statement  Terms of Use  Grab a button © 1997-2004


I have heard good things about his stuff, but actually have not used any of it- yet!

101 posted on 12/15/2004 12:49:36 AM PST by backhoe (Just an old Keyboard Cowboy, ridin' the Trackball into the Dawn of Information...)
[ Post Reply | Private Reply | To 100 | View Replies]

To: Ernest_at_the_Beach

I stopped using FedEx online because Opera won't render it correctly (can't submit some of their forms without IE.) So I just bailed out to UPS/Opera.

Also, when I do need IE, I use the "browser" in Lotus Notes, which I think just does calls back through IE, but still, it seems like it's a more circuitous odd path for most nefarious hooks to be written that will actually work their dirty magic with this.

Guess I'm a successful "security by obscurity" proponent.


102 posted on 12/15/2004 7:34:14 AM PST by sam_paine (X .................................)
[ Post Reply | Private Reply | To 84 | View Replies]

To: sam_paine

So you are wired into Lotus Notes pretty tightly?


103 posted on 12/15/2004 9:20:11 AM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 102 | View Replies]

To: Ernest_at_the_Beach

re: Lotus Notes....

No. Not really. I've just got archives of every email since 97 (R4.6?) and the full-text search of it is brilliantly fast. And for my memory, that's great for CYA. It doesn't render embedded stuff in email hardly at all, which I love, and when Windows crashes, or if my battery craps out before closing, it ALWAYS recovers the mail file without error (20-30GB)

When I'm on a conference call and my boss or another employee is blaming something on me or some other nonsense, I have many a time pulled a quick search that finds their email long before they could even start a query on Outlook (blech.) That has helped my career out more times than I can count.

For any piece of code written back then to carry me this far with only one new version upgrade (R5), well, it's the only instance of that I can think of!


104 posted on 12/15/2004 9:39:30 AM PST by sam_paine (X .................................)
[ Post Reply | Private Reply | To 103 | View Replies]

To: sam_paine
Hey folks, what's the name of that one that sits in the background and makes fart noises randomly?

You talking about this?

105 posted on 12/15/2004 10:03:34 AM PST by COBOL2Java (If this isn't the End Times it certainly is a reasonable facsimile...)
[ Post Reply | Private Reply | To 76 | View Replies]

To: sam_paine
Yes, that sounds damn good.

Prior to picking up Lotus, IBM had a homegrown package called PROFS, a real kludge, kinda of worked, don't remember any decent search facility,a real maintenance nightmare for an IT staff, I thought.
106 posted on 12/15/2004 10:05:28 AM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 104 | View Replies]

To: Ernest_at_the_Beach

PROFS, IIRC, is a mainframe e-mail package.


107 posted on 12/15/2004 10:19:12 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 106 | View Replies]

To: ShadowAce

Yes, I know, I had installed it at several customer sites, I understand initially Lotus involved a mainframe as well.


108 posted on 12/15/2004 10:43:23 AM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 107 | View Replies]

To: Ernest_at_the_Beach

Correction.
I thought lotus Notes involved a server computer of some size.


109 posted on 12/15/2004 10:45:03 AM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 108 | View Replies]

To: Fitzcarraldo
I've probably spent 100 hours in the past year from the side effects and effort to defeat spyware.

WTF?

I can't believe you posted this and didn't even receive a single "Get a Mac, you loser" reply.

110 posted on 12/15/2004 10:49:29 AM PST by Recovering Hermit
[ Post Reply | Private Reply | To 4 | View Replies]

To: Ernest_at_the_Beach

P R O F S!

WOW! I used that in, what, 91-92!? And on an old VT100 (and then eventually a VT100 "window" uner OS/2!) Heehee. MAybe that's what's wrong with me.

You must be an old feller!


111 posted on 12/15/2004 12:11:19 PM PST by sam_paine (X .................................)
[ Post Reply | Private Reply | To 106 | View Replies]

Comment #112 Removed by Moderator

To: valuesvaluesvalues

Didn't work. Nothing worked, and Xena's Guy does tech support for a living. We formatted C and that worked nicely.


113 posted on 12/15/2004 12:16:41 PM PST by Xenalyte (Anything is possible when you don't understand how anything happens.)
[ Post Reply | Private Reply | To 112 | View Replies]

To: sam_paine

I ain't a young guy.....


114 posted on 12/15/2004 12:20:05 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 111 | View Replies]

To: COBOL2Java

ROFL!


115 posted on 12/15/2004 12:21:10 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 105 | View Replies]

To: Xenalyte
We formatted C and that worked nicely.

Funny how that works so well!

If your backup methods and original CD's are in good shape.

116 posted on 12/15/2004 12:24:00 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 113 | View Replies]

To: Ernest_at_the_Beach

And they are, because we keep all our program discs and back up religiously.


117 posted on 12/15/2004 12:31:24 PM PST by Xenalyte (Anything is possible when you don't understand how anything happens.)
[ Post Reply | Private Reply | To 116 | View Replies]

To: Ernest_at_the_Beach

I somehow picked up CoolWebSearch a few months ago. It was a bear to get rid of – I used several programs, first in regular mode then in safe mode as administrator. I had to go through the whole thing several times to finally get it under control, eventually going into the registry and replacing the program with a dummy to finally get rid of it.


118 posted on 12/15/2004 12:39:38 PM PST by R. Scott (Humanity i love you because when you're hard up you pawn your Intelligence to buy a drink.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: R. Scott

bump


119 posted on 12/15/2004 12:49:54 PM PST by -YYZ-
[ Post Reply | Private Reply | To 118 | View Replies]

To: Ernest_at_the_Beach
Hello, I'm an ignorant person.

Has anyone ever heard of XoftSpy by Paretologic? Their ad is at:

http://www.paretologic.com/xoftspy/lp/14/

It says I can do it for free and remove bad things.

Is it really that simple? I can just click on the "Download Now" and just watch the computer?

I do not want to be closing or opening anything as I don't want to get tangled up.

Thank you very much. Honestly, I fluctuate between wanting to throw my computer away and getting a degree in computer science or something.
120 posted on 12/15/2004 1:26:26 PM PST by A knight without armor
[ Post Reply | Private Reply | To 1 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-20 ... 61-8081-100101-120121-131 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson