How to defeat spyware
A guide by: Robert Hunt

What is this guide about?

This guide was made as an informative look at spyware, how bad it can be, and how it can easily be avoided. I will be employing my oft-used question/answer style for this guide. I'm sorry if it doesn't make for the easiest read, but it helps me write it better, and creates a guide that is also a FAQ.

This is not a guide on how to remove spyware from an already infected machine, as that is a much more complicated subject, and varies on a case-by-case basis.

What are all of these links?

These are direct links to subjects on "Wikipedia" www.wikipedia.com. Wikipedia is a user-driven (users submit all of the information) online Encyclopedia that is a virtual treasure trove of information. Think "Encyclopedia Interneta." I use it anytime there is a term, idea, or acronym I don't understand. It is of course completely free, and with daily(sometimes hourly) updates to its database (it actually manages to keep up with the speed of the Internet), it's a much more useful tool than a bookshelf full of an Encyclopedia from 1992. (and even a references a few online jokes and quirks! i.e. French Military Victories) Heck, it even Defines Itself.

I have had some feedback on these links. Some have accused me of speaking down to people by linking such things as: web browser and Internet. It is not my intention to do so. Please know that not all people truly understand these things, and these links are included to make this guide accessible to as many people as possible.

Also, these links are all set to open in a new window (new tab if you're using Firefox/Opera), so you don't need to worry about losing the place in the reading where you left off.

Who is this guide for?

This guide is for anyone that has problems with spyware, and needs advice on removing/preventing spyware from their home computer. I will write this guide with regard to users that may have good web surfing skills, but may not necessarily know all of the tech jargon out there. One of my past jobs involved fixing heavily spyware/adware infested computers, and one of the things that bothered me most was the many customers who would constantly return having their machine purged of the malicious software. (Which shows that there is at least one user of the machine that has a few bad surfing habits) The most painful part was that I would never have the time to inform the "masses" how to prevent these problems before they start. Instead of paying $200 (going rate for the company I was with) for each purge, they could download a few free programs, and change a few habits and would be spyware free! My intention here is not to look down on anyone, if you find that this guide holds your hand too much, please know that there are some out there that don't know that Internet Explorer is a web browser, (not the entire Internet). Also that Internet Explorer is not the only web browser out there, (there are several that are far superior).

What is spyware?

Wikipedia defines spyware as "a broad category of malicious software designed to intercept or take partial control of a computer's operation without the informed consent of that machine's owner or legitimate user." This definition is very accurate, but in my opinion, it fails to define the term succinctly enough for the common user. Failing to define the true symptoms and effect it will have on John and Jane Q. User. Also, Spyware is often referred to as "adware". In the earlier days of Adware/Spyware, these terms meant separate things.

Spyware, meaning a program that "spied" on the user, reporting usage statistics to the writers and sponsors of the program which would be used to create products that more users would be interested in.
Adware, meaning a program that was used simply as a backdoor that would place advertisements on the user's computer.

These days, spyware and adware have basically merged into a single devil. Most spyware/adware developers realized there is better money in combining the functionality of a program that not only creates a backdoor for advertisements, but also collects user data for the companies who sponsor the advertisements in the first place.

As I am writing this guide I will likely interchange the two terms. please forgive this, but know that they are basically the same thing.

Believe it or not, while this problem seems less severe than a virus deleting all of your data, it is just as important to prevent it from happening.

What are the symptoms of spyware/adware?

One of the biggest complaints I have heard from a user, and later finding out they have spyware, is: "My computer seems to start up and run really slow, and when I play a DVD, Video Game, or listen to music, It will skip or hiccup." This is an increasingly common complaint these days. Programs like iTunes have enabled even more less-savvy users to join the internet revolution. I am not saying this is a bad thing, I am simply showing that this is one of the ways most people find out there is a problem.

These kinds of problems are usually the easiest and quickest to fix, (the company I worked for charged you the same no matter how hard or how long it took to fix) as this kind of symptom usually involves one or two malicious programs that can be removed with minimal effort, or by simply employing a freely-available tool. (Ad-Aware, Spybot, etc.)

The more severe symptoms include, pop-ups occurring while not browsing; Windows desktop not looking right (It's actually the spyware itself telling you that it has infected your computer. If you click on the balloon, you are led to a download that will make the problem far worse. Spyware advertising other spyware, [isn't the Internet great?]). These problems usually run deeper, and have cleverly hidden backup systems in place to restore the spyware after a technician removes it.

But guess what? All types of spyware can be avoided! There are only a few simple steps to preventing these hazardous programs from ever touching your computer.

What steps can I take to prevent spyware?

Well, there are a few different types of steps, so I am going to split them into a couple of categories.

First, a short list of things to remember when browsing the web.

Nothing is free - This rule applies to the internet as it does in the real world. While I admit, there are certain kinds of content out there that are free, none of them are the kind of thing that you would usually pay for. (you're not paying anything to read this guide, and I will never never send you any spyware) Basically nothing that is usually paid for is free.

There is no free iPod, there is no free membership, there are no free ring tones, there is no free Playstation 3. (you get the point I think)

One of the biggest avenues for spyware to enter your computer is through the clicking of banner advertisements, and visiting their subsequent pages.

You basically need to use your good sense to determine whether to click an Ad or not, because some of them actually do not contain any spyware or adware. One of the easiest ways to tell a bad one is the content of the advertisement itself. Anything promising free merchandise is a big no-no. I promise you, even if you manage to "knock out Osama Bin Laden to win this free iPod" the next page you see will give you some nice tracking cookies and most likely at least one spyware program, but you will never see any sort of free item.

Anything promoting sex or dating will also likely infect your machine.

The third most popular banner ad that likely contains spyware wears a fiendish disguise. These ads are the ones that actually advertise ANTI-SPYWARE programs. I assure you, the real anti-spyware programs do not advertise themselves on any web pages but their own.

People who engage in unlawful activities don't care about you - This one sounds more like an accusation than anything else. Still it is something you should remember. It is always my policy not to accuse a user of acting unlawfully, but I always try to inform them to stay away from these sorts of activities, because the producers of such content (may or may not) bring you the content you are seeking, but will likely also bring plenty of spyware (and often virii as well).

One example of a spyware-a-plenty activity is the downloading of "warez" software. This includes Movies, music, games, and other software. The content can be downloaded either from web sites or P2P applications such as LimeWire or WarezP2P. Doing this is illegal in the first place, and many would say that a user deserves the problems they cause (both with the Police/FBI, and spyware/virii). I will just say here to steer clear all together.

The point all of the above is trying to make is that exercising some caution during your internet experience will help prevent around 40% - 50% of spyware from ever reaching you. To get the rest of it, the user will need to make a few (some free, some not) changes in their browsing equipment.

Here is a list of things you can upgrade/change to filter even more spyware from reaching your computer.

Upgrade your browser - This is one of the few points I was able to make with most users I have helped with this problem. This point is mostly for Internet Explorer users. (If you're an Opera or Mozilla (Firefox) user, you can skip this part. I still encourage Mozilla users to give Opera a try though. I've used all of the popular browsers currently available, and I find Opera to be the most fully featured and secure.)

The problem with Internet Explorer is two fold.
1. It's still the most common browser, and is therefore the easiest target - Spyware developers love Internet Explorer users for the simple reason that they all use the same browser. It's easier to design a program when you can pigeonhole your target audience.
2. It's also the least secure browser - For some reason Microsoft did not take security very seriously when they designed the original Internet explorer. Yes, they have slowly increased the security features, but have not even come close to a safe browsing experience. One of the biggest avenues for spyware to come through are ActiveX controls. They feature an array of ways for programmers to access your computer and Windows system directory directly. This is a very bad thing. As it makes infesting your computer quite easy.
To battle this problem I recommend using a more secure, (not to mention better featured) browser. My personal choice is Opera, Please note, Opera Software is not compensating me to tell you this. It's got everything you need for a safe, secure, and fast browsing experience. (Mouse gestures got me hooked, I can't live without them now.) Internet Explorer's new version 7 (which will ship with Windows Vista) Is getting more secure, but still lets a lot of spyware through, and is very buggy. (See This Link for more about this picture. Click here to test your browser.)

Use a firewall - This one is a little harder to do, and possibly also carries a monetary expense.

A firewall is a piece of Hardware (or software) that basically blocks unrecognized accesses to your computer. This handy tool will help to reduce your spyware load by about another 30% over just changing your browsing habits. Bringing you close to full security. The last bit is coming up in the next section.

Regarding a procurement of a good firewall, you may have one and not know it. If you're a Windows XP user, and you keep your machine current with Windows Updates, then you will likely have Service Pack 2. Service Pack 2 includes Windows Firewall, which is completely free, and semi-functional. It is not a perfect firewall though, and requires a lot of user input. The type of firewall I would recommend is a hardware firewall, they do the best job of keeping spyware out, while letting the good stuff in. There are a growing number of users that have a hardware firewall in the form of a wired or wireless Router. These devices not only allow you to share a single high-speed internet connection between many computers in your home, but also usually have a built in firewall, which will help to keep your connected machines safe. You can find a good router at your local computer-tech store, Best Buy, Circuit City, etc. They run at around $100 - $150 depending on your needs. It's a fair amount of cash yes, but a good investment, trust me. If you're using a dial-up connection, many service providers these days offer hardware firewalls on their end of the connection, which can help keep you safe.

Weekly updating and running anti-spyware tools - This one will get you that last bit of protection you need against nasty spyware.

Here is a list of good (and free) tools I use and highly recommend. Also, I can guarantee they are not spyware themselves.
- Ad-aware - Great interface, easy to use, quite powerful.
- Spybot - not as easy to use as the above, but catches some things ad-aware does not.
- Microsoft anti-spyware(beta) - Surprisingly good, for a Microsoft product. (was actually developed by GIANT, and bought by Microsoft).
- CWShredder - This is for a specific spyware known as CoolWebSearch(CWS). It is very effective at removing this spyware, and the program is updated often.
- HijackThis - Allows you to remove startup programs from the windows startup and Internet Explorer BHO lists. (This one is more complicated, I would only recommend this one that is pretty Windows - savvy.) If you're going to use this, I also recommend This Link which has a tool for analyzing the log file produced by HijackThis and more accurately identifying malicious items.

Can you name a few specific programs I should avoid?

Here is a list of potentially bad programs that I would constantly see on highly infected computers.

LimeWire - As soon as I see this on a user's computer, I know where to start cleaning. The free version is loaded with spyware. It is a fine program at heart, but if you want to use it and be safe, I would recommend buying the pro version.
Ares - Another P2P file sharing program. This one seems to be more loaded with malicious downloads though, the software itself is pretty much spyware free, but many of the files on the Ares network are dangerous.

So what you're really trying to say is..?

Be safe, use your good sense, preventative maintenance will save you from spyware every time. If you follow all of these steps (heck, even if only a few of them), you will save yourself from ever having to pay to have spyware removed. If you've read and and absorbed this guide, you have the knowledge you need to ensure a safe, and harmless Internet experience.

If you have any questions, comments, concerns about this guide, please feel free to drop me an e-mail. I would love to hear them.

Back to top page:

Guides:

Contact: