Inside Spyware: Part 2 Identifying Malware: Malicious, Annoying, or Misunderstood?
In Part One of our in-depth look at spyware and malware, we defined spyware and discussed its various symptoms. This week we'll continue our discussion on identifying and removing malware components.
If you believe your computer has been infected with some sort of adware or spyware, there are a number of ways to identify the culprit. It's usually easier to identify adware because it is often less mischievous than spyware and can come from organizations that are widely considered legitimate.
For example, some adware sites consider Forbes.com Business Alerts to be adware because they run in stealth mode in the background. They also display business news on your desktop.
Similarly, some people have accused Google Toolbar of being spyware because it includes a Page Rank feature that tells Google where people are surfing on the Web. Ironically, the Google Toolbar offers pop-up blocking, which can help keep unwanted ads and download windows from appearing as you navigate the Web. The Page Rank feature on the Google Toolbar can be disabled if you want to enjoy the benefits without any stealthy activity.
Most of the Web browser toolbars (known as Browser Helper Objects, or BHOs), like Google and the eBay Toolbar, are technically spyware, but they are also useful to some people. Check this link for a fairly complete list of BHOs and their file names.
Instant Messaging Pestware
On the other end of the spectrum are deceptive utilities that appear to be of value to the user when their ulterior motive is far from it. One example is an instant messaging application called Buddylinks, which requires end-users to download, install, and agree to an end-user agreement, that is known to spread marketing messages via AOL's Instant Messenger (AIM). The messages appear to be recommendations from known AIM users that encourage contacts to visit a Web page to download a video game, such as the "Osama Found" game.
Buried in the software's accompanying End User License Agreement (EULA) is a statement that AIM users who download it explicitly give their permission to send marketing messages to their Buddy List contacts. In this way, the program can "legitimately" spread itself by sending links to the Web page — while seeming to come from a known contact.
