Slashdot Mirror

← Back to Stories (view on slashdot.org)

Failing Grades For Most Anti-Spyware Tools

Posted by timothy on from the or-choose-a-safer-operating-system dept.

serbach writes "Steve Gibson posted this link to a superb test of about two dozen top Anti-Spyware programs: Eric L. Howes conducted the test over a two-week period in October. The results surprised me: only 3 ASW programs had a 'batting average' of better than .500 when it came to eradicating the broad range of spyware in the test. Freeware star Spybot Search & Destroy came in a distant 7th with an average of only .376. The top three? Giant Anti-Spyware, Spy Sweeper, and Ad-Aware. These test results are well worth your time."

13 of 517 comments (clear)

  1. It's interesting by Anonymous Coward · · Score: 4, Interesting

    The attitude to directed advertising programs or "spyware" on Slashdot. Especially when you step outside the parochial echochamber that is Slashdot discourse and speak to people who actually use these programs. On the whole, they are actually happy to get these novelties for "free", like the funny little desktop buddy, or the search bar, weather report or stopwatch.

    I used to work for one of the companies that distributed a "spyware" program through download.com, and we had continual PR problems with being lumped in with the worst offenders of the spyware world. We didn't do drive by installations, or hide our intentions: we just traded our customers data for use of our program. What, exactly is wrong with that? Why is Slashdot pretending all of us are as bad as each other, as if in this, as with all fields, there isn't a spectrum of behaviour?? Even some linux users are bad, just look at the DDOS at sco.com. I'm sure noone here would condone that behaviour.

    (Posted anonymously, not interested in karma bonus.)

    1. Re:It's interesting by cheezemonkhai · · Score: 5, Interesting
      Regardless, I don't see a problem with giving users the option to remove these things which trade their personal details.

      • Who actually reads all the agreement to use the software?
      • How many of them know their personal details are being sold?
      • How many people know what is actually being collected.
      • How many people got these "tools" from a random e-mail saying look this is cool?
      I can hear what your saying, but I think the user is allowed the right to remove the spyware.
      If the company doesn't want them to use the tool without the spyware then make it break without it and inform the user they removed the spyware which collects their details and would they like to reinstall it or remove the free "tool".

      Sure some spyware is worse than others, but the user deserves the choice.
    2. Re:It's interesting by NoMercy · · Score: 4, Interesting

      1/4 the time your probably breaking the law when you do that, there are strict laws governeing what you can and can't do with information about european citizens. I know any 'information handler' which operates with the UK has to have a data protection statement, be registered as a data handler, and needs to keep all it's data on file for several years as any person must be able to get a copy of all the information held on themselves for no more than 10 pounds (about 30 dolars).

      Sure your actions are still legal?

    3. Re:It's interesting by IO+ERROR · · Score: 3, Interesting
      There's a big difference between an ad that someone can choose to click on or ignore, and a program you install on their computer which sends all of their data to your servers for you to do with whatever you want.

      First of all, your program probably didn't disclose to the users that it was collecting personal information, or if it did, it was buried near the bottom of the license, which is to say you may as well not have disclosed it.

      You may not have hid your intentions, but I'll bet you didn't show them either. How many of your users would have installed your program if you said right on the first screen "We collect your personal information and do whatever the hell we want with it"? Uh huh, that's what I thought.

      There's a huge difference between a banner ad on someone's site and your typical spyware program.

      --
      How am I supposed to fit a pithy, relevant quote into 120 characters?
    4. Re:It's interesting by Ilgaz · · Score: 4, Interesting

      If you state directly that program will sell your private habits, you are off to go.

      I don't have problem with that myself.

      I _hate_ one little, clever company named Limewire. Limesoft to be exact.

      Those assholes recently tested SPYWARE on Mac OS X knowing the fact that mac users aren't so advanced on such things.

      They used same tactic as they did on Top Moxie, on Win32 years ago. Coded it so system part (java.exe) will run it and if user runs an advanced firewall (not usual on mac too!) , Java will ask for permission to connect to net, NOT the spyware itself.

      Advanced users figured it (thank god) and that "Adam" guy from Limesoft (boss) said "they were testing technology on macintosh, its pulled from installation now"

      Do I remember that kind of answer and shameless response from somewhere? YES! It was same deal on Win32 topmoxie!

      Notice something, I use "spyware" for Limewire, not whatever your product is. If you show users your intentions, you won't get much protest from them.

      BTW, as mac users turned out to be "not that stupid", they removed "limeshop control panel" installation from later releases.

      Limewire, on mac, while doing such "great inventions" as first spyware on OS x is currently number 1 on download.com mac edition... :)

      When are you bundling your shit again Adam Fisk?

    5. Re:It's interesting by gad_zuki! · · Score: 4, Interesting

      I've found the opposite to be true and I've done tech support in a variety of atmospheres. Once "spyware" became a common word and we were able to talk about it, I have yet to hear anyone say "Yeah, I love the GAIN suite of helper apps." What I have heard is stuff like "I dont even know what that is, it just appeared one day." Sometimes I hear some pissed off outrage when they find out all those delays and crashes theyve been dealing with were caused by these semi-stealth installed programs and their privacy has been violated the whole time.

      I think I met one dude who didn't care then the spyware kept multiplying. Afterall these vendors don't care about their customers, in fact they are hostile to thme, so why not abuse the system and turn that one downloaded app into more installs during an "update."

      On top if it, a lot of these apps append the sig line in your mail client and professionally its makes the users who use email for work look bad. It makes them look stupid and incompetent. This kind of thing embrasses them quite a bit, and rightly so. A client is going to see a email full of multicolor characters with 4 links to GAIN and think, 'This guy is a moron.'

      >Especially when you step outside the parochial echochamber

      And once you step out of your "people are stupid/ignorant and dont deserve disclosure" stage you'll understand.

      I am very glad both socially (people deserve disclosure and a legalese 10 page EULA isnt) and personally (Im sick of fixing computers) that spyware/adware is the kiss of death and now in the same league as spam and other scams.

  2. Is Windows fit for the internet? by Viol8 · · Score: 4, Interesting

    This isn't a standard issue MS bashing troll but you do have to question whether given the ease at which programs (which is what spyware is) can install themselves on someone elses computer with little or no user intervention , Windows is fit to be allowed on the internet. If all windows systems were taken offline then almost all viruses and the like would disappear almost immediately along with spambots and other unpleasent creations of the black hat fraternity. I'm not pretending this is feasible but you have to wonder what the net would be like if only relatively secure OS's were allowed to use it.

  3. hitman pro by Anonymous Coward · · Score: 3, Interesting

    This is a very good solution :

    http://www.freedownloads.nl/hitman_pro.htm

    It's dutch and it runs Ad-aware, Spysweeper , Spybot S&D, Stinger, Spywareblaster , ect...automaticly....

  4. Re:none here by rale,+the · · Score: 3, Interesting

    I can concur with the grandparent. I have a windows box running xp, and use firefox and thunderbird. It lives behind NAT from my linux box, and I never see any spyware/malware crap.

    I just ran Ad-Aware for the first time in a while (it told me my definition file was 109 days old), and it prompted me to go download an upgrade. Ironicly, it launched IE for this (firefox is definately set as default). Once it finished updating and running a full scan, it found 4 whole 'bad' things, which in this case were IE tracking cookies (doubleclick.net, etc). 2 of those 4 had a creation date of today, meaning they were picked up in the process of downloading that adaware update...

  5. Re:none here by NoMercy · · Score: 3, Interesting

    Seems to be more and more firefox is leaning towards the 'Weve blocked this, click here to find out why' approach, would be nice if this was extended to all areas including dangerous java programs/etc.

  6. Re:Spyware by dave420 · · Score: 4, Interesting
    What the heck are you on about? I run Windows, and I've had no problems with spyware ruining my PC or crashing it. I'm fed up with all this "ooh better stop using microsoft, otherwise your face will melt clean off" bullshit. I thought you guys were professionals? Why are you spouting this FUD about microsoft? If it was as bad as everyone here says, no-one would be able to use it at all, as their computers would be simultaneously blowing up and sending their credit card information to north korea.

    There are PLENTY of things people can do in windows to protect themselves as much as they want. Suggesting moving to another operating system shows your real intentions here.

    I apologise if this sounds pretty harsh, but I'm pissed off with the lack of professionalism or objectivity on this site.

  7. Watch out for newer spyware's startup routines... by Akardam · · Score: 3, Interesting

    I've recently seen a rash of new spyware that registers a .dll or ten into the TCP/IP stack, or even in some cases a device driver. Those are truly the beasts. And, of course, the normal Windows startup routines don't necessarily apply, since Windows will include the dll's at launch, and once they're hooked into a process, they'll go about their nasty business as part of what may otherwise be considered a legitemite executable. The line between spyware and a virus/worms/trojans these days is so incredibly thin, it's hard to see anymore.

    If it hasn't already become obvious I'm all in favor of dropping large objects on the scumbags that make this kind of stuff. Say, a super-large special order 1000 ton ACME anvil, to start?

  8. Why isn't this illegal? by krgallagher · · Score: 3, Interesting
    I recently began cleaning a friends computer of spyware. There were over 1,400 objects found by Adaware,and according to the article Adaware missed 25% of the infections. To make matters worse, even after eight reboots, running Adaware between each reboot, I still could not remove all the infections. I even tried mannually editting the registry. Now, thanks to this article, I may not have to reinstall the OS.

    What I do not understand is how can this be legal. To me this is no different than a trojan (the viral type not the condom.) Maybe it does not self-replicate and spread, but it still hijacked my friends computer. I thought that the malicious or destructive control of a computer without the users consent was illegal according to federal law. Why is it the the government will go after script kiddies, but does not go after the corporate goons who are no better? Oh, wait, I forgot. Script Kiddies do not make political contributions. I'm going to email my congressman.

    --

    Insert Generic Sig Here: