Re: Spyware which tracks keystrokes?

From: Chuck (none_at_example.net)
Date: 03/24/04

• Next message: Chuck: "Re: Virus alarm?"
• Previous message: FromTheRafters: "Re: Graphic Files on Virus, Firewall, Anti-spam"
• In reply to: dulcie: "Spyware which tracks keystrokes?"
• Next in thread: Dulcie: "Re: Spyware which tracks keystrokes?"
• Reply: Dulcie: "Re: Spyware which tracks keystrokes?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 24 Mar 2004 13:48:09 -0600

On 23 Mar 2004 08:26:18 -0800, pasirochma@hotmail.com (dulcie) wrote:

>Have just read an unnerving article about something called 'EBlaster'
>which is sold at http://www.spectorsoft.com/ this program can be
>loaded onto your computer and can track all your keystrokes: all your
>emails from any email address, incoming and outgoing + send a copy of
>it all to another person. Presumeably that would include passwords
>too! Someone would have to get this software onto your machine in the
>first place, but that's not difficult if they have physical access to
>it - and (apparently) it's undetectable - if you look in your
>files/programs list you won't find it. does anyone know how you might
>(a) prevent this being put on the first place, and (b)detect it if
>it's already there? I've now been totally put off setting up an
>internet bank account!
>
>Thanks.
>Dulcie

Dulcie,

You need a layered defense strategy to protect yourself (your computer) against
crap like EBLaster. Each layer is necessary because no layer produces complete
protection.

The first layer is a NAT router (hardware firewall). If you have broadband
internet, or PPP-compatible dialup internet, you can and should use a hardware
firewall.

The second layer is a software firewall, or a port monitor like Port Explorer
(free) from <http://www.diamondcs.com.au/portexplorer/index.php?page=home>. See
various discussions in comp.security.firewall for good advice on choosing a
firewall.

The third layer is good software. This layer has multiple components.

AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
Regularly updated.

Adware / spyware protection. Realtime, plus a regularly run adware / spyware
scan. Regularly updated.
Complete instructions, using Spybot S&D and HijackThis (both free) are here:
<http://www.spywareinfo.com/forums/index.php?showtopic=5187>.

Harden your browser. There are various websites which will check for
vulnerabilities, here are three which I use.
http://www.jasons-toolbox.com/BrowserSecurity/
http://bcheck.scanit.be/bcheck/
https://testzone.secunia.com/browser_checker/

Harden your operating system. Check at least monthly.
http://windowsupdate.microsoft.com/

Block possibly dangerous websites with a Hosts file. Three Hosts file sources I
use:
http://www.accs-net.com/hosts/get_hosts.html
http://www.mvps.org/winhelp2002/hosts.htm
(The third is included, and updated, with Spybot (see above)).

Maintain your Hosts file with:
eDexter <http://www.accs-net.com/hosts/get_hosts.html>
Hostess <http://accs-net.com/hostess/>
HostsFileReader <http://members.shaw.ca/techcd/VB_Projects/HostsFileReader.exe>

Secure your operating system, and applications. Don't use, or leave activated,
any account with names or passwords with trivial (guessable) values. Don't use
an account with administrative authority, except when you're intentionally doing
administrative tasks.

The fourth layer is common sense. Yours. Don't install software based upon
advice from unknown sources. Don't install free software, without researching
it carefully. Don't open email unless you know who it's from, and how and why
it was sent.

The fifth layer is education. Know what the risks are. Stay informed. Read
Usenet, and various web pages that discuss security problems. Check the logs
from the other layers regularly, look for things that don't belong, and take
action when necessary.

Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.

• Next message: Chuck: "Re: Virus alarm?"
• Previous message: FromTheRafters: "Re: Graphic Files on Virus, Firewall, Anti-spam"
• In reply to: dulcie: "Spyware which tracks keystrokes?"
• Next in thread: Dulcie: "Re: Spyware which tracks keystrokes?"
• Reply: Dulcie: "Re: Spyware which tracks keystrokes?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Is XP Firewall Sufficient? ... As you've indicated by your post, it (or any other software firewall) is only ... The first layer is a NAT router. ... AntiVirus protection. ... using Spybot S&D and HijackThis are here: ... (microsoft.public.windowsxp.perform_maintain) Re: Network Security Help Please ... I already have a fairly hardened system using Tiny Firewall Pro 6.0 on the ... > layer is necessary because no layer produces complete protection. ... Don't install software based ... (comp.security.firewalls) Re: question about hardware firewall ... basic protection. ... protection - just as the outermost layer of protection. ... The first layer is your NAT router (hardware firewall). ... (comp.security.firewalls) Re: Linksys router and Norton Internet Security ... I've been running Norton Internet Security ... >on the PCs for firewall and antivirus protection. ... >having Norton Internet Security (firewall component) on the PCs ... A NAT router is a good outer layer of defense. ... (comp.security.firewalls) Re: can sasser& Blaster get to the computer? ... Because of a hardware conflict I cannot update the laptop. ... >>Will the desktop computer with the firewall also protect the laptop even if>>I disable the firewall on the laptop? ... Each layer is necessary because no> layer produces complete protection. ... (microsoft.public.windowsxp.help_and_support)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint