Let’s face it, as business owners or other professionals; we’re both aware of the threat to our data from computer viruses. We run anti-virus software and update our virus signatures religiously. We don’t install software, download files or save attachments from customers or clients without first virus scanning them. We certainly don’t open unsolicited email attachments.  In short, we’re pretty savvy when it comes to computer viruses and how to avoid them.

Then why did I find myself devoting nearly a day and a half to removing what turned out to be a particularly insidious browser hijacker from my computer a couple of months ago?

The answer, "I have no idea." I have absolutely no idea how it got on my computer and “no idea” is the problem.

My anti-virus software didn’t detect it because anti-virus software is simply not designed to detect a browser hijacker or its particularly evil cousin – spyware.

Browser Hijackers
A browser hijacker (AKA hijackware) is a small program that changes your web browser settings to redirect you to websites you hadn’t intended to visit. Some hijackware changes your default home page and/or search result pages to those of their customers.
 
Others may add porn sites to your favorites list or actually redirect you to these sites. Writers of hijackware are often paid a commission for redirecting people to their sites thus increasing traffic and generating higher ad revenue.

Changing my search result page is what happened to me. I would do a Google search and upon clicking any link on the search result page, I’d be directed to a Cool Web Search (CWS) page instead. The CWS page is nothing more than a large list of links to their customer’s various products. No matter what I searched for on Google, every time I clicked on a result I was taken to the CWS page.

Hijackware may be installed as part of a freeware installation such as a free screen saver, an infected email, a shared file, or – as I suspect in my case – a drive-by download. A drive-by download happens stealthily and occurs when a program is automatically downloaded and installed on your computer simply by visiting a website. Yes, a scary thought.

Spyware
Hijackware’s evil cousin is spyware. Spyware is a small program that is advertised as innocuous freeware or adware (a program that includes advertising until you pay for the non-adware version) but also contains code that secretly collects data on your web browsing history, personal information, installed software, etc. This data is then transmitted to Internet collection servers.

Just like hijackware, spyware generally infects a computer as a result of installing freeware programs, infected email, a shared file, or a drive-by download.

Prevention
With the exception of a drive-by download, avoiding hijackware and spyware is really pretty easy when you keep in mind the old adage, “there’s no such thing as a free lunch.”
No company can stay in business by giving away software (freeware) alone. Unlike companies that allow you to download shareware and trialware in the hopes you’ll like their product and pay for the full version, many (not all) freeware companies make their money by collecting the data harvested through spyware.

Be careful with freeware and in particular, freeware that advertises along the lines of:

• You have a security hole - Click here to fix it FREE!
   
• Download our free software that will speed up your Internet connection!
   
• You have open ports on your computer! Download our free security software now.
   
• Get your free screensaver on us!

Just ask yourself; how are they making money by giving this stuff away?

Even more important; install an anti-spyware program as a compliment to your anti-virus software.

Detection
There are only two ways of knowing if hijackware or spyware is installed on your computer.

The first is if you notice your web browser behaving strangely. For example:

• Your browser’s home page suddenly changes on its own.
   
• You’re directed to odd search results pages.
   
• You’re unable to change browser settings.
   
• You start seeing more pop-ups than usual.
   
• You have toolbars on your web browser that you did not install.
   
• Your browser inexplicably starts crashing or locking up.

The second way of detecting hijackware or spyware is to install anti-spyware software.

Anti-spyware Software
In my research and particularly from the reviews I’ve read, the quantity and quality of anti-spyware software has improved significantly in 2005. In my opinion, this is testament to the growing concern over what has become a major privacy issue.

Personally, I now use two anti-spyware applications for protection – Microsoft Windows AntiSpyware (Beta) and HijackThis.

Microsoft Windows AntiSpyware (Beta) is free for registered Windows users and is based on the former Giant AntiSpyware product. It does pretty much what other software of this genre does – monitors my system, scans it for known problem software and restores settings damaged by hijackware or spyware.

My reason for going with Microsoft Windows AntiSpyware (Beta) over other more highly rated programs is its price (I’m cheap) and because I use a second program – HijackThis.

HijackThis is not for the faint of heart as it doesn’t monitor your system, scan for known hijackware or spyware and doesn’t restore damaged settings. Instead, HijackThis scans and produces a list of certain registry entries and other files that are similar to what hijackware or spyware would create.

HijackThis is an advanced utility that requires advanced knowledge of Windows and operating systems in general. It’s very much for hands-on people.  Using HijackThis, it’s up to me to spot anomalies and delete the offending registry and other files without damaging my system.

If you don’t feel comfortable with this, I don’t recommend HijackThis. If you are a hands-on person, it’s a great little utility.

Other Products
TopTenReviews.com is an excellent source for additional information on anti-spyware software. I highly recommend reading their 2006 Anti-spyware Product Review.

The Bottom Line
Up until two months ago, I didn’t see a personal need for anti-spyware software. I knew the rules about installing programs that seemed too good to be true. I also knew about the ability to surreptitiously install programs on my computer – so called drive-by downloads – but didn’t think it a problem as I make it a point to avoid the bad part of town.

All that changed after I ended up wasting close to 36 hours because of something that could have easily been avoided.

Look, neither of us would ever consider going online without some sort of anti-virus software installed on our computer. Put gently, that would be foolish – just as foolish as not installing some sort of anti-spyware software.

Take it from this reformed fool who has learned his lesson.

More Alaskan Experts >>