The > Technology > Circuits > Q & A: Leave No Footprints in Online Transactions

. I make banking transactions online and would like to know if spyware capable of transmitting keystrokes can obtain my password, giving others access to my account.

A. Spyware, sneaky programs that can invade your computer with or without your direct knowledge, includes a category of programs called keystroke loggers that can record each character you type and transmit that information to someone else on the Internet. This makes it possible for someone to learn passwords and other information.

Advertisement var zflag_nid="162"; var zflag_cid="1665/1"; var zflag_sid="719"; var zflag_width="300"; var zflag_height="250"; var zflag_sz="9";

Key-logging programs are often sold as surveillance tools for parents and corporations, to keep track of what goes on at a computer. But the programs - which can also invade your system as part of a mass e-mail infection - are also being used to invade privacy and steal personal data. If you regularly do business over the Internet, you may want to consider installing security software and keeping your operating system up to date.

One of the biggest dangers of the Internet these days is known as the blended threat, in which two annoyances are bundled as one. An example is junk e-mail with a virus or worm attachment that contains a keystroke-logging program. To combat blended threats, you often need a blended defense.

Antivirus programs are not typically designed to stop spyware from installing itself, but they can often detect malicious attachments. Many Internet security suites, like those maintained by Symantec, McAfee and Trend Micro, sell antivirus software alongside firewall and privacy control programs. Some suites, like McAfee Internet Security Suite 2005 and Trend Micro PC-cillin Internet Security 2005, include spyware detection and removal tools.

Links to some of the better-known, well-reviewed programs available for removing keystroke loggers, including SpyCop and Webroot Spy- Sweeper, are at www.spywareinfo.com/downloads.php.

Firewall and privacy protection programs are available for Macintosh computers, which are generally less vulnerable to the perils of the Internet than Windows machines. Two options are Symantec's Norton Internet Security for Macintosh and Intego's Internet Security Barrier.

Q. Is there a backup program included with Windows XP Home Edition?

A. Microsoft includes a program with Windows XP Home Edition called Backup, but it is not part of the default installation of the operating system. You can usually install it from the Windows XP system CD that came with your computer or that you used to upgrade your PC to Windows XP from an older version of Windows.

To find and install the Backup program, insert your Windows XP CD-ROM into the computer. Go to My Computer and double-click on the icon for the CD. Open a folder on the disc named VALUEADD. Then go to MSFT to NTBACKUP. Double-click on the Ntbackup.msi file in that folder to start the wizard that installs the Backup program on your computer.

The system recovery discs provided by some manufacturers may not include the VALUEADD folder and other files found on Windows XP system discs from Microsoft. If you do not have this folder on the discs that came with your computer, contact its manufacturer to see if the software is available.

Q. What is an S.S.H. connection?

A. S.S.H. stands for Secure Shell. It is a way to log on to another computer remotely. University computer networks, text-based bulletin board systems and electronic card catalogs at some libraries are a few of the places where this type of remote access is still available.

Secure Shell is often used now to make connections instead of Telnet programs. S.S.H. is considered much more secure than Telnet because it encrypts passwords and data being sent across the Internet. There are S.S.H. programs available for most computer systems, including Windows, Macintosh, Unix and OS/2.

Secure Shell was originally developed by SSH Communications Security (www.ssh.com). There is a Frequently Asked Questions site for Secure Shell at www.employees.org/~satch/ssh/faq.