i just read this from here (http://www.io.com/~cwagner/spyware.html)

Common piggyback sources of advertising malware are most popular file-sharing applications that aren't open-source.............and many "free" applications found on sites like download.com.

is this true? i know i have downloaded a few programs from these types of sites. if i scan for it and run hijackthis weekly, it will detect them right, or is there a way for spyware to be bundled into the coding of a program so it is not detected?

Yes, it is certainly true. Spybot S & D and Adaware, run regularly, ought to pick up any malware on the system, though just like AV, it can sometimes take a day or so for the definitions to be updated, during which period the malware will remain undetected.

The entire point of any type of spyware is to send/receive information to and from yout PC. So no matter how carefully the coding is crafted, the malware will always be detectable by using a packet sniffer. The only undetectable spyware would be one that didn't exchange any information, which would render it harmless anyway.

MaFia JaK
--Yes, it is true that parasites, spyware, etc. download with many programs from the Internet. Usually they are "free" programs. Kazaa would be one the more famous examples. The spyware is the price you pay. And sadly there are a few peripheral makers, that also deposit spyware when you install the equipment you have paid for!
I did not read all the articles in that reference, but one thing you can do before you download "free" programs from the net, is to check out what this site says about the "free" program.
http://www.spychecker.com/
The info is not always up to date or inclusive, but it is a start.
Can the spyware remain undetected? It usually is undetectable when you download the program. It might be detected when you scan (as you should) the downloaded setuup file with antivirus before the installation. But often you will learn only after you are infected, since antivirus programs are really not set up to detect spyware other than viruses.
Will HiJackThis find the spyware? Well, HJT really does not "find" spyware, in the sense that it does not highlight what is and what is not spyware. It generates a log that tells you what programs are running, what ActiveX controls are on your PC, what your home page and search pages are, etc. If you know how to interpret an HJT log, you probably can find whatever spyware is on the PC. But interpretation takes practice and study. VirtualDr has an HJT forum where you can post HJT logs for others to interpret.
I would rather suggest as first steps the info here
http://discussions.virtualdr.com/showthread.php?s=&threadid=167915
and especially run AdAware or SpybotS&D first. They will tell you what spyware is on your PC as long as it is in their data banks.

well i run many spyware tools and virus scanner and other misc. tools regualrly, but i thought since i didnt know this maybe it was a "super" spyware that was harder to remove but i guess i was just being silly

also what is a good packet sniffer?

Originally posted by MaFia JaK
also what is a good packet sniffer?

Many use Etheral (http://www.ethereal.com/)

is there a good site out there that will teach me how to use it?

The help file should give you an idea of how to use it.

thank u sir