StopBadware Report
Click here to return to the reports page

Kazaa
This alert has been archived because the Kazaa peer-to-peer file-sharing software is no longer widely distributed. Kazaa has relaunched as a pay-for-music service. StopBadware has not evaluated the new service's software.

We find that Kazaa is badware because it misleadingly advertises itself as spywarefree, does not completely remove all components during the uninstall process, interferes with computer use, and makes undisclosed modifications to other software.

We currently recommend that users do not install the version of Kazaa that we tested, unless the user is comfortable with the level of risk we identify or until the application is updated consistent with the recommendations in this report.

 
Red_large
OVERALL RATING

Red_smallBadware Behavior 
One bundled application cannot be closed. (Interferes with Computer Use) 
Claims to have "no spyware", but is bundled with software that is considered spyware. (Deceptive Installation) 
Fails to uninstall certain executables and system components. (Unacceptable Uninstallation) 
Adds new links to the Windows Desktop. (Modifies Other Software)
Changes the default 404 and DNS error pages in Internet Explorer (Modifies Other Software)
Installs programs that modify Internet Explorer (Deceptive installation, Modifies other software)


Yellow_smallBehavior to Be Aware Of 
Installs adware (Potentially Deceptive Installation)
Installs file sharing anti-virus software (Potentially Deceptive Installation)

Bad or Undisclosed Behavior
Bundled application cannot be closed
The Best Offers Network, one of the bundled applications included with Kazaa, cannot be closed at all by a typical user. It must be closed by killing the process from within the Windows Task Manager.
Claims "no spyware", but bundled software is considered spyware
Sharman Networks claims that Kazaa has "NO SPYWARE", based on a highly restricted definition of spyware (namely, that no personally identifiable information is sent by the program). However, Kazaa's installation includes several bundled programs that are considered spyware under the common definition of spyware as software that subverts the computer's operation for the benefit of a third party (see Anti-Spyware Coalition and Wikipedia's article on "Spyware").
Fails to uninstall executables and system components
The uninstallation process does not eliminate all components related to Kazaa and its bundled programs. Executables and system components still remain, including the Kazaa Plus Installer.
Adds links to Windows Desktop
Kazaa and its bundled applications add two new links to the Windows Desktop: "Your Free Casino Chips!" and "Play Poker Now!". The addition of these links is not disclosed to the user during the installation process.
Changes default 404 and DNS error pages in Internet Explorer
InstaFinder, one of the applications bundled with Kazaa, changes the default 404 page and DNS error pages in Internet Explorer. This modification is not disclosed to the user during the installation process.
Installs programs that modify Internet Explorer
Kazaa requires the installation of programs that modify Internet Explorer, including AltNet's Need2Find Bar, InstaFinder, and RXToolbar. These programs add several new toolbars to Internet Explorer. The bundling of these applications and the addition of these toolbars is disclosed to the user during the installation process, and the user has the option of proceeding with the installation or canceling it.
Disclosed Behavior to Be Aware of
Installs adware
Kazaa requires the installation of various adware programs, including TopSearch, AltNet Peer Points Manager, Cydoor, and The Best Offers. The bundling of these applications is disclosed to the user during the installation process, and the user has the option of proceeding with the installation or canceling it.
Installs file-sharing anti-virus software
Kazaa requires the installation of file-sharing anti-virus software (BullGuard P2P). The bundling of this application is disclosed to the user during the installation process, and the user has the option of proceeding with the installation or canceling it.

Recommendations
We recommend that Sharman Networks, the producer of Kazaa, do the following:
  • Stop claiming that Kazaa is spyware-free.
  • Ensure that Kazaa is not bundled with programs that cannot be closed by the user.
  • Remove all executables, system components, and registry keys during the uninstall process.
  • Disclose to the user during installation that links that will be added to the Windows Desktop.
  • Disclose to the user during installation that the bundled software will change the default 404 and DNS error pages in Internet Explorer.
We currently recommend that users do not install the version of Kazaa that we tested, unless the user is comfortable with the level of risk we identify or until the application is updated consistent with the recommendations in this report.

For more information, visit www.stopbadware.org.

  
REPORT INFORMATION

REPORT VERSION
Version 1.0

DATE
March 22, 2006


APPLICATION INFORMATION

SELF-IDENTIFICATION
Kazaa's full name is "Kazaa." It advertises itself as a peer-to-peer filesharing agent.

PRODUCER
Kazaa is produced by Sharman Networks, www.sharmannetworks.com

OBTAINED
We obtained a free version of Kazaa 3.0 from http:// download.kazaa.com/ kazaa_setup.exe on 3/14/06.

BUNDLING
The version of Kazaa we downloaded from the above URL comes bundled with TopSearch (www.altnet.com), AltNet Peer Points Manager (www.altnet.com), BullGuard P2P (www.bullguard.com), Cydoor (www.cydoor.com), The Best Offers (www.bestoffersnetworks.com), InstaFinder (www.instafinder.com), and RXToolbar (www.searchenginebar.com).