Computer and Internet Protocol Address Verifier

CIPAV ( Computer and Internet Protocol Address Verifier ) is a Windows-based spy software, which is used by the FBI to search computers of suspects. In contrast to the so-called Federal Trojan, it is used by the FBI with a search warrant. After installation, the software sends data on hard disk contents, used and installed programs, information about the browser and operating system, both serial number, as well as all the user information from the Windows registry. The transmitted activities on the internet are made up of the visited URL, and all controlled IP addresses.

Dissemination of technology

According to the FBI, the software is sent from a computer via e- mail or instant messaging, and installed on the target computer. Also, the software can be transferred to the target computer via Internet offers of other Internet service providers such as MySpace or Gmail.

There is a presumption that this declaration of a technically rather simple distribution is only fed by the FBI to hide the fact that such software is much more effective (ie without user error or breaking into someone else's computer ) by using a man-in -the -middle attack on updates of the operating system or the virus scanner can be installed. If a collaboration with the manufacturers of the operating system or antivirus software is, there is almost no technical possibilities to defend themselves against such attacks for the user.

Federal Trojan

In July 2007, German federal authorities inquired with the U.S. after the monitoring program CIPAV. Whether the program or information on its operation by the FBI to the German federal authorities were forwarded, is unknown.