I have been using Spybot for many years, but have (today) been forced to remove it because it appears that it has been either hacked, or a vulnerability has been found.
Somehow my computer got infected and was acting as an open http proxy. HitmanPro found and closed Port 8080, but today Port 21320 was open and being used. (Someone at Northwestern monitors the traffic.) Following http://stackoverflow.com/questions/8688949/how-to-close-tcp-and-udp-ports-via-windows-command-line[/url] the process with this port open was ... Spybot.
After unistalling Spybot, IE showed now that my LAN was configured to use 21320 as a proxy. After deleting this something else is still setting that as a proxy (from Hitman), so it may be that something else is still present to hack that port, but its presence was hidden. Hitman closed that port for me (I wish I knew what it did).
I am not an IT professional, just a lowly Prof, so this might be wrong and there might still be something nasty....