PDA

View Full Version : Can Never Clear all "Threats"


Teril
2014-02-28, 14:25
Something I have noticed in the newest version of Spybot that didn't happen in earlier versions is the inability to clear all "threats." I use the term threats loosely since, thus far, I have only picked up tracks, cookies, etc. - nothing above the green level of severity. In the earlier versions (I have been using Spybot for approximately 10 years) once I ran a scan and "fixed" the results a second scan run immediately after displayed no results. With this version no matter how many scans I run in a row I keep picking up results. Again, they are nothing serious and could be the result of surfing the web while running Spybot.

Just wanted to see if this was something others are noticing.
Tom.K
2014-02-28, 15:43
Can you post scan logs to see what has been detected?

If you were surfing while scanning, it might be possible that you have scanning for usage tracks enabled (Tracks.uti checked in Settings > Categories), which keeps detecting MRUs (most recently used files in programs), browser history, cache and similar.
Teril
2014-02-28, 16:45
Thank you so much for your assistance, Tom. I've only used the very basic functions of Spybot and never knew about the various settings so I really appreciate your mentioning them. I just checked and did indeed have the tracking you mentioned enabled. I'll have to look at the other settings to see if I really need everything that is currently selected.

My scan log from this morning is below. The only thing I changed was to take out my name and put "name" in its place:

Search results from Spybot - Search & Destroy

2/28/2014 7:43:53 AM
Scan took 00:13:35.
30 items found.

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\chatango.com\cm.sol
Properties.size=37
Properties.md5=2CE69AABD6593774B0C63016761ED083
Properties.filedate=1393532358
Properties.filedatetext=2014-02-27 15:19:17

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\chatango.com\fixed_id.sol
Properties.size=54
Properties.md5=2E491E61E3112CE7319B77E95CD67091
Properties.filedate=1393523837
Properties.filedatetext=2014-02-27 12:57:16

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\chatango.com\mini_login.sol
Properties.size=48
Properties.md5=24D469038E947632F5BA50468F0384C0
Properties.filedate=1393523887
Properties.filedatetext=2014-02-27 12:58:06

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\chatango.com

\paulbegleyprophecy.sol
Properties.size=51
Properties.md5=BA973D4081D9D5075E1DE9F31C4249E1
Properties.filedate=1393523851
Properties.filedatetext=2014-02-27 12:57:31

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\effectivemeasure.net

\EM_APP.sol
Properties.size=100
Properties.md5=F2937602CDF67AAEB8514021295AC25E
Properties.filedate=1393538442
Properties.filedatetext=2014-02-27 17:00:42

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\login.yahoo.com

\loginCache.sol
Properties.size=79
Properties.md5=33F3DD906BD3CE5E825C965FCCF82579
Properties.filedate=1393194712
Properties.filedatetext=2014-02-23 17:31:52

Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\Name\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\A6MQF32B\skype.com\#ui

\preferences.sol
Properties.size=234
Properties.md5=1B73037BA15BA4B872F465E5E258C2C5
Properties.filedate=1393536613
Properties.filedatetext=2014-02-27 16:30:13

MS Office 9.0: [SBI $4E2AF2AC] Recently used files (8 files) (Directory, nothing done)
C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Debt Free Living.LNK
Directory.subfile.size=510
Directory.subfile.md5=764E4904695B75AB257D091BDA84E5A2
Directory.subfile.filedate=1393590415
Directory.subfile.filedatetext=2014-02-28 07:26:55
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Desktop.LNK
Directory.subfile.size=333
Directory.subfile.md5=75B6D970197AF9DDE1E6639EE1D7316F
Directory.subfile.filedate=1393590479
Directory.subfile.filedatetext=2014-02-28 07:27:59
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Dr. Klein - Feb. 18, 2014.LNK
Directory.subfile.size=555
Directory.subfile.md5=54C88D60CC79464A9C75A09DB444E577
Directory.subfile.filedate=1393193870
Directory.subfile.filedatetext=2014-02-23 17:17:50
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Easy Recipes.LNK
Directory.subfile.size=490
Directory.subfile.md5=F35569129CF64E8B7A4F93FDC59146E9
Directory.subfile.filedate=1393590479
Directory.subfile.filedatetext=2014-02-28 07:27:59
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Food - Recipes.LNK
Directory.subfile.size=459
Directory.subfile.md5=D3DF6ED52095C522D3EC954B0913026F
Directory.subfile.filedate=1393590472
Directory.subfile.filedatetext=2014-02-28 07:27:52
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Food Tips & Easy.LNK
Directory.subfile.size=636
Directory.subfile.md5=09C39636C4303C71A63B786FAFC0E8F2
Directory.subfile.filedate=1393590465
Directory.subfile.filedatetext=2014-02-28 07:27:44
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\Olaf Visit.LNK
Directory.subfile.size=480
Directory.subfile.md5=E9144E6113A936A6AB708930DC145967
Directory.subfile.filedate=1393193960
Directory.subfile.filedatetext=2014-02-23 17:19:20
Directory.subfile=C:\Users\Name\AppData\Roaming\Microsoft\Office\Recent\To Do & Shopping List.LNK
Directory.subfile.size=535
Directory.subfile.md5=1DB7655F5DC710ACA1BFA195B59398A7
Directory.subfile.filedate=1393590445
Directory.subfile.filedatetext=2014-02-28 07:27:25

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Internet Explorer\TypedURLs

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\MostRecentApplication\Name

MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Direct3D

\MostRecentApplication\Name

MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplication\Name

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\DirectInput

\MostRecentApplication\Name

MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\DirectInput

\MostRecentApplication\Id

MS Office 9.0 (Word): [SBI $EC31BB71] Recently used file list (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Office\9.0\Word\Data

\Settings

MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Windows\CurrentVersion

\Applets\Paint\Recent File List

MS Regedit: [SBI $C3B62FC1] Recent open key (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Windows\CurrentVersion

\Applets\Regedit\LastKey

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows.OpenWith: [SBI $CDE7D0A6] Open with list - .ASX extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Windows\CurrentVersion

\Explorer\FileExts\.ASX\OpenWithList

Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Windows\CurrentVersion

\Explorer\FileExts\.BMP\OpenWithList

Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-1891851759-1068591585-2148513898-1000\Software\Microsoft\Windows\CurrentVersion

\Explorer\RecentDocs

Cookie: [SBI $49804B54] Browser: Cookie (38) (Browser: Cookie, nothing done)


Cache: [SBI $49804B54] Browser: Cache (342) (Browser: Cache, nothing done)


History: [SBI $49804B54] Browser: History (139) (Browser: History, nothing done)


Cookie: [SBI $49804B54] Browser: Cookie (497) (Browser: Cookie, nothing done)



--- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) ---

2013-09-20 blindman.exe (2.2.18.151)
2013-09-20 explorer.exe (2.2.18.177)
2013-09-20 SDBootCD.exe (2.2.18.109)
2013-09-20 SDCleaner.exe (2.2.18.110)
2013-09-20 SDDelFile.exe (2.2.18.94)
2013-06-18 SDDisableProxy.exe
2013-09-20 SDFiles.exe (2.2.18.135)
2013-09-20 SDFileScanHelper.exe (2.2.16.1)
2013-10-15 SDFSSvc.exe (2.2.25.211)
2013-10-10 SDHookHelper.exe (2.3.30.2)
2013-10-10 SDHookInst32.exe (2.3.30.2)
2013-10-10 SDHookInst64.exe (2.3.30.2)
2013-09-20 SDImmunize.exe (2.2.18.130)
2013-05-16 SDLogReport.exe (2.1.18.107)
2013-10-14 SDOnAccess.exe (2.2.25.4)
2013-09-20 SDPESetup.exe (2.2.18.3)
2013-09-20 SDPEStart.exe (2.2.18.86)
2013-09-20 SDPhoneScan.exe (2.2.18.28)
2013-09-20 SDPRE.exe (2.2.18.22)
2013-09-20 SDPrepPos.exe (2.2.18.10)
2013-09-20 SDQuarantine.exe (2.2.18.103)
2013-09-20 SDRootAlyzer.exe (2.2.18.116)
2013-09-20 SDSBIEdit.exe (2.2.18.39)
2013-09-20 SDScan.exe (2.2.18.177)
2013-09-20 SDScript.exe (2.2.18.53)
2013-10-15 SDSettings.exe (2.2.25.138)
2013-09-20 SDShell.exe (2.2.18.2)
2013-09-20 SDShred.exe (2.2.18.107)
2013-09-20 SDSysRepair.exe (2.2.18.101)
2013-09-20 SDTools.exe (2.2.18.150)
2013-07-25 SDTray.exe (2.1.21.129)
2013-09-20 SDUpdate.exe (2.2.18.91)
2013-09-20 SDUpdSvc.exe (2.2.18.76)
2013-09-20 SDWelcome.exe (2.2.21.129)
2013-09-13 SDWSCSvc.exe (2.2.22.2)
2013-06-19 spybotsd2-translation-frx.exe
2014-01-28 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98)
2013-05-16 SDAV.dll
2013-05-16 SDECon32.dll (2.1.18.113)
2013-05-16 SDECon64.dll (2.1.18.113)
2013-04-05 SDEvents.dll (2.1.16.2)
2013-10-14 SDFileScanLibrary.dll (2.2.25.14)
2013-10-10 SDHook32.dll (2.3.30.2)
2013-10-10 SDHook64.dll (2.3.30.2)
2013-05-16 SDImmunizeLibrary.dll (2.1.18.2)
2013-05-16 SDLicense.dll (2.1.18.0)
2013-05-16 SDLists.dll (2.1.18.4)
2013-05-16 SDResources.dll (2.1.18.7)
2013-05-16 SDScanLibrary.dll (2.1.18.131)
2013-05-16 SDTasks.dll (2.1.18.15)
2013-05-16 SDWinLogon.dll (2.1.18.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2013-05-16 Tools.dll (2.1.18.36)
2014-01-08 Includes\Adware-000.sbi (*)
2014-01-08 Includes\Adware-001.sbi (*)
2014-02-26 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-01-08 Includes\Dialer-000.sbi (*)
2014-01-08 Includes\Dialer-001.sbi (*)
2014-01-08 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2014-01-08 Includes\Hijackers-000.sbi (*)
2014-01-08 Includes\Hijackers-001.sbi (*)
2014-01-08 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2014-01-08 Includes\Keyloggers-000.sbi (*)
2014-01-08 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2014-01-09 Includes\Malware-001.sbi (*)
2014-01-09 Includes\Malware-002.sbi (*)
2014-02-05 Includes\Malware-003.sbi (*)
2014-01-28 Includes\Malware-004.sbi (*)
2014-01-09 Includes\Malware-005.sbi (*)
2014-02-26 Includes\Malware-006.sbi (*)
2014-01-09 Includes\Malware-007.sbi (*)
2014-02-19 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2013-12-23 Includes\MalwareC.sbi (*)
2014-01-15 Includes\PUPS-000.sbi (*)
2014-01-15 Includes\PUPS-001.sbi (*)
2014-01-15 Includes\PUPS-002.sbi (*)
2014-02-26 Includes\PUPS-C.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2014-01-07 Includes\PUPSC.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2014-01-08 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2014-01-08 Includes\Spyware-000.sbi (*)
2014-01-08 Includes\Spyware-001.sbi (*)
2014-01-08 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2014-01-15 Includes\Trojans-000.sbi (*)
2014-01-15 Includes\Trojans-001.sbi (*)
2014-01-15 Includes\Trojans-002.sbi (*)
2014-01-15 Includes\Trojans-003.sbi (*)
2014-01-15 Includes\Trojans-004.sbi (*)
2014-01-15 Includes\Trojans-005.sbi (*)
2014-01-15 Includes\Trojans-006.sbi (*)
2014-01-15 Includes\Trojans-007.sbi (*)
2014-01-15 Includes\Trojans-008.sbi (*)
2014-01-15 Includes\Trojans-009.sbi (*)
2014-02-26 Includes\Trojans-C.sbi (*)
2014-01-15 Includes\Trojans-OG-000.sbi (*)
2014-01-15 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-006.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2014-01-15 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-019.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2014-01-15 Includes\Trojans-ZB-000.sbi (*)
2014-01-15 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)
Tom.K
2014-02-28, 18:47
Yep, just usage tracks. turn off Tracks.uti from Categories in settings and you should be fine after that. They aren't a threat, they are only traces of history on PC.
Teril
2014-02-28, 21:58
Thank you so much again for your help.