Page 17 of 26 FirstFirst ... 7131415161718192021 ... LastLast
Results 161 to 170 of 252

Thread: Suggestions

  1. #161
    Member of Team Spybot PepiMK's Avatar
    Join Date
    Oct 2005
    Location
    Planet Earth
    Posts
    3,579

    Default

    Chrome scanning support has been added in 1.6.1.

    Immunization is not possible with Safari and Chrome currently since both seem to offer no interface for that purpose. Well, Chrome has a database for an Internet blacklist, but we haven't how that could bu (mis)used for immunization yet
    Just remember, love is life, and hate is living death.
    Treat your life for what it's worth, and live for every breath
    (Black Sabbath: A National Acrobat)

  2. #162
    Junior Member
    Join Date
    Dec 2008
    Posts
    2

    Default

    Quote Originally Posted by PepiMK View Post
    You can specify /silent (or the "bigger" /taskbarhide) on the command line to skip this warning
    What command line?

    Not that I don't know what a command line is, but if one is running automatically, there is no place to put this command line option in.

    Please elaborate.

    Same issue with the reference to the /silent documentation - the options are present, but no description of how to make use of them.

  3. #163
    Spybot Advisor Team [Retired] md usa spybot fan's Avatar
    Join Date
    Oct 2005
    Posts
    5,859

    Default

    unsolicited:

    You can add the command line parameters to the scheduled task. For example: by adding the following parameters, Spybot should start, update, immunize and close:
    Code:
    "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autoupdate /autoimmunize /autoclose /taskbarhide
    For additional information on command line parameters that can be used, see the following:

    Getting an answer is one thing, learning is another.


    Microsoft Windows XP Home Edition running on a 2.40GHz IntelŪ PentiumŪ 4 Processor with 512 MB of RAM and a 533 MHz System Bus.

  4. #164
    Senior Member drragostea's Avatar
    Join Date
    Jan 2008
    Location
    @Home
    Posts
    3,674

    Default

    I'm not so familiar with the programming languages, but it would be fun to know how ClearType can be integrated into Spybot, like it uses CT by default if the user's machine has CT enabled.

  5. #165
    Junior Member
    Join Date
    Dec 2008
    Posts
    4

    Thumbs up Thanks!

    Thanks alot md usa spybot fan, you're code is what I was looking for, appreciate it.

  6. #166
    Junior Member
    Join Date
    Dec 2008
    Posts
    3

    Default Suggestion for Speed Improvement

    Hi, thanks for this great software, it's good to see how the best stuff is still free (as so often) and that you're sticking to it for so long. I hope this is generating good business for you and that you managed to get in tune with that mystical Girl we've been praying for

    I just read on your frontpage people complain about speed, and even I am twiddling my thumbs for the hour it takes to scan. So here my suggestion as a software designer, programmer, and database person:

    Your scanning algorithm seems to follow the following nested loop structure:

    for(threat in ALL_THREATS) {
    for(fingerprint in threat.fingerprint) {
    for(fingerprintOnObject in fingerprint.affectedObjects) {
    fingerprintOnObject.check();
    }
    }
    }

    problem with this is a lot of random access seeking 300000 times the same 100000 objects, hitting the registry 200000 times and >100000 times the same <10000 files. Instead, how about streaming the registry and files through a filter that looks for all fingerprints per file rather than files per fingerprint?

    for(object in ALL_THREATENED_OBJECTS) {
    for(objectThreatFingerprint in object.threatFingerprint) {
    objectThreatFingerprint.check();
    }
    }

    that way you check every object (file, registry key) only once and each time you check for all known threat fingerprints. I think you could get a 10x to 100x speed improvement out of that.

    What do you think?

  7. #167
    Junior Member
    Join Date
    Dec 2008
    Posts
    3

    Default Usability Suggestion

    I have one more suggestion about usability. The other day I had a very ugly virtumonde infestation. And eventually it killed my setup to the point where I rebuilt a Windows machine (after > 5 years and 1 hard drive crash). The problem was something was deleting WINDOWS/system32/drivers files (pci.sys was gone). But why did I even restart?

    I restarted because I was trying to kill winlogon before killing that sdss (sp?) process. And I did that because I loaded up some new process killer which I had to do for the first time and hit the wrong button then the machine came down never to boot again.

    This shows:

    - you want to avoid rebooting during clean up as much as you can

    - when something bad has happened, any user will be executing unfamiliar
    stuff under a state of stress with possibly limited access to information (if the browser has a "helper" that spawn malicious processes, you don't want to run the browser to read the fine-print.)

    So, therefore, the more that Spybot S&D is able to kill processes automatically so that it can stop the spawning of malicious processes and insertion of registry keys, the better it is for a successful recovery. That new (?) virtumonde thing can probably teach a lesson into how it could work. You need to

    1. kill the system-process (winlogon?) that spawns processes and inserts keys

    2. while keeping the machine from shutting down and rebooting

    3. do a sanity check on system files required for the next reboot

    4. restore those files from a backup previously stashed away (outside of the recovery checkpoint function, which is affected by the same malware.)

    and finally

    6. Protect Spybot S&D from becoming itself a target for malware (keeping in mind that with increased popularity comes increased exposure.)

    Thanks for all you have already done!

  8. #168
    Member of Team Spybot PepiMK's Avatar
    Join Date
    Oct 2005
    Location
    Planet Earth
    Posts
    3,579

    Default

    6. one small attempt in the current version are the randomly named copies of main executables in the Spybot-S&D folder and that they're marked system & hidden. We have two much stronger concepts at hand for 2.0 though. Not sure if I should mention them here to allew malware creators to counteract before they're even available

    As for the other stuff, you're right there of course, but I wonder what you would think about the bootable CD thing (insert a CD, boot from it, clean stuff while your system is inactive and malware can not interact/conflict) compared to your suggestions?

    edit: overlooked the post above. actually, there is quite of lot of optimization in avoiding multiple lookups. Most of the commands and parameters use pre-created and optimized caches. Whether your suggestion would be a speed improvement or slowdown depends a lot on comparing the number of files to the number of patterns, and modern Windows installations grow quite huge, and has other disadvantages. As for the direction of comparing things, did you see this blog post? I tried to explain a bit about the difference of the two possible approaches and why we feel a hybrid would work best.
    Last edited by PepiMK; 2008-12-28 at 23:02.
    Just remember, love is life, and hate is living death.
    Treat your life for what it's worth, and live for every breath
    (Black Sabbath: A National Acrobat)

  9. #169
    Senior Member TwistedMike's Avatar
    Join Date
    Apr 2008
    Location
    Canada
    Posts
    129

    Default

    is there any set date on when 2.0 will be released??
    For the fastest, safest browsing experience get Google Chrome

  10. #170
    Senior Member
    Join Date
    Oct 2005
    Location
    Germany
    Posts
    5,263

    Default

    Hello,

    No, there is not any date set yet.

    Best regards
    Sandra
    Team Spybot

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •