Results 1 to 6 of 6

Thread: Message "Spyware.possible_website_hijack"

  1. #1
    Junior Member
    Join Date
    Jun 2009
    Location
    Hertfordshire U.K
    Posts
    3

    Question Message "Spyware.possible_website_hijack"

    I have installed Spyware doctor on my PC as I was advised to use this to run alongside Spybot and so cover all possible means of protecting myself.

    I am not a knowledgeable computer person so please go easy

    When I update Spybot I see a host of warnings that come from Spyware Doctor and when I run a full scan with Spyware Doctor it reports a threat and infestation as "Spyware.possible_website_hijack" but cannot remove this threat. I contacted Spyware Doctor and they advised the problem could be as follows:

    [Spybot appears to be detecting spywareinfo.com as malicious therefore it
    is utilising the host file to prevent access to this site, however on
    Spyware Doctor's side this site contains no malicious entries therefore
    it is removing host file entries that are trying block access to
    legitimate sites, in this case spywareinfo.com.]


    I do not want to cause any annoyance to either company, both seem to do an excellent job and I have used Spybot for many years with very little problem.

    To be sure of my security I would like to use both products but is this possible in view of the problems above? Any helpful comments appreciated.

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello ajw1100

    Please read this thread from post #2: http://forums.spybot.info/showthread.php?t=44116

    Hope that helps.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #3
    Junior Member
    Join Date
    Jun 2009
    Location
    Hertfordshire U.K
    Posts
    3

    Default

    Thanks for the reply, if I understood more I am sure the link would be helpful but as the writers obviously know a lot about the subject and I know nothing then I am sorry to say it did not help me at all, in truth I got more confused!

    Anyone care to give me a layman's point of view on this?

    I don't wish to 'appear' stupid but at least I am honest!!

  4. #4
    Spybot Advisor Team [Retired] md usa spybot fan's Avatar
    Join Date
    Oct 2005
    Posts
    5,859

    Default

    ajw1100:

    Please see if my explanation in this post within the following thread helps:

    Quote Originally Posted by md usa spybot fan View Post
    … The detection of spywareinfo.com in the Spybot's HOSTS file is most likely a Spyware Doctor false positive (detection). Spybot added spywareinfo.com to the HOSTS file intentionally because the site was sold by the original owner and started advertizing rouge software. …

    Getting an answer is one thing, learning is another.


    Microsoft Windows XP Home Edition running on a 2.40GHz IntelŪ PentiumŪ 4 Processor with 512 MB of RAM and a 533 MHz System Bus.

  5. #5
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello ajw1100,

    It does get confusing.

    Quote Originally Posted by ajw1100 View Post
    I contacted Spyware Doctor and they advised the problem could be as follows:

    [Spybot appears to be detecting spywareinfo.com as malicious therefore it
    is utilising the host file to prevent access to this site, however on
    Spyware Doctor's side this site contains no malicious entries therefore
    it is removing host file entries that are trying block access to
    legitimate sites, in this case spywareinfo.com.]

    The original Spywareinfo domain was sold.

    It appears that site is pushing rogue programs and is intended to make some quick money for the same people that Mike fought for many years... It is selling several rogue programs, including at least one that is considered to be an active infection... I strongly recommend that everyone avoid it unless your PC if quite well armored and I particularly recommend that no one buy anything through it...
    December 2008.
    http://www.spywareinfoforum.com/inde...owtopic=121410

    WOT scorecard
    http://www.mywot.com/en/scorecard/spywareinfo.com

    The domain for the original good guys is now spywareinfoforum.com. That site is not blocked.

    Quote Originally Posted by Yodama View Post
    Thank you for reporting this issue.

    Code:
    spywareinfo.com
    will be blocked in the future. It now does advertise a lot of "scareware"
    http://forums.spybot.info/showthread.php?t=43973

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  6. #6
    Junior Member
    Join Date
    Jun 2009
    Location
    Hertfordshire U.K
    Posts
    3

    Default

    Thanks tashi for enlightening me on this, it seems that Spybot treats Spywareinfo as a probable rogue site and so blocks this whereas Spyware Doctor treats it as a reputable site, you are correct, it is confusing

    I have emailed back to SD to see what they have to say but in the mean time this is the route they advised me to take to remove the problem, although they agreed that doing this would leave SD with no control over some threats.

    SD's reply to me:
    I just checked this (My Hosts file)and the Spyware.possible_website_hijack detections
    you are experiencing is caused by Spybot.

    Spybot appears to be detecting spywareinfo.com as malicious therefore it
    is utilising the host file to prevent access to this site, however on
    Spyware Doctor's side this site contains no malicious entries therefore
    it is removing host file entries that are trying block access to
    legitimate sites, in this case spywareinfo.com.

    I would suggest you contact Spybot for further information and to
    prevent further spywareinfo.com detections add this detection into
    Spyware Doctor's Global Action list.

    1. Open Spyware Doctor and select the 'Settings' button >> 'History'

    2. Locate the spywareinfo.com detection, you should be able to see
    detailed description of the infection at the bottom of the screen.

    3. Once you have located the false positive detection, right click on
    the item and select 'Add to Global Action list'

    The file is now added and will be ignored by all IntelliGuard Tools and
    Spyware Doctor scans.
    Not sure what to do now.....

    I do not wish to start a conflict between two companies but I do not want infections either!!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •