suggestions to spybot

How the heck is Spybot-SD the "funniest" anti-spyware program you used?

what other freeware antispyware has such tools like spybot? i havent found one yet. but some has some small tools.

someone also downloads spybot from torrents i can see, and even other freeware. i always download freeware from the authors sites, or from www . download .com

MalwareBye's AM, is only used for infected computers.

i didnt know that. thats strange. so you should buy mbam only when you know you are infected?

how do i make Quotes? after i have finished and submitted what i wrote?
 
Last edited:
blues said:
How the heck is Spybot-SD the "funniest" anti-spyware program you used?

what other freeware antispyware has such tools like spybot? i havent found one yet. but some has some small tools.

someone also downloads spybot from torrents i can see, and even other freeware. i always download freeware from the authors sites, or from www . download .com

MalwareBye's AM, is only used for infected computers.

i didnt know that. thats strange. so you should buy mbam only when you know you are infected?

how do i make Quotes? after i have finished and submitted what i wrote?
Click to expand...

Ah, that's nice. I see. I just find it funny that people are purposely (or accidentally) infecting their computer which freeware which they can download in a minute. Torrents take forever :P.
--
Actually you can use MBAM free of charge. You can purchase the software for it's full potential. Is your computer having malware problems?
--

Under by post there will be a button: QUOTE. Next to it will be big quotation marks.
 
drragostea said:
Ah, that's nice. I see. I just find it funny that people are purposely (or accidentally) infecting their computer which freeware which they can download in a minute. Torrents take forever :P.
--
Actually you can use MBAM free of charge. You can purchase the software for it's full potential. Is your computer having malware problems?
--

Under by post there will be a button: QUOTE. Next to it will be big quotation marks.
Click to expand...


i have just found out some strange entries or what it is called with hijackthis, they are also in the spybot startuplist. but i dont have symptoms of malware, only ie7 freezing on some webpages, it may be my display driver that is buggy, i cant waste the time the experts in the malware removal forums have with the strange entries when not having symptoms of malware on the computer. i must use the default microsoft driver, or else everything is unreadable. there is also a black bar on right of the screen after formatting, but that may be because of sp2, sp1 worked great but someone installed sp2 on my computer when they were fixing it so i dont know if sp2 is the problem. i think i have read on the laptopvideo2go page that this is a problem with some toshiba laptops. the driver on the toshiba page is the same that i have on my disc. i dont download new drivers, it is just a pain to install all of them one by one. i can make it fullscreen and the black bar is then disappearing, but the picture and text quality is not good.

should i post a log in the malware removal forum? or is that just going to waste their time?
 
I have a problem with IE7 freezing on some pages and on 1 of them (that I know about) it's the phishing filter that's the problem, turn it off and the page loads but leave it on and it crashes
 
Last edited:
Terminator said:
I have a problem with IE7 freezing on some pages and on 1 of them (that I know about) it's the phishing filter that's the problem, turn it off and the page loads but leave it on and it crashes
Click to expand...

i personally dont like the phising filter, but i have never thought of that, maybe that is the cause. if i dont use mvpshosts, hphosts and spybot hostsfiles then it is getting worse and the (what do you call it (fan?) is always making noise on some pages, when there is ads or maybe flash ads on the sites. i think the hostsfiles and immunize in spybot and spywareblaster is better than the microsoft phishingfilter. i have yet to see a page being blocked by the phishing filter.
 
xmlwin.dll (downloader mislead.app)

Hello,
this program xmlwin.dll is an dangerous adware.It adds a registry key to windows registry,and every time you open your win explorer,it open a warning message and redirect you to an antivirus website.Please add it to your database.
if you are infected with it, remove this file and key manually :

Infection:
c:\windows\system32\xmlwin.dll
Browser Cache
Registry:
HKEY_CLASSES_ROOT\CLSID\{B1892F58-1116-4DEC-92AA-577872EC3D3D}
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B1892F58-1116-4DEC-92AA-577872EC3D3D}


thank you
 
elshorbagy said:
Hello,
this program xmlwin.dll is an dangerous adware.It adds a registry key to windows registry,and every time you open your win explorer,it open a warning message and redirect you to an antivirus website.Please add it to your database.
if you are infected with it, remove this file and key manually :

Infection:
c:\windows\system32\xmlwin.dll
Browser Cache
Registry:
HKEY_CLASSES_ROOT\CLSID\{B1892F58-1116-4DEC-92AA-577872EC3D3D}
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B1892F58-1116-4DEC-92AA-577872EC3D3D}


thank you
Click to expand...

if it isnt detected by spybot you should submit it, look at this: http://forums.spybot.info/showthread.php?t=1699
 
I recall that either it was SmitFraud or Zlob that redirects you to those "misleading" sites and changes the HOSTS file so the user cannot access security websites. But I'm sure that SmitFraud bombards the user's desktop with pop-ups.

blues, I would suggest fixing the entries with HiJack This, unless you are really sure what you're doing.

I don't think it can be a malware intervening with the display, so save the time in the Malware Forums.

I think the drivers may be a problem. Yes, it's tedious but it's worth your time. 'Better safe than sorry' (like go the extra step). Microsoft Updates/Windows Update offers driver updates for your display card, modem, and sound drivers. You should definitely check it out.

Confirm the source of Windows XP SP2. Was it from Windows Update?
 
drragostea said:
I recall that either it was SmitFraud or Zlob that redirects you to those "misleading" sites and changes the HOSTS file so the user cannot access security websites. But I'm sure that SmitFraud bombards the user's desktop with pop-ups.

blues, I would suggest fixing the entries with HiJack This, unless you are really sure what you're doing.

I don't think it can be a malware intervening with the display, so save the time in the Malware Forums.

I think the drivers may be a problem. Yes, it's tedious but it's worth your time. 'Better safe than sorry' (like go the extra step). Microsoft Updates/Windows Update offers driver updates for your display card, modem, and sound drivers. You should definitely check it out.

Confirm the source of Windows XP SP2. Was it from Windows Update?
Click to expand...

the display driver on the toshiba page is the same as the one i has on my cd, i have tried it and found that out. the other newer drivers for other things on the computer hasnt fixed the problem. toshiba wont update the drivers for my computer anymore because they have put them in their archives. i have got sp2 from windows update. the only driver microsoft update/windows update have is for my network card. i should download the newer drivers from toshiba again but it wont help me because i have tried exactly that drivers before.

the only thing microsoft update has is microsoft silverlight and exactly the same network card driver that toshiba have, but no sites that i know about use silverlight, but downloading silverlight wont fix my problem. silverlight is such a thing like flash i think.

i wont damage my computer by fixing the hijackthis entries when i dont know what it is. i think it isnt allowed to post my hijackthis log here, but doing that would help me. is it allowed? what should i do with this? two of the entries does belong to something i have had on the computer before, but i dont know if i should fix that ones. it isnt malware. the other entries i dont know what is.

i succesfully removed a chinese toolbar with hijackthis some years ago, the entry i found couldnt be other thing other than the toolbar. the toolbar installed through an exploit i think. i have just some little knowledge what to fix with hijackthis.

is it really necessary to download the drivers? do you use to download new drivers?
 
Chinese toolbar? Do you mean 'Baidu'?

Microsoft Silverlight, heck, has nothing to do with any of your problems. It's just like Adobe Flash. Just that it requires you to run it to see specific Microsoft websites such as the Silverlight itself. Personally, I don't see any use for it.

Second, this forum does not allow HiJack logs to be posted anywhere with the exception of the Malware Forums.
--
http://forums.spybot.info/showthread.php?t=1266
--
You said you have two entries? I don't I can help because even if you did post it, I cannot give you malware solutions to it.

Well, you're story about the Toshiba sounds a lot like another thread... :laugh: it was about HP updates. To the point:
http://www.csd.toshiba.com/cgi-bin/tais/su/su_sc_home.jsp
http://copiers.toshiba.com/support/drivers/drivers.shtml
http://www.csd.toshiba.com/cgi-bin/tais/su/su_sc_modSel.jsp
http://www.toshiba.com/tai/

Alright, I found some links to the drivers. What drivers you have, I have no idea, and it's all up to you.

As for me, I received a driver update for my modem, graphics card, and something else. I forgot the third one. However, on other computer's I've seen updates for sound cards too. However, Microsoft/Windows Update does not offer updates and drivers for all products as it will be time consuming.
--
 
drragostea said:
Chinese toolbar? Do you mean 'Baidu'?

Microsoft Silverlight, heck, has nothing to do with any of your problems. It's just like Adobe Flash. Just that it requires you to run it to see specific Microsoft websites such as the Silverlight itself. Personally, I don't see any use for it.

Second, this forum does not allow HiJack logs to be posted anywhere with the exception of the Malware Forums.
--
http://forums.spybot.info/showthread.php?t=1266
--
You said you have two entries? I don't I can help because even if you did post it, I cannot give you malware solutions to it.

Well, you're story about the Toshiba sounds a lot like another thread... :laugh: it was about HP updates. To the point:
http://www.csd.toshiba.com/cgi-bin/tais/su/su_sc_home.jsp
http://copiers.toshiba.com/support/drivers/drivers.shtml
http://www.csd.toshiba.com/cgi-bin/tais/su/su_sc_modSel.jsp
http://www.toshiba.com/tai/

Alright, I found some links to the drivers. What drivers you have, I have no idea, and it's all up to you.

As for me, I received a driver update for my modem, graphics card, and something else. I forgot the third one. However, on other computer's I've seen updates for sound cards too. However, Microsoft/Windows Update does not offer updates and drivers for all products as it will be time consuming.
--
Click to expand...

i dont know if it was baidu, i think i had ad-aware and spybot at that time, but they didnt detect anything so i had no other choice but fixing it with hijackthis.

i already know were the drivers are, but thanks:)

it seems i maybe are getting help in another forum with my hijackthis log. i will scan my computer with several antimalware software. the only scanners i have is the antivirus antivir, and ad-aware and spybot. antivir didnt find anything, i have not tried ad-aware and spybot yet, but used them not long ago.
 
Why in the world will you start another thread? Having malware troubles?

If you knew where the driver updates were you wouldn't have mentioned it in the first place. Can you update the drivers?

Run a full scan with Ad-Aware and Spybot-SD. The latest version of AdAware is AdAware 2008.

 
drragostea said:
Why in the world will you start another thread? Having malware troubles?

If you knew where the driver updates were you wouldn't have mentioned it in the first place. Can you update the drivers?

Run a full scan with Ad-Aware and Spybot-SD. The latest version of AdAware is AdAware 2008.
Click to expand...

didnt you see this?: the driver on the toshiba page is the same that i have on my disc. (the display driver)

so i know where the drivers are. and i downloaded a bios update from toshiba a while ago that according to them should be newer than the bios i have, but when trying to install it it told me that i have the latest bios. the information about when the drivers were updated is wrong because what seems to be new is the same drivers that i have.

i will see if i download the drivers again, but i will format my computer first, but i will not format in some weeks i think.
 
drragostea said:
Are you having some problems with malware? Is it on your PC?
Click to expand...

spybot detected this on my computer: http://forums.spybot.info/showthread.php?t=30395 so it seems some software or something changed the setting, i hope it is not malware that changed it. i have been getting help in another forum, i posted a hijackthis log on that forum, no malware or suspicious entries were found by the person who helped me said. but it seems that hijackthis didnt detect this change, hijackthis should maybe check more on the computer than it does. i wonder what software on my computer changed this setting, or maybe a malicious website did it. i will run several malwares scanners on my computer.

i found this on a website:
When you encounter a Web page that is trying to run active content on your computer, you will receive a message prompting you to indicate whether you want to allow this. If you are certain that you want to allow the Web page to run ActiveX controls or scripts, click Yes in the message box. By clicking Yes, you allow the active content to run on the Web page you’re viewing, but only on that occasion. If you leave the page and return to it later, you will receive the message again (because you did not change the setting that allows active content to run on your computer).



WORKAROUND
In some cases, say when you're building and testing a webpage locally (Local Machine Zone), you may still see the Information Bar when the web page executes any script, initiates a Pop-up windows, or a download. To totally disable the Local Machine Zone restriction (for running Active Content) (not recommended, though) for valid reasons, read below:

To allow any Web site to run scripts and ActiveX controls on your computer:

In Internet Explorer, on the Tools menu, click Internet Options. On the Advanced tab, scroll down to the Security section of the list. Select the Allow active content to run in files on My Computer check box, and then click OK.

not from the website: so as i understand this allows any website on the web to run active content on the computer, i will say that i am glad that spybot detected this as i dont look at the advanced tab in internet explorer everyday.
 
I've read that thread too. I think it has to do with something with SP3. I think it's something with IE6, although I'm not so sure.

In my opinion, I don't think it's malicious. You have a firewall? How about AV (anti-virus)?

If you've answered this question before, then ignore it. I'm just having some trouble keeping track of every thread.
 
drragostea said:
I've read that thread too. I think it has to do with something with SP3. I think it's something with IE6, although I'm not so sure.

In my opinion, I don't think it's malicious. You have a firewall? How about AV (anti-virus)?

If you've answered this question before, then ignore it. I'm just having some trouble keeping track of every thread.
Click to expand...

i think it is confusing sometimes to read all threads and remember where to reply, because i read almost every new thread but i am not reading so much in the malware removal forum.

i have antivir and use the windows xp firewall. have just scanned my computer with all this software: ad-aware, spywareterminator, a-squared, superantispyware and malwarebytes antimalware. none of them found malware on the computer but some of them found tracking cookies and usage tracks. i changed the settings in the programs to the best settings possible like full scan and other things. but i didnt change the default heuristic setting in antivir from medium to high because deleting what it finds when doing that may maybe harm the computer.

i use only spybot, ad-aware and spywareblaster of the antispywares. and hphosts, mvpshosts and hostsman to avoid seeing annoying ads and to block malicious sites. i dont have other protection than all this, but i have tried several security products with hips and bad behavior blocking software like threatfire.

i too may have asked you this but what security software do you use? how are they to use?
 
No offense to you, blues. But in my opinion... you're OD-ing on software security. That's just "kiddy" term.

In other words, you are acting paranoid.

SAS and MBAM are used for infected computer, let's say heavily infected computers. Personally, I only use SAS Free to catch the things that my other AS's and AV missed. I liked SAS's ability to remove SmitFraud so that's why I kept it.

What I would say to you is that: Never EVER use more than one Anti-virus or firewall. All that will do is cause more trouble.

I use the ADBLOCK PLUS add-on in Firefox, so it mostly "negates" the flashy and annoying banners and ads from most websites. Like those who say "Find your classmates from 1985!" and etc. I use Spybot-Search&Destroy 1.5.2.20 for HOSTS protection.

I also use Comodo's BOCLEAN and Bill P's WinPatrol +.

For a firewall I use Comodo Pro firewall and avast! 4.8 for anti-virus.

Now keep in mind, I am not offering any solutions.
 
drragostea said:
No offense to you, blues. But in my opinion... you're OD-ing on software security. That's just "kiddy" term.

In other words, you are acting paranoid.

SAS and MBAM are used for infected computer, let's say heavily infected computers. Personally, I only use SAS Free to catch the things that my other AS's and AV missed. I liked SAS's ability to remove SmitFraud so that's why I kept it.

What I would say to you is that: Never EVER use more than one Anti-virus or firewall. All that will do is cause more trouble.

I use the ADBLOCK PLUS add-on in Firefox, so it mostly "negates" the flashy and annoying banners and ads from most websites. Like those who say "Find your classmates from 1985!" and etc. I use Spybot-Search&Destroy 1.5.2.20 for HOSTS protection.

I also use Comodo's BOCLEAN and Bill P's WinPatrol +.

For a firewall I use Comodo Pro firewall and avast! 4.8 for anti-virus.

Now keep in mind, I am not offering any solutions.
Click to expand...

the only thing that was detected was the malware that i have in the folder, but i dont count that because the malware was not executed/installed on the computer, right now the malware is in two zip files and two rar files inside another zip file. this is what was detected in the folder: spybot detected a trojan, this scanners detected nothing: spywareterminator, malwarebytes antimalware, and superantispyware. antivir detected 2 trojans a worm and a heuristic detection wich is a hacktool. a-squared detected the same hacktool, ad-aware also detected the hacktool.

they are not false positives. i understand that some detect what others miss, and the ones that detected nothing could have found things the others missed against other malware but i was surprised to see them not detecting anything.

i have tried boclean and winpatrol, but i have lost the trust in comodo when they have added ask toolbar in Comodo Firewall, i dont know if you can avoid installing the toolbar but i will not try comodo products again. i have heard that ask toolbar spyes on people. i will not use one software that add toolbars to their products even if the toolbars are useful. they should have made their own toolbars instead of using toolbars from a third party, but it is all about money. i have tried winpatrol too but didnt like it it warned about every software i installed, it should have a whitelist, so i dont have any antispyware realtimeprotection and the other freeware ones with realtime protection is not my taste. i will never buy security software, i will never know if it would work on my computer, i have had norton internet security but couldnt connect to internet all the times because of it and it slowed down the computer to much. there is no point for me to buy something that detect something once in a year and slows down the computer all the other time.

avast is good, i like it better than avg but it requires registration. i like antivir best and dont care about the big ad it shows every time i update it.

i have never used more than one antivirus and firewall.
 
Last edited:
You don't trust in a software just because it promotes a tool bar ; ). What I don't like about SAS's individual file scanner is that it simply doesn't work. It's crippled. It takes some secs to scan a file. And it reports as 1 file scanned.

Actually the toolbar is created by Comodo theirselves, just that the search engine is based on Ask.com.

WinPatrol doesn't warn about EVERY software installed ; ). You're misunderstanding. It usually has less prompts than TeaTimer.
--
blues said:
...i will never buy security software, i will never know if it would work on my computer...
Click to expand...

What you're saying is false. When you purchase the software it prompts the SYSTEM REQUIREMENTS. That way you won't purchase something accidentally.

I don't buy security software because the suites are more like memory giants. : )
 
You must log in or register to reply here.
Back
Top