suggestions to spybot

[blues]

hi. i have some suggestions to spybot, i can see that i have 11 hostsfile backups in the hostsfile folder, maybe they can be removed by spybot so we dont have to do that manually because the folder is just growing and growing and some people maybe dont know the folder is growing, i mean it is just necessary to have just one backup.

the other one is that maybe the installation wizard can ask if you want to disable the dnsclient to avoid slow browsing speed, maybe someone dont understand why their browsing is a bit slower than before. and it have been great to have a hostsfile server to serve up images or empty images to make the browsing even faster, and to avoid to having to hit the backbutton in the browser several times to get back to where people was, but that happenes only sometimes and mostly when a ad or something is blocked on the site they are visiting, maybe you should link to hostsman wich has a hostsserver and is able to download other hostsfiles and then we just merge spybots hostsfile to the others, that will be even more protection than we had before. i use hphosts and mvpshosts together with the spybot hostsfile and almost never see ads and other annoyances.

its sad to see poor test results by spybot on the calendarofupdates site made by donna, but i love spybot anyway and will never stop using it, and i hope that all the tools and immunize will never be removed from spybot

and maybe the logs should be not only in the advanced mode, but in the standard mode, to be easy for newbies to delete them when they are not needed anymore, to avoid the growing of the logs endlessly.

is it safe to remove the usage tracks found by spybot?

maybe you should go together with the makers of hphosts, mvpshosts, hostsman, spywareblaster, ccleaner and an antivirus to make a powerfull security suite

 

[drragostea]

its sad to see poor test results by spybot on the calendarofupdates site made by donna, but i love spybot anyway and will never stop using it, and i hope that all the tools and immunize will never be removed from spybot

This is because Spybot scans specifically for certain entries. Spybot however, does not function like AV... it does detect trojans, malware, spyware, keyloggers, bots, and some rookits. But it does not detect viruses.

However, compared to SAS and A-squared they have a vast database, enabling the user to scan with 'Smart' scan or a 'Deep' scan.
--

and maybe the logs should be not only in the advanced mode, but in the standard mode, to be easy for newbies to delete them when they are not needed anymore, to avoid the growing of the logs endlessly.

Your post should have been posted in the SUGGESTIONS forum, as these features are suggested by users to be added into future Spybot versions.
--

hey are not needed anymore, to avoid the growing of the logs endlessly.

is it safe to remove the usage tracks found by spybot?

maybe you should go together with the makers of hphosts, mvpshosts, hostsman, spywareblaster, ccleaner and an antivirus to make a powerfull security suite

This would depend on what the trackage is. If it is tracking cookies, then it would safe to remove. You can also clear the cookies, cache, and temp. files once in a while manually.

As for the integrated Security, I honestly don't think that SaferNetworking will do that. AV's, CCleaner, Javacool, and MVPHosts are separate companies who do their own work and create their own software.

 

[blues]

i asked about usage tracks because it seemed like spybot finds registry entries and tracks in the registry, and i saw a thread here today about that registry cleaners was not recommended and was because of that worried to delete what spybot finds.

i didnt mean that spybot was no good, sorry if i seemed to mean that:sad: as i have read about spybot it is mostly scanning the registry to see if there is malware on the computer, and that explained why i almost never hear or see disc activity, but maybe i have misunderstood.

i like this forum and is reading here everyday

 

[drragostea]

Hm. It's okay.

You don't see Spybot's scanning activity? When you do a scan, Spybot shows your the progress and if there are any found entries.

Can you give some examples of the entries Spybot found? Like what name of the "user trackage".

 

[blues]

yes i see the progress bar.

this is what spybot found: almost all are usage tracks.


--- Report generated: 2008-06-26 20:02 ---

Microsoft.Windows.RedirectedHosts: [SBI $97C2C277] Omdirigert vert (Omdirigert vert, nothing done)
www.experts-exchange.com=127.0.0.1

Microsoft.Windows.RedirectedHosts: [SBI $926098F7] Omdirigert vert (Omdirigert vert, nothing done)
experts-exchange.com=127.0.0.1

Microsoft.Windows.RedirectedHosts: [SBI $C1DEB1AF] Omdirigert vert (Omdirigert vert, nothing done)
ask.com=127.0.0.1

Microsoft.Windows.RedirectedHosts: [SBI $25161DD4] Omdirigert vert (Omdirigert vert, nothing done)
www.ask.com=127.0.0.1

Log: Activity: SchedLgU.Txt (Backup fil, nothing done)
C:\WINDOWS\SchedLgU.Txt

Log: Activity: imsins.log (Backup fil, nothing done)
C:\WINDOWS\imsins.log

Log: Install: comsetup.log (Backup fil, nothing done)
C:\WINDOWS\comsetup.log

Log: Install: ocgen.log (Backup fil, nothing done)
C:\WINDOWS\ocgen.log

Log: Install: setupact.log (Backup fil, nothing done)
C:\WINDOWS\setupact.log

Log: Shutdown: System32\wbem\logs\wbemess.lo_ (Backup fil, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemess.lo_

Log: Shutdown: System32\wbem\logs\wbemess.log (Backup fil, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemess.log

Log: Shutdown: System32\wbem\logs\wmiprov.log (Backup fil, nothing done)
C:\WINDOWS\System32\wbem\logs\wmiprov.log

Ahead Nero Burning Rom: [SBI $F3FD92E9] Working directory (Registerendring, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Ahead\Nero - Burning Rom\Settings\WorkingDir

Internet Explorer: [SBI $FF589D0C] Download directory (Registerendring, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Microsoft\Internet Explorer\Download Directory

MS Management Console: [SBI $ECD50EAD] Recent command list (2 filer) (Registernøkkel, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Microsoft\Microsoft Management Console\Recent File List

MS Direct3D: [SBI $7FB7B83F] Most recent application (Registerendring, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name

MS Direct3D: [SBI $C2A44980] Most recent application (Registerendring, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Microsoft\Direct3D\MostRecentApplication\Name

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registerendring, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

Windows Explorer: [SBI $2026AFB6] User Assistant history IE (5 filer) (Registernøkkel, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{5E6AB780-7743-11CF-A12B-00AA004AE837}\Count

Windows Explorer: [SBI $6107D172] User Assistant history files (51 filer) (Registernøkkel, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{75048700-EF1F-11D0-9888-006097DEACF9}\Count

WinRAR: [SBI $B510882E] Extraction directory history (1 filer) (Registernøkkel, nothing done)
HKEY_USERS\S-1-5-21-329068152-789336058-1343024091-1003\Software\WinRAR\DialogEditHistory\ExtrPath

Cookie: [SBI $49804B54] Cookie (42) (Cookie, nothing done)


Cache: [SBI $49804B54] Cache (4565) (Cache, nothing done)


History: [SBI $49804B54] Historie (538) (Historie, nothing done)



--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---

2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.8)
2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2008-05-26 unins000.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2008-06-17 Includes\Adware.sbi (*)
2008-06-18 Includes\AdwareC.sbi (*)
2008-06-03 Includes\Cookies.sbi (*)
2008-06-03 Includes\Dialer.sbi (*)
2008-06-24 Includes\DialerC.sbi (*)
2008-06-03 Includes\HeavyDuty.sbi (*)
2008-06-16 Includes\Hijackers.sbi (*)
2008-06-17 Includes\HijackersC.sbi (*)
2008-06-25 Includes\Keyloggers.sbi (*)
2008-06-24 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-06-24 Includes\Malware.sbi (*)
2008-06-24 Includes\MalwareC.sbi (*)
2008-06-17 Includes\PUPS.sbi (*)
2008-06-24 Includes\PUPSC.sbi (*)
2007-11-07 Includes\Revision.sbi (*)
2008-06-10 Includes\Security.sbi (*)
2008-06-18 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2008-06-17 Includes\Spyware.sbi (*)
2008-06-17 Includes\SpywareC.sbi (*)
2008-06-03 Includes\Tracks.uti (*)
2008-06-24 Includes\Trojans.sbi (*)
2008-06-25 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll

this comes from hphosts and i just ignore the entries experts-exchange.com and ask.com

when they recommend to not use registry cleaners in this forum then i am unsure if i should delete the usagetracks because almost everything found is in the registry. i have used glary utilities one time, and that corrupted one of my programs.

 

[drragostea]

Ooof. I'm not specialized in these areas *chuckle :red:.

However, I see there there was a HOSTS redirection...

Check your IE homepage. What is it?

 

[Zenobia]

There is a definition of usage tracks here:
http://www.safer-networking.org/en/dictionary/usagetracks.html

and more info here:

Usage tracks allow any user with direct access to your machine to see what files you have worked on recently. If that user is you, those tracks are even a feature. There is no other harm done by usage tracks.

Usage tracks should be pretty safe to fix,I've done it for years and had no problems so far.But,you should do what you feel most comfortable doing,so if you'd rather not fix tracks,you could set Spybot to a spyware scan only by opening Spybot,click mode up top,then select Advanced Mode(say yes to the prompt.)Then,over to the left,click Settings,then File Sets.Rightclick somewhere in the window to the right,and select Spyware check only.You can return Spybot back to Default Mode,using Mode up top once again.

Or,if you'd prefer to still scan for tracks,but there are some you'd rather not fix,you could get Spybot to ignore that usage track.There is more about that here:
http://www.safer-networking.org/en/howto/exclude.html
And more info here:
http://www.safer-networking.org/en/paragraphs/tutorial_exceptions.html
Or,you could just decide not to checkmark any usage tracks you don't want fixed.For example,if you wanted to keep your cookies,then you could leave Cookie unchecked.

Also,if you're looking at one of the tracks and would like more info about it,you could click it and then click the gray button to the right,Spybot sometimes has a description of that particular track.

When Spybot scans for tracks it just looks for specific things like mrus,cookies,logs,etc,anything tracks related.It's main goal isn't to 'clean' your registry,just tracks.
Registry cleaners are out to clean only the registry,and registry cleaners scan for a lot more things,like wrong app paths,unused file extensions,missing shared .dlls,obsolete software keys,etc.,etc.By my view,that opens up more margin for error.

Here,drragostea,the redirected hosts was explained by blues at the bottom of the post,you might have missed it.

this comes from hphosts and i just ignore the entries experts-exchange.com and ask.com

 

[blues]

my ie homepage is www.google.no

thanks Zenobia for the explanation.

i call me blue on the hphosts forum and have made a thread there about spybot and that hostsfile entries, i hope i havent written something on hphosts forum about spybot that offended someone, you can read it if you want. i think ask toolbar tracks users, so thats the reason why it is blocked by hphosts.

should i submit malicious sites on this forum so that it can be blocked by the spybot immunize?

i have stopped using ccleaner because i am afraid it will damage my computer like glary utilities did.

 

[Terminator]

I've been using CCleaner for 4 years now and it's NEVER caused me any problems, so long as you leave the "Advanced" section alone you can use it without any significant risks.

 

[blues]

i have never seen troubles either when using ccleaner, but some pictures on some sites dont show up after using it, but they come back later.

and another thing is if you dont know, adobe has a page where you can chang different options for flash, but i think i have read about ccleaner deleting the options you set in the flash control panel, but i cant find the thread or forum that i readed it on.

 

[Zenobia]

thanks Zenobia for the explanation.

You're welcome.

I think perhaps hphosts is a bit more strict in the sites they block than Spybot is.I personally would not like to see Spybot immunize or block some(some,not all)sites that hphosts does,but that is just my own personal opinion.

 

[drragostea]

Glary? Hm. It did find some entries. Quite alot. CCleaner does a good job for me.

I can't recommend CCleaner unless... it was for like installation problems.

Like Greyfox said in earlier posts, CCleaner would be like a chainsaw to a child. It means like it can be dangerous if not properly handled or used.

 

[blues]

yes, hphosts is more strict. but it block more ads than spybot, and we can submit malicious sites so they can be bloced.

where can i submit malicious sites to maybe be included in the spybot immunize? is it allowed? if not, why not?

drragostea: maybe only the registry cleaner in ccleaner is dangerous to use i dont know. i think it is a reason why microsoft and others place empty registry keys in the registry. but i dont think ccleaner is detecting such, but others do. who wants to buy tuneuputilities and such software that can possible screw up the computer? backups done by the programs wont always help if something is totally damaged. if that happens then formatting is the next and that takes a hole day to do for me. i dont need or want trackcleaners or registry cleaners. the only thing i do is not installing many software and i delete the temporary internet files from time to time so the antiviruses wont have to take so long time to scan the computer.

i only use as few software as possible, and java should never existed, it takes up space and i almost never need it other than with speed tests. i only use freeware but i dont know if freeware antiviruses is not so good as paid for ones but i are not scared for viruses and other malware but i use several protection software like spybot with immunize and bad download blocker, spywareblaster, mvps hosts, hphosts, and antivir. and hostsman wich i use because i like it and need it for using hostsfiles in the best way. i also use ad-aware but spybot ad-aware and antivir never find anything, and i have not had malware on the computer in several years. but spybot is detecting two entries from hphosts but they are probably false positives because i have asked about them in the hphosts forum.

why have antiviruses and antispyware running when they detect something maybe one time in a year, its like throwing money in the garbage if you ask me, i will never pay for something like that. i wish there wasnt so many evil people that make malware and sometimes force money from people, if it wasnt such people then we dont need security software. they probably have a lot of fun damaging computers, and spy on us, they cant have it good with themself.

 

[Terminator]

why have antiviruses and antispyware running when they detect something maybe one time in a year, its like throwing money in the garbage if you ask me, I will never pay for something like that. I wish there wasn't so many evil people that make malware and sometimes force money from people, if it wasnt for such people then we wouldn't need security software. they probably have a lot of fun damaging computers, and spy on us, they cant have it good with themself.

People like having peace of mind thats why they install anti virus and anti spyware software. In this day and age not securing your computer is suicide, in the last six months alone my free anti-virus program as stopped 3 viruses, 1 trojan and 1 Root-kit from ruining my dayolice:.

Personally i'm glad my security software rarely finds anything.
Sometimes It's better for a scanner:cleaning: to find nothing then something.

 

[blues]

if i visit a malicious page and antivir detect malware on the page, that doesnt mean that i were to get it on the computer if i didnt have antivir, maybe antivir is just detecting a security hole that is being exploited, but the hole is really patched from microsoft.

one thing i dont like is when antispywares detect tracking cookies, why dont they block them as spybot does?

if you must pay to block tracking cookies then i think that is stupid, they scare people by detect tracking cookies and maybe some people think that the antispyware that detects most tracking cookies is the best, maybe some people dont know that tracking cookies is not malware.

spybot does it the right way and blocks them

if some one doesnt like tracking cookies they can activate cookies only on sites they trust because no antispyware detects all tracking cookies.

i dont take the time to drag the cookies slider up and down all the day.
if someone dont trust the sites they are visiting they can drag the internet zone security slider to high and set it to default maybe when visiting sites they trust, but that is just too much work for me, but it can be clever sometimes and even trusted sites can be hacked and try to install malware.

 

[drragostea]

yes, hphosts is more strict. but it block more ads than spybot, and we can submit malicious sites so they can be bloced.

where can i submit malicious sites to maybe be included in the spybot immunize? is it allowed? if not, why not?

drragostea: maybe only the registry cleaner in ccleaner is dangerous to use i dont know. i think it is a reason why microsoft and others place empty registry keys in the registry. but i dont think ccleaner is detecting such, but others do. who wants to buy tuneuputilities and such software that can possible screw up the computer? backups done by the programs wont always help if something is totally damaged. if that happens then formatting is the next and that takes a hole day to do for me. i dont need or want trackcleaners or registry cleaners. the only thing i do is not installing many software and i delete the temporary internet files from time to time so the antiviruses wont have to take so long time to scan the computer.

i only use as few software as possible, and java should never existed, it takes up space and i almost never need it other than with speed tests. i only use freeware but i dont know if freeware antiviruses is not so good as paid for ones but i are not scared for viruses and other malware but i use several protection software like spybot with immunize and bad download blocker, spywareblaster, mvps hosts, hphosts, and antivir. and hostsman wich i use because i like it and need it for using hostsfiles in the best way. i also use ad-aware but spybot ad-aware and antivir never find anything, and i have not had malware on the computer in several years. but spybot is detecting two entries from hphosts but they are probably false positives because i have asked about them in the hphosts forum.

why have antiviruses and antispyware running when they detect something maybe one time in a year, its like throwing money in the garbage if you ask me, i will never pay for something like that. i wish there wasnt so many evil people that make malware and sometimes force money from people, if it wasnt such people then we dont need security software. they probably have a lot of fun damaging computers, and spy on us, they cant have it good with themself.

I've never said anything about using CCleaner. I wouldn't bother with Glary and TuneUpUtilities. Bad thing is that back then before I joined this forum, I used to go OD on updates. Thinking that this "TuneUpUtility" optimizer might boost my PC, I tried it. It told me that "explorer.exe" was using too much memory and was not necessary. -.- I killed it, blind that explorer.exe was my desktop.

I don't really see how people purchase these software, thinking that they'll boost the speed.

Malware creators love making rogue software, to create panick to the victim, and steal sensitive information.

Tracking cookies are still in open debate. One side says that it's malicious, while others say it's not. In my personal opinion, I don't really think it's malicious, because it's just a file in your browser which can be cleaned with ease. However, some cookies like "tribalfusion" and "ad.yieldmanager" track your surf behavior. While this happens, other software or sites sell your email if you submit it, making it a great moment to make $$$ while spambots farm on your email. tribalfusion, burstmedia, blackcore, cpxinteractive, etc. are mostly caught by visiting... hm sites such as cheatcc(.)com or Neopets for example.

Quite some stuff these days. In 2002, malicious software and drive-by-downloads were a joke!

I don't see why you don't need Java. Well, I have to admit, not really a lot of programs and software run Java. Some do like online scanners like Housecall.
It doesn't take up memory/computer resources unless you are running it's updater. And trust me there won't be an update in 3 months or so. Java usually takes up around 120MB or so of drive space.

In my arsenal, I simply use avast! 4, SAS, Spybot-SD, SpywareBlaster, WinPatrol +, and Comodo Pro.

For uninstallers I use REVO. Browsers are FF3 and IE7. I tested Safari and Opera 9.5... it was junk. -.-

 

[blues]

i thought you and terminator was the same person, because you both have a penguin picture.

Quite some stuff these days. In 2002, malicious software and drive-by-downloads were a joke!

in 2003 i dont think the windows firewall and microsoft updates was on by default, and i was going to warez sites and other bad sites and got lots of malware and a dialer, i finally got rid of the dialer and i went crazy and deleted all parts of the dialer i found, i was deleting it manually, but i dont recommend anybody deleting what they think are the malware manually because it may be files needed by the operating system.

i use antivir, and has stopped using avg because of linkscanner or what it is called, because it slowed down my google searches.

i dont trust superantispyware, but maybe without a reason and is not using it, spybot seems it is made from the heart (it is good i mean) and not for making money, i have thought about donating to spybot but i am not sure how i do it.

i had kazaa and didnt now it had included malware, but i saw something kalled gain on my computer wich was gator, and then someone downloaded ad-aware on my computer and it found lots of malware, then i visited a site called spywareinfo and learned a lot about malware from there, and there i found spybot and spywareblaster i think. and learned about the hostsfile from other sites, and in this year 2008 i think, i joined my first security forum and that was hphosts forum and made a thread there about spybot and the hostsfile. it is here if someone is interested: http://forum.hosts-file.net/viewtopic.php?f=5&t=430

is revo a point to have for people when not installing and uninstalling software all the time? i see it has other features too.

other firewalls than windows firewall is annoying i think, and windows firewall has never let anything in on my computer, but it lets everything go out.

 

[idd00jea]

When will be SpyBot S&D completely compatible with Windows Vista ?

When will be SpyBot S&D completely compatible with Windows Vista ?:

 

[blues]

i thought it was fully compatible with vista, but i dont have vista so i dont know.

 

[Terminator]

It is completely compatible with Vista and has been since 1.5.