Spybot question

[John Price]

Greetings, I've been using Adaware for a while, but saw reference to Spybot
and decided to try it, and am lost in knowing how to deal with what it tells
me (yes I have tried reading the tutorial!) and would be grateful for
pointers.

a) I get about 70-80 red alerts referring to BackwebLite. But there is some
indication that HP uses Backweb - and I have a HP printer installed. How can
I tell if the alerts are about rela problems, or if it is what HP installed.

b) There are 3 red references to DSO exploits in HKEY_USERS.....Internet
settings/zones..... what are they?

c) there are 2 red references to Windows Media Player - surely MS wouldn't
spy on me????


Sorry if this doesn't give enough info - I'm quite new to this and don't
know what is significant.

Cheers

[YK]

John Price wrote:
> Greetings, I've been using Adaware for a while, but saw reference to
> Spybot and decided to try it, and am lost in knowing how to deal with
> what it tells me (yes I have tried reading the tutorial!) and would
> be grateful for pointers.
>
> a) I get about 70-80 red alerts referring to BackwebLite. But there
> is some indication that HP uses Backweb - and I have a HP printer
> installed. How can I tell if the alerts are about rela problems, or
> if it is what HP installed.

There is debate about Backweb being spyware but I know that HP uses it to
update its software. I would put it in the Ignore group but watch it every
once in a while to see that no other Backweb stuff gets installed.

> b) There are 3 red references to DSO exploits in
> HKEY_USERS.....Internet settings/zones..... what are they?

Has been discussed before:
> Search this newsgroup for posts dated 4/13/2003 with the title "DSO
Exploit"
> for a good review of the "DSO Exploit" and it's meaning.

Or these links in that thread ...
https://grc.com/x/news.exe?cmd=artic...are&item=17250
https://grc.com/x/news.exe?cmd=artic...are&item=17707

Do you have the latest reference file updates?

> c) there are 2 red references to Windows Media Player - surely MS
> wouldn't spy on me????

They are MRUs (Most Recently Used) and are used by WMP to keep track of
where you have been for backtracking. They are indicated to be deleted as
they could show another user what you like to listen to. Remove them if
you're paranoid about someone getting into your system and is curious about
what you are lstening to.

> Sorry if this doesn't give enough info - I'm quite new to this and
> don't know what is significant.

No problem. That's how you learn.

[John Price]

Many thanks YK - just what I like - straight to the point, but also giving
me links to learning more!

Cheers

[The person you think]

"YK" <YKnot@home.invalid> wrote in message
news:UPhhb.60435$ko%.971@news04.bloor.is.net.cable .rogers.com...
> John Price wrote:
> > Greetings, I've been using Adaware for a while, but saw reference to
> > Spybot and decided to try it, and am lost in knowing how to deal with
> > what it tells me (yes I have tried reading the tutorial!) and would
> > be grateful for pointers.
> >
> > a) I get about 70-80 red alerts referring to BackwebLite. But there
> > is some indication that HP uses Backweb - and I have a HP printer
> > installed. How can I tell if the alerts are about rela problems, or
> > if it is what HP installed.
>
> There is debate about Backweb being spyware but I know that HP uses it to
> update its software. I would put it in the Ignore group but watch it
every
> once in a while to see that no other Backweb stuff gets installed.
>

The problem with PUSH technology doing things like that is that the update
may be something you dont want on your system. I get rid of Backweb wherever
I see it. Used to be useful stuff but there are too many clued in would-be's
who find Backweb interesting for my liking.

[Jay T. Blocksom]

On Thu, 9 Oct 2003 18:21:13 +0100, in <alt.privacy.spyware>, "John Price"
<john@phoneywarley.clara.invalidco.uk> wrote:
>
[snip]
>
> a) I get about 70-80 red alerts referring to BackwebLite. But there is
> some indication that HP uses Backweb - and I have a HP printer installed.
> How can I tell if the alerts are about rela problems, or if it is what HP
> installed.
>
[snip]

What makes you think these are mutually exclusive?

> b) There are 3 red references to DSO exploits in HKEY_USERS.....Internet
> settings/zones..... what are they?
>
[snip]

Still more artifacts of the fact that you have been running the single
largest security hazard the world has ever known: MSIE.

The fix is here:

<http://www.litepc.com/ieradicator.html>

> c) there are 2 red references to Windows Media Player - surely MS
> wouldn't spy on me????
>
[snip]

<SPLORF!>

Is your middle name "Naive"?

See:

<http://www.hevanet.com/peace/microsoft.htm>
or <http://www.futurepower.net/microsoft.htm>

for the tip of the iceberg.

--

Jay T. Blocksom
--------------------------------
Appropriate Technology, Inc.
usenet01[at]appropriate-tech.net


"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-- Benjamin Franklin, Historical Review of Pennsylvania, 1759.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
NOTE: E-Mail address in "From:" line is INVALID! Remove +SPAMBLOCK to mail.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Unsolicited advertising sent to this E-Mail address is expressly prohibited
under USC Title 47, Section 227. Violators are subject to charge of up to
$1,500 per incident or treble actual costs, whichever is greater.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -