Spybot Search & Destroy

News - The Home of Spybot-S&D!

With the release of Spybot-S&D 1.6, our detectives have spent some hard time implementing some of the new technologies to improve Virtumonde detections, increasing our detection range by more than 40% to now more than quarter of a million detection patterns to identify more than one million fingerprints.Virtumonde (also known as the Vundo Trojan) is a Trojan horse that is known to cause popups and advertising for rogue antispyware programs. It also causes other misbehavior, including performance degredation and denial of service with some websites including Google. It attaches to the system using bogus BHO’s (Browser Helper Objects) and DLL files attached to Winlogon and Windows Explorer.To profit from these improvements, we recommend that you update to Spybot - Search & Destroy 1.6, which will be available through the update function integrated into the application as well starting today, as soon as possible.

And, if you still have any problems regarding Virtumonde please feel free to visit our forum or e-mail our detections department.

{ 0 comments }

From Patrick Kolla, developer of Spybot Search and Destroy.
http://www.safer-networking.org/en/home/index.html

Time for an update! To keep up with the latest threats, and solve some issues and feature requests users had, we’re proud to announce Spybot-S&D version 1.6. Some of the features include:

Improved Scan Speed

Reported a few weeks ago as one of the big issues users face, Spybot-S&D 1.6 integrates parts of the future 2.0 file scanning engine to speed up the on-demand scan.
Up-to-date browser support

Both immunization and the on-demand scan are able to access a dozen different browsers, which now include the latest revisions of the most popular ones, Firefox and Opera.

Easier On-Access Use

Until now, our on-access part was able to block bad entries, but at the same time, confused many novice users by asking for confirmation on changes of other monitored system entries as well. While this is a great feature for all experienced users who want full control over their systems, we decided that we need to make this easier for the average user, and integrated automated decisions based on the system entry database built through our RunAlyzer, containing more than quarter of a million decisions.

OpenSBI

Safer Networking also announces OpenSBI, our attempt at opening up the fight against malware to anyone who wants to participate. OpenSBI means we’ve published documentation and tools that anyone can use to create their own malware detection patterns for use with Spybot-S&D, and share those with other Spybot-S&D users.

• Diversity - everyone can create detection templates for any software, without depending on a central authority to acknowledge its threat.

• Neutrality - we cannot be bought to remove detections from our database, but if you do not believe us, you can simply publish your own rules against some malware.

• Continuity - OpenSBI ensures that you’ll get updates as long as someone is interested in updating the database (which does not mean we intend to do less work in adding new detections).

• Flexibility - as a system administrator using the network edition, you can make sure that working time is not wasted by employees playing the latest Moorhuhn clone if you add your own detection for it. Keep in mind that some relaxation is said to even improve work results.

And quite a lot more bug fixes and new features, which can be found on bug tracker.

{ 2 comments }

From Patrick Kolla, developer of Spybot Search and Destroy.

Scanning a bit faster… first beta of 1.6 available!
Eight years ago, Spybot-S&D originally started off as a very fast anti-spyware scanner, detecting some 30 small things, and you could watch it finish in under a minute.

Today, a full scan applies more than 600,000 tests, and you can watch that number grow weekly on our update list. Handling such numbers obviously is quite a bit different, and while we’ve tried to adjust to that with each version, a full scan might still take half an hour currently. Since this was one big major complaint issue, we decided to integrate parts of the new file scanner designed for a future 2.0 release and optimized for modern malware fighting, and got you a major push in speed now - that same scan will now take five to six minutes only, being about five times as fast as 1.5 was!

If you want to enjoy that speed and know a bit about beta testing, head over to our beta forums and get the first beta! If you prefer to wait for a thorougly tested public release, we hope to get around to that quite soon.

Oh, and one more thing… there’s more up for 1.6: a second big issue we hear often will be addressed, so stay tuned!

More…

{ 0 comments }

Anti-spyware program by Patrick Kolla and Team Spybot.

Spybot-S&D 1.5 has quite a lot of advantages over version 1.4: improved compatibility, more effective detections and new functions. Between all the positive feedback we received, there were also some things that needed to be improved: the immunization sometimes needed to be applied twice before sticking, many users wanted the file shredder back, and it was impossible to remove entries from the user blacklist in the Internet Explorer plugin. But first of all, we apologize for the long starting time of Spybot-S&D 1.5.1 to all users. This item has been fixed now in this new version 1.5.2.

We are convinced that you will work with the best Spybot ever: Spybot-S&D 1.5.2 has all advantages, but no handicaps over all previous versions!

Throughout the next days our partners and ourselves will provide you with version 1.5.2. This version will also be available through the integrated update within the next days.

Spybot-S&D Home Page

{ 2 comments }

Spybot-Search and Destroy, Home Page

We have to admit, it was delayed a few times, mostly because we always had some new feature we wanted to implement in mind, but now it’s finally here: we’re proud to announce the availability of Spybot - Search & Destroy 1.5. This new version features a lot of improved detection mechanisms (which in parts were already made available through the regular 1.4 updates in the past months), improved Operating System support (Windows Vista integration, restored support for Windows 95, more compatibility with Wine, support for bootable Windows CDs), improved browser support (e.g. for immunization) and much more - you can find an overview of noticable changes and some screenshots here.

{ 0 comments }

The home of Spybot-Search and Destroy.
News Link 11. June 2007

Also, after struggling for months with Microsoft about Spybot - Search & Destroy 1.5 and the more advanced Certified for Vista logo, we have decided not to get our next release certified. While we found the “Certified for Vista” logo requirements to be very useful to enforce a high software quality in general, it has a huge drawback, which essentially makes every certified security software prone to getting disabled by malware. Under these circumstances, version 1.5 will only receive the “Works with Windows Vista” logo, but at least there’s nothing left blocking the release, which will take place as a beta version this week.

For those interested in the technical background of the decision:

Microsoft requires software that applies for this logo program to immediately crash when confronted with a situation described by Microsoft in detail. The background of this still is useful in a standard situation - software that has bugs should actually crash instead of just trying to hide them, so that Windows Error Reporting can log the problem and forward it to the developer. This way Microsoft can assure that applications that are part of the “Certified for Vista” program are of high quality.

However, In the context of a security application, this is hazardous: if malware writers can use a perfectly documented way to crash a security application, the overall security is greatly harmed. To avoid this, we suggested some alternatives to Microsoft that would not compromise the goal of submitting bug reports on errors that are the fault of the developer of the software. In the end though, some people at Microsoft seem to be too certain that Vista is absolutely safe, upon which we do not intend to comment, since key Microsofts employees have already done so, for example Jim Allchin or Mark Russinovich.

http://www.spybot.info/en/news/2007-06-11.html