You have to use SpywareBlaster to prevent these things, and sometimes they will still happen. SpywareGuard and SpySweeper will also prevent things, but they have to be running in the background.
I posted this before, maybe this will help. Info on all 3 plus SpyBot (and more) is below. I had to cut some of it because of this list's limit. ======================= In my last post I mentioned an FYI email on anti-malware programs I'd post, this is part of a "paste" from it. It's from a portion of a "Readme" type file I include with all new PC's. Since this list is plain text, I had to change emphasis from bold or underlined, to *** marks. It would take too long to change any bold or italics to all CAPS where they were not already CAPS. ------------------------ SpyBot - is not only for finding & fixing malware, but also to remove usage tracks on a PC, and other tracking items. ***Always check for an update (and install update if any) before running to be sure you have the most up-to-date definitions!*** This can be enabled automatically when you start the program. All settings/options have been optimally set, but is ***NOT*** set optimally by default. ***Always be sure options are still set to save a backup in the event something needed or legit is removed. This is in the event of a necessary item being removed, it can be restored.*** v1.3 of SpyBot automatically also sets an XP Pro restore point. This program will tag numerous things that ***ARE NEEDED***, like Cookies for example. So, you want to be sure and save certain Cookies if you need them (however this area is not necessary when "IE Privacy Keeper" below is used). Be very careful of fixing any IE entries since many of these are for things like remembering website login info, IE's "Auto Complete", etc. Items such as Adobe Reader files, WinZip, etc., can be right clicked and ignored on further detection's if wanted. Ignore at your own discretion. Items tagged such as "wrong application path" can be ignored, but leave those in the list for future detection if they ever have to be fixed (SpyBot tends to tag these things even when they are not wrong). Items such as Windows Media Player "usage tracks" for example, you WANT to be fixed, so always check these for fixing. These type entries tagged will be in the lower portion of the interface of items found and will be in black. ***If any bad items are found, this will be in a separate area at the top, in red, and it's these items that must be checked and fixed! Always run the program again right after clicking "fix selected items" to be sure they were indeed fixed! Many times this program will NOT fix what you tell it to, so these items have to be fixed manually.*** Right clicking any entry will usually have a "more info" area where sometimes details on the items can be seen. It is either in this area, or it will list a registry location, where the tagged item can be manually fixed. Under the "Immunize" area of the program is an area that is ***not*** running in the background (BG), yet provides protection against thousands of malware files via registry tags. Each time the program has an update and it's installed, ***you must go to this "Immunize" area and click "Immunize" at the top for the newly added definitions to be activated.*** This is automatically done if the program is set to automatically check for and install updates when you first open it.....but it doesn't hurt to check. There is also a bottom section of this area where you can choose which type of blocking you desire; "block pages silently", or "prompt for action", or "display a dialog when blocking". I prefer the first, however like TeaTimer, if there are some websites that cannot be accessed, it ***can be due to this area.*** At the lower left of an IE window, you'll see something stating that a "bad download" has been blocked, or the site is on the SpyBot restricted sites list, or similar. You'll only see this for an instant, then it disappears. So, you may want to have the drop-down menu set to let you know when it's blocking something so you'll know why you can't get to a certain webpage. Again, like TeaTimer below, ***it is indeed usually blocking something bad and causing this behavior for a good reason, so keep that in mind!*** If you feel it is a website you must access, this Immunize area can be disabled by clicking the "Undo" icon, ***but do so at your own risk! Disabling it could let malware on the PC!*** v1.3 of SpyBot uses a "resident IE shield" called "TeaTimer" and it's the blue & white icon in the system tray. ***This should be running always!*** It is an extra added layer of protection from malware & hijacks. In some rare events, certain "questionable" websites may not load, display, navigate, etc., correctly because of TeaTimer. It can be disabled (as most items in the System Tray) by right clicking and "Exit", ***however be aware that it is indeed usually blocking something bad and causing this behavior for a good reason, so "Exit" it at your own risk!*** It's recommend that this ***(along with ANYTHING ELSE) be DISABLED BEFORE INSTALLING ANY PROGRAMS, SOFTWARE OR DRIVERS!*** Not doing so can and will interfere with the installation process! -------------------- SpySweeper - is similar to AdAware, and all the same implies. But, it's worth repeating again: ***Always check for an update (and install update if any) before running to be sure you have the most up-to-date definitions! Always be sure options are still set to save a backup in the event something needed or legit is removed. This is in the event of a necessary item being removed, it can be restored.*** -------------------------- SpywareBlaster - is similar to the "Immunize" area of SpyBot. It is NOT running in the BG, yet it will also give protection against thousands of malware threats via registry tags. Also like the SpyBot "Immunize" area, it does not remove anything, it ***prevents*** one from getting infected with malware. ***Always check for an update (and install update if any) before running to be sure you have the most up-to-date definitions!*** ---------------------------- SpywareGuard - from the same company as SpywareBlaster. It ***DOES*** have to be running in the BG for protection. I have found it not quite as effective as "TeaTimer", yet does have it's strong points but must be configured this way to provide blocking against browser HiJacks, unauthorized downloads, and to enable "Real Time scanning". I only execute it if visiting "questionable" websites. If shutting it down, right click it's red icon in the system tray, then "File", then "Exit". It rarely has updates, yet ***always check for an update (and install update if any) before running to be sure you have the most up-to-date definitions!*** --------------------------- IEPrivacyKeeper - Is a type of IE "usage tracks" eliminator. It is set to silently clean out all of the Temporary Internet Files and Cache after the last browser window is closed. This can be changed in its Options area. This is recommended since no bad Cookies or other file types will stay in the Temporary Internet Files folders. ***For Cookies you want to save, be sure and tell the program which Cookies to save*** (like for a website's customized features, automatic logins, etc.). If the program is unaware of which Cookies to save, you'll have to keep logging in to these websites that you would like to remember your login. On a broadband connection, emptying the Temporary Internet Files folder via this program (or within IE settings) is not noticeable. (IE is currently set to "Empty Temporary Internet Files folder when browser is closed" but note that this ***does NOT empty*** the "Content.IE5" folder, nor clear the "Index.dat" file!) This is why a program such as this is necessary. This program can also be set to clear the "Recent Documents", "History", "Typed URL's" folders, and IE's "AutoComplete" history, but it is not set to clear these areas since these areas are sometimes necessary, especially "History", "Typed URL's" and the "AutoComplete" data. --------------------------- Some of these programs while running will give alerts or warnings when any suspicious activity is detected. ***ALWAYS DENY any anti-malware programs' alerts requests for any changes or other programs' access!!!*** If a website is trying to place a Trojan Downloader, Virus, Worm, or any other type of malware on your computer, trying to HiJack your browser, or trying to access a program or your HD; these programs are supposed to give alerts. These of course must all be denied! The exceptions would of course be anything personally changed. For example, if you change your Home or Start Page, or default search options when some are running, they will alert you that your Home or Start page, or default search, is attempting to be changed. They give these warning since this is how browser HiJacks occur. ========================== -Clint God Bless Clint Hamilton, Owner http://OrpheusComputing.com ) ----- Original Message ----- From: "Jeff Dougherty" < I just ran Trend Micro's online scan and it found some of these?: Polall1t.exe Twaintec.cab Alchem.exe Sidefind.exe I have and run Spybot and Adaware and have immunize turned on. Is there a setting somewhere that will prevent these from being placed on my PC? I noticed last week some software called peopletopeople, or something like that, was on my computer.,..I kind of like to know how this stuff is getting on here. I do not do a lot of surfing and all OE mail is set to be read in plain text. Thank you. Jeff ============= PCWorks Mailing List ================= Don't see your post? Check our posting guidelines & make sure you've followed proper posting procedures, http://pcworkers.com/rules.htm Contact list owner <[EMAIL PROTECTED]> Unsubscribing and other changes: http://pcworkers.com =====================================================
