Webroot Spy Sweeper Installing Malware??

Discussion in 'other anti-malware software' started by beto_nl, Aug 2, 2008.

Thread Status:
Not open for further replies.
  1. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    How is it possible that a Anti-spy program as Webroot Spy Sweeper, praised by many as one of the best in the market, installs or try to install (SILENTLY) the the file askBarSetup.exe that's infected with the virus/trojan: "Backdoor.Generic.59060" o_O
    See attachment

    Anti-spy/malware programs installing spyware? It sounds too ridiculous to be truth....
    Furthermore it doesnt go well with Vista ( at least in my case)...I got rid of this crap program as fast as I could...

    Best regards
    Beto_nl
     

    Attached Files:

    Last edited: Aug 2, 2008
  2. doktornotor

    doktornotor Registered Member

    Joined:
    Jul 19, 2008
    Posts:
    2,047
  3. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    Re: Ask.com toolbar

    At the comodo forums they compare the askBarSetupexe. with the googlebar for instance talking about comercial issues
    and stuff but the fact is that this file ( askBarSetup) is infected with a backdoor.generic tha as far as I know is a trojan horse, So here a reminder of definition:
    A trojan horse is a program that disguises itself as another program. Similar to a virus, these programs are hidden and cause an unwanted effect. They differ from viruses because they are normally not designed to replicate like a virus.
    A virus-like computer program that appears harmless and benign but is actually malicious in nature. Trojan Horses can act immediately or lay dormant for protracted periods before wreaking havoc.


    So meanwhile my thread has been moved, I get tips about
    All-caps and search functions, but what about WARNING
    users about this Webroot Spy Sweeper crapo_O

     
  4. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,876
    Location:
    New England
    Your thread got moved because of where you posted it. You originally posted it in the "General Topics" forum. That section is actually meant to discuss issues related to this forum itself - i.e. problems with the vbulletin software, site outages, "how to use the forum" questions, login problems, and so on.

    Since your topic was about Spy Sweeper and whether there is a spyware issue with it, the appropriate forum for such a thread is here in "other anti-malware software" which is the category products like Spy Sweeper fall into. Anyway, moving threads is not a big deal. We move a few every day that are better fitted to a different section then they were first posted in. A redirect pointer is left behind so people can see where it moved to.
     
  5. doktornotor

    doktornotor Registered Member

    Joined:
    Jul 19, 2008
    Posts:
    2,047
    Re: Ask.com toolbar

    No, it's not infected by any trojan unless you consider Ask.com toolbar to be a trojan. This post is about the toolbar and as such discussed over and over again at lots of places. You can:

    - either disable your AV temporarily when installing and uncheck the toolbar component
    - or configure your Bullguard or whatever is that to not warn about potentially unwanted/unsafe apps if possible
    - if not possible or if the above doesn't help, then report it as false positive to the Bullguard vendor and ask them to re-categorize it
    - if they don't want to, you can either switch to a different AV or not use Spy Sweeper...
     
  6. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Re: Ask.com toolbar

    The fact is that BitDefender shouldn't have detected the Ask toolbar as Backdoor, therefore scaring the user. It should be actually considered adware.
     
  7. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    Re: Ask.com toolbar


    Ok, thanks for the feedback and your time.

    Well, SpySweeper is already a gonner cause
    it was conflicting with the Vista (home basic 32 bits).

    By the way, Adaware2008 didnt work properly on Vista as well.

    I have a new PC (Asus barebone Q-Motion)and Bullguard that i'm using for the first time, came with it.
    One good thing of Bullguard is it's service/support
    effective and fast. Per email or live chat. So I will approach
    them about this issue (askBarSetup - backdoor.Generic60690 - false-positive).

    If I may ask, wich security software would you advise / use?

    Thank's again,
    Beto_nl

    Pentium Quadcore Q6700 2.66Ghz
    4 GB RAM
    Vista Homa Basic Sp1
    1 TB HD
    Asus Mainboard VP5G31
     
  8. doktornotor

    doktornotor Registered Member

    Joined:
    Jul 19, 2008
    Posts:
    2,047
    Re: Ask.com toolbar

    See, there's lot of AV products that trigger warnings on Ask.com toolbar. The correct solution IMHO is to include those under PUA (potentially unwanted/unsafe apps) and let user decide whether they want those detected or not. Marking it as a generic backdoor sucks.

    HTH.
     
  9. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    Re: Ask.com toolbar

    Is BitDefender and Bullguard the same?
     
  10. Jadda

    Jadda Registered Member

    Joined:
    Jun 5, 2007
    Posts:
    422
    Re: Ask.com toolbar

    Same engine. But not the same definitionfiles. Correct me if I'm wrong.
     
  11. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    Re: Ask.com toolbar

    Yeah it sucks, but a Anti-malware/adware program that tries
    to silently install a potencially unwanted program(adware)
    also sucks, doesn't it?
     
  12. beto_nl

    beto_nl Registered Member

    Joined:
    Aug 2, 2008
    Posts:
    20
    Re: Ask.com toolbar

    Have no idea. But I like Bullguard's service.
    BTW does superAntiSpyware works goed on vista?
     
  13. doktornotor

    doktornotor Registered Member

    Joined:
    Jul 19, 2008
    Posts:
    2,047
  14. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Re: Ask.com toolbar

    I thought it used the same definitions too. For Example, If you read here

    http://www.webuser.co.uk/products/BullGuard_Internet_Security_80_review_4168-200.html it says

    Also it wasn't tested in Anti-virus.gr's tests because
     
    Last edited: Aug 2, 2008
  15. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Re: Ask.com toolbar

    It works fine.
     
  16. Fly

    Fly Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    2,069
    Re: Ask.com toolbar

    I disagree, I consider it spyware. But let's not waste time and energy debating whether it's adware or spyware.
     
  17. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    I don't agree with Webroot's policy to add that bar (I think it's even Opt-out:thumbd:), but I don't think it is a trojan. Most likely a FP or it's being flagged because it's a "potencially unwanted" application...

    Luckily I haven't used SpySweeper in a long time. Not since it became so bloated.
    Use SuperAntiSpyware or Malwarebyte's Anti-Malware, they are free (on-demand), light, and far superior than SpySweeper (and don't install a search bar)
     
  18. Fly

    Fly Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    2,069
    First: did you try to install the Spy Sweeper from a legitimate website (like Webroot) ?

    Assuming you did:

    I don't think there was a 'real' trojan.

    I consider it completely unethical to include a toolbar that's installed without the knowledge, clear understanding and consent of the user.

    I actually use the Spy Sweeper (Windows XP), and although some people have complained about it being bloatware, it's light on my 4-year-old computer, and it's at least reasonably effective.

    The trick is to use a customized install (uninstall first and check for any present toolbars if you have one). Then MAKE SURE you CUSTOMIZE the program to your liking when you install the program, and DON'T install the toolbar or any search assistent (service?). I believe it's opt-out.

    As for security programs spying on their users: McAfee does that (shares data with Doubleclick and a ton of other companies), and there are others that spy in some way on you. That's just the way it is.
     
  19. Fly

    Fly Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    2,069
    BTW, I do configure several settings of the SS, as with other security software, the out-of-the-box/default settings are rarely the best. (Except maybe if you don't know what you are doing).
     
  20. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    How come everyone has partnered with Ask.com? Opera uses it as main page, Comodo, Nero, Spy Sweeper etc. include ask.com toolbars...:cautious:
     
  21. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    doesent avg also have an option to install ask toolbar?
     
  22. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    Don't know about AVGo_O , but I forgot to mention ZoneAlarm...security software bundled with adware/spyware.:blink:
     
  23. Fly

    Fly Registered Member

    Joined:
    Nov 1, 2007
    Posts:
    2,069
    Since I once considered installing Zonealarm software: what adware/spyware comes with Zonealarm ?
     
  24. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    Added cash flow, pure and simple. Just like programs that want to install Google Toolbar, the programs get paid for the advertisement of Ask/Google, and probably have a type of "pay per click" deal that goes by how often users use that toolbar and/or click on related ads. I wouldn't be shocked if sooner rather than later free software vendors start requiring and not having an opt-out on these types of "add-ons" in order to use their product. They need money to survive, and whoever wants to complain "well but that would be disrespecting the right to privacy" needs to look over in the privacy forums and understand they no longer can count on privacy.
     
  25. EliteKiller

    EliteKiller Registered Member

    Joined:
    Jan 18, 2007
    Posts:
    1,138
    Location:
    TX
Loading...
Thread Status:
Not open for further replies.