Spybot Update 8/30/04 False Positive?

Author	All Replies
dp Premium,MVM join:2000-12-08 Greensburg, PA kudos:7	Spybot Update 8/30/04 False Positive? The latest Spybot release is flagging an entry that SpywareBlaster has set the kill bit for (SearchForIt). I would guess that allowing Spybot to fix this would just cause it to become reset in SpywareBlaster and show that you have 1 item with protection disabled. Has anyone else noticed this? For now I just put it on the excludes list. SearchForIt: Settings (Registry key, nothing done) HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\activex compatibility\{c109664b-ceb1-420b-b353-d55a561536dd} SpywareBlaster has set the kill bit for this key: HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\activex compatibility\{c109664b-ceb1-420b-b353-d55a561536dd} (Default) (value not set) Compatibility Flags 0x00000400 (1024) --- Spybot - Search && Destroy version: 1.3 --- 2004-08-11 Includes\Cookies.sbi 2004-08-30 Includes\Dialer.sbi 2004-08-30 Includes\Hijackers.sbi 2004-08-20 Includes\Keyloggers.sbi 2004-08-30 Includes\Malware.sbi 2004-08-12 Includes\Revision.sbi 2004-08-11 Includes\Security.sbi 2004-08-30 Includes\Spybots.sbi 2004-08-30 Includes\Trojans.sbi 2004-05-12 Includes\LSP.sbi 2004-08-30 Includes\Tracks.uti -- Write your questions down on the back of a $20 dollar bill and send them to me
	to forum · permalink · 2004-08-30 17:22:39 ·

sybille Not only "just visiting" Premium join:2004-04-06 France	There's a thread for this at net-integration: »forums.net-integration.net/index···ry100164 You might want to post there and/or check it for the developers response. pollux44
	to forum · permalink · 2004-08-30 17:29:59 ·
dp Premium,MVM join:2000-12-08 Greensburg, PA kudos:7	said by sybille: There's a thread for this at net-integration: »forums.net-integration.net/index···ry100164 You might want to post there and/or check it for the developers response. pollux44 Thanks sybille . I just posted it there also but not in the Beta forum since this just came for me with today's 1.3 update: »forums.net-integration.net/index···ic=21896 -- Write your questions down on the back of a $20 dollar bill and send them to me
	to forum · permalink · 2004-08-30 17:42:38 ·
sybille Not only "just visiting" Premium join:2004-04-06 France 1 edit	said by dp: I just posted it there also but not in the Beta forum since this just came for me with today's 1.3 update... Thank you. I likewise had the detection without the beta definitions, and I was torn between starting a new thread and adding to the one already started in the beta forum . I think you're right that it's a false positive, BTW.
	to forum · permalink · 2004-08-30 17:49:15 ·
Spy Premium join:2001-09-22 NE	reply to dp Yeah, definitely False Positive. The problem seems to be that spybot corrects it and then spywareblaster comes out with a new update just when spybot corrected the orginal one (Start-eh). So now there's a new one.
	to forum · permalink · 2004-08-30 22:17:49 ·
boblandy2 Premium join:2002-05-06	reply to dp said by dp: Has anyone else noticed this? yes! and thank you for finding the SpywareBlaster connection! good heads up -- look out kid they keep it all hid
	to forum · permalink · 2004-08-30 22:25:47 ·
anthrorules Premium join:2003-09-14 Rollinsville, CO	reply to dp Thanks for the heads up, although weird thing is that the "SearchforIt" button did appear in my IE at the time I ran the scan, and was deleted after I removed it via Spybot...weird, indeed, but thanks for the confirmation.
	to forum · permalink · 2004-08-30 22:28:11 ·
jaykaykay 4 Ever Young Premium,MVM join:2000-04-13 Scottsdale, AZ kudos:19	reply to dp So...the obvious thing to do is ignore it, yes?
	to forum · permalink · 2004-08-30 23:08:30 ·
boblandy2 Premium join:2002-05-06	yes, that's fine... add it to the excludes list. in case users forget how to do that (it requires a couple extra steps)... expand the item you wish to exclude (clcik the +) then highlight the expanded info line then right click that and the excludes choice will appear on the menu my apologies if this was already abundantly clear to everyone -- look out kid they keep it all hid
	to forum · permalink · 2004-08-30 23:35:34 ·
dp Premium,MVM join:2000-12-08 Greensburg, PA kudos:7 1 edit	reply to dp This has been fixed and will be available with the coming update. »forums.net-integration.net/index···p=100269 -- Write your questions down on the back of a $20 dollar bill and send them to me
	to forum · permalink · 2004-08-31 05:58:53 ·
Bubba GIT-R-DONE Premium,MVM join:2002-08-19 St. Andrews Reviews: ·Pickwick Cablevi.. ·Comcast	reply to dp Thanks for the heads up dp and for that latest link also. What I'm not understanding from that link is a post from one of the Team SpybotSD's(Buster2004)...."This entry is not a new one. Looks like, that Spywareblaster has updated their immunize feature". Whether it's a new entry or old....SS&D is still flagging a legit ActiveX entry falsely. Oh well....it'll all come out in the wash with a new update....no biggy.
	to forum · permalink · 2004-08-31 07:00:07 ·

Broadband Tech > Security > Security > Spybot Update 8/30/04 False Positive?