Yet another bug...Spybot S&D.

  • Thread starter Thread starter Gunilla
  • Start date Start date
G

Gunilla

Okay...I know many bugs have been discussed, maybe this too even if I didn't
find this particular one by zapping down and up through the NG's here trying
to find a similar bug.

It is with Spybot S&D and its Immunize feature which I run each time I open
Spybot and each time it says that "2360 bad products already blocked, one
additional protections possible. Please immunize" and I do and close
thereafter Spybot S&D.

Now the MSAS is popping up its warning that it has blocket the Trusted Site
_139mm.com from being added to my list of trusted websites in IE. It is
similar to what I had before which I posted but a long time ago but don't
really got if it was about Spybot that time.

So I go directly into Spybot again and yet again I run the immunizing and
again the same additional protections is possible. I immunize again and yet
again the MSAS is popping up the same message. It is a loop and also an
incompatibility between Spybot S&D and MSAS and I just wanted to inform
about this. I have had it a long time, like three weeks maybe and I thought
someone else had it but I can't find another post about this particular
thingy.

Cheers to you all,

Gunilla.
 
When Spybot "immunizes" your ssytem it adds an entry for
the "bad web site" to your HOST file but points it to an
address of 127.0.0.1 so that you can never be taken to
that site. Changes to the HOST files by a 3rd party app
like Spybot are seen as a threat by MSAS and it blocks
the change. So, the next time you run Spybot it sees
that the change has not been made and tries to make it
again, and will again fail if MSAS is running.
 
Have you try to scan in Safe Mode?
clean your Tem and Tmps files
Run MSAS and Sybot S&d in safe mode.

Post your replies to the newsgroup. Share with others.

Engel
 
First...Thanks for your responce.

Secondly...I guess Spybot does something like that when immunize, so I would
believe you are right but the ting is why MSAS just feels this particular
website as being added to the Trusted Sites in IE when there is many more
included in the immunizing routine!? That doesn't make any sense. A bug or
what ever it can be, I don't know. :-//

Thanks.......Gunilla.
 
Hi and thanks. :-))

Oh yes...I am clean and forgive me....I should have written that I have XP
Pro SP2 fully updated, Spybot S&D, AVG, WinPatrol, ClamAV, a2 Squared,
CWShredder, ZA firewall, ProtoWall and much much more. The issue is not that
I think I am infested but rather this is a bug and just wanted to inform
about it. :-)) But thank you soo much for being a helping hand.

Cheers to you,

Gunilla
 
Spybot's immunize feature does not add entries to the
Hosts file: it has a separate hosts file of its own that,
if you wish, you can let it insert into yours.
The immunize feature adds domains to the restricted sites
list in IE and also blocks some active X components, by
wrting the appropriate keys in the registry (similar to
Spywareblaster).
The latest update (3 March) of Spybot has some problems
with the immunize feature due to bad coding in the update.
This should be corrected in the next update.See

http://forums.net-integration.net/index.php?showtopic=28762
 
I have a lot of sites in the Restricted Sites list in
IE. Most were added by Spybot, but some I manually added.

A scan with MSAS is finding the sites in the Registry.
They are marked as Restricted Sites, but MSAS is trying
to REMOVE the entries. This serves to make my system
LESS secure.

This should be corrected!
 
Have you read JRosenfeld's post in this thread?

Can you post exactly which entries are marked for removal by Microsoft
Antispyware? (unless there are a great many)
 
Hello. :-))

Oh yes, of course it does as you describe. Thanks for jumping in and giving
some knowledge.

Gunilla
 
Back
Top