Results 1 to 2 of 2

Thread: SD Resident - Browser Hijacker Desktop / Registry Change

  1. 2007-04-30, 19:13 #1
    ziggy
    ziggy is offline
    Junior Member
    Join Date
    Mar 2007
    Posts
    2

    Red face SD Resident - Browser Hijacker Desktop / Registry Change


    Hi

    After running SuperAntiSpyware, there were a number of infected files. After quarantining them and re-booting back into normal mode, SD Resident Teatimer popped up with the usual "detected an important registry change etc etc etc.

    Having quarantined the the infected files - should I Allow or Deny the registry change ??

    As you can see from the Teatimer log, I allowed some and denied others until I realized that I had no idea what was the correct process.

    More often than not when rebooting or starting up the computer, resident opens up these "important...detected" dialogue boxes - and if I can recall, they generally relate to a change in the google search and I think the other one is about the Start up Entry..

    I have to admit that these so called registry changes Allow or Deny have got me fairly confused - I generally Allow them and I'm now thinking that this may well be the cause of the warning box upon each reboot.


    My apologies if I have provided way too much info (screen shots!) but I think more is better than less !!!

    Until I hear back from you, I will leave my computer as it is, and hopefully this and your response will help to solve all this.

    Many thanks


    2007/04/30 04:53:16 PM Denied value "swg" (new data: "") deleted in System Startup user entry!
    2007/04/30 04:53:41 PM Allowed value "!AVG Anti-Spyware" (new data: "") deleted in System Startup global entry!
    2007/04/30 04:53:45 PM Allowed value "" (new data: "") deleted in System Startup global entry!
    2007/04/30 05:52:21 PM Denied value "{BFB5F154-9212-46F3-B547-AC6106030A54}" (new data: "") deleted in Global browser toolbar!
    2007/04/30 05:52:25 PM Denied value "{BFB5F154-9212-46F3-B547-AC6106030A54}" (new data: "") deleted in Global browser toolbar!
    2007/04/30 05:52:27 PM Denied value "{BFB5F154-9212-46F3-B547-AC6106030A54}" (new data: "") deleted in Global browser toolbar!
    2007/04/30 05:52:29 PM Denied value "{BFB5F154-9212-46F3-B547-AC6106030A54}" (new data: "") deleted in Global browser toolbar!
    2007/04/30 05:52:32 PM Denied value "{BFB5F154-9212-46F3-B547-AC6106030A54}" (new data: "") deleted in Global browser toolbar!
    2007/04/30 06:31:16 PM Allowed value "!AVG Anti-Spyware" (new data: "") deleted in System Startup global entry!
    2007/04/30 06:31:26 PM Denied value "" (new data: "") deleted in System Startup global entry!

    Brief copy of SuperAntiSpyware Report:



    Brief copy of the resident log:

    Reply With Quote Reply With Quote
  2. 2007-05-02, 14:23 #2
    spybotsandra
    spybotsandra is offline
    Senior Member
    Join Date
    Oct 2005
    Location
    Germany
    Posts
    5,263

    Default

    Hello,

    Please read this information about TeaTimer:
    http://www.safer-networking.org/en/faq/33.html
    and http://www.safer-networking.org/en/faq/34.html
    If you surf the web and without any user interaction the teatimer pops up and warns about a registry change it is better to "deny", but if you install something by yourself it is OK to "allow" the change.

    Best regards
    Sandra
    Team Spybot
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules