Detected ??

C

colinito

New member
I have had Spybot S & D reinstalled after a virus clean-up.It has just identified the following - Microsoft. Windows. Security. Internet Explorer. - This can't be right, can it? I dare not order it to take the necessary action, it might lock up the I/E ! Is this a false "find" or what?
Any help would be nice.
Colinito
 
Last edited:
Please post a log of the actual detection you are getting in its entirety so that we can see the registry entry being detected. To do that:
  • Run another scan.
  • When the scan completes, right click on the results list, select "Copy results to clipboard".
  • Then paste (Ctrl+V) those results to a new post in this thread.
Thanks
 
I retrieved the details from the log and I will copy them here:-
Microsoft.Windows.Security.InternetExplorer Underneath was the following:-

HKEY_USERS\S-1-5-21-117609710-706699826-795345543-1003\Software\

Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LO

To right of the last letters = LO was the date and time with a blue ribic's cube shedding bits off from the top right hand side.
Hope this is the detail that you asked for!
Colinito
 
Please attempt to paste the entire log again without attempting to edit it. The instructions again are:
  • Run another scan.
  • When the scan completes, right click on the results list, select "Copy results to clipboard".
  • Then paste (Ctrl+V) those results to a new post in this thread.
 
Detected

Small problem - The report is exceedingly long, I had this reply --

The text that you have entered is too long (172382 characters). Please shorten it to 20000 characters long.

Do you wish me to break it up into sections, or should I "Look" for a particular part and copy it?
I have saved it as a whole into a file on my computer. I could send it as an attachment - if that is not too long also! - in an e-mail
Colinito
 
Did you select "Copy results to clipboard" or did you accidentally select "Copy full report to clipboard" which would result in a very long report?
 
Detected

OOPS! sorry, I clicked the wrong line!
Here, as requested -
Microsoft.Windows.Security.InternetExplorer: Settings (Registry change, nothing done)
HKEY_USERS\S-1-5-21-117609710-706699826-725345543-1003\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\iexplore.exe!=W=1


--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-12-04 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2007-01-15 advcheck.dll (1.2.1.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2007-01-02 Tools.dll (2.0.1.0)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2007-01-19 Includes\Cookies.sbi (*)
2006-12-08 Includes\Dialer.sbi (*)
2007-01-19 Includes\DialerC.sbi (*)
2006-11-24 Includes\Hijackers.sbi (*)
2007-01-19 Includes\HijackersC.sbi (*)
2006-10-27 Includes\Keyloggers.sbi (*)
2007-01-19 Includes\KeyloggersC.sbi (*)
2007-01-12 Includes\Malware.sbi (*)
2007-01-19 Includes\MalwareC.sbi (*)
2007-01-19 Includes\PUPS.sbi (*)
2007-01-19 Includes\PUPSC.sbi (*)
2007-01-19 Includes\Revision.sbi (*)
2006-12-08 Includes\Security.sbi (*)
2007-01-19 Includes\SecurityC.sbi (*)
2006-10-13 Includes\Spybots.sbi (*)
2007-01-19 Includes\SpybotsC.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-12-08 Includes\Trojans.sbi (*)
2007-01-19 Includes\TrojansC.sbi (*)

Hope this time, it is all right.
Colinito
 
Detected

Thank you for your reply. It is all a little too technical for me. I have had a look at both links, but I don't really understand. However, I will try to find out what to do. My experience with computers is just over a year so my knowedge is still at the 'green' stage!
Colinito.
 
Since you apparently did not intentionally alter what Microsoft now considers the default value of that registry entry, I suggest that you do a "Fix selected problems" and only consider reverting to the original registry entry (using Spybot's Recovery facility) if you experience problems such as those described in the following Microsoft article:
 
You must log in or register to reply here.
Back
Top