Error Message, Location Of Registry Changes [Archive]

View Full Version : Error Message, Location Of Registry Changes

Tastylicious

2008-05-03, 16:39

ERROR MESSAGE

Every time the program is run, I get the message that there's a problem in the TrojansC.sbi file and I should look in the Include errors.log file. I don't know what to look for, though. I've tried to attach the file to this message, but received the message 'Invalid File'.

As per the FAQ, I've downloaded spybotsd_includes.exe and run it, but this hasn't solved the problem.

LOCATION OF REGISTRY CHANGES

I denied a registry change, when I should have accepted it. Where do I look for the list of registry changes, and what should I do to make the required change?

Thank you.

Terminator

2008-05-03, 17:39

You are using an out of date version of spybot please uninstall your current version and install the latest version of spybot (1.5.2).

md usa spybot fan

2008-05-03, 17:52

Tastylicious:

Upgrading to Spybot 1.5.2 will solve the problem.

The current errors with the Trojans.sbi and TrojansC.sbi files that started with the 2008-04-09 updates are caused by new detection rules that are incompatible with versions of Spybot prior to 1.5.2. These new detection rules use the new Anti-Rootkit plugins #1, #2 and #3 that only have been offered as updates to Spybot 1.5.2. If you upgrade to Spybot 1.5.2 you will not only eliminate the error messages but in also will be performing rootkit searches while doing a Spybot "Check for problems".

If there is a reason that you cannot upgrade to Spybot 1.5.2, you can try the Anti-Rootkit plugins #1, #2 and #3 with Spybot 1.4, but they are not officially supported. From this post (http://forums.spybot.info/showpost.php?p=186129&postcount=11) in the following thread:
Problems in Spybot S&D Includes-trojanC
http://forums.spybot.info/showthread.php?t=27194

Well, you can download the manual installer for the newest anti-rootkit plugins and install them on 1.4 as well. They do have a compatibility mode when loaded by 1.4, but not with official support ;)
The downloads for the Anti-Rootkit plugins are on the following Web page:
Downloads - The home of Spybot-S&D!
http://www.spybot.info/en/download/index.html
This item:
Anti rootkit plugins 1.0 - product description
md5: EE7278BC89D4557CFD7127EACC37EE70

Supported only for version 1.5.2 or above!
This adds improved capabilities to find rootkits. Only needed if you do not want to use the update function integrated into Spybot-S&D.
Please note: Supported only for version 1.5.2 or above!

The direct download link is: http://www.spybotupdates.com/files/spybotsd_plugins.exe

Tastylicious

2008-05-03, 18:18

ERROR MESSAGE

I have 1.5.2 (.20). Latest detection update 30 April.

I tried to attach the Include Errors log file to my post, but received the message 'Invalid File'. Any idea why?

LOCATION OF REGISTRY CHANGES

I denied a registry change, when I should have accepted it. Do you know where I should look for the list of registry changes, and what I should do to make the required change?

Thank you.

Terminator

2008-05-03, 18:35

Right click on the Tea Timer Icon and choose settings and you should see list of the all allowed and blocked registry entries.

md usa spybot fan

2008-05-03, 18:44

Tastylicious:

The spybotsd_includes.exe file does not include the Anti-Rootkit plugins required with the new detection rules. The spybotsd_includes.exe only updates the detection rules. You must either use Spybot's integrated updater to install the Anti-Rootkit plugins or download and install the plugins as I indicated above.

__________

I don't know why you are getting an invalid file while trying to attach the "Include errors.log" but then again I don't understand why you are trying to attach it. To post the content of the log (which is not necessary if you follow the instructions above):
Using Windows Explorer, navigate to the "Include errors.log".
Double click on it and it should open with Notepad.
To copy the "Include errors.log" file to the Clipboard > Right click and select Select All > Right click again and select Copy.
Then paste (Ctrl+V) those results to a new post in this thread.

Tastylicious

2008-05-03, 22:09

Thanks for your help.

When I try the integrated updater, it says to click on Search, but this is greyed out. I've manually installed the plugins, and this has solved the problem. For the future, though, it would be useful to know why the Search button is greyed out.

The error message said to look in the Include errors.log file. I didn't know what I was meant to be looking for, but this was why I was trying to attach it.

md usa spybot fan

2008-05-03, 22:48

Tastylicious:

When I try the integrated updater, it says to click on Search, but this is greyed out. I've manually installed the plugins, and this has solved the problem. For the future, though, it would be useful to know why the Search button is greyed out.
I don't understand why your Search button is grayed out. You will have to explain more about how you are entering the update facility end exactly when you see the grayed out search button and if you are getting a "No newer updates available" message.

The error message said to look in the Include errors.log file. I didn't know what I was meant to be looking for, but this was why I was trying to attach it.
I understand why you were trying to attach the file but just posting the content of the file is easier and does not require someone reading the post to open an attachment. Also note the "Manage Attachments" facility in this forum does not allow you to attach .log files like "Include errors.log". The "Manage Attachments" facility only allows the attachment of .bmp .doc .gif .pdf .png .psd .txt and .zip files of limited sizes (which is probably why you were getting the error).

Tastylicious

2008-05-04, 14:12

md usa spybot fan

2008-05-04, 17:08

Tastylicious:

Try uninstalling and then reinstall in the default directory of:
C:\Program Files\Spybot - Search & Destroy
Instead of:
C:\Malware scanner