Please see attached screenshots (a picture is worth a thousand words). The past few weeks are so I have noticed that S&D has been flagging me this message you see down below. It is suggesting that my firewall has been disabled. I'm running Windows Live OneCare (Firewall + AntiVirus). Please let me know if there is a problem or if this is a bug with S&D. Is there a workaround? Is this going to addressed in future releases?

Thanks

Please see attached screenshots (a picture is worth a thousand words). The past few weeks are so I have noticed that S&D has been flagging me this message you see down below. It is suggesting that my firewall has been disabled. I'm running Windows Live OneCare (Firewall + AntiVirus). Please let me know if there is a problem or if this is a bug with S&D. Is there a workaround? Is this going to addressed in future releases?

Thanks

Because of size restrictions I couldnt attach my screenshots. I had to reduce the file size. Here it is.

The detections you received have nothing to do with the Windows Security Center settings you showed. The Windows Security Center settings you showed are controled by these registry entries:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
The detections that you received indicated that policy for your Windows Firewall is set to disabled.

Note: To post a log of the actual detections you are getting rather than a picture (that in this case is not worth a thousand words):
After running a scan, right click on the results list then select "Copy results to clipboard".
Paste those results into the thread.

Note: To post a log of the actual detections you are getting rather than a picture (that in this case is not worth a thousand words):
After running a scan, right click on the results list then select "Copy results to clipboard".
Paste those results into the thread.


:cool:

Microsoft.WindowsSecurityCenter.FirewallDisabled: Settings (Registry change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windowsfirewall\domainprofile\enablefirewall!=dword:1

Microsoft.WindowsSecurityCenter.FirewallDisabled: Settings (Registry change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windowsfirewall\standardprofile\enablefirewall!=dword:1


--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2006-11-03 TeaTimer.exe (1.4.0.2)
2005-12-24 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2006-02-06 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2006-02-20 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-11-03 Includes\Cookies.sbi (*)
2006-10-13 Includes\Dialer.sbi (*)
2006-11-03 Includes\DialerC.sbi (*)
2006-11-03 Includes\Hijackers.sbi (*)
2006-11-03 Includes\HijackersC.sbi (*)
2006-10-27 Includes\Keyloggers.sbi (*)
2006-11-03 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2006-10-13 Includes\Malware.sbi (*)
2006-11-03 Includes\MalwareC.sbi (*)
2006-10-20 Includes\PUPS.sbi (*)
2006-11-03 Includes\PUPSC.sbi (*)
2006-11-03 Includes\Revision.sbi (*)
2006-10-13 Includes\Security.sbi (*)
2006-11-03 Includes\SecurityC.sbi (*)
2006-10-13 Includes\Spybots.sbi (*)
2006-11-03 Includes\SpybotsC.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-11-03 Includes\Trojans.sbi (*)
2006-11-03 Includes\TrojansC.sbi (*)

The note concerning the log was for future reference.

I did misstate the registry entries associated with the Windows Security Center settings you showed. They are:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

The note concerning the log was for future reference.

I don't think I understand what is being said :scratch:

Please advice, should I be concerned with this?

Thanks very much.

The fact that Windows Security Center is monitoring your firewall (green indicator in Windows Security Center for Firewall) has nothing to do with the two detections that you received.

The two detections you received indicate that group policy statements in your system are set so that the Windows Firewall is not enabled (off) as outlined in the following:
Windows Firewall Tools and Settings (http://technet2.microsoft.com/WindowsServer/en/library/47f25d7d-882b-4f87-b05f-31e5664fc15e1033.mspx?mfr=true)
Since you are running Windows Live OneCare's Firewall this is an acceptable situation and you can ignore the detections.

These are not false positives. They indicate unusual settings in your system.

The fact that Windows Security Center is monitoring your firewall (green indicator in Windows Security Center for Firewall) has nothing to do with the two detections that you received.

The two detections you received indicate that group policy statements in your system are set so that the Windows Firewall is not enabled (off) as outlined in the following:
Windows Firewall Tools and Settings (http://technet2.microsoft.com/WindowsServer/en/library/47f25d7d-882b-4f87-b05f-31e5664fc15e1033.mspx?mfr=true)
Since you are running Windows Live OneCare's Firewall this is an acceptable situation and you can ignore the detections.

These are not false positives. They indicate unusual settings in your system.


Thanks very much for the response and being patient with Dummies like myself. Do you have any suggestions so I could set up my computer with the correct settings?

I told Spybot S&D to ignore this message since Windows One Care has it's own Firewall and automatically disables the built-in Windows XP Firewall.