Thank you for reporting this, this site and Amonetize ltd. software will be regarded as malware for misusing freeware to fraudulently install adware/malware.
Type: Posts; User: Yodama; Keyword(s):
Thank you for reporting this, this site and Amonetize ltd. software will be regarded as malware for misusing freeware to fraudulently install adware/malware.
Thank you for your additional information on this.
Detection rules will be changed with next detection update scheduled for Wednesday 2013-07-24 to avoid this detection in the future.
It could be that the file was already remove by Microsoft or Malwarebytes, the log files may shed some light on this.
But at least this poses no threat for the time being.
The file may be hidden. Open the Windows control panel, then go to Folder options and switch to the View tab. Now look for the settings to unhide hidden files and folders. There is also a setting to...
This CopyAgent.exe does not look trustworthy at all, if you did not install it yourself it is very likely a Trojan horse.
There is absolutely no reason at all for any copy software to start at...
Hello,
unfortunately this does not look like a false positive. It looks more like an incomplete detection.
Please open Spybot S&D and switch into advanced mode and open Startup Tools and create a...
Hello the "unknown" MBR above is not necessarily malicious. In fact it is most likely not malicious. An unknown MBR just means that RootAlyzer does not know this pattern, this can have various...
It looks like your computer is heavily infected.
The majority of the found items are folders, if there are files inside that are locked by the system for instance because they are in use the...
Correction update is public.
Thank you for reporting this issue.
There is an error that slipped through QA.
This will most likely be updated with the next detection update scheduled for next Wednesday.
I will inquire...
Yes, you did understand correctly. The generic parts of conduit were ignored in the past, but since we now have evidence that conduit itself is acting malicious we are changing this.
@Mark...
Yes, it would get flagged again, however the number of legit toolbars has decreased drastically. As of now we do not believe that there is any legit toolbar left that uses conduit. Since the way...
Hello,
PUPS actually stands for Possibly UnPopular Software which leaves the C to be explained.
C means current, with which we relate to the most currently occuring products of the category. This...
I answered in your original thread since that makes it easier to see the history on events. It is better to continue a thread if you believe it is about the same issue.
...
hello alicez,
yes you should remove the Widgi Toolbar.
From your original post in this thread (m/f) determined that the folders originally found on your computer were empty since there were no...
Please attach a Spybot S&D detection log file for comparison.
Hello,
thank you for reporting this.
The separate rootkit scanner within Spybot S&D 2 is an advanced tool meant to be used by advanced users only.
As opposed to the signature based standard scan...
Hello,
this is a rookie false positive. Sorry for the inconvenience. And shame on us for not noticing it before it went public.
These are actually network capture drivers for instance used by...
Thank you for the feedback.
Please try the following:
If your Windows Explorer is not set to display hidden files and folders please change it to do so:
open the Windows control panel
select Folder options
switch to...
That is exactly the reason. Additionally the JDownloader site links to fraudulent downloads, for instance an illegal adware bundle for 7zip.
The entries showing error look like folders, see if they exists, if they do they possibly contain files that are in use. This could prevent removal of the folders.
In those cases try deleting these...
Thank you for reporting this false positive. It will be fixed with the next detection update.
in short: vistaprint.com is not being blocked by Spybot S&D since a very long time.
Either you have not updated for a long time or other software is blocking it.
hello,
this is very likely a random TeaTimer false positive.
Please do the following:
update Spybot S&D
restart your computer
restart the Seagate software
if the TeaTimer still reacts...
yes, we can assume that this was a random TeaTimer false positive.
Please make sure to install the latest version of Java just like bbnetwork proposed.
If you don't need Java SE 6 for some...
If you are using Java you should update it, since exploits are actively used.
In that case please redo the full scan.
Very few websites use Java, so disabling it in the browser is recommended.
...
Please do a full scan with Spybot S&D.
If it does not find any supposed to be Java files this is probably a TeaTimer FP.
If there is still doubt please send in the files in question to...
Thank you for reporting this error.
We are actually very puzzled why this occurred.
More information could help us solve this issue.
Please do the following:
open a command console for...
Then this appears to be the TeaTimer bug which randomly occurs after updates without restarting the TeaTimer. A safe way restart the TeaTimer is to reboot the computer.
Since development of Spybot...
I am sorry but this feature is not supported by Spybot 2.0 anymore.
Hello,
the relevant ones are these:
Microsoft.Windows.ActiveDesktop: [SBI $377029D9] User settings (Registry Change, nothing done)...
did this issue reoccur after a reboot of the computer?
I can confirm that this is a false positive, it will be fixed with the next detection update scheduled for Wednesday 2012-12-19.
Thank you for reporting this issue.
I can confirm a false positive with the App Path and the Uninstall registry paths.
The detection rules for FlashDollars.RegistryRepair will be adjusted with the...
hello,
without the dw20.exe file in question I cannot confirm the false positive.
TeaTimer is not supposed to delete files belonging to Windows.
One way to recover the lost dw20.exe would be...
Thank you for reporting this, please ignore this result, it will be removed from our detection database effective with the next detection update scheduled for Wednesday 2012-11-14.
Thank you for reporting this issue,
these appear to be generic toolbar parts that also get installed when the Zonealarm toolbar get installed.
This will be fixed with the next detection update...
This issue will be fixed with the next detection update scheduled for Wednesday 2012-10-17.
Thank you for reporting this issue, we will analyze it and see what can be done about it.
thank you for reporting this issue, it will be corrected with the next detection update scheduled for Wednesday 2012-10-17.
Hello,
please try the attached TrojansC-04.zip, unzip the file and copy the TrojansC-04.sbi to the Spybot S&D includes folder (by default c:\program files\Spybot - Search & Destroy\Includes)....
If you can access the file system on your computer look for ws2helpxp.dll in system32 and rename it to ws2help.dll.
If you cannot access the file system on your computer please send an email with a...
Hello,
I cannot confirm this false positive with clamwin V0.97.5.
Please make sure to fully update Spybot S&D and reboot your computer.
If w9xpopen.exe still gets detected please send it to...
hello,
it seems the corrected detection file on this issue was not uploaded with our update yet. This will be fixed with our next detection update scheduled for Wednesday 2012-09-05.
Thank you for reporting this false positive, it will be fixed with the next detection update scheduled for Wednesday 2012-09-05.
Thank you for reporting this issue.
We will regard it as a false positive for the reasons you stated above.
Please update Spybot S&D and reboot your computer, if this does not fix your issue please send the sleep.exe to detections@spybot.info for analysis.
Thank you for reporting this false positive.
The next detection update scheduled for Wednesday 2012-08-15 will fix this issue.
Thank you for testing Spybot 2 RC1 and for your feedback.
This thread will be moved to the Spybot 2 section since this false positive forum is actually for the final releases and not the...