Re: Windows Defender + uphclean

Tom Hall wrote:

On Wed, 25 Oct 2006 15:03:49 -0500, ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe
Trin) wrote:


Description:
Windows Defender Real-Time Protection agent has detected changes. Microsoft
recommends you analyze the software that made these changes for potential
risks.

That has got to be the funniest thing I've seen in months.


I agree. I originally installed an earlier beta of Windows Defender and
when I saw these entries in my event log, I laughed too. The thought that
one piece of Microsoft software labels another piece of Microsoft software
as potentially harmful brought a chuckle from my lips as wel... :-)


You can use information about how these programs operate to choose
whether to allow them to run or remove them from your computer. Allow
changes only if you trust the program or the software publisher.

No indication of what changed what. Really helpful that. Does it have a
"Don't show me this message ever again" button, or merely one that says
"That's nice"?


Nope. These are entries in the event log, not configurable program options.
I originally installed UPHClean sometime ago to eliminate ANOTHER event log
error I was getting on a consistent basis.


Tom

Wait a minute: I am asking for help in recent posts so I claim no expert status but 'an' answer to this one rings out from my experience using Spybot, teatimer and ZA2007 int-sec-suite. They all detect registry changes and rule vilolations if the expert rules are changed to alert on such activity, reg change or LSP connection call...many of which are at the kernal level. What concerns _me_ now is why teatimer stopped alerting me to overt registry changes in other known activities which modify the registry????
AND: IF defrienders' code set an internal flag each time it ran or found something or even changed a counter it would yield a different checksum and discover a change in itself no? The data need not be called or stored externally.
miffed.....mostly at HP.
.