I performed a full scan of my HP laptop with Windows Defender after updating its definitions today to definition version: 1.4.172.0 created on 8/7/2008 at 4:00 AM.
Windows Defender Version: 1.1.1593.0 Engine Version: 1.1.3807.0 Definition Version: 1.41.172.0
Windows Defender found two items it gave a "medium" alert level. I
instructed it to ignore both, since they were false positives. The
first was for a download of the Activity
Monitor program, which is in
a "downloads" folder, but isn't installed on the system. The second
occurred because SpySweeper updated the
C:\WINDOWS\system32\drivers\etc\hosts file on 12/18/2006 to block
nefarious sites.
| Name | Alert level |
|---|---|
| MonitoringTool:Win32/ActivityMonitor | Medium |
| SettingsModifier:Win32/PossibleHostsFileHijack | Medium |
MonitoringTool:Win32/ActivityMonitor
Category:
Monitoring Software
Description:
This program monitors user activity, such as keystrokes typed.
Advice:
Review the alert details to see why the software was detected. If you do not like how the software
operates or if you do not recognize and trust the publisher, consider blocking or removing the software.
Resources:
file:
C:\Documents and Settings\JDoe\My Documents\Downloads\activmon39full.zip->amagent39.exe
containerfile:
C:\Documents and Settings\JDoe\My Documents\Downloads\activmon39full.zip
View more information about this item online
SettingsModifier:Win32/PossibleHostsFileHijack
Category:
Settings Modifier
Description:
This program has potentially unwanted behavior.
Advice:
Review the alert details to see why the software was detected. If you do not like how the software operates or if you do not recognize and trust the publisher, consider blocking or removing the software.
Resources:
file:
C:\WINDOWS\system32\drivers\etc\hosts
View more information about this item online
[/os/windows/software/security/monitoring/activity_monitor] permanent link
