Internet Agent Puzzle

In Real time protection/Internet Agents/Internet Events, it says there is
one where I " decided to allow the trusted site 139mm.com to Internet
Explorer." As far as I am aware I did not do this. The site appears to be a
chinese one. Ive been to my Trusted Sites in IE and it is not there. (I have
no Trusted Sites in IE). What made the Beta put in this entry? And if it was
an accident on my part, how do I reverse the "decided to allow.?"

There are some bugs which reverse the trusted and forbidden descriptors in
these messages.

Is this site in your blocked sites list in IE?

--

"lindzog" <lindzog@discussions.microsoft.com> wrote in message
news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
> In Real time protection/Internet Agents/Internet Events, it says there is
> one where I " decided to allow the trusted site 139mm.com to Internet
> Explorer." As far as I am aware I did not do this. The site appears to be
> a
> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
> have
> no Trusted Sites in IE). What made the Beta put in this entry? And if it
> was
> an accident on my part, how do I reverse the "decided to allow.?"

From Andy in the 'general' forum of 9/30:
It may just be a false positive if you have Spybot Search
& Destroy installed, there is a issue where MS Antispy
detects sites added to the restricted zone and displays a
warning that its trying to enter itself into the trusted
zone, Ive seen this myself last week when I asked someone
to install Spybot and enable the immunize feature, they
got a warning saying 139mm was trying to enter itself
into the Trusted Zone.

Here's a support page from MS that explains this:

http://support.microsoft.com/?kbid=902956

I can't get to the above site or it's moved location to display right now,
but if it's false it should be in the next set of signature updates. You
don't want to go to 139mm... ugly,

--
Regards, Dave

"lindzog" <lindzog@discussions.microsoft.com> wrote in message
news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
> In Real time protection/Internet Agents/Internet Events, it says there is
> one where I " decided to allow the trusted site 139mm.com to Internet
> Explorer." As far as I am aware I did not do this. The site appears to be
> a
> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
> have
> no Trusted Sites in IE). What made the Beta put in this entry? And if it
> was
> an accident on my part, how do I reverse the "decided to allow.?"

Taking that back about the update fix. The site is up now...
http://support.microsoft.com/?kbid=902956
and it appears to be a known bug with MSAS, provided you're running Search &
Destroy
with immunizations enabled, though I'm not certain are using it. Let us
know...
--
Regards, Dave

"Dave M" <dpmoller@junoSPAM.com> wrote in message
news:OvZaWxgyFHA.2876@TK2MSFTNGSA03.privatenews.microsoft.com...
> From Andy in the 'general' forum of 9/30:
> It may just be a false positive if you have Spybot Search
> & Destroy installed, there is a issue where MS Antispy
> detects sites added to the restricted zone and displays a
> warning that its trying to enter itself into the trusted
> zone, Ive seen this myself last week when I asked someone
> to install Spybot and enable the immunize feature, they
> got a warning saying 139mm was trying to enter itself
> into the Trusted Zone.
>
> Here's a support page from MS that explains this:
>
> http://support.microsoft.com/?kbid=902956
>
> I can't get to the above site or it's moved location to display right now,
> but if it's false it should be in the next set of signature updates. You
> don't want to go to 139mm... ugly,
>
> --
> Regards, Dave
>
> "lindzog" <lindzog@discussions.microsoft.com> wrote in message
> news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
>> In Real time protection/Internet Agents/Internet Events, it says there
>> is
>> one where I " decided to allow the trusted site 139mm.com to Internet
>> Explorer." As far as I am aware I did not do this. The site appears to
>> be a
>> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
>> have
>> no Trusted Sites in IE). What made the Beta put in this entry? And if it
>> was
>> an accident on my part, how do I reverse the "decided to allow.?"
>
>

tks for the replies. Yes I am using Spybot Search and Destroy. So that might
explain it. Also, I have put the 139mm.com in my Blocked Sites, just in case.
(though ive no evidence that this is a dangerous site).
Tks again and for the link which I will read.



"Dave M" wrote:

> Taking that back about the update fix. The site is up now...
> http://support.microsoft.com/?kbid=902956
> and it appears to be a known bug with MSAS, provided you're running Search &
> Destroy
> with immunizations enabled, though I'm not certain are using it. Let us
> know...
> --
> Regards, Dave
>
> "Dave M" <dpmoller@junoSPAM.com> wrote in message
> news:OvZaWxgyFHA.2876@TK2MSFTNGSA03.privatenews.microsoft.com...
> > From Andy in the 'general' forum of 9/30:
> > It may just be a false positive if you have Spybot Search
> > & Destroy installed, there is a issue where MS Antispy
> > detects sites added to the restricted zone and displays a
> > warning that its trying to enter itself into the trusted
> > zone, Ive seen this myself last week when I asked someone
> > to install Spybot and enable the immunize feature, they
> > got a warning saying 139mm was trying to enter itself
> > into the Trusted Zone.
> >
> > Here's a support page from MS that explains this:
> >
> > http://support.microsoft.com/?kbid=902956
> >
> > I can't get to the above site or it's moved location to display right now,
> > but if it's false it should be in the next set of signature updates. You
> > don't want to go to 139mm... ugly,
> >
> > --
> > Regards, Dave
> >
> > "lindzog" <lindzog@discussions.microsoft.com> wrote in message
> > news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
> >> In Real time protection/Internet Agents/Internet Events, it says there
> >> is
> >> one where I " decided to allow the trusted site 139mm.com to Internet
> >> Explorer." As far as I am aware I did not do this. The site appears to
> >> be a
> >> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
> >> have
> >> no Trusted Sites in IE). What made the Beta put in this entry? And if it
> >> was
> >> an accident on my part, how do I reverse the "decided to allow.?"
> >
> >
>
>
>

Having read the KB article, Im not sure that is quite the same is it? I have
the site as being allowed by myself and have no memory of doing it. Dont
understand why it wouldnt appear in my Trusted Sites list either, when the
Beta refers to it as a Trusted site.

"Dave M" wrote:

> Taking that back about the update fix. The site is up now...
> http://support.microsoft.com/?kbid=902956
> and it appears to be a known bug with MSAS, provided you're running Search &
> Destroy
> with immunizations enabled, though I'm not certain are using it. Let us
> know...
> --
> Regards, Dave
>
> "Dave M" <dpmoller@junoSPAM.com> wrote in message
> news:OvZaWxgyFHA.2876@TK2MSFTNGSA03.privatenews.microsoft.com...
> > From Andy in the 'general' forum of 9/30:
> > It may just be a false positive if you have Spybot Search
> > & Destroy installed, there is a issue where MS Antispy
> > detects sites added to the restricted zone and displays a
> > warning that its trying to enter itself into the trusted
> > zone, Ive seen this myself last week when I asked someone
> > to install Spybot and enable the immunize feature, they
> > got a warning saying 139mm was trying to enter itself
> > into the Trusted Zone.
> >
> > Here's a support page from MS that explains this:
> >
> > http://support.microsoft.com/?kbid=902956
> >
> > I can't get to the above site or it's moved location to display right now,
> > but if it's false it should be in the next set of signature updates. You
> > don't want to go to 139mm... ugly,
> >
> > --
> > Regards, Dave
> >
> > "lindzog" <lindzog@discussions.microsoft.com> wrote in message
> > news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
> >> In Real time protection/Internet Agents/Internet Events, it says there
> >> is
> >> one where I " decided to allow the trusted site 139mm.com to Internet
> >> Explorer." As far as I am aware I did not do this. The site appears to
> >> be a
> >> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
> >> have
> >> no Trusted Sites in IE). What made the Beta put in this entry? And if it
> >> was
> >> an accident on my part, how do I reverse the "decided to allow.?"
> >
> >
>
>
>

Though I don't use Spybot, I do use Spysweeper which does sort of the same
thing but in a different way, they add malicious site entries to the Host
file that direct you back to your local machine if you attempt to go to one
of these sites. What I got from the article was, that Spybot added such
sites to the Restricted sites list, but MSAS incorrectly interprets it as
being added to the Trusted sites or at least neglects to differentiate the
Inoculation addition correctly (bug - or the result of late night coding).
Check and see if it's really not in Restricted. This should be fixed with
the appearance of Beta2.
--
Regards, Dave

"lindzog" <lindzog@discussions.microsoft.com> wrote in message
news:2AF57B29-68E5-40D2-A703-1CC9978E863D@microsoft.com...
> Having read the KB article, Im not sure that is quite the same is it? I
> have
> the site as being allowed by myself and have no memory of doing it. Dont
> understand why it wouldnt appear in my Trusted Sites list either, when the
> Beta refers to it as a Trusted site.

tks dave.
Do you mean check in Spybot to see if its in the Restriced Sites? If so, yes
ill do that. Ive already looked in my IE blocked sites and it wasnt there
originally but I have put it there manually (just in case). Appreciate the
explanation. Its a weakness of the Beta that when it does thing, it often
doesnt explain very clearly what its doing and I believe is beyond the
comprehension of most (average) users.

L



"Dave M" wrote:

> Though I don't use Spybot, I do use Spysweeper which does sort of the same
> thing but in a different way, they add malicious site entries to the Host
> file that direct you back to your local machine if you attempt to go to one
> of these sites. What I got from the article was, that Spybot added such
> sites to the Restricted sites list, but MSAS incorrectly interprets it as
> being added to the Trusted sites or at least neglects to differentiate the
> Inoculation addition correctly (bug - or the result of late night coding).
> Check and see if it's really not in Restricted. This should be fixed with
> the appearance of Beta2.
> --
> Regards, Dave
>
> "lindzog" <lindzog@discussions.microsoft.com> wrote in message
> news:2AF57B29-68E5-40D2-A703-1CC9978E863D@microsoft.com...
> > Having read the KB article, Im not sure that is quite the same is it? I
> > have
> > the site as being allowed by myself and have no memory of doing it. Dont
> > understand why it wouldnt appear in my Trusted Sites list either, when the
> > Beta refers to it as a Trusted site.
>
>
>

I meant in Internet Explorer itself /Tools/Internet
Options/Security/Restricted sites/ click Sites
--
Regards, Dave

no bill the site was not in there. but i put it in manually

"lindzog" wrote:

> tks for the replies. Yes I am using Spybot Search and Destroy. So that might
> explain it. Also, I have put the 139mm.com in my Blocked Sites, just in case.
> (though ive no evidence that this is a dangerous site).
> Tks again and for the link which I will read.
>
>
>
> "Dave M" wrote:
>
> > Taking that back about the update fix. The site is up now...
> > http://support.microsoft.com/?kbid=902956
> > and it appears to be a known bug with MSAS, provided you're running Search &
> > Destroy
> > with immunizations enabled, though I'm not certain are using it. Let us
> > know...
> > --
> > Regards, Dave
> >
> > "Dave M" <dpmoller@junoSPAM.com> wrote in message
> > news:OvZaWxgyFHA.2876@TK2MSFTNGSA03.privatenews.microsoft.com...
> > > From Andy in the 'general' forum of 9/30:
> > > It may just be a false positive if you have Spybot Search
> > > & Destroy installed, there is a issue where MS Antispy
> > > detects sites added to the restricted zone and displays a
> > > warning that its trying to enter itself into the trusted
> > > zone, Ive seen this myself last week when I asked someone
> > > to install Spybot and enable the immunize feature, they
> > > got a warning saying 139mm was trying to enter itself
> > > into the Trusted Zone.
> > >
> > > Here's a support page from MS that explains this:
> > >
> > > http://support.microsoft.com/?kbid=902956
> > >
> > > I can't get to the above site or it's moved location to display right now,
> > > but if it's false it should be in the next set of signature updates. You
> > > don't want to go to 139mm... ugly,
> > >
> > > --
> > > Regards, Dave
> > >
> > > "lindzog" <lindzog@discussions.microsoft.com> wrote in message
> > > news:9B48E4F4-3154-4849-80D5-28F8A080A515@microsoft.com...
> > >> In Real time protection/Internet Agents/Internet Events, it says there
> > >> is
> > >> one where I " decided to allow the trusted site 139mm.com to Internet
> > >> Explorer." As far as I am aware I did not do this. The site appears to
> > >> be a
> > >> chinese one. Ive been to my Trusted Sites in IE and it is not there. (I
> > >> have
> > >> no Trusted Sites in IE). What made the Beta put in this entry? And if it
> > >> was
> > >> an accident on my part, how do I reverse the "decided to allow.?"
> > >
> > >
> >
> >
> >