[ackers]

I have dm version 4.2.2.12 March 19 2007 installed and the application loader kept disappearing, if I did an install/repair everything would be ok for a few days and then the same would happen. I eventually found that it was the anti-spyware part of system mechanic pro 8 that was reporting, and deleting, spyware called Trustinbar in the desktop manager, and thus removing the application loader. I have put Trustinbar in to the forum search with no result, am I the only one?, is it spyware or false detection.

[JSanders]

False detection, I expect.

If you downloaded the DM installer file from the RIM sites, you won't be getting any spyware.

[ackers]

As far as I remember I just followed the link in Blackberry FAQ, I've just had a look now with a view to downloading it again but it takes about 90 minutes so I will do it tomorrow.
Thanks.

[daphne]

That had to be a false positive.

Unless you downloaded Desktop Manager from a warez or p2p site, then it could be infected with anything.

From what I see on their website, it looks like System Mechanic Pro is using Microsoft's One Care anti-virus/anti-spyware. There shouild be a way within the program to report false positives, but I don't use One Care so I'm not sure.

If you get that detection again, you can upload the file in question to this site where it will be scanned by 36 anti-virus programs.

VirusTotal - Free Online Virus and Malware Scan

[ackers]

Just to be on the safe side I downloaded DM again and SM Pro still detects spyware in the Roxio media manager, I have another problem with SM Pro which they are trying to sort out so I will go along with what you guys are saying and assume it is false reporting. When Iolo have sorted the other problem I will ask about this specific threat reporting.
Thanks

[daphne]

Is it detecting a file, or a registry key? Is there a scan report or log you can post?

[ackers]

Hi Daphne,
The closest I can get to a log is a screen print, in my last post I refered to the Roxio media manager as being the problem part, this is not true, it's the app loader.

[daphne]

Hi ackers,

Here's a screenshot of the actual file shown in your picture.



You can see it is labeled with Research In Motion's name, and it's digitally signed by RIM also.

You can view the file on your PC by navigating to this location in Windows:
C:\Program Files\Common Files\Research In Motion\AppLoader

Your file should look the same as mine. Right-click the file and go to Properties and you should see the same thing that's in my screenshot. Mine may be a slightly different version of the file depending on what version of Desktop Manager you have installed.

But I'm 100% sure that System Mechanic Pro is giving you a false positive. There should be a way in the program to tell it to not detect that -- to mark it as safe so you don't keep getting the false positive results. But Iolo needs to fix that because it's really a bad false positive.

If you want to contact them and send them a link to this thread, it might help.

Edit to add...
I scanned the file online with 36 anti-virus scanners and none of them detect it. It's definitely not spyware and Iolo is giving you a false positive.

Virustotal. MD5: afa1040f4b31fb61cc9eb25a1849a55f

[ackers]

Hi daphne, my apploader file is the same as yours, I can choose to ignore it, which I have done, I will let them know about this as it may be related to the current problem I have. I will post the result but you know what tech support is like, it could take some time.
Thanks, Ackers