Spyware Blaster V3.4 Registry question

When I run Spyware Blaster V3.4, I end up with the following new
Win XP registry entry:

HKLM\SOFTWARE\Microsoft\RFC1156Agent

under which is:

Current Version\Parameters

which has: TrapPollTimeMilliSecs

which is associated with being used by a keylogger


Does Spyware Blaster V3.4 create this entry in the registry ?

If I manually delete the entry, it will not re-appear until
I run Spyware Blaster V3.4 and it issues the:

"Loading Protection" message stating that it is loading the protection db.

At first I thought that the Spyware Blaster V3.4 Explorer CLSID entry
for "Anti spyware Keylogger" might be creating this registry entry,
but I disabled that particular entry from Spyware Blaster
and it didn't make any difference.

I can re-create this scenario at will. As long as I don't run
Spyware Blaster V3.4 (and don't get the "loading protection db" message,
then I don't get the RFC1156Agent registry entry .

Can anyone tell me if this RFC1156Agent registry entry is being
created by an entry or entries in the Spyware Blaster "protection db" ?

Much appreciated. Thanks.

 

If not present it does.

It's not created by an entry in "protection db".

 

Hi,

It's a legitimate key - nothing to be worried about. Please see here: http://support.microsoft.com/kb/151237/en-us

Best regards,

-Javacool

 

Thanks. I know that RFC1156Agent is a legitimate key,
I'm worried about why it is created with the:
\Current Version\Parameters and the

TrapPollTimeMilliSecs value (set to '3A98' )

which from all internet search results, is being tied to keylogger spyware ?

Is this done so that any attempt by spyware to create this registry entry
would fail, as the exact key name and value they would try to install
already exists ? (so they would get a an error trying to create a key
and value with the same name ?)