New MS spyware apps ’so-so’
p2pnet.net News:- Bill and the Boyz have for years been plagued by gaping security holes and swarmed by e-bugs, but they’ve only recently come out with applications meant to deal with the problems.
“You’d think the company, which presumably knows its own Windows and Internet Explorer code, would have long ago come up with something to repair PCs possessed by malicious programs,” says the Associated Press.
But, “Though Microsoft Windows Malicious Software Removal Tool and Microsoft AntiSpyware show some promise, they aren’t close to being magic bullets.”
AP’s Mattthew Fordahl says he tested the apps on a three-year-old, “basically unusable” Windows XP Home Edition system he borrowed from his wife’s cousin.
“Annoying pop-up windows, a sign of adware, were the least of its problems,” says Fordahl. “It took more than a minute to load a single Web page and often crashed minutes later.”
Not only but also, it refused to load Windows Update, so he installed Microsoft’s Malicious Software Removal Tool manually, with the help of another PC and a USB drive and …
… “The removal tool scanned the sick machine and reported no problems, even though there were big problems.”
However, Fordahl liked Microsoft’s free antispyware program – as protector of a clean system.
A thorough scan discovered 77 spyware and adware programs, which I removed,” hesays, adding:
“But bizarre behaviors continued and I eventually broke down and reformatted the hard drive, then reinstalled Windows XP.”
Something you think we should know about? tips[at]p2pnet.net
===================
See:-
malicious programs – Spyware tools are so-so, the Associated Press, January 24, 2005
antispyware program - Free Microsoft anti-spyware app, p2pnet, January 7, 2005
January 24th, 2005 at 5:15 pm
Reformatting is a first step. The next step is evaluating what you want to do next. Linux seems like a very viable option in your case. You will have an opportunity to replace an unusable system with one you may very well enjoy without all the spyware and viruses.
Since the computer is one that is basically unusable, and the data has already been wiped out, why not give Linux a try. Try Mandrake, Suse, or even Slackware. You can always re-install Windows if you feel it is necessary. You can download these distibutions for no money at at, and you will have the support of many different people and can get help from many sites such st http://www.freelink.cx or http://www.linuxhelp.net . As far as Winblows goes, I have voer 5 computers, and I use Winblows 98 on one partition. The rest use Linux and BSD. Iw ill rid myslef of Winblows completely once I am no longer forced to use it for embedded z-world systems development. I am currently lobbying http://www.z-world.com to release Dynamic C for Linux. I am also warning them that I am working to pursuade my client to switch to the competition because of free-er software. WE NOW HAVE A REAL SAY IN HOW WE USE ARE COMPUTERS! USE IT!
January 24th, 2005 at 6:38 pm
Do you really think Linux is that much safer than windows?
No, it is not. The only reason that there is not a large spyware development for linux that there is for windows is that very few people run linux compared to windows. If that demographic changes then you will start finding your precious linux box that is ‘free’ of spyware cramed to the gills with it just as a windows box is.
Security through unpopularity is not the real way to go.
January 24th, 2005 at 11:08 pm
Wrong, with linux you CAN have much more security.
With Windows you’re basically trusting MS to do something about security concers, since you can’t change, fix or even look at the source of the OS components.
With an open source linux distro you can install what you want, without hidden or linked programs that may not be of any use to you.
Further, free (as in freedom) open source programs are much more likely to be fixed even if they are found vulnerable since anyone can fix the source and share it with others.
Linux gives YOU the chance to make it secure.
With MS you don’t even have the chance to do anything but wait for the golden patch.
January 24th, 2005 at 11:37 pm
Why not use a linux distro based on free as in freedom software?
For a binary distro with emphasis on volunteer development
you can try Debian (the “sarge” testing release is recommended)
pro: binairies install fast, can configure everything
con: building from source is problematic, must configure everything, stable release old
http://www.debian.org/
For a source distro with emphasis on fitting user needs
you can try Gentoo
pro: you can build programs how you want with only what you need, can install the latest bleeding edge software or patch (after building it)
con: building from source is long and more involved, limited sets of binaries available
http://www.gentoo.org/
For a binaries distro with emphasis on community help
you can try Ubuntu
pro: binairies install fast, doesn’t need much configuring, friendly community, new release every 6 months
con: not as much configuring possible, installing from source difficult
http://www.ubuntulinux.org/
This is just brief summaries based in part on hearsay.
Your mileage may vary.
January 25th, 2005 at 2:04 pm
I run Linux as my Operating system, and yes I agree that spyware may become more prevelant on Linux systems when Linux becomes more popular. However, I will not be affected, and here is the reason:
Linux is open source, and I have compiled each software package. I also have added a function to each of the packages that check the context of execution for each program. If the context is not kosher, I am warned and program execution is suspended. Yes, I know that there are ways to fool my function, but I also know that it is not worth malware authors’ time to customize his/her spyware just to run on my system.
There are also kernel modules that prevent programs that are stored on common user directories from being executed. Linux programs are mostly open source. Therefore, it is able to be audited for spyware. Several attempts have been made to trojanize Linux based programmes, and these attempts were exposed once the good hackers looked at the source. Since Linux is open source, hackers who design Linux distributions can make tight from the start. They can include preconfigured firewalls and such. Linux was also designed from the outset to accomodate multiple users (as was Unix). Security was implemented at the very beginning and is part of the core of the operating system. Windows was originally designed for ease of use, and integration aspects have allowed each program to communicate with other programs as a default. In Windows, it is easy to send a Windows message to a button to similate a click or to get the value of a button or a textbox (including password enties). I have made programs operate even when passwords were not entered into the program simply by sending messages to windows handles.
Spyware will become a problem on computers whose owners are stupid, however. These are the people who insist on installing and running dodgey programs as root. Even the most ’secure’ operating system can be compromized because of an idiot (with administrative powers) behind a keyboard. Most of those who install Linux, however will continue to be safe because of the fact that the software they will run will for the most part be freely available from their Linux distibution’s website.
January 25th, 2005 at 3:00 pm
Given only .01% of PC users have your level of skills, that is the bottleneck that would make Linux no more secure than anything else were everyone to adopt it. And since they do not have your skills, you consider them stupid? Not good. Also, your attitude is more than a tad arrogant and even demonstrates substantial ignorance [stupidity?] on your part. Given your criteria and and applying them realistically, 99% of computer users will forever be stupid. By way of analogy, you are saying 99% of automobile users are stupid b/c they cannot perform an engine overhaul–100 years after the invention of cars. So yes, *forever* stupid, eh?
But, I can also say I have found Windows to be “secure.” I have *NEVER* have a virus, Trojan, worm, etc, and have experienced only the most harmless of tracking cookies. It’s really not so much the OS in any given case as much as it is the user sitting in front of the screen. (BTW, in over 25 years of using computers I have had one virus–on a Macintosh!)