Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Releases AntiSpyware Program

Posted by michael on from the solving-the-problem-it-created,-for-a-price dept.

Nathan Weinberg writes "Microsoft released this morning Microsoft AntiSpyware, the product of last month's acquisition of GIANT. As I write in my report on my site, the program is very powerful, and certainly measures up to and may even beat Spybot and Ad-Aware. However, it's also pretty buggy, and Microsoft might have already sneaked in a pay subscription service."

23 of 580 comments (clear)

  1. Comment removed by account_deleted · · Score: 5, Informative

    Comment removed based on user account deletion

  2. Re:Lots of info left out of the summary... by Rolan · · Score: 5, Informative

    And lastly, there doesn't seem to be any evidence that Microsoft is making it a subscription service. I was able to download, install, and run the program all without signing up for a subscription of any sort. Maybe that's because the program is still in beta or maybe it's just anti-MS FUD on the subscriber's part... who knows.

    Reading the review would reveal why the submitter said that. The review says it might have a subscription based on the fact that it had 206 days until it expired. My personal opinion is that the expiration is there because it's Beta, but it may very well lead to a subscription service.

    As far as the summary not saying it's a beta... Well, seemed pretty obvious to me. They just bought the company afterall.

    --
    - AMW
  3. Re:Information and Release by BoldAC · · Score: 2, Informative

    Our initial impression is that it works as well as Giant software does.... with similiar false positives.

    It's a beast when it runs and will easily suck up all available CPU cycles.

    It asks if you want to report your spyware information back to the mothership as a way to make that the global big-brother database is kept up to date. It asks at least. :)

    You have to have admin rights to run... but you gotta imagine Microsoft pushing this thing in a few months... much like the SP2 roll-out.

  4. Re:Whats wrong with this picture. by BradleyUffner · · Score: 2, Informative

    What the hell are you talking about? Microsoft releases patches for thier browser all the time.

  5. They don't want customers to run beta software... by Futurepower(R) · · Score: 4, Informative


    Microsoft has often done this. They don't want customers to run beta software forever. They want the customer to realize that he or she must get the latest version.

  6. Just ran it - some first impressions by Zocalo · · Score: 5, Informative
    I've literally just finished running it on a PC that I keep fairly clean through use of Spybot, Ad-Aware and Firefox instead of IE. It's pretty fast, even in its in-depth scan mode, despite some earlier reports that the GIANT version was slow, so I'm guessing this is where any of Microsoft's major code changes might have been. It probably took about three minutes to run on my AMD 3800+/XP box, so not too shabby compared to Ad-Aware and Spybot.

    As to the resutls, it turfed up three bits of possible Spyware which Ad-Aware and Spybot were missing/ignoring. The first was what it thought was Kazaa, but was infact Kazaa Lite (I've never had the original Kazaa installed). Second was some legacy registry keys left behind by WeatherBug which had piggybacked its way onto my PC with some shareware some time ago - fixed and reported to Spybot/Ad-Aware. Finally, it detected something called SearchSquire, but this turned out to be part of the Immunization feature of Spybot.

    So, aside from the conflicts with Spybot's Immunization feature and the false positive on Kazaa Lite's registry keys, both of which can be fixed by setting the detection to "Always Ignore" it's not a bad little tool at all. Expect of course, for the fact that Microsoft is clearly planning of getting people to pay for this tool according to the webpage and EULA. Hmm. Getting people to pay for cleaning up the mess that you helped create in the first place... Unless this product is *vastly* better than Spybot and Ad-Aware on a thoroughly owned PC, I don't think so, and even then I think not...

    --
    UNIX? They're not even circumcised! Savages!
    1. Re:Just ran it - some first impressions by diegocgteleline.es · · Score: 2, Informative

      I agree with you, I've tested it and it's pretty impressive. Its way faster than adware and/or spybot and it has advanzed features like enabling/disabling specific modules (there lots of modules, covering from context menu adds to .ini files or registry settings) and it allows to set exceptions for programs (it don't allows to enter you by hand, the program needs to do the evil action and then the program will warn you, this should stop spyware of adding themselves to the exception lists)

      It don't eats lots of mem when running in "real time protection" mode. 10 MB. Less than gnome-terminal

      It also has a "spyware network", where you seem to agree that your program warns to a "network" and the rest of users will get a "warning" or something. It isn't the way to update the software - that's in another window - it looks to me like a way to protecto comptures in _real_ time. The period of time between updates could be too much.

      Although I've not teste GIANT my impression is that they have changed the logo and nothing more (which is not bad if the programs is already right). In fact, the main program is still called GIANTspywaremain.exe...

  7. Microsoft AntiSpyware, yeah it's called Firefox by kalislashdot · · Score: 5, Informative

    Funny.... Friends and Family are heavily infested everytime I visit. Install Firefox and Mike's Ad Blocking Host File and guess what, no more spyware. The best solution is prevention.

  8. Re:I've just been told... by iBod · · Score: 2, Informative

    Stealthily installed RealVNC clients are used as trojans, so it's a fair call, probably.

    Of course, Remote Desktop offers the same level of exposure, but I haven't heard of any exploits that use it (though I'm happy to be informed on this point).

  9. Re:Interesting... by LordNor · · Score: 2, Informative
    I don't see how TightVNC and RealVNC can be considered spyware. It found both of them on my system and classified them as a moderate Threat Level but in the name lists them as (Commercial Remote Control.)

    Here is their explanation of RealVNC.
    RealVNC
    Type: Commercial Remote Control
    Threat Level: Moderate
    Author: RealVNC/AT&T Laboratories Cambridge

    Description: VNC (Virtual Network Computing) software makes it possible to view and fully-interact with one computer from any other computer or mobile device anywhere on the Internet.

    Advice: This is a potential high risk threat. However, if this application has been installed for standard remote computer administration by yourself or your administror this application is safe. If you are not aware of this application being installed remove it.
    If you or your network admin does not have this program installed purposely remove immediately.

    About Commercial Remote Control: Yourself or your administrator for the purpose of managing a computer remotely installs a commercial remote control tool unlike a commercial RAT or a trojan RAT. In addition, a commercial remote control application is installed with the user's knowledge and does not have the ability to install as a stealth application.


    It also found a Windows 2000 resource kit utility as something called Cyanure.
  10. Re:What - no support for WinME ?!?? by dbackslash · · Score: 2, Informative

    I noticed that as well this morning. It's surprising (or maybe not) since the Giant product that this is based on supports 98 and ME.

  11. Re:Lots of info left out of the summary... by wo1verin3 · · Score: 2, Informative

    >> How would this extend their monopoly?

    Well for one it detected RealVNC as a potential spyware threat, even though it's a low risk one and recommended action is ignore... I remember a while ago when XP came out there was a hassle regarding XP licensing and other non-MS remote software to access the machine...

  12. Re:Lots of info left out of the summary... by jacksonj04 · · Score: 3, Informative

    That is most likely due to beta - alphas and betas of most MS software (and I'm speaking as an MSDN subscriber who can get hold of them) have expiry dates built in - I think the Longhorn tech release I have expires in August or something, and a beta of Windows 2000 expired before W2K was actually released. Can't speak for Office betas, but I feel it would be likely that they too expire.

    --
    How many people can read hex if only you and dead people can read hex?
  13. Re:Lots of info left out of the summary... by Wumpus · · Score: 4, Informative

    But it does run fine under Wine, and produces a validation code. The code isn't recognized as valid by the MS web page, though. Strange.

  14. MS Spyware by faradio · · Score: 2, Informative

    The thing detected RealVNC as Spyware, go figure.

  15. Re:Information and Release by stupidfoo · · Score: 3, Informative

    It also seems like a way for MS to try and get rid of some worthwhile non-MS software.

    I ran the scan and it told me that WinPcap was spyware. Is MS trying to kill Ethereal?

  16. Re:Lots of info left out of the summary... by dirty · · Score: 4, Informative

    Microsoft also bought Internet Explorer, that's given away for free. They really don't need to make the money back with all the cash they have. The positive PR from giving it away for free could easily make up for the cost of the company.

    --

    -matt
  17. false positives by telemnar · · Score: 2, Informative

    "Possible Browser Hijack. Start page set to about:blank"

    "Commercial Remote Control Software. RealVNC"

    who do these people think they are?

  18. Real Time protection not up to snuff? by mytec · · Score: 2, Informative

    I figured I'd test MS AntiSpyware against Lavasofts Ad-watch. I installed 'MSN Toolbar Suite'. That isn't malware but lavasofts program gives me the chance to block the registry modification whereas the MS product pops up a window from the sys tray saying the product doing the registry entry isn't known spyware and didn't let me say yay or nay, instead just disappearing faster than I could read the entire message.

    I like the behavior of Ad-watch much better; leaving me in control and not making assumptions for me. I realize the MSN product was install by choice but could other programs slip through MS assumptions?

  19. Not unless they charge by spideyct · · Score: 2, Informative

    No, I do not see it as a problem, unless they charge for it. There has been no indication that they will charge for it except for the Slashdot FUD.

    Is it a potential problem that open source software business plans are based on services and support - meaning they have a vested interest in keeping their applications difficult to use and fix? I'm not saying it is, but would you?

  20. Re:Lots of info left out of the summary... by twofidyKidd · · Score: 2, Informative

    The software detected RealVNC when it was still under the GIANT name. It's not something MS just added.

    --


    Hades, PoD: Official Advocate
  21. You don't know what you're complaining about.... by codermarc · · Score: 1, Informative

    Shocking - they don't seem to support DOS based Windows (9x and ME) even though there are arguably millions of infected consumper PC's. WinME boxes aren't THAT old.

    If you are going to try and tear down MS, please at least use accurate information.

    1. Windows 9x and ME are NOT DOS Based. The latest version of Windows that ran on top of DOS was Windows 3.x

    2. Windows ME does not even support DOS applications, which was one of it's bigger gripes.


  22. Doesn't install if Firefox is default browser by sammy_cda · · Score: 2, Informative

    I download the program and tried to install it. I use Firefox as default browser. The software said it wouldn't install unless IE 6.0 was installed on the computer.