Slashdot Mirror

← Back to Stories (view on slashdot.org)

Review of Microsoft's Anti-Spyware Tools

Posted by michael on from the better-than-nothing dept.

happyslayer writes "Matthew Fordahl has written a review of Microsoft's anti-spyware tool and has declared it, in a word, 'ineffective.' Though the methodology isn't carried out completely (he uses another anti-virus program after trying MS's tool, but doesn't do the same with the anti-spyware tool), it's a fairly good anecdote on the MS product's usefulness."

24 of 385 comments (clear)

  1. Again? by Anonymous Coward · · Score: 2, Insightful

    How many times are we going to have a Slashdot blurb about someone reviewing this thing?

  2. Makes no sense by Anonymous Coward · · Score: 1, Insightful

    If Giant Anti-Spyware is ineffective, then please, what do you call Spybot S&D? Worthless?

    Giant and Webroot's are the only two that work at all, and neither is overly impressive. So what is the author trying to say?

  3. Er, isn't this a duplicate? like 2 days ago by Anonymous Coward · · Score: 2, Insightful

    like they don't even read their own site?

  4. WTF? by DarkBlackFox · · Score: 5, Insightful

    What's up with all these "reviews" immediately condemning this new tool? As far as I can tell, it's an honest attempt on Microsoft's part to actively aid it's customers in removing crap from their computers. I've used it myself at work, and after running Spybot, Ad-Aware, SpySweeper, and HijackThis, Microsoft Antispyware still manages to flag and remove quite a few leftovers.

    Granted, by itself it may not be the most effective thing in the world, but the same can be said for any antispyware/antivirus software. We need to run at least 3 antispyware programs at work, and at least 2 antivirus programs before we feel confident that a computer is clean enough to return to the customer.

    Besides the fact that it's just a beta, it's worked out pretty well for what it is. The interface is easy enough to figure out and use, and it identifies software which comes bundled with adware/spyware. When was the last time Spybot or Ad-Aware flagged Kazaa or Imesh as adware bundlers, while the default action is "ignore," but removal and quarantine are obvious choices? I say enough of these reviews. I'll be "reviewing" it myself by using it for what it can do well. If the final version works as well as this does, or better, it'll stay on my list of removal tools for my customers.

    1. Re:WTF? by DarkBlackFox · · Score: 2, Insightful

      Windows XP's SP2 is a step in the right direction. Computers I've loaded that on have yet to return with any more serious infections. Building the OS properly in the first place would have made life easier for us techs, but more difficult for the people who simply "want things to work."

      I completely agree with you (although it's not often I reply and can say such about an AC) that the platform is not best for the customer. However, my primary customers are laypersons who know only enough about the computer to identify the case/tower as the "modem" and that Windows is "the thing with the start thingey I click." All they know is they need Word to type stuff, AOL is the internet, and they think the flashing banner ads saying "your system clock is not accurate" are legitimate windows messages. Securing the platform is only half the battle though. All the consumer level security we can provide is useless against a kid who does everything in his power to install Kazaa to download the latest pop crap music. All the kid needs to do is click past the numerous "are you sure you want to install this even though it may cause death, temporary blindness, spyware infections, various heart conditions, etc" warnings associated with installing software on a "secure" system. The solution? Give them a limited or locked down account. But wait, now the tax software they purchased from Staples won't install or function properly.

      There is no magic bullet to the problems the common user faces these days, other than a mass migration to Mac or Linux. Even that would only pose a temporary solution though. The former doesn't seem likely when our userbase prefers lower price over quality of components, e.g. $399 PC with monitor, kb/mouse/speakers vs. even $499 for the new Mac, without kb/mouse/monitor. Education can help to an extent, but there are only so many users with the will to learn the WHY as opposed to the HOW of the way software operates. Hence the later solution of Linux, or the lack of current viability thereof. People are afraid of what they don't know, and even more afraid of something they don't know when it doesn't work. I'd gladly recommend linux for 80% of the clients I serve, only these clients have the expectation of things just "working" without explanation, rhyme, or reason. They would try to install Windows software on linux, even after multiple explanations of why that wouldn't work.

      Along the same lines are the security concepts in OSX. It's all great and fine to use an admin password to control installing software, but what of it when some adware/spyware bundled software package is cobbled together for Mac, installed alongside some Mac Kazaa equivalent. It's not so much a problem now, but if Mac and Linux were both to become totally mainstream and at some point surpass Windows as the dominant operating systems, I have no doubt we will see an increase in the number of malicious programs for both systems. Spammers and phishers will not so easily give up their target audience, and will gladly shift platforms accordingly, using whatever methodologies to ensnare the unsuspecting and ignorant consumer.

      That turned into a rant pretty quickly, and for that I apologize. To answer the parent post, yes, perhaps the customers are better off on other platforms, but while a portion of my job is based around cleaning the messes, I do have a conscious, and I don't keep people pinned to any particular platform for my own gain. At this point in time, the needs of my customers are based in a win32 world, and until something more drastic than a $90 repair bill comes their way to convince them otherwise, they will happily sit there and accept whatever crap the internet decides to gargle up.

  5. M$ is Evil!! by ontheheap · · Score: 3, Insightful

    That seems to be the common mindset amongst a good majority of /.'s. While I don't necessarily agree with their business practices, I admit that they put out some pretty good software. The visual studio family of compilers for one. Another thing, I've /never/ experienced a crash with XP. Because I know how to use it. I've never had a crash with Slackware either. You know why? Yup. Because I know how to use it. Also, firefox is not some magical solution to spyware. I'll admit it's a bit harder to become infected if you use ff instead of ie, but a stupid user is a stupid user regardless of what software you place in front of them. In short, MS AntiSpyware looks like a very promising app. One which I hope MicroSoft continues to improve.

    1. Re:M$ is Evil!! by Anonymous Coward · · Score: 1, Insightful

      Yep, the Visual Studio development tools are light years ahead of anything Linux can offer. Strangely its my geekiness that actually *keeps* me using Windows, for the kickass development environment. OK mod me down now :(

  6. Re:Found things the others didn't... by Hork_Monkey · · Score: 3, Insightful

    I also ran it after Spybot and AdAware and it found more items.

    Quite frankly, I was impressed.

    Perhaps the author of the review went in with the intent of giving a bad review?

  7. How many reviews of this thing do we need? by glrotate · · Score: 2, Insightful

    I think this is the third. How about holding off until a final product, or at least a new version, is released?

  8. Re:Call me crazy by ikkonoishi · · Score: 3, Insightful

    I know... I mean why test if you don't do an objective test. And how is this news?

    This kevlar armor is ineffective. I mean I tried it out and the knife went right through it.

    The MS thing is mostly to get rid of the most annoying worms at this point.

  9. Re:Wow. Anecdotal Evidence! by paranoidgeek · · Score: 2, Insightful

    And removed them. Successfully. (whereas Ad-aware would have just quarantined them).

    Errr and how is quarantining worse than deletion ??
    I personally would find quarantining a feature because .. well sometimes computers *do* make mistakes and i prefer it if they can undo the mistakes.

    --
    Lima India November Uniform X-ray
  10. Users & Spyware by Vulture101 · · Score: 2, Insightful

    what seems to escape most posters is that the majority of spyware on computers was instaled by the people that uses them. There is no OS or antispyware or whatever that can do anything about that, average joe is dumb in windows in linux or os2, average joe will click on ad or will install bonzi budy just to watch some naked chicks. its mostly a problem of user education, not software.

  11. I can see it now. by ftgow · · Score: 0, Insightful

    You have to pay to use Outlook now, chances are Microsoft will charge a (probably nominal) fee for this thing as well. Have to pay for something that MAYBE will protect your computer from the end result of Microsoft's inability to create secure, efficient software. God I love GNU.

  12. Spyware on Linux/Unix by parvenu74 · · Score: 2, Insightful

    Okay, slightly OT, but answer me this: why is it that Linux and Unix based systems (like Mac OS X) don't have problems with spyware and viruses? The popular argument by Windows fanboys is that because there is not enough of a market share for *nix to matter to malware authors. I've read it also has to do with package management on *nix, and that you cannot just simply execute a script or binary on a *nix system? TECHNICALLY SPEAKING, what is the strait answer here?

  13. 80% of my job is eliminating spyware by vudufixit · · Score: 2, Insightful

    I work seven days a week, 10-14 hours a day as a freelance computer repair person. Most of my clients are residential, and about 80% of their problems are related to viruses and spyware, most of it brought on my the downloading and usage of "bundlers" such as Kazaa. I've found AdAware and Spybot to be very effective, followed closely by Hijack This and CW Shredder. Security Task Manager is also pretty good, and Killbox is great for eliminating hard-to-delete individual files. I was glad when Giant came out, and still OK with it when MS bought them out. Giant/MS antispyware finds stuff the others don't - each of these utilities complement one another. In addition, as another poster said, I take stuff out of MSCONFIG and the "Run" keys. I also delete executables and .dll files I recognize as bad, as well as go into Add/Remove and take a lot of rogue programs out of there, as well. c:\windows\prefetch and c:\windows\temp get an emptying out, too. Oh, and the 2004, 2005 versions of Norton and McAfee do seem to include some malware detection beyond viruses.

  14. Crap article by AutoTheme · · Score: 3, Insightful

    I neither hate it nor love it or Microsoft. The simple fact is that the review was crap. The methodology was lacking and the scientific process non-existant. We've done several anti-virus and anti-spyware comparisons. What you do is simple: - Load up a virtual machine with XP and take a snapshot - then kill it with viruses or spyware - run a tool and find what it catches/cleans - revert to the snapshot and run the next tool - do some simple math

  15. Re:Found things the others didn't... by st0rmshad0w · · Score: 4, Insightful

    "I've never really seen any of the removal tools that were 100% effective"

    Fdisk.

  16. utter nonsense by Diabolus777 · · Score: 5, Insightful

    I sincerely hope they never do charge for this product.

    MS selling anti-spyware is like Goodyear selling anti-defective-tire-glue-or-something.

    1.Build defective product
    2.Let customer get flooded with problems
    3.Instead of fixing defective product, sell customer
    some kind of half working fix you bought from someone else
    4.profit!!!

    --
    We should have been
    So much more by now
    Too dead inside
    To even know the guilt
  17. Re:Operator Error by mikeb39 · · Score: 2, Insightful

    Your elitism is undeserved and annoying. In actual repair shops (it sounds to me like you just do it freelance without knowing much), the quickest and best way we do things is by backing up the data, then reformatting. You can dink around forever fixing this little bug or that one, or get the whole job done in about 2 hours. One of those choices is the one used by actual professionals.

  18. Re:Call me crazy by MotherSuperior · · Score: 5, Insightful
    This statement is getting ridiculous. In any thread that even vaguely mentions Microsoft (And many that don't.) Someone rants about how everyone on Slashdot is anti-Microsoft.

    Am I the only one reading the comments? Or just the only one noticing that for every Microsoft-basher, there's someone jumping into Bill Gates' corner. Granted, there might be a marginally higher population of [Insert trendy alternate OS here] fanboys than MS ones, but come on. I see /tons/ of Highly-Moderated comments that favor Microsoft on any given issue. Considering the comments are moderated by the slashdot readership, one has to assume that not everyone here is a MS basher, doesn't one?

    Bottom Line: Microsoft is not entirely evil, nor entirely good. Intelligent people will not label them as such. Rational, right-thinking people will examine each story/issue/what have you, and make judgements accordingly.

    Microsoft-bashers: Shut up

    Microsoft-basher-bashers: Shut up

    --
    This is my sig. There are many like it, but this one is mine...
  19. it's a vicious cycle by louden+obscure · · Score: 2, Insightful

    which i personally have solved at home by cresting the learning curve of *nix. yeah it's not a perfect solution by any means. but instead of chasing my tail and trying to bludgeon an ms OS into submission, i have been slowly learning how to tailor a linux based OS to my needs and wants. i'm not chasing a moving target of virus, spyware, adware or what have you. to me, joe sixpack, my choice just seems easier. oh yeah, and the free beer aspect...duh!

    --
    Serenity now, insanity later.
  20. Not only that by Sycraft-fu · · Score: 2, Insightful

    I would label all spyware tools as inefficitive, or at the very least suboptimal and flawed. I know of no tool that will autommatically remove all spyware safely and reliably, and block it form the system. I can find this technology in a virus scanner, several in fact. They have essentially a 100% detection rate, frequently updated definitions, ability to block viruses before they reach the system, and with heuristic analysis the ability to block unknown vairants.

    All the spyware software is flawed in some way. The automatic software fails to completely remove all spyware. Even good ones like SPybot and Adaware fail to remove everything, in fact one often finds what the other misses. Also, sometimes when it does remove a peice of spyware, it does so in a manner that causes harm to the system (Adaware improperly removed new.net and one point and left DNS inoperable on the system). Manual ones, like Hijack This, do a much better job, but only if a skilled and knowledgable individual is operating them.

    So I'd say, if MS's tool finds a lot, but not all spyware, they are on par with other good tools. It would be desirable to see it get better, and become the first to find all spyware, but you can't knock them for not totally succeding when no one else has come close.

  21. Re:Concurs... by Chess_the_cat · · Score: 3, Insightful

    Well that's real interesting. Especially as how loved this software when it was Giant's and now that MS has bought it, it's suddenly shite. Gimme a break.

    --
    Support the First Amendment. Read at -1
  22. Re:Call me crazy by Anonymous Coward · · Score: 1, Insightful

    I totally agree with you on things not being black & white. But implying that Slashdot in sum is almost neutral on Linux/Google/Mac vs MS an others is really pushing it IMO.

    And Slashdot has sort of always been in that camp. But for me it has seemed to get a lot worse lately. Where "we" increasingly use and mod up fud and bullshit, which "we" used to be against, just because it is anti-MS or pro Linux/Google/Mac.

    Maybe that is why you now are seeing so many posts complainging about it? I miss that Slashdot was more news for nerds and less religion for nerds.