Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Anti-Spyware to Be Free of Charge

Posted by Zonk on from the just-the-right-price dept.

fubar1971 writes "During his keynote speech at the at the RSA Security Conference Bill Gates announced that the MS antispyware will be offered for free. From his speech: 'We've looked hard at the nature of this problem, and made a decision that this anti-spyware capability will become something that's available at no additional charge for Windows users -- both the blocking capability, and the scanning and removal capabilities.' Additional information at Government Computer News." Update: 02/16 16:57 GMT by Z : Microsoft was previously considering charging extra for this service.

19 of 470 comments (clear)

  1. Watch for the Error.log file by Cy+Guy · · Score: 5, Informative
    I've been running this on one of my XP boxes since it came out. Here are a couple of caveats:
    • It creates (what I consider to be) an absurdly large error.log file, on mine it had reached nearly 1Gb in about a month. I have since created a read-only dummy version of the file so it can't write to it anymore and it hasn't seemed to affect the program.
    • When installed while Admin it's installed for every user, which I guess you would want the blocking for every user, but not necessarily the scanning and program update features, - which leads to ...
    • Running as Admin it doesn't find suspicious Registry Entries in other users' User Registries, which means you could be the admin on an infested machine and not know it - this is on an XP Home box, so perhaps it's different on XP Pro?
    • Though called a beta, I haven't been able to find a way to report these bugs/flaws/'features' to MS.
    --
    Work for Change & GET PAID!
    1. Re:Watch for the Error.log file by mzwaterski · · Score: 5, Informative
      To report bugs/request features you could try the newsgroup that they have setup:

      http://communities.microsoft.com/newsgroups/defaul t.asp?ICP=spywareus

    2. Re:Watch for the Error.log file by dioscaido · · Score: 2, Informative

      That's a known bug! It's quite fun to watch. :) And technically, it's Giant goodness, not Microsoft. The team is working on a fix.

    3. Re:Watch for the Error.log file by Anonymous Coward · · Score: 2, Informative

      Cy Guy (user56083) sez-
      Running as Admin it doesn't find suspicious Registry Entries in other users' User Registries, which means you could be the admin on an infested machine and not know it - this is on an XP Home box, so perhaps it's different on XP Pro?

      Dunno about the other things you mentioned, but until the Beta turns Gold I've been doing this for spyware removal. For the more experienced geeks and techs out there this might seem like a "Well, DUH!", but I'm on a budget. Also sometimes there is no choice, but to admin a Windows PC. If anyone has any better/more intelligent ideas, please share.

      1. Run this Beta. Carves out a big chunk, but as previously mentioned by Cy Guy, it doesn't do it all. I also had a problem with it occasionally taking up 50% of the processor time at any given moment. So I run it, keep it in the background and selectively choose the agents I'm going to run. For real infected folks who are chronically infested, crank all the settings like an AC unit in August. All on high, all agents running.

      2. Run Pest Patrol by Computer Associates. I have my personal beefs with CA for most of their other software *cough*ArcServe*cough*, but this application will usually examine the whole registry and everyone's profile on a deep scan.

      3. Run Adware/Spybot etc. These older players tend to do well on clean-up. I haven't had too much success with them doing stand alone spyware clean-ups even if it IS a registered version with all the spyware definitions updated.

      4. Run Hijack This and check it out. Just to verify that something happened and clean out the odd registry file or BHO that escaped the cleaning process.

      5. Delete files from each Profile's Temp folder that aren't detrimental to the operation of the Windows PC. It's an ambigous definition, but each geek should know enough not to kill the crucial stuff.

      6. Delete all items from Temporary Internet Items folder. Sure, I could do this from IE, but do I trust it. . .

      Why don't I do steps 5 and 6 first? When I tried that initially, 1 or 2 of the spyware removal tools would have difficulty removing a particular spyware, since some required pieces for removal seem to reside in either Temp or Temporary Internet Items.

      Good luck Y'all.

    4. Re:Watch for the Error.log file by jkujath · · Score: 2, Informative

      I think that you may be talking about the Microsoft Malicious Software Removal Tool (which is available in Windows Update) and not the Microsoft Windows Anti-Spyware software which you have to download yourself from their website I believe.

      --
      "Very funny, Scotty. Now beam down my clothes."
    5. Re:Watch for the Error.log file by Wolfgame · · Score: 2, Informative

      Microsoft bought out Giant Company, and relabelled their antispyware product. Their general definition of "beta" would be more along the lines of "search and replace Giant Company with Microsoft".

      Although the spyware reporting tool looks good. I'd like to see some kind of heuristics, but all in good time, I suppose. Personally, I've found the Giant/MS AntiSpyware product to be among the best of breed of this type of app.

      Also, no scanner does multi-user scanning. They'll look at the directories, but that's as far as it will go, because user registries aren't loaded when the user's not logged in.

      But yeah ... no built in feedback mechanism isn't all that great, but then again, there's always microsoft's newsgroups: http://communities.microsoft.com/newsgroups/defaul t.asp?ICP=spyware&sLCID=us

      --
      -- My childhood bathtoys were Toaster and Hairdryer
    6. Re:Watch for the Error.log file by soulhuntre · · Score: 2, Informative

      The MMSRT (the removal tool) does not install anything, it leaves behind no icons or whatever and you don;t have to "run" anything after.

      the "installation" mechanism runs the tool, which does it's job and leaves nothing behind. No further action is required.

      --
      --> Fight tyranny and repression.... read /. at -1!
  2. Enterprise WILL be Charged by Anonymous Coward · · Score: 5, Informative

    The Consumer version will be FREE. Enterprise/Corporate version is NOT. They only let out one side of the story, for PR effect, it worked. You missed the flipside, for Enterprises they will charge.

  3. Re:It wasn't a big change... by DarkMantle · · Score: 4, Informative

    MSFT's solution to not be quite as good as third party offerings.

    Perhaps you forget, this used to be a third party offering. And the reason MSFT bought them is they were the best at remeoving the spyware, and had the best detection methods.

    I was using Giant Antispyware for a few months before MS bought them. And I've seen very few changes (maybe because the Giant Company developers are still working on it.)

    --
    DarkMantle I been bored, so I started a blog.
  4. Re:It wasn't a big change... by shokk · · Score: 3, Informative

    Also, I believe they were talking about the Personal version when they said "free". For a centralized corporate edition, they would most likely charge a fee. I would be very surprised if they didn't.

    If it were free for corporate use this would sink Spysweeper and CounterSpy, who both charge a per-seat license for a separate scanning system.

    Symantec is talking about adding spyware detection into their existing virus scanning software this March and we'll have to judge how effective the product is vs Microsoft's solution. Since they already offer a virus management solution in the corporate edition, this would allow companies already using it to just get the benefit in a simple upgrade that pushes from a central server to the clients.

    --
    "Beware of he who would deny you access to information, for in his heart, he dreams himself your master."
  5. I must disagree. by LePrince · · Score: 2, Informative
    I work in IT, and been working with computers since at least 7 years professionnaly.

    The other day, on my lunch break, I went to look for song lyrics on the 'net. A few hours later, my comp started acting weird. I scanned it and BANG, there were quite a few spyware on it.

    Granted, I was running IE (latests patches) on Win2k SP4 with a user that has administrative privileges (which no one should do but heck at my company my only user is admin on all workstations what can I say), and I didn't go surf on porn and/or discutable websites; I went to look for lyrics on regular websites.

    Therefore, even though I'm really pissed when I need to clear machines that have spyware (I got 2 this morning only), it's clearly not the user's fault most of the time.

    Of course our user aren't admin on their workstation but with all the BHO and ActiveX vulnerabilities, this doesn't prevent crap from being installed......

    I now use Firefox at work, even though it's technically prohibited... I don't care. I'm often surfing to look for solutions for many things, and many "anti-spyware" websites contain themselves spywares... I'm not surfing with IE for NOTHING except our internal ticket application and our apps, which were developped using IE-standards.

  6. Re:It wasn't a big change... by Anonymous Coward · · Score: 1, Informative

    Instead of badmouthing MS for its flaws, the linux community should be thanking them. If MS plugged the secutiry holes, and made it as secure as linux, and if they declared that Windows was only going to work on a subset of hardware on the market today (as linux does, though that subset is growing) which would fix much of the stability issues with the OS (other issues are those of the developers of 3rd party apps) then linux would never stand a chance. Windows is not 100% consistent in its interface or interoperability, but it sure as hell beats anything the linux community has to offer. Don't whine that Gnome/KDE are so nice. They are clones. They are the lniux opportunity trying to make the machine as easy to use as Windows has already done.

    The linux commuity and the windows world have just gone down 2 different paths:
    Linux - stability/security
    Windows - interoperability/easy of use

    Linux is making gains in the interop and ease of use department. Windows is making gains in the stability and security departments. It only remains to be seen who can gain on the other's strong point fastest. The number of diversity of developers in the linux community would make you think that linux would have the ege, but my money is on MS. The number & diveristy is both the linux community's strng suit and weakpoint. MS only has to agree internally to do something. WIth 10,000 linux developers each with their own idea of what is great and every linux user saying that this is what is wonderful about linux, MS can actually move faster when they need to.

  7. Re:Hopefully MS are reading by theVP · · Score: 2, Informative

    IDIOT PROOFING

    That's a point I made when we were considering utilizing this software with our users. I only use it when someone has a problem, and here's why: The thing runs just like zonealarm. Now, I LOVE zonealarm and things that alert me when things aren't going the way they should for MY PC, but the average user usually has no clue what they are looking at when they see messages asking them "Allow or block". I would like to see security levels with this software, so that you could simply tell it how secure you want it, or what specifically to always allow, and block everything else. Then I wouldn't get a million calls from my two test users every day, asking "Which one should I click on this, allow or block?"

    --
    "No one is more miserable than the person who wills everything and can do nothing." -Emperor Claudius 10 BC - AD 54
  8. Re:I'll pass by natedgreat · · Score: 2, Informative

    I use Mozilla as well and I can assure you that you will get spyware on your machine. I have been using Mozilla since it's creation and initial release. I still from time to time come across a new little spyware file that tries to move things around. Bottomg line is don't trust any O/S that MSFT puts out to protect you. Always install all the tools; AV, AS, FW, and NAT... wait, why not switch pver to linux and use Mozilla there, that way we don't need any of this and I get more speed and flexability from my computer!!!

  9. Can you say "Libel"? by abb3w · · Score: 4, Informative
    Lavasoft has found a new way to make money. Aparrently Ad-Aware no longer removes WhenU spyware.

    Lavasoft has put out something on that in their press release yesterday. The removal is not because of bribes, but because apparently WhenU no longer meets their threat threshold to be included in the spyware definitions database.

    --
    //Information does not want to be free; it wants to breed.
  10. Re:No. The "right" thing would be to fix IE. by PitaBred · · Score: 2, Informative

    Not just XP, but it has to be XP Service Pack 2. I know a few people who just won't run it.

    --
    My blog. Good stuff (when I remember to update it). Read it.
  11. Re:Next week's news by nolife · · Score: 2, Informative

    You want responsible? How about get to the root of the Spyware problem.

    Provide a control panal app or a button on IE that shows and allows removal of IE BHO's. Take it a step further and only allow BHO's to be installed through that button or CPL. How about a single function or button that shows ALL locations and all programs that are set to start on bootup (even the ones that can hook and hide themselves from showing when using regedit). Not make the users trudge through 20 or so different hidden locations that msconfig does not even show. How about when I remove something from that startup list, it can't come back or a gatekeeper to allow much more control of what goes in there. How about a method to stop a process and prevent it from starting again?

    All of these functions would be seem relatively simple and provide protection or at least prevent spyware from hiding from the user. Those steps would be user friendly compared to a spyware infection and would be leaps and bounds having to constantly remove spyware app of the week that uses these sneaky unchecked methods to get onto and wreck your system. Third parties have solutions that offer some of what I suggest, MS should start with those before even thinking about a signature based product.

    --
    Bad boys rape our young girls but Violet gives willingly.
  12. Re:Too Bad for Ad-Aware by Anonymous Coward · · Score: 1, Informative

    The argument holds up just fine. While it is possible to run them on Wine without having to buy Windows it is not legal to do so according to the EULA assuming you live in a country where that restriction is legally enforcable. That is why your argument about "Linux isn't free because you need to buy a computer" is bullshit. Linux can be legally run on anything, MSIE can only legally be run on Windows even though it is possible to run it without Windows.

  13. Re:It wasn't a big change... by jerw134 · · Score: 2, Informative

    It doesn't list VNC as spyware. It detects it, mentions what it's used for, and asks if it should be removed. VNC can easily be used to spy on people without their knowledge or consent. If someone snuck VNC onto your computer, it's great that AntiSpyware lets you know about it. If not, two clicks tells AntiSpyware to ignore VNC forever.

    Jesus Christ, you act like it just goes ahead and deletes VNC without even asking. I think it's great that it lists VNC. You are just too self-centered to see the reasoning behind it.