Hi Guys
Now Ad-Aware removes this easily which is the first
commercial scanner to be able to do this Im sure in a
couple of weeks it will be changed again, we have already
seen at least 3 versions of nail that I know of so they
are trying to keep in front.By the way Ewido will remove
SAH Agent(Shop At Home) if its needed.
Its the nature of malware, its constantly evolving and
creating new problems, I was scanning a couple of sites
today looking for a source of bogus warning messages
after a post on here and ended up getting a infection
that no spyware scanner is detecting. Some parts are
being removed but there is many dll's & exe's that remain
and my pc got killed for a while. Im glad I found it as
it appears to be a new desktop hijack infection with
backdoor features, Its clean again now but theres still a
couple of problems I need to work on .
I dont think Microsoft need any help on the detections
because they have the Strider "HoneyMonkey" project which
scans sites for code that can be installed without user
consent, The names derived from "honeypots" which refers
to passive server systems set up to wait for attacks.
Each HoneyMonkey is a Windows XP system with a different
level of patching. An initial wave of unpatched
HoneyMonkeys scours the Web seeking potentially malicious
sites. When a site is found that installs malicious code,
the machine is scrapped and another takes its place. The
target URL is then passed to a machine with a greater
level of patching, to see which systems are vulnerable to
the site's exploit. At the end of the chain is a fully
patched Windows XP system,
So Im sure they are getting all the information they need
out of this research although so we have to be patient
and wait for the results to show in the removers,Its a
never ending battle but I'm sure MS will be back in front
soon especially when all the other issues are solved so
then they can start releasing more updates and
definitions without having to work on other problems at
the same time.
Andy
