AntiSpyware Beta1 removed ALL my wifes mp3 files!!! <unhappy>

[Paul Laudenslager]

Hi Everyone,

First of all, I love Microsoft and I've been very happy
with the service and products that they've delivered for
many years now. That is, UNTIL NOW...

My wife's machine got loaded with spyware recently (the
kids got on her machine). I've been using SpyBot, Ad-
Aware, Symantec's Antivirus, and many other things to keep
her machine clean.

Well, I loaded up Microsoft's AntiSpyware and it detected
Edonkey on my wife's machine. No problem, my wife said
she didn't need it anyway.

I told Microsoft's AntiSpyware to remove Edonkey - FATAL
MISTAKE!!!

It removed everyfile she had (except one .zip) file that
was in the Edonkey downloads folder. Of course, my wife
had downloaded some mp3s, but she also put a LOT of
private mp3s in there of local gospel artists that she no
longer has the cds.

MS's ANTISPYWARE REMOVED ALL MP3s, WMA, and other
audio/video FILES from her hard disk. EVERYONE OF THEM!

You should have seen me try and explain this one to my
wife.

Thanks alot ANTISPYWARE TEAM. You should have removed
Edonkey as I asked you to, but not EVERY SINGLE FILE THAT
WAS IN THE EDONKEY FOLDER! It will take quite some time
to get out of the dog-house on this one.

Sick to my stomach,
Paul Laudenslager
(e-mail address removed)
540.548.0404

 

[Elaine]

Hi Everyone,

First of all, I love Microsoft and I've been very happy
with the service and products that they've delivered for
many years now. That is, UNTIL NOW...

Space Cadet

My wife's machine got loaded with spyware recently (the
kids got on her machine). I've been using SpyBot, Ad-
Aware, Symantec's Antivirus, and many other things to keep
her machine clean.

Good excuse. You really need to stay away from your wife's computer.

Well, I loaded up Microsoft's AntiSpyware and it detected
Edonkey on my wife's machine. No problem, my wife said
she didn't need it anyway.

I told Microsoft's AntiSpyware to remove Edonkey - FATAL
MISTAKE!!!

It removed everyfile she had (except one .zip) file that
was in the Edonkey downloads folder. Of course, my wife
had downloaded some mp3s, but she also put a LOT of
private mp3s in there of local gospel artists that she no
longer has the cds.

Do you know what a *Beta* is?

MS's ANTISPYWARE REMOVED ALL MP3s, WMA, and other
audio/video FILES from her hard disk. EVERYONE OF THEM!

You should have seen me try and explain this one to my
wife.

Thanks alot ANTISPYWARE TEAM. You should have removed
Edonkey as I asked you to, but not EVERY SINGLE FILE THAT
WAS IN THE EDONKEY FOLDER! It will take quite some time
to get out of the dog-house on this one.

LOL .........You should be in it forever.

 

[JohnF.]

I really hope you will be able to get past the sour note from this
experience and learn the value of backing up important "cds are not
available anymore" data. I try to maintain 3 levels of backup - and for a
very good reason - losing unreplaceable data is a bad feeling.

Open your quarantine and wait for a LONG time to see if they appear. It
could take hours - you might be able to get them back.

Good luck.

P.S. -
http://www.newegg.com/app/ViewProductDesc.asp?description=22-144-364&depa=1


JohnF.

 

[Bob L]

I'm confused. You stored you files in a directory of known spyware. OK, you
didn't know it was spyware. So you (or your wife) told it to delete edonkey
knowing that you stored you files in the edonkey folder. What did you
expect?

Now that is not to say that it's a mistake that some wouldn't make but if I
made a bonehead mistake I'd call myself a bonehead, not blame the software.

Someone mentioned BETA. This didn't even perform beta, it performed as
designed and as I would have wanted it to. Even General Release software
isn't idiot proof. That's why there is backup.

 

[plun]

I'm confused. You stored you files in a directory of known spyware. OK, you
didn't know it was spyware. So you (or your wife) told it to delete edonkey
knowing that you stored you files in the edonkey folder. What did you
expect?

Edonkey itself is NOT spyware...............

This is false and this is going to make this product
really hated among a lot of users.

 

[JohnF.]

eDonkey like other p2p software tends to garner a malware label because of
its function that allows others to come in on your computer and take files.
This is an intended function and is what is required in "file sharing"
networks BUT what a lot of people don't seem to understand is that this
sharing function is even occurring. I know you are saying how do they not
know they are allowing people to access their machine but they don't. I've
spoken to dozens who did not. This places p2p software in that gray area,
especially when there are ways to gain control of someone's machine through
this file sharing function.

Then I read here many times that people claim to only have their own files
in the p2p share folders - well folks, that doesn't help your case because
you are still violating current US laws because you are providing a way for
someone to get the music from you - RIAA is looking for YOU first before
those who just download for themselves and don't share.

If you really did understand how p2p software works, you wouldn't be keeping
all your files under the file structure of the p2p program anyway - you
would set up a separate volume with a controlled access to the content, away
from your regular file structures and documents. Unfortunately, most users
don't even know what they are doing other than thinking they are getting
something for nothing.

Go read
http://www.microsoft.com/athome/security/spyware/software/analysis.mspx and
you will see where p2p software could fit in to the scheme of applications
that may need to be controlled - I haven't installed it myself but I'm
pretty sure it doesn't get the REMOVE command by default. You have to
change the dropdown to REMOVE.

JohnF.

 

[plun]

eDonkey like other p2p software tends to garner a malware label because of
its function that allows others to come in on your computer and take files.
This is an intended function and is what is required in "file sharing"
networks BUT what a lot of people don't seem to understand is that this
sharing function is even occurring. I know you are saying how do they not
know they are allowing people to access their machine but they don't. I've
spoken to dozens who did not. This places p2p software in that gray area,
especially when there are ways to gain control of someone's machine through
this file sharing function.

Don´t mix filesharing and spyware ! Spyware programs comes
bundled with
the p2p app and therefore its wrong to remove everything.

Then I read here many times that people claim to only have their own files
in the p2p share folders - well folks, that doesn't help your case because
you are still violating current US laws because you are providing a way for
someone to get the music from you - RIAA is looking for YOU first before
those who just download for themselves and don't share.

Well, this is not something for MS to help RIAA with, this
is something for lawmakers
to deal with NOT MS. This program is going to be really
hated among a majority of users
wich are using p2p programs. And about RIAA I can only say
that these media company
really stinks when they can´t change anything and stands
still in development about
prizes and distribution.

If you really did understand how p2p software works, you wouldn't be keeping
all your files under the file structure of the p2p program anyway - you
would set up a separate volume with a controlled access to the content, away
from your regular file structures and documents. Unfortunately, most users
don't even know what they are doing other than thinking they are getting
something for nothing.

Well, I do understand how p2p software works..............

Go read
http://www.microsoft.com/athome/security/spyware/software/analysis.mspx and
you will see where p2p software could fit in to the scheme of applications
that may need to be controlled - I haven't installed it myself but I'm
pretty sure it doesn't get the REMOVE command by default. You have to
change the dropdown to REMOVE.

I don´t use them, I am running bit torrents if I want
something to test out

 

[JohnF.]

Don´t mix filesharing and spyware ! Spyware programs comes bundled with

the p2p app and therefore its wrong to remove everything.

If you read the MS article on how MSAS determines what to remove you will
see that p2p software an be construed as malware even without the spyware
component. Don't forget that MSAS has also detected and recommended
quarantine or removal of several different RATs.

Well, this is not something for MS to help RIAA with, this is something
for lawmakers...

MS is not trying to help anyone other than you. If you KNOW what you are
doing with a p2p then MSAS is not going to remove it because you will tell
it not to. I'm not defending the RIAA and I'm not defending the rampant
piracy that occurs on the p2p networks either.

I don´t use them, I am running bit torrents if I want something to test
out

Uh, bittorrent is also a p2p type application - as soon as you start
downloading, that file becomes available for someone else to download from
your machine - I've seen it happen where a file being downloaded was also
being uploaded to someone else at the same time.

Nearly every piece of software right out of the box is going to do something
or not do something that will make someone else mad. The p2p users community
can learn to adjust MSAS to be another benefit just like every other tool on
the market.

JohnF.

 

[A McGuire]

I actually thought bit torrent services were shut down recently. That site
is loaded with spyware anyway - I tried to get a key once and it tried to
send me an executable. Why didn't it just display on the screen? It was
just another way for someone to abuse those that aren't informed.

 

[plun]

I actually thought bit torrent services were shut down recently. That site
is loaded with spyware anyway - I tried to get a key once and it tried to
send me an executable. Why didn't it just display on the screen? It was
just another way for someone to abuse those that aren't informed.

Well, try this...............

http://torrent.dulug.duke.edu/

Linux girl would applaud you

Bittorrent is a smart solution for distributing files, in
this case
also legal files.

 

[plun]

If you read the MS article on how MSAS determines what to remove you will
see that p2p software an be construed as malware even without the spyware
component. Don't forget that MSAS has also detected and recommended
quarantine or removal of several different RATs.

I believe we have a bug on purpose within this function, MS
have changed this
within different signatures and I am sure that they are
going to
reverse this as all other anti spyware products.

We take Kazaa as example, Adaware and Spybot removes all bundled
spyware and leaves everything else intact, Kazaa don´t work
anymore
and it is up to every *thinking* user to decide if they want
to install Kazaa again !

Maybe MS managers have promised RIAA something but this is
totally
insane to remove the p2p app and I am pretty sure that this
causing headache
for them.

I have a mp3 player that don´t support DRM and therefore I
cant buy any music
from example Cdon.com. ;(

http://www.cdon.com/main.phtml?navroot=906

<Snip>

--plun

 

[A McGuire]

Quite honestly, I'm still trying to figure out why she reads this newsgroup
;-)