Feature request in Windows AntiSpyware

G

Guest

Hi,

I noticed Windows AntiSpyware has a "Suspected spyware request" feature, in
which it seems to scan the programs installed between 2 system restore points
and probably report those to Microsoft.

I think another feature that will be usefull is to allow me to pick one or
more files from the hard disk (that I know are spyware) and send them
directly to Microsoft for further analysis.

The reason: A few days ago, while browsing I got installed without my
knoledge a couple of applications like mssearchnet.exe, mscornet.exe,
svchost.dll, nvctrl.exe, spyaxe, bho.homepage browser helper, etc. I run
AdAware, Spybot S&D but they didn't detect and didn't remove any of these.
I spent a couple of hours and manually cleaned up the machine, and I saved
copies of whatever was installed without my knowledge (all the above
binaries).
I just installed Win AntiSpyware beta1 and run a deep scan on the drive, but
it doesn't report the saved binaries as spyware, so I'd assume it wouldn't
have detected them when they were active (perhaps they are too new for any of
the anti-spyware programs to flag them).
I can't use the "Suspected spyware request" feature, because now my machine
is clean, but I'd like to send somehow a report of the saved binaries to
protect other users in the future. A feature that will allow to send specific
binaries will come in handy.

Thanks,
Alin
 
G

Guest

Most of the items you are listing refer to Trojans, not spyware.

Antispyware apps go after spyware, not Trojans.

You need a good AV app to deal with Trojans. If you have an AV app
installed, I'd suggest making certain it's up-to-date.

Alan
 
G

Guest

Hi Alan,

You're right, in my case they were trojans. I had the antivirus up-to-date
(eTrust Antivirus 7.1), but it didn't know about those I got hit with.
3 days later eTrust updated the signatures list, and detected as Puper and
Moiling variants (in a backup folder) half of the binaries I've cleaned.
I've sent to eTrust for further analysis the remaining 3 binaires still not
detected as trojans.

Nevertheless, I still think such feature of sending directly binaries for
analysis could be useful. If proven to be trojans instead of spyware and
Microsoft AntiSpyware won't deal with them, it could help at least updating
the definitions for Malicious Software Removal Tool or the upcoming Microsoft
OneCare.

Thanks,
Alin
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Most frequent request FAQ 1
Microsoft Feature Request - Bug Report 3
Feature request - Manual Item Scan 1
intended feature or not? 8
Antispyware wishlist 1
Spyware Doctor vs MS Antispyware Beta 4
Microsoft AntiSpyware Spyware Scan Results (poll) 1
MS AntiSpyware DOES NOT DETECT! 2

Top