MSAS accessing the Internet

P

Pat Willener

Microsoft AntiSpyware has been widely discussed in a Windows support
forum where I participate. One member claims that despite having not
given permission for autoupdate or contancting SpyNet, MSAS is still
accessing the Internet.

Some people say that accessing the Internet (and possibly sending out
information) without permission is no better than spyware itself.

Comments?
 
R

Randy Knobloch

Pat Willener said:
Microsoft AntiSpyware has been widely discussed in a Windows support forum where I
participate. One member claims that despite having not given permission for
autoupdate or contancting SpyNet, MSAS is still accessing the Internet.

Some people say that accessing the Internet (and possibly sending out information)
without permission is no better than spyware itself.

Comments?
Click to expand...

Using the SpyNet AntiSpyware Community with a Firewall
All the features of the SpyNet AntiSpyware Community as well as the Microsoft
AntiSpyware AutoUpdate are compatible with most standard software and hardware
firewalls. Both the SpyNet AntiSpyware Community and the AutoUpdater use standard
HTTP ports 80 and 443 to communicate with the SpyNet and update servers.



If you are running a software firewall

If your computer is running a software based firewall, you will need to make sure
that it is configured so that software on the computer can communicate over port 80
and 443. By default these should already be open to allow for standard HTTP
Web-based traffic to flow. In addition some software-based firewalls restrict how
programs on the computer connect with servers on the Internet. If you have such a
firewall, you will want to make sure that the following Microsoft AntiSpyware files
have permission to access the Internet over port 80 and 443:

1. GiantAntiSpywareMain.exe (the primary Microsoft AntiSpyware application)

2. gcasDtServ.exe (provides access to SpyNet for reporting unknown applications)

3. MicrosoftAntiSpywareUpdater.exe (provides functionality to update the latest
spyware definitions)

4. gcasServAlert.exe (provides access to SpyNet for reporting unknown
applications)

Running with the Windows Firewall in Microsoft Windows XP Service Pack 2

If you are running Windows XP with Service Pack 2 and have the Windows Firewall
enabled with application protection you will want to make sure that the following
Microsoft AntiSpyware applications have permission to access the Internet:

1. GiantAntiSpywareMain.exe (the primary Microsoft AntiSpyware application)

2. gcasDtServ.exe (provides access to SpyNet for reporting unknown applications)

3. MicrosoftAntiSpywareUpdater.exe (provides functionality to update the latest
spyware definitions)

4. gcasServAlert.exe (provides access to SpyNet for reporting unknown
applications)

If you are running a hardware firewall

If your computer is behind a hardware firewall, such as a router or a wireless base
station with an active firewall, all you will need to do is make sure that port 80
and 443 is open. By default port 80 should already be open to allow for standard
HTTP Web-based traffic to flow. Without port 80 open to most connections you would
not be able to browse the Web.

Silj
--
siljaline

MS - MVP Windows (IE/OE) 2003/04 AH-VSOP
________________________________________
Security Tools Updates
http://forum.aumha.org/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)
 
P

Pat Willener

Randy said:
Using the SpyNet AntiSpyware Community with a Firewall
Click to expand...
<snip>

I have seen that. The question is: why does MSAS still access the
Internet, even though all visible settings for Internet access
(autoupdate, and SpyNet connection) are off?
 
R

Randy Knobloch

:
<snip>

I have seen that. The question is: why does MSAS still access the
Internet, even though all visible settings for Internet access
(autoupdate, and SpyNet connection) are off?
Click to expand...

I cannot answer that directly, as I do not know.

Sorry for the "rubber stamp" reply, I was hoping you hadn't seen what
I posted last.
The only method of controlling what MSAS "phones home" to, is;
to install and run a 'rules-based' software firewall, such as Kerio, et al.

If you wish, you may obtain the best build of Kerio (not the current);
which is an excellent software firewall -
Base URL;
http://www.dslreports.com/forum/kerio
The executable file: http://www.kerio.com/dwn/kpf2-en-win.exe

Regards,
Silj

--
siljaline

MS - MVP Windows (IE/OE) 2003/04 AH-VSOP
________________________________________
Security Tools Updates
http://forum.aumha.org/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Why is MSAS accessing the internet? 1
Connecting to internet without permission 2
Back to MSAS, sorry for WD... :( 2
Unofficial FAQ for MSAS Beta 1 2
Using MSAS to identify internet black-spots 1
Interesting article in the Wall Street Journal 1
WSJ Microsoft Spyware Article 6
Frequently Asked Questions (FAQ) Feb 14 0

Top