about MSAS real-time protections

[Guest]

can microsoft antispyware detect unknown or new spyware
or adware?

 

[Jacques]

I hope "spynet community" will help for this challenge. It's not say but I
think it's a major part of MSAS. Thanks to MS for future reacivity with new
items.

 

[Frank Saunders, MS-MVP IE/OE]

can microsoft antispyware detect unknown or new spyware
or adware?

No anti-spyware can detect unknown spyware.
No anti-spyware can detect something that came out after its last update.

--
Frank Saunders, MS-MVP, IE/OE
Please respond in Newsgroup only. Do not send email
http://www.fjsmjs.com
Protect your PC
http://www.microsoft.com./athome/security/protect/default.aspx
http://defendingyourmachine.blogspot.com/

 

[Bill Sanderson]

The checkpoints monitor integration points that allow a program to be set to
auto-run within Windows.

Microsoft Antispyware should alert for ALL programs that set such entries.
The resultant alerts will be Green for known spyware-free programs, Red for
known spyware, and blue for unknown programs.

So--you should get an alert for something which is trying to set itself up
for an autorun, and you should be able to determine whether, in fact, you
are installing something intentionally.

It isn't omnipotent, and I don't think it is scanning code heuristically,
but it should give you alerts--and you should have a chance to decide about
the "unknown" category of code.