plans for killbits?

[New Duxie]

Just wondering if there are any plans to include killbits
protection (see SpywareBlaster) to MSAS?

it seems like a good idea, as prevention is usually the
better step than removal afterwards.

 

[Andre Da Costa]

I agree that prevention is better than cure, MSAS based on my experiences is
good at removing, but I find it strange that it has to infect the machine
first to remove it. As for inclusion of thirdparty solutions for prevention
of attacks, I don't think so. I would think the MSAS is more inclined to
develop their own solutions to do that.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

 

[JohnF.]

There's not much to develop for killbits, you either kill them our you
don't. If you don't, then you are missing an extremely effective and easy
way to stop most spyware. If MS doesn't use it, its got to be glaring
stupidity in my book.

 

[Randy Knobloch]

[..] but I find it strange that it (MSAS) has to infect the machine first to remove
it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

 

[Andre Da Costa]

180 Search assistant has infected me on 2 occasions, on the shareware DivX
player and off some website, Real-time protection did not help me in either
case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

[..] but I find it strange that it (MSAS) has to infect the machine first
to remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

 

[Randy Knobloch]

Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

180 Search assistant has infected me on 2 occasions, on the shareware DivX player
and off some website, Real-time protection did not help me in either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

[..] but I find it strange that it (MSAS) has to infect the machine first to
remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

 

[Duxavier]

Even with better realtime protection, the killbits method
stops the spyware even getting that far, as internet
explorer will simply refuse to load the bad items,

on a side note, what is more preferable hosts file
protection (adding bad sites to the hosts list with a
local loop as the address) or killbits?

is it better to use both methods, or is it just redundant
to use both?

-----Original Message-----
Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

180 Search assistant has infected me on 2 occasions, on the shareware DivX player
and off some website, Real-time protection did not help me in either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

om...

:
[..] but I find it strange that it (MSAS) has to infect the machine first to
remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

.

 

[Randy Knobloch]

Even with better realtime protection, the killbits method
stops the spyware even getting that far, as internet
explorer will simply refuse to load the bad items,

on a side note, what is more preferable hosts file
protection (adding bad sites to the hosts list with a
local loop as the address) or killbits?

is it better to use both methods, or is it just redundant
to use both?

Killbits and HOSTS are great "layered" protection.
MVP written, used and approved "HOSTS" file;
http://www.mvps.org/winhelp2002/hosts.htm
Look at the batch files, for renaming HOSTS, on-the-fly.

Again, piling on the layers - but *not* resource hogs
You might consider Spyware Blaster, if you don't run it already.
http://www.javacoolsoftware.com/spywareblaster.html

Lavasoft's Ad-aware & SpyBot Search & Destroy wouldn't
do any harm either;
Ad-aware here;
http://www.lavasoftusa.com/
SpyBot here;
http://www.spybot.info/en/index.html

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

 

[JohnF.]

Killbits are for activeX controls, the HOST file entries are for web
addresses.

Even with better realtime protection, the killbits method
stops the spyware even getting that far, as internet
explorer will simply refuse to load the bad items,

on a side note, what is more preferable hosts file
protection (adding bad sites to the hosts list with a
local loop as the address) or killbits?

is it better to use both methods, or is it just redundant
to use both?

-----Original Message-----
Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

180 Search assistant has infected me on 2 occasions, on the shareware DivX player
and off some website, Real-time protection did not help me in either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

om...

:
[..] but I find it strange that it (MSAS) has to infect the machine first to
remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

.

 

[Duxavier]

Thanks thats very helpful, to my knowledge Javacools
Spyware Blaster only adds killbits for activex, it does
not add hosts file protection, but it does add some sites
to the restricted sites zone, is this more or less
effective than adding sites to the hosts file? or are
they different altogether?

-----Original Message-----
Killbits are for activeX controls, the HOST file entries are for web
addresses.

Even with better realtime protection, the killbits method
stops the spyware even getting that far, as internet
explorer will simply refuse to load the bad items,

on a side note, what is more preferable hosts file
protection (adding bad sites to the hosts list with a
local loop as the address) or killbits?

is it better to use both methods, or is it just redundant
to use both?

-----Original Message-----
Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)



news:[email protected]

t.
com...

180 Search assistant has infected me on 2 occasions, on the shareware DivX player
and off some website, Real-time protection did not help me in either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

om...

:
[..] but I find it strange that it (MSAS) has to infect the machine first to
remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)








.

.

 

[Andre Da Costa]

Hopefully Randy, hopefully.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

180 Search assistant has infected me on 2 occasions, on the shareware
DivX player and off some website, Real-time protection did not help me in
either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

:
[..] but I find it strange that it (MSAS) has to infect the machine
first to remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you some real malware
to play with, you'll soon see MSAS does an admirable job.
Best I've seen in an anti-spyware app. in a *long* time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)

 

[JohnF.]

The restricted zone allows you to still visit those sites but puts stricter
security limits on them, a good way to stop scripted popups and other
background activities. The Zones are a more visible tool for controlling
websites whereas the HOSTS file is a holdover from the old Internet days
enjoying new life as a basic control tool that can lie to your browser about
sites you would like to restrict.

Thanks thats very helpful, to my knowledge Javacools
Spyware Blaster only adds killbits for activex, it does
not add hosts file protection, but it does add some sites
to the restricted sites zone, is this more or less
effective than adding sites to the hosts file? or are
they different altogether?

-----Original Message-----
Killbits are for activeX controls, the HOST file entries are for web
addresses.

Even with better realtime protection, the killbits method
stops the spyware even getting that far, as internet
explorer will simply refuse to load the bad items,

on a side note, what is more preferable hosts file
protection (adding bad sites to the hosts list with a
local loop as the address) or killbits?

is it better to use both methods, or is it just redundant
to use both?

-----Original Message-----
Perhaps Beta2 will offer better real-time, Andre.

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)



t.
com...
180 Search assistant has infected me on 2 occasions,
on the shareware DivX player
and off some website, Real-time protection did not
help me in either case.
--
Andre
Extended64 | http://www.extended64.com
Blog | http://www.extended64.com/blogs/andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy
http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

message

om...
:
[..] but I find it strange that it (MSAS) has to
infect the machine first to
remove it.

Err, Andre, real-time protection?
Unless I missed your point entirely.

Ping Bill, ask him for my email addy, I'll send you
some real malware
to play with, you'll soon see MSAS does an admirable
job.
Best I've seen in an anti-spyware app. in a *long*
time.

Regards,

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

(Reply to group, as return address
is invalid - that we may all benefit)








.

.