Re: OT: anti-malware progs ineffective

From: Ken Smith (kensmith_at_green.rahul.net)
Date: 01/28/05 

Date: Fri, 28 Jan 2005 15:04:32 +0000 (UTC)

In article <2j5kv05pqvarkhnvn2nfu64248nl2ih6er@4ax.com>,
Terry Pinnell <terrypinDELETE@THESEdial.pipex.com> wrote:
>I was surprised to learn today that all anti-adware and anti-spyware
>programs perform so badly. Here's an extract of the ranking, from
>'Anti-adware misses most malware' By Brian Livingston, in
>http://windowssecrets.com/050127/
>
>Product Adware Fixed
>---------------- ------------
>Giant AntiSpyware 63%
>Webroot Spy Sweeper 48%
>Ad-Aware SE Personal 47%
>Pest Patrol 41%
>SpywareStormer 35%
>Intermute SpySubtract Pro 34%
>PC Tools Spyware Doctor 33%
>Spybot Search & Destroy 33%
>McAfee AntiSpyware 33%
>Xblock X-Cleaner Deluxe 31%
>XoftSpy 27%
>NoAdware 24%
>Aluria Spyware Eliminator 23%
>OmniQuad AntiSpy 16%
>Spyware COP 15%
>SpyHunter 15%
>SpyKiller 2005 15%
>
>So, given that there must be great overlap, I reckon my
>frequently-used combination of Ad-Aware SE Personal and Spybot Search
>& Destroy is catching little more than half the malware reaching me.
>Unsettling.

It is an indication of how hard it is to remove the malware programs
without removing applications or Windows its self. There are several
things working against the writers of such software:

(1) You can't simply remove any software that appears to send data over
the network without removing portions of Windows.

(2) You can't simply remove any "strange" software since different users
have different applications installed and there is a wide variation in
what portions of Windows are installed.

(3) There is no direct way to tell the difference between a newer DLL
that has some bugs removed and one that has malware added.

I think what may be the best way to solve the problem is to place Windows
on a disk as the C drive, install all the applications from the shrink
wrapped boxes and then disconnect the write wire of the C drive. From
that point on, all the data goes on the D drive or it goes nowhere at all. 

-- 
--
kensmith@rahul.net   forging knowledge

Relevant Pages

  • Re: Anyone Have This Problem?
    ... I am running Windows XP on a DELL inspiron notebook. ... Internet Security/Anti-virus updates). ... > which contains the bridge-x malware installer. ... > then it is best to get some qualified help to make another clean install ...
    (comp.security.firewalls)
  • Re: WindowsUpdate_80244019 Help
    ... windows live oncare has disabled windows defender, ... IF no malware is detected, ... we'll recommend a tool that will install ... Is that entry in HOSTS, ...
    (microsoft.public.windowsupdate)
  • Re: WindowsUpdate_80244019 Help
    ... windows live oncare has disabled windows defender, ... IF no malware is detected, ... we'll recommend a tool that will install ... Is that entry in HOSTS, ...
    (microsoft.public.windowsupdate)
  • Re: Anyone know how to get rid of latest cool Web hijack?
    ... >> know if i find a cure, but it's looking like total windows reinstall ... > Before you try to remove spyware using any of the programs below, download ... > The process of removing certain malware may kill your internet connection. ... > install malware) Keep it UPDATED. ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: CPU at 100 and unsure about spyware
    ... for a while now I have noticed my computer running a very high CPU ... I opened Windows Task Manager and in the ... Get and install AVG 7.5 Free or Avast. ... Then clear all malware. ...
    (microsoft.public.windows.inetexplorer.ie6.browser)