|
Posted by Galen on July 1, 2005, 2:40 pm
If you were Registered and logged in, you could reply and use other advanced thread options
My reply is at the bottom of your sent message:
> Galen wrote:
>>
>> My reply is at the bottom of your sent message:
>>
>>> The beta Microsoft Anti-spyware locks up and cannot remove a virus
>>> called Trojan.BHO.Nameshifter.T, does anyone know how to get rid of
>>> this or if the Anti-spyware has a update on the way to fix this
>>> issue.
>>
>> Perhaps that would be because it's not an anti-trojan application but
>> an anti-spyware application? I really have no idea if it's even able
>> to remove this trojan but I understand that it does remove some.
>> While a trojan has a number of things in common with spyware (namely
>> leaking data) and more threats are "blended threats" than ever before
>> what you're attempting to do is a lot like getting a tape measure to
>> remove a 16p nail perhaps.
>>
>> Take a gander here:
>>
>> Malware Cleaning :
>> http://www.kgiii.info/windows/all/general/malwarefix.html
>>
>> Some general malware cleaning tools and processes.
>>
>> Galen
>
>
> where do you get your info at?
> http://en.wikipedia.org/wiki/Malware#Trojan
I get my information from the general consensus of the IT industry. I stand
by my statements in that Microsoft AntiSpyware is not a trojan removal tool.
Note that it doesn't say that it is either, in fact it's got exactly what
it's meant to do right there in the title. It is a SPYWARE removal tool.
Spyware, trojans, viruses, keyloggers, and the like are MALWARE. Malware
being the general term for "malicious software." AntiSpyware is not an AT
application. Some threats contain elements of both, they behave like more
than one or have categoristics of more than one of these threats and they
are known as "blended threats." A commonly accepted and widely used term.
Attempting to use an AS application in an effort to clean a trojan (one even
specifically classified a trojan from the looks of the name) is akin to
trying to get chkdsk to defrag. The broad assumption that the tool is
capable of removing more than it's designed to is a harmful perspective from
a security viewpoint. The area's that are gray really are the more difficult
ones, as more and more become combinations (again blended threats) the more
the applications overlap and so while MSAS may in fact remove some trojans
that's not it's intention, for the removal of trojans one would be better
served with a specific product that's designed to do so. Malware is a
classification, trojan or spyware is a subcategory of that classification.
Disk tools is a classification, chkdsk and defrag are subcategories of that
classification.
Galen
--
"But there are always some lunatics about. It would be a dull world
without them."
Sherlock Holmes
| 
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map