Monitor Folders For File Changes And Additions
I was always puzzled that Microsoft did not integrate a software into Windows that would monitor specific folders for file changes and list the changes in a table to provide the user with means to analyze those changes. An application like this that would probably even pop up in real time informing the user that a file has been changed or added to a monitored directory would be helpful on many occasions. (yes there should be a turn off switch and an extensive configuration).
Say a user is surfing the web and suddenly the system informs him that an executable file has been replaced in his Windows folder. Should he be suspicious ? Yes absolutely. This could help fight spyware and malicious software right from the start.
Spy the Spy is a software for Windows that monitors folders and subfolders (and even network folders) for file changes and additions. Only selected file extensions are being reported though. I was not able to find a list of all file extensions but a quick test revealed that .exe, .dll and .bat file extensions where included in the warnings. There are probably a few more that will initiate a warning.
By default only the Windows folder and its subfolders are monitored by the application. Other folders can be added with ease though, it's probably a good idea to add the Program Files folder and the Documents and Settings folder as well.
Once a file gets added or changed in the monitored folders a warning will popup giving the user a handful of possibilities. The file can be moved to quarantine, the procedure can be logged and a System File Check can be initiated.
Spy The Spy is limited to reporting file changes and has a few limitations that make it a great addition to spyware tools. It cannot remove changes to the Windows Registry nor can it scan files to determine if they are indeed spyware or legit applications. Most importantly though it cannot deny read or write access to files and a file that produces a warning is already running on the system.
I was always puzzled that Microsoft did not integrate a software into Windows that would monitor specific folders for file changes and list the changes in a table to provide the user with means to analyze those changes. An application like this that would probably even pop up in real time informing the user that a file has been changed or added to a monitored directory would be helpful on many occasions. (yes there should be a turn off switch and an extensive configuration).
Say a user is surfing the web and suddenly the system informs him that an executable file has been replaced in his Windows folder. Should he be suspicious ? Yes absolutely. This could help fight spyware and malicious software right from the start.
Spy the Spy is a software for Windows that monitors folders and subfolders (and even network folders) for file changes and additions. Only selected file extensions are being reported though. I was not able to find a list of all file extensions but a quick test revealed that .exe, .dll and .bat file extensions where included in the warnings. There are probably a few more that will initiate a warning.
By default only the Windows folder and its subfolders are monitored by the application. Other folders can be added with ease though, it's probably a good idea to add the Program Files folder and the Documents and Settings folder as well.
Once a file gets added or changed in the monitored folders a warning will popup giving the user a handful of possibilities. The file can be moved to quarantine, the procedure can be logged and a System File Check can be initiated.
Spy The Spy is limited to reporting file changes and has a few limitations that make it a great addition to spyware tools. It cannot remove changes to the Windows Registry nor can it scan files to determine if they are indeed spyware or legit applications. Most importantly though it cannot deny read or write access to files and a file that produces a warning is already running on the system.
