Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Fact is it is very common. I know some people who have no idea of p2p, but they do have illegal Windows, Office etc. Got it from the guy they bought computer from. Office is even on a dvd. 1 download can spread out.
Simple application blocking is only part of this type of "security" but pretty sure most consider it a must.
I would estimate 50/50 between that usergroup and the extremely cautious/paranoid/interested one. Kind of funny? Not all who are into illegal stuff trust keygen.exe. I almost don't use such things any more, but when I did arming computer with "firewall" was considered common sense among those who did not just click, click.
Is this one http://www.microsoft...ThreatID=-2147338578 I think "severe" category is a bit hefty. Malwarebytes dont like it too though. Besides A-squared, ESET, Norman I dont think anyone cares. "without user consent" is probably the trigger. File becomes "suspended" and untouchable until you have made up mind. You are not supposed to care, doubt, know but some day it might come in handy not to trust program. Will probably not delete system files but who knows. Unless you check history tab regularly you dont know what MSE has been doing. You might hear cpu fan go off because computer is working hard some minutes but that is it.MSE developers must be brave men because setup can potentially go very wrong 
I can feel a need to sign up for their forum coming on.
To make a reason for being alive they need to be better. MSE serves other purpose than just being a more than good enough scanner for GrandMa and family.
- comodo too btw. Default settings are no good but why not accept that since program is not from MS? Threatfire worked. The others did work just not 100%. How it is. Im not shocked or feel a need to warn against anything. Grab another of the 10000s of files and situation might be opposite. I will appreciate HIPS power (set up to actually work) cause no other tool have an idea. If you dont understand that you should be careful with tests and fast conclusions, even feeling "secure". "Of course I know settings" save your butt but not all are so eager to tinker. Any other approach is being naive or paid by a company. You end up writing blog posts or rambling in a podcast
You read too much into random chitchat. A bit selective too, my impression is most like MSE. Much is hype but some know more than OneCare and still see the point. Which should be obvious if knowing security industry. See for your self but if shocked by less than 100% perfection you better not. Scanner does not become flawed because it is slower than another btw. - the opposite can easily make more sense. If you want to see MVPs saying other scanners cheat you can do that, heh. They have actually taken a paranoid route here. Not that it slow down scanning that much. I dont see much point in full scan but what do you think would be an issue if it skipped files? Some would say Grandma have no clue of changing settings to genuine full and so MSE is not safe. Think pros and cons instead of being definitive. You use Outpost Suite right? What an interesting changelog for that program! Hopefully you have dug into settings or virus scanner work somewhat... Strange default settings for a HIPS but user can always learn and modify, also with Outpost. Again the only real problem I can see myself and others unite about is cpu spiking and that is mainly relevant when you know about it. There are many post about that on their forum but truth is most don't notice or don't care, not a showstopper at all. If they take complaints seriously or not is my test of MSE. Im already confident it works great as an AV which is its purpose in life. There is something weird going on, asking to be fixed I would assume - programmer problem not user. We will see. Majority dont post on their forum, join "wish-list" so this is a good test. Overall MSE don't really need defending unless MS stop developing of course or I have missed the many other free perfect AVs... Rest is really nothing in this area of software.
Is it not the same guy who disable scripting in browsers? Signatures is about 45-50mb but then there is backup folder of them of course, same size. So close to 100mb just for sigs. 1 Quarantine files is 255mb! Have 15-20 infections quarantined. After removal data folder is down to 165mb All in all I guess around 200mb should be expected. There is another Microsoft Security Essentials folder under data, then comes program files.Cliff Evans, Microsoft UK's security chief, said MSE uses the same engine as OneCare, but added that the new product was "better, in the sense that it's a later iteration of that engine". The new software does not include the non-security features, such as automated PC tuneups, provided by its subscription-based predecessor.
MSE uses a higher amount of heuristic detection techniques than OneCare, Evans said. The software studies the behaviour of suspicious applications, then reports back to a central server to check the behaviour against that of known malware.
The Dynamic Signature Service technology uses the most recent virus definitions to check applications for risks, rather than relying on the last batch of definitions downloaded, Microsoft said.
The suite also emulates programs before they complete their execution, and looks for behaviour such as carrying out operations without user permission, Owen said. If a program is behaving suspiciously, MSE will ping the Dynamic Signature Service to see whether the program should be submitted for analysis or terminated.
In addition, Owen said that MSE offers a performance boost over OneCare because it is not a "big suite" like its predecessor.
/SignatureUpate fixes issue with updates being part of WU. Can update away every 1 hour or whatever via Scheduler. (I look at Private Working Set). If in a MS-is-cool-mood I would say it scales to ram available or something "advanced" or simply say it does not matter - if used to Avira numbers I would scream pig!, heh. No option of disregarding Spynet. Probably also used in IE8, Basic and obligatory membership says "including where the software came from".
Who would have thought with all the new buzzwords. WOT can be more efficient than any AV. With Adblocking, Browser filters and WOT not much get through, is just not there. No heuristics required. If really scared for the big unknown or not able to see through scams I think WOT should be a must-have. Compare WOT with old offers from Norton, Mcafee, Trend - they are hardly functional in comparison when it comes to sites with malicious content, the red sites in WOT. Because they say they take care of bad web sites does not mean much is actually done. Just words. Annoying features about WOT is fixed by setting up plugin. Social chit chat about light or full yellow might not be interesting or make sense. Can hopefully be swept under "will be fixed" carpet and not sign of MS putting too much faith in engine. Dont remember name but they did buy up a AV-company, like Giant with Defender. May be already used OneCare. Again a we will see issue, but, if otherwise functional!, you can certainly argue that MSE being simple and not so advanced is an advantage. As little as possible is better for majority people. Cant dismiss AV regardless of newer Windows improved security. Why they made it I guess. All MS. If we are all doing cloud computing in few years security will be top issue. So may be a good idea to start "managing" public today? Dont know if that is why they are so interested all of a sudden. I only know Avast 4 with no declared sniffing features, they say a "little". "HIPS" features are also needed for the many "drive-by" infections people suffer from - or the more you think about it the more you "need". Very messy, many dont know first thing of "safe computing" but they do know Windows firewall stink and a better is required. One of the many "truths" out there. Only facts counts. This seeking the truth and lack of trust might origin from my dark past as heavy user of cracks and such things. Educational though and sometimes I infect a Virtualbox just to get reminded of how things really work, or dont work. Everyone should do that. A local security site, which also sell Kaspersky etc., do not recommend MSE based on a quick-test. Ready on release date. There will be much more of this and it will continue. MSE is a provocation to Symantec, Trend, Mcafee, all companies with interests in this field.
I did some more testing with a fresh infection which should be a nasty one "zeus/wsnpoem v2" - google it! Was a sad experience. Dr. Web Cureit found download and fixed hosts file, Norman Malware Scanner found download, Kaspersky Virus Removal Tool found download, Avast found download. None noticed it was already installed and running. Hitman found 1 of the infected files but it is recreated at boot. ESETs brilliant online scanner zero, Trend Micro scanner zero, Nortons zero. Could not test MSE since this Virtualbox Windows seems to have problems getting activated... I knew they would use MSE for extended check. So I fired up Malwarebytes - all detected, all removed/repaired. Got infected again, this time SuperAntiSpyware removed all except quite a few registry entries. Last ComboFix, did a 100% job except a few registry entries (I think). Problem is I can do this again with another type of infection and then may be Normans tool is the only one to offer any help. Toolbox must be huge. Good idea to always start with Malwarebytes and SuperAntiSpyware. You are probably a fantastic human being without such praise.