Malware Defender

Discussion in 'other anti-malware software' started by Ibrad, Mar 15, 2010.

Thread Status:
Not open for further replies.
  1. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    yes agree with mike:)
     
  2. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,808
    Location:
    Kolkata, India
    Nope I am not behind that. So, you mean it's firewall part is not that strong like other firewalls?
     
  3. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,744
    Location:
    Canada
    for inbound a hardware or even microsoft are just good enough:) now if you want more extra protection for outbound then MD is there to protect your bacon:D
     
  4. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,808
    Location:
    Kolkata, India
    hmm.. I guess it too has a inbound protection. So, I am going to disable windows firewall if I install it.:)
     
  5. icr

    icr Registered Member

    Joined:
    Sep 6, 2008
    Posts:
    1,589
    Location:
    Mumbai

    Yes it has both inbound and outbound protection but it doesn't conflict with any firewall application:) Have used MD with NIS, AIS and Avast FREE and also when no security application installed(just Windows Firewall ON)
     
  6. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,808
    Location:
    Kolkata, India
    hmm, so it can be used like a classic HIPS like Threatfire or Mamutu. Cool..:D
     
  7. icr

    icr Registered Member

    Joined:
    Sep 6, 2008
    Posts:
    1,589
    Location:
    Mumbai

    Mamutu and TF are pure Behavior Blocker while classical HIPS is somewhat different concept:)

    Brief info by bellgamin that he posted some days back:)
     
  8. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,491
    Running great with Avast! 5
     
  9. sg09

    sg09 Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    2,808
    Location:
    Kolkata, India
    Thanks a lot..:)
     
  10. arran

    arran Registered Member

    Joined:
    Feb 5, 2008
    Posts:
    1,154
    Remember Router's do not filter outgoing requests by applications. You can use MD to do that but X has admitted before that MD does not filter out low level packets, MD has only a basic firewall because it's main Function is a HIPS. so you still need a 3rd party firewall to do that.
     
  11. mike21

    mike21 Registered Member

    Joined:
    Jun 1, 2006
    Posts:
    416
    ^^ Didn't know that. I thought that MD was covering all possible outbound connections. I am in the process of replacing it.
     
  12. Espresso

    Espresso Registered Member

    Joined:
    Aug 1, 2006
    Posts:
    976
    MD uses the Base Filtering Engine just like Windows Firewall. What low level packets does it miss?
     
  13. 0strodamus

    0strodamus Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    1,051
    Location:
    United Surveillance States
  14. icr

    icr Registered Member

    Joined:
    Sep 6, 2008
    Posts:
    1,589
    Location:
    Mumbai
    One question


    If I create a rule for all the applications to load the dll then number of pop-ups are reduced, but is it safe to do soo_O coz I am playing around with this rule for quite sometime now and am quite comfortable with it:)


    Any comments, sorry if I am being stupid:p
     

    Attached Files:

  15. arran

    arran Registered Member

    Joined:
    Feb 5, 2008
    Posts:
    1,154
    I just want to add that if you don't have any software on your pc that makes outbound connections by "obscure methods" hence bypassing MD's out bound firewall then you don't really have to worry about it.
     
  16. ruinebabine

    ruinebabine Registered Member

    Joined:
    Aug 6, 2007
    Posts:
    1,097
    Location:
    QC
    Hey arran. Around here, with us bunch of crazily paranoïds, it's kinda like saying if you don't have anything that tries to connect in or out on your system you don't really need a firewall/router! ;)
     
  17. Remouald

    Remouald Registered Member

    Joined:
    Dec 16, 2005
    Posts:
    99
    MD doesn't alert me when file signature of a software changes, is it normal? I'm using 2.7.1.
     
  18. Scoobs72

    Scoobs72 Registered Member

    Joined:
    Jul 16, 2007
    Posts:
    1,113
    Location:
    Sofa (left side)
    Yes, it's normal. It has been discussed on here previously and Xiaolin explained his reasoning.
     
  19. tony62

    tony62 Registered Member

    Joined:
    Aug 26, 2005
    Posts:
    214
    Location:
    UK
    If a file version was to change, then the file would have had to of been replaced, therefore you would have been prompted by MD's "File Write" alerts during the write.
    This method eliminates the extra overhead with regards to hash checking.
     
    Last edited: Jun 3, 2010
  20. Gen

    Gen Registered Member

    Joined:
    Jan 9, 2007
    Posts:
    73
    Not sure if I found a bug in 2.7.1 (first time i use MD) but everytime i restart my laptop all the rules created via learning mode are deleted and I have to do it all over again.

    Edit: When i restart, it automatically changes from "normal mode" to "learning mode" wth??
     
    Last edited: Jun 21, 2010
  21. 0strodamus

    0strodamus Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    1,051
    Location:
    United Surveillance States
    Have any of you guys been able to get Emsisoft Anti-Malware 5.0 working with MD? I can't get it to work with 2.6.0, but am able to with 2.7.1 (with mdhook.dll disabled). Under 2.6.0 a2guard behavior blocker and file scanning completely break; i.e. no detection at all with no errors. Very weird because as I recall there were no changes between the last MD paid and the latest free. o_O
     
  22. Morro

    Morro Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    355
    Location:
    Netherlands
    That was not my experience. I installed it yesterday, and i rebooted after installation. I started up all the programs i have on my drive, so MD would make rules for it. Avast 5 free could still update at this time. I went to bed, but this morning when i switched on my PC...i got the message that MD denied avast.setup to work. When i tried to update from the GUI it did not do anything as well.

    MD also stopped XnView from starting up, and in Comodo Time Machine i could not make a personal snapshot all of a sudden, although the snapshot at boot up still got made. Now i only installed MD and did not fool around with settings and such, and it was of course in learning mode.

    For now i un-installed MD, but it does indeed seem like a great program. So i have to ask the experts here....did i do something wrong? I just do no understand why MD would permit those programs yesterday, and then today deny them to work as intended. (Be it partially or completely.)
     
  23. MeFer

    MeFer Registered Member

    Joined:
    Dec 16, 2008
    Posts:
    89
    I got similar problem.Installed one time very easy.But a few days later want to install to another snapshot. Avast gave me error for protection.And ''fix it button'' can not fix this error.(XPSP3)

    Then i tried this:
    Untick ''Run Malware Defender when windows start''
    and then i bootup windows fewtimes.
    Avast started no error.

    Now three days they are working together.

    (I think problem with awsMon that part of avast)
     
  24. Morro

    Morro Registered Member

    Joined:
    Jul 11, 2009
    Posts:
    355
    Location:
    Netherlands
    I could give that one a try in the near future, thanks MeFer. :)

    Any one else have more tips and/or advice for what i described in post 422?
     
  25. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    4,017
    @0strodamus
    Emsisoft and MD have here interfering problems cause both have a behavior blocker.
    i am using Avast5 Free now and NO problems (Files/Mails/Web/Network).
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.