I just copied and opened and tested (WinRar) a rar and zip file containing a diamin trojan and I got no alerts at all. Extracting the file resulted in the typical alert/cleaning procedure. I have scan archives enabled and zip/rar removed from excluded file types. Wouldn't this indicate that it doesn't do on-access archive scans?
Microsoft Security Essentials Takes More than a Quarter of the North American Antivirus Market http://www.prweb.com/releases/opswat-report/antivirus/prweb9888446.htm
No, it's good that users install AV software and MSE is not as bad as some will have it mostly because it says MS on the "box". However, don't worry, the Opswat reoprt is quite useless as a picture of anything realistic unless they have changed the way they do the reports.
No single anti virus can catch them all.! "If you bang on a wooden door often enough it will break". And the way these AV,s are tested is rather strange in my opinion. To confront them with hundreds of malware at once and then expect it to catch them all is ridiculous. Regards.
MSE is getting popular and it's free. That is good for the people but not good for other AV companies.
When I was testing this out on my dad's netbook I tried it out and it was great with removing malware. I tried a few more AVs and went back to MSE and noticed its not able to remove malware anymore. I tried reinstalling and still nope says it can't remove/find the malware. (Don't worry all malware testing was done in sandboxie.)
FYI. Received Microsoft Security Essentials Client Update Package - KB2754296 via Windows Update today. Antimalware Client Version: 4.1.522.0 Engine Version: 1.1.8800.0 Antivirus definition: 1.137.526.0 Antispyware definition: 1.137.526.0 Network Inspection System Engine Version: 2.1.8600.0 Network Inspection System Definition Version: 15.11.0.0
Hi all Microsoft Security Essentials 4.1.522.0 http://windows.microsoft.com/de-DE/windows/products/security-essentials
One thing I like in the new version is it has self defense. If you try to stop the MsMpEng in task manager, You get a access denied where before MSE would stop and then restart.
that is good news. no self protection was one of the reasons I Couldnt recommend my customers MSE. under what account type did you try to stop the process using task manager? standard user or admin?
I was able to kill it using Process Explorer, it re-spawned after 5 secs... This on XP Pro under Admin account, version 4.1.522.0
Man I got to work this morning and my first job was a Windows 7, 64 bit computer with MSE installed. MSE was completely shut down as Win 7 Defender 2013 had taken over the system. I eventually got the mess cleaned up using MBAM, Emsi Emergency Kit and Kaspersky's TDSS killer, all in safe mode using a usb stick. My next job was finding a replacement for MSE.
Malware can deactivate even the sturdiest AV software. That's why you need a layered defense on a Windows computer and lock down your browser. When you are infected sometimes you need to take drastic measures. But MSE was not at fault.
"MSE was not at fault"....really? MSE allowed a rogue av to slip right through and then MSE was completely shut down. MSE was at fault for allowing the malware execute and run and MSE was at fault for allowing itself to be shut down by the malware. I don't want to hear about the 'no antivirus can protect 100% of the time' because the only time that really matters is the last time I was infected. If MSE can not add signatures fast enough, is unable to have a decent behavior monitor/blocker and is unable to have a decent self protection then MSE is at fault. In the latest infection there was no difference between having MSE and having no antivirus at all.
