311 replies to this topic

[Keatah]

I don't use any av whatsoever. I am very particular about the few sites I visit, and even more particular about what I run on my machine. Keeping an eye on the running task list and how software behaves in general has served me well. Coming from the school of hard knocks and 300-baud modem BBS days I've been privy to watch and see how things developed over time. Thus giving me a 1up on observing suspect behavior and rogue code.

The 2 or 3 times I did get zapped was from visiting "nefarious" sites, and wasn't wholly unexpected. It was also quite obvious and I quickly put the fire out. A simple restore from backup saves the day everytime and no harm done.

But overall, I recommend MSE as a general good, free, unobtrusive anti-malware program. The folks I've recommended it to have been quite happily using it. In fact, they forget it's there.

[eL_PuSHeR]

Agreed about MSE. Pretty unobstrusive but maybe not the best detection ratios. I find most antivir programs quite "useless". I will explain: the first source of infection nowadays is the user "opening the door to viruses" by installing certain apps (without custom installations) that will install third-party crap that will make your PC unuseable (toolbars for instance). 99% of the time they don't get detected as malware by most antivirus programs. I don't know why.

[bogdanel.s]

I use Avira Antivir Free

[eL_PuSHeR]

by the way, mse 4.1 was relesed in august (i think). it has a new web inspector filter. also, avira has been updated one or two days ago...

[Winapp2.ini]

i got an mse update though windows update the other day.

[Andavari]

I also got that update which pushed MSE to v4.1.522.0

[Super Fast]

el_pusher, on 27 September 2012 - 02:22 AM, said:

agreed about mse. pretty unobstrusive but maybe not the best detection ratios. i find most antivir programs quite "useless". i will explain: the first source of infection nowadays is the user "opening the door to viruses" by installing certain apps (without custom installations) that will install third-party crap that will make your pc unuseable (toolbars for instance). 99% of the time they don't get detected as malware by most antivirus programs. i don't know why.

100% agreed. Sweet im toolbars, & rogue programs that are borderline infection, but mayn't be listed as such. Many times, they aren't auto detected.

[Andavari]

eL_PuSHeR, on 27 September 2012 - 02:22 AM, said:

Agreed about MSE. Pretty unobstrusive but maybe not the best detection ratios. I find most antivir programs quite "useless". I will explain: the first source of infection nowadays is the user "opening the door to viruses" by installing certain apps (without custom installations) that will install third-party crap that will make your PC unuseable (toolbars for instance). 99% of the time they don't get detected as malware by most antivirus programs. I don't know why.

That's why I unpack setup files, and scan them unpacked and then see what's in there for myself. To do this you'll need 7-Zip which can perfectly unpack NSIS installers, and then for IS installers you'll need Inno Setup Unpacker. NSIS and IS are probably 90% or more of the installers I run into nowadays.

Edited by Andavari, 01 October 2012 - 01:48 AM.
Fixed typos

[eL_PuSHeR]

Thank you. I had these too but I had Innounp outdated.

[Super Fast]

Andavari, on 01 October 2012 - 01:45 AM, said:

That's why I unpack setup files, and scan them unpacked and then see what's in there for myself. To do this you'll need 7-Zip which can perfectly unpack NSIS installers, and then for IS installers you'll need Inno Setup Unpacker. NSIS and IS are probably 90% or more of the installers I run into nowadays.

Which will work for programs that only bundle rogue programs with them.
But I expect there are some programs that directly have malicious scripts/activities tied directly to their EXE when they operate.
I cannot see how it would be too hard for them to attach a rootkit backdoor installer, that silently executes when you are running a game or program.

It would certainly complicate things!

But for now, unpacking seems to work.

[mta]

been using AVG for about 8years now.
also been giving Avast a go a few times (on other test rigs in the house) and also find it excellant.

had on more than 1 occasion I've installed AVG on someone's PC, ran a scan and had it detect an infection that the previously AV didn't, usually Norton's.

used to be a Norton fan but found they got really bloated and needed too much grunt from the Pc to make it run smoothly.
but i think they have streamlined their product alot now (they had too) they were losing to many customers and if these votes are any comparison to real life stats, it's reflected here too.

[Andavari]

Super Fast, on 01 October 2012 - 06:45 PM, said:

Which will work for programs that only bundle rogue programs with them.
But I expect there are some programs that directly have malicious scripts/activities tied directly to their EXE when they operate.
I cannot see how it would be too hard for them to attach a rootkit backdoor installer, that silently executes when you are running a game or program.

Too true. Some installers will download junk hidden in the background such as toolbar, browser, or worst yet malware.