RejZoR's little secrets

Little technology secrets for big everyday problems...

Microsoft Security Essentials problems and what has to be fixed

Sunday, October 11, 2009 4:52:13 PM

, , , ,

The program is very simple to use since it doesn't offer all that many settings.
However i've noticed quite some problems that need to be addressed.

First and most important is performance hit. After testing, it turned out that MSE is scanning archives on-access. This indeed offers early detection of malware inside archives, but also results in a significant performance hit. I see no reason to scan archives on-access (don't mistake archives for runtime packers!). Malware inside archives is benign until you extract it in one or another way. And once you do that, the usual file scanner will pick it up. So i really hope Microsoft will add option to disable on-access archive scanning (the option in settings is for on-demand btw).

Second issue that's also very important is the update process. Checking for signatures only ever 24 hours is just not enough these days, because 24 hours is a huge time frame for threats today.
If you've just updated and new threat just emerges, Microsoft creates definitions for it and you won't recieve it for next 24 hours. For one whole day! That's just not acceptable.
Every antivirus, be it free or payable should check for new definitions each time internet connection is detected and after that at least every 2 hours. This way it's ensured that antivirus has the newest signatures when it's the most important.

These two issues are the most important and i hope Microsoft will fix them fast. Because on-access archive scanning is really bogging down my netbook. And i even cought it few times to bog down my main system with Core i7 920 and 6GB of RAM. And that's what was worrying me the most.
Issue regarding definition signatures is also important.

Gaming on ACER Aspire OneWindows 7, initial thoughts...

Comments

Unregistered user Tuesday, October 13, 2009 4:32:28 PM

keigo writes: keep up the wonderful job. And have fun in ljubljana, maybe we'll catch up one day. :)

Willem NuijenltGuillaume Saturday, October 24, 2009 6:12:50 PM

Err, there's just an option to disable scanning within archives... (Settings -> Advanced). Are you absolutely sure that is just for on-demand scanning?

RejZoRrejzor Saturday, October 24, 2009 7:20:33 PM

I am, because i've tested it.

Unregistered user Sunday, October 25, 2009 6:52:16 PM

Anonymous writes: installed av essentials good by the way,do i have 2 uninstall windows defender keep gettin message sayin defender switched off please switch on but does not respond please help

Willem NuijenltGuillaume Sunday, October 25, 2009 7:00:18 PM

It replaces Defender, see for more info: http://www.asymmetrics.nl/?q=node/33

Unregistered user Sunday, October 25, 2009 7:19:47 PM

Anonymous writes: does it override defender or do i have 2 do it manualy

Willem NuijenltGuillaume Sunday, October 25, 2009 7:38:14 PM

As stated in (http://www.asymmetrics.nl/?q=node/33):

More specifically, concerning the above 2 processes, "Msseces.exe is the front-end GUI of MSE(Microsoft Security Essentials). (...) MsMpEng.exe is the back-end of MSE (Microsoft Security Essentials). It is important to remember that this process is actually used by both Windows Defender and MSE. When you install MSE, then Windows Defender is automatically turned off and MSE uses this process."

Unregistered user Sunday, October 25, 2009 8:04:10 PM

Anonymous writes: thanks 4 that as u can tell am a computer beginer

Willem NuijenltGuillaume Wednesday, October 28, 2009 12:52:51 AM

And it gets even worse. Although I did experience it myself already (but I thought it was due to my crazy proxyish solution I currently have), now the German renowned magazine C't confirms it: MSE sometimes refuses to download updates, for up to 7 days, even though new updated definition files are available. Bad stuff, very bad.
Source: http://www.heise.de/security/meldung/Microsofts-Antiviren-Software-verschlaeft-Updates-837599.html (English translation)

Willem NuijenltGuillaume Tuesday, November 10, 2009 11:31:37 PM

Check out here to force daily/hourly/whatever updates for MSE via a command-line tool that comes with it and the Windows Task Scheduler: http://www.addictivetips.com/windows-tips/microsoft-security-essentials-automatic-virus-signature-update/

Willem NuijenltGuillaume Monday, November 16, 2009 7:12:06 PM

AddictiveTips.com just released a tool to solve this update problem, especially when one has chosen to disable Windows Update (normally needed to retrieve MSE updates). Grab this MSE Update Utility here.

Unregistered user Monday, December 21, 2009 8:08:20 PM

Anonymous writes: I tried MS Security Essentials, it seemed to work great but shortly thereafter I started having trouble downloading any kind of setup files. Has anyone else noticed this problem or was this just a coincedence.

Unregistered user Thursday, March 11, 2010 9:43:41 AM

azhar writes: There are few other things that needs to be addressed and that are the problems and error people are getting by using Microsoft Security Essentials during installation and updation. Please allow me to share with the users, perhaps this can help someone visit this post. http://www.itoperationz.com/2010/03/microsoft-security-essential-installation-error/ http://www.itoperationz.com/2010/03/microsoft-security-essential-update-error/

Unregistered user Thursday, March 11, 2010 9:44:55 AM

azharbuttar writes: There are few other things that needs to be addressed and that are the problems and error people are getting by using Microsoft Security Essentials during installation and updation. Please allow me to share with the users, perhaps this can help someone visit this post. http://www.itoperationz.com/2010/03/microsoft-security-essential-installation-error/ http://www.itoperationz.com/2010/03/microsoft-security-essential-update-error/

Unregistered user Wednesday, May 26, 2010 12:43:44 AM

Anonymous writes: Anyone know why this MS Security Essentials causes problems in ISAM databases? A lot of our clients who have installed it have reported corrupted datafiles. Does it have a setting where you can ignore a file type or a folder ? Thanks.

Unregistered user Tuesday, November 2, 2010 6:50:21 PM

Anonymous writes: hey, my school has just uploaded this software to my laptop, and when i try to access internet explorer a message comes up saying " Windows cannot connect to the internet using HTTP,HTTPS , or FTP. this is a problem caused by firewall settings on this computer" im not very goood with computers and im alittle confused . what should i do ? thanks.

How to use Quote function:

  1. Select some text
  2. Click on the Quote link

Write a comment

Comment
(BBcode and HTML is turned off for anonymous user comments.)

If you can't read the words, press the small reload icon.


Smilies

QUICK LINKS

BLOG HIGHLIGHTS