ie8 fix
madison

Hardware 2.0

Adrian Kingsley-Hughes
Home / News & Blogs / Hardware 2.0

Running Microsoft Security Essentials

By | June 24, 2009, 10:54am PDT

Summary: Yesterday I downloaded the installation files for Microsoft Security Essentials beta, Microsoft’s free consumer antimalware program. So, is it any good?

Yesterday I downloaded the installation files for Microsoft Security Essentials beta, Microsoft’s free consumer antimalware program. So, is it any good?

Check out the Microsoft Security Essentials installation and UI gallery

Well, so far I’ve got as far as downloading the files, installing the application on a couple of test machines (You don’t think I’m brave/crazy enough to roll this out on production machines, do you?), set it up and thrown a few test viruses at the app. So far, so good, but I’ve still got a lot of questions:

  • What’s stability like?
  • How quickly will the app respond to new threats?
  • How much of a performance hit is the app on systems, especially when running scans?
  • How long until hackers start busting holes in the app?
  • What will other security vendors make of it?

These and more questions will be answered at some point in the future …

So far though, so good. Microsoft Security Essentials seems pretty primitive (no email integration, for example), and I’m surprised it doesn’t integrate better with Windows Firewall. That said, basic antimalware software is much better than none at all, so it’s hard to complain about it.

By the way, if you haven’t downloaded the installation files for Microsoft Security Essentials beta, you’ve missed the boat now because Microsoft closed the door on downloads.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Hardware 2.0”

Topics

Microsoft Corp., App, Microsoft Security Essentials, E-mail, Security, Firewalls, Online Communications, Networking, Adrian Kingsley-Hughes

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology.

Disclosure

Adrian Kingsley-Hughes

All opinions expressed on Hardware 2.0 are those of Adrian Kingsley-Hughes. Every effort is made to ensure that the information posted is accurate. If you have any comments, queries or corrections, please contact Adrian via the email link here. Any possible conflicts of interest will be posted below. [Updated: February 23, 2010] - Adrian Kingsley-Hughes has no business relationships, affiliations, investments, or other actual/potential conflicts of interest relating to the content posted so far on this blog.

Biography

Adrian Kingsley-Hughes

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology -- whether that be by learning to program, building a PC from a pile of parts, or helping them get the most from their new MP3 player or digital camera.

Adrian has authored/co-authored technical books on a variety of topics, ranging from programming to building and maintaining PCs. His most recent books include "Build the Ultimate Custom PC", "Beginning Programming" and "The PC Doctor's Fix It Yourself Guide". He has also written training manuals that have been used by a number of Fortune 500 companies.

Adrian also runs a popular blog under the name The PC Doctor, where he covers a range of computer-related topics -- from security to repairing and upgrading.

45
Comments
Add Your Opinion

Join the conversation!

Just In

Moblin: Linux designed for Netbooks and Netops
eriknielsen 1st Jul 2009
?Moblin is different. It?s a friendly way to get the most out of your netbook. It doesn?t work like most other computers because it?s optimized for enjoying media, interacting with your social networks and the internet. ??

Moblin: Netbooks and netops linux operating system
View in thread
0 Votes
+ -
I suspect "primitive" was the point
NonZealot Updated - 24th Jun 2009
MS has to be able to defend this to the EU. By pointing out that this is meant to be a very basic package and that 3rd party AV vendors can show that, for money, they offer a better product, then everyone wins. Windows is safer by default and if you want more whizbang features, 3rd party AV vendors are there to provide them.

I'd also like to add that for me, this is actually perfect. I want basic protection with a UI I never have to look at unless something is wrong. For me, MSE is perfect and better than the AVG I just uninstalled.
0 Votes
+ -
Defend against what accusation?
njoho 24th Jun 2009
Exactly what part of the law do you think they will be accused of breaking?

Not bundling - they won't ship it with the OS.
0 Votes
+ -
Based on the EU's reaction to Windows 7E proposal
NonZealot 24th Jun 2009
I gave up a long time ago trying to guess what laws MS was breaking when for example, the EU forced them to open up their client / server protocols. There was no bundling in that case either yet that didn't stop the EU.

The EU also hasn't accepted Microsoft's Windows 7E proposal where no browser would be bundled with Windows 7, it would be a separate, standalone download. If the EU rejects that proposal then I suspect Norton and company will be filing complaints against MSE 30 seconds later.
0 Votes
+ -
Contributr
I agree ...
Adrian Kingsley-Hughes 24th Jun 2009
... The EU is somewhat hard to predict ...
0 Votes
+ -
Only hard to predict because you are thinking about the wrong law.
njoho 24th Jun 2009
The bulk of the ECs findings and fines have been related to ?limiting production, markets or technical development to the prejudice of consumers?, and much less to do with bundling.
0 Votes
+ -
Correction...
GoodThings2Life 24th Jun 2009
I think you mean "to the prejudice of *competitors*" not consumers. You cannot document a single instance where any technology Microsoft has included in Windows has done anything to harm consumers (although Vista's implementation of UAC could classify). Harm Microsoft's competitors, sure, since most of them spend more money in legal fees than marketing, but certainly not consumers.
0 Votes
+ -
Not hard to predict at all.
cornpie 24th Jun 2009
Its all about limiting American products from their marketplace.
0 Votes
+ -
Get a clue...
Bozzer Updated - 25th Jun 2009
The EU was responding to complaints made by Organisations. The EU didn't decide one day "Hey, let's pick on MS".

Other companies raised these objections. And then they were determined in a court of law.

It's how it works in your country too.

Get a clue mate.
0 Votes
+ -
Well there's your problem...
GoodThings2Life 24th Jun 2009
You're assuming there's a legal law-based rationale for the EU's actions. They don't operate that way at all... it's a purely political, bureaucratic entity.
0 Votes
+ -
Agreed.. better than AVG
croberts Updated - 24th Jun 2009
The AVG UI has become so annoying that even getting the free version is almost not worth it anymore.

Agree that these non-intrusive MS products are probably what most home users want.
0 Votes
+ -
Are you sure about that?
chrome_slinky@... 24th Jun 2009
I am fairly sure that one could find a torrent of the beta somewhere. Once that is found, do you think thaat Microsoft will disallow the installed software to operate?

If they do, it will be contrary to all the other items of late (the many various "leaks" of Windows 7).

After all, all of these leaked products are giving them lots of public face time, with no downside, as if anything goes wrong "It's only a beta version."
0 Votes
+ -
Indeed...
GoodThings2Life 24th Jun 2009
There are still several sites that have posted the installer, and I've even saved it to my USB flash drive for installation on test machines. It definitely installs and works fine.
0 Votes
+ -
better than AVG how?
thelivo 24th Jun 2009
I'd be interested to know. I'm on AVG and it does
everything i need without fuss, but I'm always
open to trying something new.
0 Votes
+ -
I think it uses less resources
jdbukis@... 24th Jun 2009
AVG slowed my aspire one down somewhat and mse does not.
0 Votes
+ -
One day's use by Adrian?
Dietrich T. Schmitz 24th Jun 2009
Well then that's good enough for me! :P
0 Votes
+ -
I hope you downloaded it already
NonZealot 24th Jun 2009
Did you know that you can't get it anymore? Unfortunately, the beta is no longer accepting new testers. If you don't have it yet, you'll just have to wait until MS releases another beta or until they release the final version. sad
0 Votes
+ -
Boo Hoo........
Dietrich T. Schmitz 24th Jun 2009
nt
0 Votes
+ -
So give us your review then?
No_Ax_to_Grind 24th Jun 2009
I mean I know you would not knock someone else's efforts without having made the effort yourself, right?
0 Votes
+ -
Be careful what you ask for ... {nt}
n0neXn0ne Updated - 24th Jun 2009
devil
0 Votes
+ -
Knock? No more than you would bitbyte Don Rupert. Pffffffffft.
Dietrich T. Schmitz 24th Jun 2009
nt
0 Votes
+ -
RE: Running Microsoft Security Essentials
rkegel@... 24th Jun 2009
So far I have to say I like it. I did the first scan and it doesn't have a performance hit that I notice. Stability has been good, hasn't crashed in the 24 hours I've had it. The other questions I'm not sure of.

I think they didn't put mail integration because most home users probably use web based mail. Or maybe they'll add it at a later date. Firewall integration may also be something later. This is a beta so who knows. I think MSE is good so far. I was using Avast before and I've also used other free anti-virus' and this one seems pretty on par.
0 Votes
+ -
It's a fallacy to think...
GoodThings2Life 24th Jun 2009
...that you even need direct email scanning to begin with. All it does is bog down your system.

First of all, most email servers have their own built-in file-scanning. Whether they do or not, it's only as good as engine updates anyway, and...

Second, your local client is also going to rescan the file upon any attempt to open it. It's still only as good as the engine updates allow, and...

Third, above all else really, your system is only as safe as its dumbest user. Doesn't matter how well protected or prompted your system protection is if a user continues to ignore warnings and opens untrusted files/links in the first place.

And for s-and-g's I'll also mention that most email-based viruses these days are links to web-based phishing scams and viruses anyway rather than direct file attachments.
0 Votes
+ -
Amen to that
Speednet 25th Jun 2009
There is so much redundancy with the bloated (and largely useless) "Security Suites" out there. Their job is to make you THINK you need all that protection, when in fact you're actually replacing or duplicating a ton of protection already built-in.

For example, the firewall. The Vista firewall, combined with the firewall most consumers have in their NAT device, is more than enough, with Advanced Firewall in Vista providing detailed rules abilities. In fact, I think it's better than many of the firewalls that come with the security suites, which mainly serve to annoy you with overly-intrusive warning messages.

Then e-mail protection, as you alluded to. Even the MS Security Essentials will provide protection against most atachment attacks, since the attack first has to save and then run an executable. When it hits your disk, it is scanned and cleaned before ever having the chance to run. Plus, anyone running Outlook knows that most stuff gets blocked right off the bat anyway.

It's the same right on down the line with other technologes, such as browser script protection, macro protection, etc.

Plus Vista itself is a much more secure operating system.
0 Votes
+ -
RE: Running Microsoft Security Essentials
GoodThings2Life 24th Jun 2009
* What?s stability like?
* How much of a performance hit is the app on systems, especially when running scans?

I've installed it on my personal laptop at home (high-performance, moderate-to-heavy use), and I've noticed absolutely NO performance loss compared to before installation when I was using nothing at all.

I also installed it on my work computer and removed Trend Micro, and I've actually noticed a distinct increase in performance.

* How quickly will the app respond to new threats?
* How long until hackers start busting holes in the app?

Since it uses the same engine as Windows Defender and OneCare and Forefront Security, the past two years of results on various antivirus testing systems is clear... it's among the top ranked (see Ed Bott's latest article on it for details). That says a lot to me, and it validates why I chose to use OneCare.

* What will other security vendors make of it?

Right now they're all gung-ho about how much better their products supposedly are. I don't dispute the fact their products ... umm ... do MORE. But, does doing more really create a better product? I mean they do more to irritate me and bog down my system performance, no doubt about it. If they don't do something to compete (even if they borrow the AVG strategy of a free antivirus with an ad/promo to upgrade to full protection), they are going to find themselves hating MSE sooner rather than later.
0 Votes
+ -
listening to that is like
chrome_slinky@... 24th Jun 2009
lending credence to the endorsements of foxes in the hen house, and their fine , new protection plan.

""it's among the top ranked (see Ed Bott's latest article on it for details). That says a lot to me, and it validates why I chose to use OneCare.""

Mr Bott has shown, time after time, he is hardly a person to take as an unbiased chronicler of Microsoft's accomplishments, or their efficacy in accomplishing needed tasks.
0 Votes
+ -
Ed Bott typically doesn't run those tests
NonZealot 24th Jun 2009
Mr Bott has shown, time after time, he is hardly a person to take as an unbiased chronicler of Microsoft's accomplishments, or their efficacy in accomplishing needed tasks.

Ed Bott reports the results of those tests. If you have reason to believe that those tests have been faked, could you explain it to us? Thanks!
0 Votes
+ -
Here's an idea...
GoodThings2Life 24th Jun 2009
...TRY to read WITH comprehension. I didn't say Ed did the tests. I said that he documented the tests (and tests by every reliable antivirus testing source, mind you) that clearly list OneCare's engine in the top 5 for 2 straight years.

OneCare had a very short period very early on where they were less than stellar, and Microsoft quickly learned its lesson on that and hasn't looked back.
0 Votes
+ -
Perhaps you could ease up
chrome_slinky@... 24th Jun 2009
on the ad hominem attacks and show some intelligence instead of puerile gestures.
0 Votes
+ -
Oopsie
rseiler 24th Jun 2009
Unfortunately, Ed Bott didn't tell the complete story in that story. Yes, OneCare did do well in the May AV-Comparatives report, which tested new/emerging threats. Great, except that was part 2. Part 1 was in Feb, and it tested established threats released over the previous several months. In that, OneCare finished almost dead last.

Bottom line: Excellent at low false positives, excellent at tomorrow's threats, terrible at known malware. Puzzling, but check it out.
0 Votes
+ -
1 For 2
fasthair 24th Jun 2009
Installed it and ran a quick scan. Results. Found a Trojan in a file I have had for three years in a WMA file from a friend that I had never opened. Here is the best part this file had DRM encoding (Adrian's favorite type) that would of course phoned home if I ever opened it and promoted me to download "the rights" to view this file. At which point it would have installed ASX/Wimad.AN trojan. So basically it found a threat embedded in the URL link of the file. Pretty good work I think.

Next a full scan was run and it found a second threat. This time it was a false positive. When I checked to see where it had found this threat it was in legit legal bought and paid for software I use everyday for work. This didn't surprise me since other anti-malware software has found this same file before. I don't know what it is about this file (partspricelist.jsp) they doesn't like but I suspect it has something to do with the extension. The "infection" was called IRC/Zapchast.AC which is a back door trojan. I know that this program has remote administrator functions so I'm sure this is what it is seeing and doesn't like.

As far as performance hit goes I can't even tell it is running. So as far as I'm concerned MSE seems to be better then anything I'm seen or used in the past. At this point I've got to give MSE a Passing grade on all accounts.

fasthair
0 Votes
+ -
Better than OneCare
jpr75_z 24th Jun 2009
Time will tell how effective it is, but for a freebee, it isn't bad. And much better than OneCare was. Maybe MS learned something.
0 Votes
+ -
Better only if OneCared n/t
n0neXn0ne Updated - 24th Jun 2009
devil
0 Votes
+ -
Wow that was funny.
jdbukis@... 24th Jun 2009
Have you thought of changing your profession?
0 Votes
+ -
What about Big Brother?
Roger Ramjet 24th Jun 2009
This technology allows M$ to know EVERY website that you go to! Doesn't that bother anyone?
0 Votes
+ -
Ran for a day
rseiler 24th Jun 2009
But ultimately removed it because of excessive and noticeable CPU use by msmpeng.exe. I have a mere P4 3Ghz HT CPU, so every little bit counts.

Set the "CPU Time" column in Task Manager, you might be surprised by how quickly it accrues. Compared to NOD32 it was an astonishing difference, a couple minutes compared to an hour (in one day).

I'll try it again at the next milestone, since I feel it will improve in this area.
0 Votes
+ -
still running
wsohplz 25th Jun 2009
I download and install on Win 7x64 on new partition,(dual boot with Vistax64) and I have near 2TB of Data on the system with 16GB ram. when run on quick scan it take about 8mins, but on full scan it is still running after 21hrs (near 3/4 of the bar)and use 25% of memory. so it is good ?
0 Votes
+ -
Still running here as well...
Wolfie2K3 25th Jun 2009
The basic quick scan on my 32 bit Win 7 took a few minutes to run. The full scan of my remaining hard drives (3 of them) took about 2 1/2 hours, though, it sometimes spiked CPU use up to near 100%. That was when was examining archives (ZIP, RAR, CAB, as well as game files with multiple pictures crammed into one file). RAM usage wasn't bad - never got above about 60% (when ripping apart archives) and it freed up that RAM as soon as it was done scanning those large files.
0 Votes
+ -
nt
Tagamasid Updated - 25th Jun 2009
nt
0 Votes
+ -
MSE on XP
Tagamasid Updated - 25th Jun 2009
There's a slight catch running MSE on Windows XP. MSE's entry on HKLM's Run is not enclosed in quotes.

C:\Program Files\Microsoft Security Essentials\msseces.exe -hide

The effect of which is everytime you log on to any XP account where MSE is installed, an Explorer window opens to the "C:\Program Files\Microsoft" folder. Can be quite annoying.

[Edited: darn pre tags don't work as advertised.]
0 Votes
+ -
not bad ..
kRanki1 Updated - 25th Jun 2009
have installed on two machines running Win 7 RC .. had been using Trend on one, and MSE found some malware on that .. koobface .. no doubt a result of my partners facebook habit. Interesting that Beta software can pick this up where Trend didn't ..

The one thing i did like about onecare was it didn't have the performance overhead bloated AV products tend to have like every Symantec offering for example. This similarly has a very low overhead and nice, clean & simple UI.

Very nice MS. Probably one of the best first efforts i've seen in a while ..

* Oh, and i would rather trust a company that didn't have a vested interest in propogating malware, than one that makes 90%+ of it's revenue from this 'industry' *
0 Votes
+ -
Why still bother with just Windows (any)
LazLong 25th Jun 2009

If you believe have need of a windows only (set of) apps and Wine/crossover or VM dose't fit the bill.....

There are appliances (preinstalled)

It is useful to have awareness at the center &/or their periphery
(Real Networking, Servers, Routers/firewalls/malware scanners)

Just because they re-package/re-market something.

Awareness & interest can be of some better value?
At least for some... 80% ?
The rest is just marketing?

It is not just desktops.........
0 Votes
+ -
Confused
Answerfactory 25th Jun 2009
What are you trying to say?
0 Votes
+ -
I think it's probably something akin to "DROP WINDOWS and GO LINUX!"
Wolfie2K3 25th Jun 2009
n/t
0 Votes
+ -
Moblin: Linux designed for Netbooks and Netops
eriknielsen 1st Jul 2009
?Moblin is different. It?s a friendly way to get the most out of your netbook. It doesn?t work like most other computers because it?s optimized for enjoying media, interacting with your social networks and the internet. ??

Moblin: Netbooks and netops linux operating system
0 Votes
+ -
Your uber-wariness is unwarranted
Speednet 25th Jun 2009
The engine in Security Essentials is undoubtedly the same engine, perhaps with minor changes, that Microsoft uses in Defender, OneCare, and ForeFront, all of which are mature products. They are using the ForeFront virus definitions, from what I can tell, and ForeFront (as well as OneCare) has an excellent track record.

As someone who has used all of these products for a long time, I would say yes, I would feel comfortable putting Security Essentials on an important machine. The only reason I have not is out of principle of not running beta software on a main workstation.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix