 |
Windows 7: Microsoft: MSE safe from Windows kernel hook attack
|
13 May 2010
|
#1 | |
Windows 7 Ultimate x64, Mint 9 In the Crust |
Microsoft: MSE safe from Windows kernel hook attack
Microsoft: MSE safe from Windows kernel hook attack Quote: Microsoft Security Essentials (MSE), the software giant's free antimalware solution, is one of the few products that is not affected by the recently rediscovered method for disabling security software on Windows. MSE does not use SSDT hooks, so its real-time protection cannot be disabled via this method.
When the report was first published, we noticed that MSE was not on the list of affected products and contacted Microsoft for clarification. "Microsoft is aware of research published by Matousec and we are investigating the issue," a Microsoft spokesperson told Ars. "Based on available information, we do not believe our products are affected due to the design of our real-time protection. We are working to confirm this." Source: Microsoft: MSE safe from Windows kernel hook attack
~Lordbob | My System Specs |
| System Manufacturer/Model Number Hera
OS Windows 7 Ultimate x64, Mint 9
CPU Intel i5-2500k
Motherboard ASUS P8P67 Pro
Memory 2x 4Gb Corsair VENGEANCE DDR3-1600
Graphics Card NVidia GeForce N260GTX Twin Frozr
Sound Card Realtek HD OnBoard Audio
Monitor(s) Displays ASUS 24" Monitor
Screen Resolution 1920x1080
Keyboard Razer Tarantula
Mouse Razer Lachesis
PSU Cooler Master Real Power Pro 750W
Case Cooler Master Haf 932
Cooling Fans
Hard Drives G.SKILL Phoenix Series 60GB SATA II MLC Internal Solid State Drive (SSD)
SAMSUNG Spinpoint F3R 1TB 7200 RPM 32MB Cache SATA II
Internet Speed not fast enough
|
13 May 2010
|
#2 | |
Windows 7 Ultimate (32 bit) Surprise, Arizona |
What you mean MS Security Essentials does something better than all the rest of the Antivirus software.
I'm sure this will not reach the national media. 
And I'm sure the lovers of all those other antivirus software won't say a word how really good MS Security Essentials reallt is..... 
I just love MSE. | | My System Specs | | System Manufacturer/Model Number Lenovo Desktop H420
OS Windows 7 Ultimate (32 bit)
CPU Intel i3 2100
Motherboard Lenovo LGA1155 MB
Memory 4GB of DDR3 memory
Graphics Card PCI-E NVIDIA GeForce 8500 GT
Sound Card Build-in on MB
Monitor(s) Displays Samsung 23" HD Model 2333
Screen Resolution 1920x 1080
Keyboard Who needs a keyboard?
Mouse Logitech Laser G7 wireless
PSU 450 Watt and some fans that blow
Case Small tower
Cooling Yes I am cool. lol
Hard Drives C: Main Drive SATA 250GB
D:Backup Drive 500GB SATA
Internet Speed Cable - Down 30 Mbps, UP 12 Mbps
Other Info Motorola SB-6120 Cable modem DOC 3
Logitech Pro 9000 webcam
|
13 May 2010
|
#3 | |
W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE Indian Territory |
From what I read here: New Attack Bypasses Anti-Malware Protection [Update] - Security Watch
MSE may be unique in this respect, but unless I have a problem, I'm not going to use it. | | My System Specs | | System Manufacturer/Model Number DIY
OS W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
CPU Phenom II 1090T w/Noctua NH-D14 /**4400+ X2 w/CM Hyper TX 3
Motherboard ASRock 890FX Deluxe 4/**A8N-SLI
Memory 2 x 2GB Patriot PGS34g1600LLKA/**4x1GB Corsair VS
Graphics Card EVGA GTX460 SC/**EVGA 8800GTS
Sound Card Asus Xonar D2X/**Xonar D1
Monitor(s) Displays Acer X233H, Dell E152FPc /**LG M237-WD
Screen Resolution 1920x1080 & 1024x768/**1980x1080
Keyboard Logitech Media USB/**Saitek Eclipse
Mouse Cordless Trackman Wheel/**Ditto
PSU CM RS600 w/ APC BX1000G/**Antec 500 TP w/ APC BX1000
Case HAF922/**Antec 1040IIB
Cooling 3x200mm, 1x140 and 1x120mm/**5x80mm fans
Hard Drives WDC 2TB, 1.5TB, 1TB, 500GB,Seagate 500GB , Maxtor 80GB /**500GB Seagate & WDC 1TB Black
Internet Speed 3.3Mbps
Other Info SB 560 5.1 w/ Sennheiser RS140/**Creative T20 speakers, Dvico FusionHDTV7 Gold RT, Cisco E3000, HP 5510V AIO, Linksys E3000, Belkin F5U237 hub and **F5D8055 adapter
(** = 2nd rig)
|
13 May 2010
|
#4 | |
Windows 7 HP 64bit, Windows 8 Pro w/Media Center 64bit Covington, La |
From reading the above article it seems that 64bit systems were not tested and because MS uses Patch Guard on 64bit systems to prevent kernel hooks this attack probably wont work on 64bit systems. Thats was one of the main reasons I chose Win 7 64bit instead of the 32bit version.
Jim  | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Home Built
OS Windows 7 HP 64bit, Windows 8 Pro w/Media Center 64bit
CPU Phenom II X6 1100T
Motherboard ASUS M5A99X EVO
Memory Crucial Balistic 8gb DDR3-1866 CL9
Graphics Card MSI R6850 Cyclone IGD5 PE
Sound Card On Board
Monitor(s) Displays ASUS VE258Q 25" LED with DVI-HDMI-DisplayPort
Screen Resolution 1920 x 1080
Keyboard Logitech K120
Mouse Logitech Marble Mouse USB, Logitech Precision Game Pad
PSU Seasonic X650 80 Plus GOLD Modular
Case Corsair 400R
Cooling Antec Kuhler H2O 620, Two 120mm and four 140mm
Hard Drives Two WD Cavier Black 2TB Sata III, WD My Book Essential 2TB USB 3.0
Internet Speed 15MB
Antivirus Norton IS 2012, Malwarebytes Pro
Browser IE-10, FF-19
Other Info APC UPS ES 750, Netgear WNR3500L Gigabit & Wireless N Router with SamKnows Test Program, Motorola SB6120 Gigabit Cable Modem. Brother HL-2170W Laser Printer, Epson V300 Scanner
|
13 May 2010
|
#5 | |
Windows 7 Ultimate 64-bit Chicago |
Not unique. McAfee, Norton and Kaspersky all patch the kernel like crazy under x86. Under x64 the are supposed to use the new APIs because of PatchGuard. According to Wikipedia "Antivirus software made by competitors ESET,[17] Trend Micro,[18] Grisoft AVG,[19] and Sophos does not patch the kernel."
This information is somewhat specious because we're not sure which versions we're talking about and whether these lists are inclusive.
Either way MSE is easily the most compatible with 7 and it's performance is only getting better. | | My System Specs | | System Manufacturer/Model Number baarod/MCP
OS Windows 7 Ultimate 64-bit
CPU Core2 Quad Q6600 @ 3.6GHz 9x400FSB
Motherboard Gigabyte G33M-S2H
Memory 4GB DDR2 1066
Graphics Card ATI Radeon HD 4670
Sound Card Integrated Azalia
Monitor(s) Displays Acer AL1711
Screen Resolution 1280x1024
Keyboard Microsoft Wireless Comfort Keyboard 4000
Mouse Microsoft Wireless Lasr Mouse 5000
PSU 240W TFX
Case InWin BT566
Cooling Intel Retail Stock
Hard Drives OCZ Vertex SATAII w/ 1.5FW 30,528MB system and apps
Maxtor 6L300R0 PATA 286,188MB page file, data and user profiles
Internet Speed 3Mbps Verizon DSL over 802.11g
Other Info Hauppauge WinTV PVR II Tuner, Generic $13 SoC Webcam, RT61 WiFi with remote antenna, Media Center Remote and Receiver
|
14 May 2010
|
#6 | |
Windows 7 Home Premium 64 bit Colne, Lancashire, UK |
Quote: Originally Posted by IggyAZ  What you mean MS Security Essentials does something better than all the rest of the Antivirus software.
I'm sure this will not reach the national media.
And I'm sure the lovers of all those other antivirus software won't say a word how really good MS Security Essentials reallt is.....
I just love MSE. Agreed. I was sceptical but now I'm sold on MSE  | | My System Specs | | System Manufacturer/Model Number The Monolith. 3.1
OS Windows 7 Home Premium 64 bit
CPU i7 2700K@4.5GHz
Motherboard Gigabyte Z77-D3H
Memory 2x4GB Corsair Vegeance DDR3
Graphics Card XFX GTX 260 Black Edition
Sound Card none-through large stereo hi fi
Monitor(s) Displays Croosover 27MDP LED IPS Dell 2408 WFP
Screen Resolution 2560x1440 1920x1200
Keyboard Enermax Aurora
Mouse Logitech Ballmouse
PSU Corsair AX 850 Watt
Case Cooler Master ACTS 840
Cooling Be Quiet! Dark Rock Pro
Hard Drives 1x Samsung 840Pro 128GB SSD
1x Samsung Spinpoint F1 1TB
Internet Speed 20MBPS
|
14 May 2010
|
#7 | |
7 Ultimate x64, Vista Ultimate x64, 7 Pro x64, XP Pro x86, Linux Mint Nadia Cinnamon Raleigh, NC |
Aha, another reason never to give up my MSE. | | My System Specs | | Computer type Laptop
System Manufacturer/Model Number Toshiba A500-ST6621
OS 7 Ultimate x64, Vista Ultimate x64, 7 Pro x64, XP Pro x86, Linux Mint Nadia Cinnamon
CPU Intel Core 2 Duo T9600 2.80GHz x64
Motherboard Intel GM45 chipset
Memory 8GB
Graphics Card ATI Mobility Radeon HD 4650
Sound Card N/A
Monitor(s) Displays single 16:9 widescreen (1366x768)
Keyboard standard Toshiba backlit keyboard w/ numberpad
Hard Drives Hitachi Travelstar 7K750 5400RPM 750GB
Internet Speed N/A
|
14 May 2010
|
#8 | |
|
good to know. I had been wondering about this for a few days since that other article had been posted. thanks Lordbob75 | | My System Specs | | Computer type Laptop
System Manufacturer/Model Number ASUS G60-RBBX05
OS Win7 Home Premium 64x
CPU Intel Core 2 Duo P7450 / 2.13 GHz (2.29 with Extreme Turbo)
Memory 4 GB PC-6400 Hyundai (2X2) at 800Mhz
Graphics Card NVIDIA GeForce GTX 260M 1GB DDR3 VRAM
Monitor(s) Displays 16" LED Backlit
Screen Resolution 1366 x 768 on laptop 1600x1050 max res on 22" external mon
Keyboard Chicklet type back-lit (white light) keyboard
Mouse Logitech G9 Laser Mouse 3200dpi and 1000 reports per minute
PSU 6-cell Lithium ion { lasts 1.5 hours }
Case ASUS G60 Laptop
Hard Drives OCZ Agility 3 60GB SSD / 320 GB - Serial ATA-150 - 7200 rpm
Internet Speed Comcast 8.60mb/s up - 3.11mb/s down
Antivirus MSE
Browser Firefox
Other Info General mid-budget gaming Comp. Low batterylife - High FrameRates - currently overheating problems :(
2nd Rig: Case: Rosewill BLACKHAWK Gaming ATX Mid Tower Computer Case
Mobo: GIGABYTE GA-990FXA-UD3
CPU: AMD FX-6200 Zambezi 3.8GHz (4.1GHz Turbo)
Heatsink: COOLER MASTER V8 CPU Cooler
RAM: Patriot Viper 3 8GB (2 x 4GB) 240-Pin DDR3 SDRAM 1866 (PC3 15000)
GPU: SAPPHIRE Radeon HD 6850 1GB 2
|
14 May 2010
|
#9 | |
Windows 7 Professional x64 SP1 Calgary |
Thank God I chose MSE for my anti-malware solution on my netbook. | | My System Specs | | OS Windows 7 Professional x64 SP1
CPU Intel Core i5-2500K
Motherboard Gigabyte P67X-UD3-B3
Memory 8 GB Corsair Vengeance Blue DDR3-1600
Graphics Card Sapphire Radeon HD 6870 1 GB GDDR5
Monitor(s) Displays Samsung SyncMaster T220HD
Screen Resolution 1680x1050
PSU Corsair 650W
Hard Drives 120 GB Corsair Force SSD + 320 GB Seagate Barracuda SATA2 + 2 TB My Book Elite
Internet Speed 50 Mbps
|
14 May 2010
|
#10 | |
Windows 7 Ultimate x64, Mint 9 In the Crust |
Quote: Originally Posted by Thorsen good to know. I had been wondering about this for a few days since that other article had been posted. thanks Lordbob75 No problem. There are not always follow up articles, but in this case there was.
There is a follow up to another one, with a rather sadder ending.
~Lordbob | | My System Specs | | System Manufacturer/Model Number Hera
OS Windows 7 Ultimate x64, Mint 9
CPU Intel i5-2500k
Motherboard ASUS P8P67 Pro
Memory 2x 4Gb Corsair VENGEANCE DDR3-1600
Graphics Card NVidia GeForce N260GTX Twin Frozr
Sound Card Realtek HD OnBoard Audio
Monitor(s) Displays ASUS 24" Monitor
Screen Resolution 1920x1080
Keyboard Razer Tarantula
Mouse Razer Lachesis
PSU Cooler Master Real Power Pro 750W
Case Cooler Master Haf 932
Cooling Fans
Hard Drives G.SKILL Phoenix Series 60GB SATA II MLC Internal Solid State Drive (SSD)
SAMSUNG Spinpoint F3R 1TB 7200 RPM 32MB Cache SATA II
Internet Speed not fast enough
Microsoft: MSE safe from Windows kernel hook attack problems? All times are GMT -5. The time now is 09:06 PM. |  |
