AVG 2011 Update Causes Widespread Problems For 64-Bit Windows

phx_zs writes "Last night's mandatory update of AVG 2011 Free edition has caused most 64-bit Windows 7 PCs to fail while loading Windows. On their website they have an FAQ with instructions on how to repair the problem using a boot CD or USB device."

Ask a friend

[Midnight Thunder]

The irony is that you need to find another computer to read up on how to fix the issue.

Re:

[mcgrew]

On their website they have an FAQ with instructions on how to repair the problem using a boot CD or USB device."

Yeah, that's real handy when your computer won't boot. AVG should snail-mail these instruictions to their paying customers. Not sure how users of free-AVG should be treated, though.

I guess they could just boot to their Linux partition.

Re:

[mcgrew]

How about NOT having forced updates?

Jackasses. I hate when MS or Apple does it to my machine - I certainly don't want some other company does it either.

That's one of the many reasons I switched to Linux. When I first installed XP over 98, I had planned on reinstalling it the next day, since XP didn't like the CD burning software that came with the burner (that had been happily working for quite a while). XP said that the software would make the machine unstable (I never had stibility probs with 98) and that

Re:

[grahammm]

The irony is that you need to find another computer to read up on how to fix the issue.

Or boot from a live CD/DVD such as systemrescuecd.

Not Ironic

[Doc Ruby]

How is that "ironic"?

Re:

[Doc Ruby]

No, the word you want is "moronic [azlyrics.com]", because none of that is irony [wikipedia.org].

What's that smell?

[Fluffeh]

The irony is that you need to find another computer to read up on how to fix the issue.

*sniffs air*

What's that smell?

*sniff sniff*

Yes, I think... Yes, it's certainly the stench of... *sniff* Yes, AVGs share price nose diving...

Re:

[Kjella]

Or fail to connect to the network, which makes those two the biggest no-nos when it comes to breaking a computer.

Re:Ask a friend

[Fulg]

What's a decent free one to use?

If you have to run Windows, the Microsoft Security Essentials package is excellent. I haven't had the urge to uninstall it yet (unlike Avast and AVG), and it doesn't noticeably slow your system. It's free if you have a valid Windows license...

Re:

[bami]

Microsoft Security Essentials regularly freaks out on my x32 XP box. It just crashes, causing 25% CPU usage (which is one hardware thread on an Atom 330).
The mouse still responds, some programs respond but explorer usually locks up, along with everything becoming horribly slow.
Killing the process fixes it, and MSE pops back in a couple of minutes, and then works normally for the rest of day.

Without that flaw, you could say it's just perfect. Doesn't take a lot of resources (even on an atom), is free with a

Re:

[bhcompy]

MSE is nice, but I hate the completely random auto-update schedule it has for definitions and the fact that it completely nukes the system when it does do its auto-update

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[RobertM1968]

What's a decent free one to use?

If you have to run Windows, the Microsoft Security Essentials package is excellent. I haven't had the urge to uninstall it yet (unlike Avast and AVG), and it doesn't noticeably slow your system. It's free if you have a valid Windows license...

I too have found MSE to be excellent, except for catching the latest pieces of malware, having the ability to ensure a thorough scan is performed, social networking integration, good cross-browser integration and other "minor" stuff like that.

After failing (in the past and recently) to find highly publicized malware that I knew was on a machine (for instance, in the not so recently arena: Antivirus XP anyone? or Whistler? (three months late to that party)) or failing to remove all of the infection, I trie

Re:

[mackil]

It also uses far fewer processes and system resources than AVG, which is important for my older system. I'm not sure if that means it isn't as capable as AVG, but I have yet to experience a problem with it on my Windows box.

Re:

[icebike]

If you have to run Windows, the Microsoft Security Essentials package is excellent. I haven't had the urge to uninstall it yet (unlike Avast and AVG), and it doesn't noticeably slow your system.

The major slow down most of these dumb scanners cause is because the scan on each read access. Some (like AVIRA) can be set to scan only on write. In a controlled environment this often yields the best performance.

When combined with a total system scan and a scan on any inserted media you can be reasonably safe with only scan on write. The problem is one of discipline, and remembering to always scan inserted media.

Of course it also requires that ALL accessible storage have some scanning software, because

Re:using a boot CD

[Ihmhi]

Yes, and we'll also never be able to play the majority of PC games ever again.

I really wish people would stop saying "lololol get Linux no more viruses". No shit, I think by now a lot of us know that Linux has far, far less in the way of viruses and malware compared to Windows. The problem is that it also has far less software that some of us want to use.

Re:

[jimthehorsegod]

You have no choice over the OS you use on your work laptop, but have free reign over which free not-for-commercial-use AV you use? How odd...

AVG? Feh.

[Pojut]

Does anyone actually use AVG anymore? There was a time when it was awesome, but it just got crazy bloated and slow...

Re:AVG? Feh.

[sumdumass]

I run AVG but not the default versions. Well, it's the same except I disable the link scanning, tool bars, and id protection crap and it seems to be smooth and light.

Re:

[An ominous Cow art]

Same here. It's still annoying at times, but once those are turned off, it's usable.

Re:AVG? Feh.

[JeffSpudrinski]

I've been discouraging my friends/customers from using it for about 18 months now.

Agreed that it was once awesome, but they took a dive when they starting including that crappy IE plugin tool that pre-verifies all the results of your searches.

They also make it nigh on impossible to find the free version on their site (or it was hard last time I looked, which has been a while).

While all AV programs are prone to screwing something up, this one won't help their already soured reputation.

I've been using Avast and Sophos for a while now and had little issues with either of them.

-JJS

Re:

[SheeEttin]

They also make it nigh on impossible to find the free version on their site (or it was hard last time I looked, which has been a while).

free.avg.com [avg.com]. You just have to watch for the free links, because they put the paid ones next to it and they're a whole lot flashier

Re:

[StikyPad]

Agreed, I've had excellent results for Avast. I only wish they'd update their managed client and ADNM (which was rather crap to begin with) to version 5.

Re:

[Gonoff]

I do. Am on Win7 64bit. Ran the upgrade last night and it seems fine here.

Re:

[b0bby]

Since I first tried out Microsoft Security Essentials that's what I've advised people who ask me what to run on the home machines to use. I use it on my Win7 machine & it's unobtrusive, which I like. For work I like NOD32, which equally just does its job & otherwise is not noticed. I had an issue with AVG on an XP machine years ago and one problem like that is enough for me.

Re:

[The MAZZTer]

Uninstalled it when I figured out it was responsible for Team Fortress 2 breakage, even when I disabled the networking components (I found out that doesn't actually disable them, you have to choose not to install them at install time) and was happy when my whole computer sped up as a bonus.

Re:

[ArundelCastle]

Since Norton, modern AV software in general seems to be a case of the cure being worse than the disease. Why do I need ad supported toolbars and mandatory scan slowdowns in place of Poker popups and replicating trojans? Both bog my machine down, just one is less likely to destroy files (failed bootups notwithstanding). My University uses Sophos. When I must set up a Windows machine, I set up an F-Prot license. I've trusted Frisk since forever, but the application has its glitches certainly.

So much cruft

AVG is Garbage

[Anonymous Coward]

AVG is trash and has been since at least vserion 8. We're using the enterprise version 9.0, with the 2011 management console at my organization, and today it started pushing out its AVG toolbar to everyone.

Microsoft Security Essentuals

[Enderandrew]

I used to recommend AVG as the free anti-virus solution to people, but Microsoft Security Essentials has a much smaller footprint, it doesn't harass you to upgrade to a paid version, and it has a better detection rate.

AVG isn't particularly great when comparing free or paid products these days.

Re:Microsoft Security Essentuals

[Anonymous Coward]

Agreed on that one - I've migrated away from recommending AVG or AVAST to Microsoft Security Essentials to any Windows user who doesn't want to shell out for an AV.

(The turning point was the AVG link scanner. That was a terrible idea and a sure sign it was headed for the toilet quickly.)

To any who do prefer higher-quality, paid antivirus software, I've found ESET NOD32 to be consistently excellent, or Kaspersky AV if you want to trade speed for thoroughness on deeply-nested archives (not always a good idea). (I have to begrudgingly admit that the newest Norton is not completely awful like we've come to expect but still isn't something that would ever appear on my recommendation list. McAfee would never appear there under any circumstances.)

Re:

[bemymonkey]

Same here. MSSE has been stellar in the time it's been available... glad I switched from AVG :)

Re:

[YesIAmAScript]

How do I get the icon out of the system tray?

I don't want an icon down there unless I am infected. How can I get MSE to do this?

Re:

[Rude Turnip]

With Windows 7 you can customize it to only show up for notifications only. Click the little triangle on the left of the system tray and pick "customize."

Microsoft is taking security seriously now

[rsborg]

... is the lesson I take from this.

I also use MSE on all my windows installs, and it's surprisingly low-profile.

I can only imagine that Microsoft finally figured out that this security industry is like a symbiote that will eventually kill the host (Windows). Best is to create your own version and integrate it (though the 2nd part would be regarded suspiciously by anti-trust division).

Security Essentials

[PIPBoy3000]

I used to recommend AVG, and have since switched to telling family members to use Windows Security Essentials. AVG isn't the lightweight, unobtrusive piece of software it used to be.

Re:

[Attila Dimedici]

That is my experience exactly. I stopped using AVG when it went to version 8 and became bloatware. I switched to using Microsoft Security Essentials for all of my Windows boxes and recomend it for all of the people I provide informal support for,

Not suprising...

[Cyno01]

Of course something like this would happen with a free program, you get what you pay for. Nothing like this would ever happen with one of the quality anti virus programs, like McAfee...

Re:

[Shadow99_1]

That had to have been an attempt at humor... Especially since I seem to recall both Norton and McAfee having issues which remind me of this in past versions...

I guess it just means AVG has joined the Norton and McAfee club...

WTF?

[GF678]

Aren't updates tested before being pushed out? Or would useful testing of definitions take too long with modern AV software that they just pass the barest of qualifications before being approved?

Re:WTF?

[olddoc]

Sure they are tested. The problem ONLY occurs on rebooting. Who ever has to reboot a Windows computer?

Got burned with this ...

[gstoddart]

I got burned with this this morning. I had to boot into my Windows install CD and revert to a save point. I'm quite underwhelmed.

Quite frankly, I'm actually getting tired of AVG suddenly deciding that I need to restart my computer so that it can finish an upgrade that I didn't initiate it. It's my computer, and I will decide when to do upgrades and when to f-ing reboot -- that's the one thing about Windows machines that still drives me crazy, every ^$#^#% application deciding that what I really need to d

Re:Got burned with this ...

[jesseck]

Microsoft Security Essentials. It may be from Microsoft, but it's a good piece of software. Licensed for home users and businesses with 10 or less computers- it's what I've been pushing my small business customers to lately. It's lightweight, unobtrusive, and performs checks well.

Re:

[CyberSlugGump]

Avira AntiVir is quite good, in my opinion. http://www.free-av.com/ [free-av.com]

Re:

[gstoddart]

You've probably seen the recommendations by now, but Microsoft Security Essentials is a good one.

I might try that --- though, admittedly, if Microsoft is so good at detecting the viruses, why don't they just prevent them better?

But, AVG has really become obtrusive and annoying of late. Forcing it to not install toolbars, telling it I don't want to install "PC Analyzer", having it whine that I should upgrade to the paid version, constantly asking to reboot, and now hosing my machine ... well, they're runnin

Re:

[Blakey Rat]

I might try that --- though, admittedly, if Microsoft is so good at detecting the viruses, why don't they just prevent them better?

What do you suggest?

Require every .exe to be examined carefully by a Microsoft employee before executing? Sending a task squad to every Windows-using household to give them a 3-hour lecture on phishing and computer security? Fix security holes in other vendors' (Apple and Adobe primarily) products?

Praytell, what should they be doing *specifically*, that they aren't doing now?

Re:

[gstoddart]

Yes, that's what I was referring to.

Re:

[Blakey Rat]

Fixing the holes used by the virus to install itself? that should be possible without fixing bugs in Apple and Adobe products.

The holes used by the virus to install itself are *in* the Apple/Adobe/whoever products, though!

Microsoft already fixes their own problems. That's not the issue. The vast majority of virus infections don't come from Microsoft security holes, they come from Adobe security holes. It's not 2001 anymore.

Unless you honestly believe Microsoft should be fixing problems with other vendors' s

Go bareback!

[goodmanj]

I've said it before and I'll say it again: Antivirus causes more problems than it solves. You're far better off using a modern operating system (Mac, Linux, Win7, anything but XP) with no antivirus and religious attention to system updates.

This opinion may be totally uninformed and wrong, but since I never use Windows for anything mission-critical, I don't care if I turn out to be wrong.

Re:

[Junta]

I don't care if I turn out to be wrong

GASP. You do realize you are on the *internet* and therefore you *can't* be wrong?

Re:

[zonky]

That's fine, if you never download and install software. the problem is that the method of acquiring new software in the OSX/Windows space is just totally broken- (download something from anywhere and run it...)

Re:

[wintermute000]

I don't know if doing online banking or even email is considered mission critical, but you do realise that they can nick your passwords.
If your email is compromised then most of your other logins can be finessed.
of course the real killer is paypal or online banking.
I know people who have lost thousands due to keyloggers getting ahold of their online banking passwords.

Not just 64-bit

[tpstigers]

This happened to me about a month ago on a 32-bit Windows 7 box. Woke up to a BSOD caused by a wee hours AVG update. Used system restore to fix the box, got rid of AVG, installed Microsoft Security Essentials and haven't looked back.

Virus Scanners Are Crap

[TheNinjaroach]

Yet another reason why virus scanners are crap and don't go anywhere near my Windows box.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[TheNinjaroach]

I don't run Adobe and generally don't use the internet with Windows, so I'm not too worried.

Even if I did catch a virus, I would never be comfortable with my OS after the fact and would replace it anyways. There are so many advantages to keeping my data separated from my OS by partitioning.

Also, I've seen virus behavior that is much more benign than any anti-virus software. Slow systems, "hey an update ran now my computer won't boot", anti-virus generally causes more trouble than it's worth.

No automatic updates

[Todd Knarr]

This is why the policy on my network is "No automatic updates.". Software can tell me there's an update available, but all downloading and installation of updates is operator-initiated. That way I can control when updates are installed and can delay installation until I've seen whether they cause problems or not. Any software that can't follow my rule gets uninstalled (forcibly if neccesary).

It annoys the IT guys at my workplace because they want my home machines (that I use to VPN in to work) to take updat

Not just Windows 7 - My Vista 64 crapped too!

[penguin_dance]

Okay, add your Vista is crap already joke here....

I wondered what the problem was. I hadn't installed any new software. The computer had booted up previously. But I left it on and went to dinner. Came back and the screen wouldn't come up. Started tapping the keyboard (thought it was in sleep mode) but then it rebooted. Tapping the key must have signaled the AVG reboot. Or it tried to reboot but then came up with an error. Ran the auto fix on it which found nothing wrong with the hardware. Finally got it to

Re:

[FatLittleMonkey]

I haven't run antivirus software in years and I've never had a virus.

Ummm...

Re:

[commodore64_love]

I don't have protection either, and I know I have viruses, but I just don't care.

"C'mere honey."

But seriously, it can happen even to the observant. This morning I installed VLC Media Player or what I *thought* was VLC, but the .exe didn't do anything. Just beep and make a "Registry changed. Approve or Deny?" window pop up. Probably a trojan. Good thing TeaTimer caught it.

Re:

[RDW]

Might also be worth installing something like WoT to reduce the chance of downloading a trojaned version in the first place:

http://www.mywot.com/en/scorecard/downloadvlcplayer.org [mywot.com]

Re:

[leonardluen]

yeah, because compiling from source is always safer... ProFTPD.org Compromised, Backdoor Distributed [slashdot.org]

However for the most part I agree with you and don't run any antivirus software myself, at least at home, i am forced to at work.

Re:

[bmo]

The fact the ProFTPD backdoor is news is because it's so rare.

Malware on Windows? Not news. Not when there are millions of signatures.

Why do Windows boosters *always* use the false equivalence fallacy when it comes subjects such as this?

--
BMO

Re:

[leonardluen]

look, i don't have neither a pro nor anti linux or windows agenda. i use both systems at home linux works great as a server, windows as a desktop.

i guess the point i am trying to make is that if you don't read and understand all the source code before you compile it isn't really any safer than running a precompiled binary/executable. because unless you read and understand the source code entirely you really don't know what could be hiding in it.

Re:Antivirus?

[bmo]

"you are just using the eyes of other programmers as your antivirus."

Yeah? So? And how is that bad? I also use MD5 sums to compare what I downloaded with what I was supposed to download.

"i am not saying this happens every day, but it has indeed happened before and ProFTPD isn't the first time."

It happens once every few years. I literally can't remember specifically when the last one happened, but I have a vague recollection of it.

Googling, I can find 3 instances, including this ProFTPD one in the last 10 years. Gentoo and Debian were at fault in the previous two.

That's how rare it is.

Compare and contrast this situation with the Windows situation, where there are literally millions of malware signatures, and the number keeps growing every day.

"but ultimately how is that so different than a binary?"

Because *someone* can look at the code. If not me, then someone else. With a binary, you get *zero* chance.

You're really fighting tooth and nail to hold on to that false equivalence fallacy. Sorry, but that's a load of bullshit.

"eyes of the developers and hoping they find the issue in a timely manner."

It's worked pretty well so far. Obviously trying to catch it all at the client side (Windows) hasn't worked at all over the past decade and a half.

--
BMO

Re:

[aarggh]

I haven't run antivirus software in years and I've never had a virus.

I'd say there's a very good chance you have viruses and/or trojans already but just don't know it. On my home network it's a constant battle not only with the staid sites I use but especially with the sites the teenagers frequent to keep machines clean. These days you just cannot afford to not run anti-virus if you have your machine connected to any network or use any form of USB devices, and this is especially so if you use your machines for any type of online banking/financial transactions! I run multiple packages, Comodo free firewall/IDS, Peerblock, and Trend Anti-virus. As the i5 and i7 CPU's have all the grunt you could want, having several background security apps running now doesn't have any appreciable performance impact on a system.

Re:

[EnsilZah]

Using a USB dongle where I study can infect it with anywhere between 1 and 4 different malware, I don't know, maybe the IT staff are incompetent, maybe it the large number of Macs leaving them with not much experience with Windows, maybe it's just the heavy use of USB dongles.

It wouldn't be a good idea to stick your dongle into one of those machines without protection.

Re:

[shadowrat]

I mean, it's not exactly hard. Download from sourceforge, compile from source, use sandboxie, whatever.

did you comb through all the source to that thing you compiled? I didn't, but i assumed you did so it must be safe.

"...I've never had a virus."

[repetty]

I haven't run antivirus software in years and I've never had a virus.

I've heard that one from Windows users before. You know what happens when I look into that claim? I find viruses every fucking time.

That is because you don't know the correct users

[aepervius]

I haven't had one virus in years. There is no infection vector you can attack me on either. I used to build some for fun in my pre-teen idiotic years (from my own version of pong using the 21hz INT, to some which self replicated on COM, and later EXE). Today, from time to time I download one of the anti virus & anti spyware and test my machine. In the last 10 years the results has always been the same : Zero Trojan, zero Virus, zero everything. it takes discipline and knowledge but you CAN be without an

Re:Antivirus?

[erroneus]

No. Just no. I'm a Windows hater too, but no. It's simply not THAT bad. It's really easy to catch something, but simply existing on the web isn't enough. You are making "magical" assumptions.

Re:

[gstoddart]

No. Just no. I'm a Windows hater too, but no. It's simply not THAT bad. It's really easy to catch something, but simply existing on the web isn't enough. You are making "magical" assumptions.

I have no direct evidence to contradict what you say, but every time someone has categorically said "you can't get a virus by just doing X", it doesn't take very long for that to be demonstrated false.

Sometimes, it's even by design with Windows -- stuff like hiding the extension of well know files, autorun, or executing

Re:

[Monkeedude1212]

I don't bother with having an Antivirus on the machine that I actively use. I use a systems settings manager. Anytime a registry value changes, added, or removed? I get a popup. Anytime something wants to alter a windows system file - popup. Anytime something simply wants to be added inside the Windows Folder - popup.

Sure I'll throw an antivirus on there and update it and run a scan about every season - but I'm not going to bother constantly updating virus definitions, setting up weekly scans, etc etc - whe

Browsing is it

[SuperKendall]

No. Just no. I'm a Windows hater too, but no. It's simply not THAT bad. It's really easy to catch something, but simply existing on the web isn't enough.

Existing, no, browsing to, yes. What if you simply browsed to a page with a trojan PDF [zdnet.com] for example...

That would be enough.

Re:

[fotbr]

I'm prompted what I want to do with such a PDF. So no, browsing to a page with an evil PDF isn't enough.

Oh really?

[SuperKendall]

See if you are prompted for this [adobe.com].

Not a virus, just a PDF displayed using the HTML Embed tag. But it shows you just need to visit a page. As I said.

Re:

[Gadget_Guy]

See if you are prompted for this [adobe.com].

I just got a box with a small icon in the top corner. No PDF there. This is with IE8 on XP (without antivirus).

Hang on, I will try it in my trusted sites zone. Again, no. Different icon this time - was the red X one. Wait, I will have a look at Tools->Manage Addons. Ah yes, some clever bunny has disabled anything from Adobe. It is amazing how much more secure ANY operating system is once you get rid of software from that company.

Obviously I have fiddled with my system. An easier way to do it would be to

So not at all representative

[SuperKendall]

No file association or handler for PDFs on this machine.

Which is unlike 90%+ of the Windows systems in existence, so it doesn't say much.

Re:

[interval1066]

I'm a Windows Hater too!! That's it. I just hate Windows.

Re:

[Shadow99_1]

I use the internet just fine and stopped using AV's a few years back as they never ever came up with anything on my desktop PC. It was a complete waste.

I however have a laptop these days and a wireless network I use often requires Sophos as an AV to be working to access the network. If anything Sophos tags all sorts of craziness as a Virus... False positives on lots of games for instance, usually in the anti-cheating software they use. And the best part is it won't let you exclude something 90% of the time.

Re:

[pspahn]

Would it satisfy you if those of us who don't use AV software on a regular basis install some, do a scan, and show you that we are indeed (speak for myself) not infected with mysterious viruses?

It's kind of like saying that people that have never had sex have the same HIV infection rate as those who have unprotected sex with multiple partners. Personally, I don't have sex with the internet.

Re:

[bored]

Well it isn't exactly hard to kill the majority of the virus's propagation vectors. I haven't run a "real-time" AV program on my windows machine regularly since 2000 or so. I have caught 1 (detected) virus in that time, and that was from a USB fob a friend plugged into my PC. That actually failed because I was running under a restricted user account when it happened (win2003) and the autorun on the fob simply started up and then didn't have permissions to write to the registry location in wanted. Caused som

Re:

[Waccoon]

Hogwash.

I've tried installing a number of different anti-virus utilities over the years to check my system from time to time, but never used to have any permanent anti-virus protection in the background. In the 12 years I've been using Windows, I've never gotten a virus. Earlier this year, I tried Security Essentials and liked it, so I started using it permanently. Visiting a web site will occasionally warn that the site is trying to set a tracking cookie, but that's it.

The only real difference in my sys

Re:

[Junta]

With a modern desktop OS, the chances of infection via remote exploit is generally low by virtue of not generally listening on any port by default, at least not beyond link-local scope. MS *at least* learned that lesson. Most all exploits enter a network via trojaned email, web site, or removable storage.

So if you do have a regimented small home network, and you are careful about not doing *anything* via unsolicited dialog boxes, you have a good shot of running. I have anti-virus on systems and haven't h

Re:

[Capt.DrumkenBum]

Is it even possible to have broadband these days and not have a router or gateway acting as a hardware firewall.

Yes it is. My sister had exactly that, until I brought her a cheep router.

I use webmail anyway (doesn't everyone?).

No! I hate webmail! You can take my Thunderbird when you pry it from my cold dead hands!

Re:

[commodore64_love]

Could I replace your Thunderbird with SeaMonkey/Mozilla Suite or Opera?
(SM == firefox and thunderbird merged into one)
(Opera == nordic)

I like web-mail because it's allowed me to keep the same address since 1997. I've been through PSU, Erols, MSN, AOL/Netscape, and now Verizon ISPs but my address remains the same regardless.

Re:

[scrib]

Or, you could drop a few dollars on a vanity domain name. I own the .org domain for my last name (it's a four letter last name, so that was lucky).

The other option is gmail, which allows you to use webmail and/or an email client like Thunderbird.

Re:

[Tacvek]

Hello, Mr underscore-ook?

(If it does not sound like fuck, the only other pronunciation I can think of is ook.)

Also I'm pretty sure you don't own _uck.org, you liar! ;D

Re:

[Capt.DrumkenBum]

Could I replace your Thunderbird with SeaMonkey/Mozilla Suite or Opera?

No. I have found that all in one solutions generally do not do anything well. Remember the last versions of Netscape?
Opera is for people who feel the need to be different so that they can be different.

Re:

[Dancindan84]

NAT != firewall. Most routers I've set up don't have the firewall running properly out of the box.

Re:

[Junta]

Unless you are talking about locking down outbound connections, I fail to see how a NAT gateway would allow any unsolicited connections to things behind it.

In terms of itself, it would be a problem if they either didn't filter their own packets or at least refrain from most services/specifically bind to internal-facing addresses, but I'd hope they wouldn't be silly about it.

Re:

[Dancindan84]

I'm not saying it's useless, or even that it's not sufficient for most ordinary users. Just pointing out that the parent to my post was incorrect in assuming all routers and gateways act as a hardware firewall out of the box.

Re:Antivirus?

[tgrigsby]

You don't get them by opening email or surfing the web these days. Tracking cookies are not viruses.

You absolutely CAN get an infection from simply surfing the web. I was one of the people affected by the AVG Update Of Death, but I recovered and I will continue to use them in part because it integrates with Firefox and has stopped numerous attacks by intercepting seemingly innocuous sites. If you're not aware of the danger involved in simply surfing the web, you should do a little honest research.

Re:

[Peach Rings]

Mods please, please.

Re:

[ThatMegathronDude]

NoScript and AdBlock Plus are your friends.

Re:

[X0563511]

Even that won't always cut it.

Remember the PNG exploit?

Re:

[(H)elix1]

I'll second this. I'm reasonably careful - browse only with Firefox and a handful of extensions, don't use bootleg software, careful about executing anything (unsigned or unknown), and typically stay out of the darker areas of the net. I'd even go as far as to say I think I know what I'm doing.

I still got hit.

Back before Steam switched to webkit, I joined in a random game of counterstrike. The embedded MOTD screen used some flaw in the embedded IE engine that was able to infect my system. Fortunately so

Re:Antivirus?

[GIL_Dude]

If you have Adobe Reader or Flash installed you absolutely DO get them by surfing the web. Go to a site where their ad network has gotten either hacked or just had a bad ad get by their "review" and it is a done deal. Turning on DEP for all processes, installing EMET (video on it here http://technet.microsoft.com/en-us/security/ff859539.aspx [microsoft.com]) and configuring it to protect acrord32.exe and your browser, installing Adobe Reader 10, keeping Flash up to date and using something like FlashBlock to control when Flash can run, etc. can all help out in this space. But for the average user who doesn't update Flash or Adobe Reader - they absolutely get infections just browsing the web. My boss and my brother in law both got a fake AV from reputable sites recently - the ad networks had served an Acrobat Reader exploit. I'll recommend MS Security Essentials as a free as in beer, low impact AV product. But I'd look into EMET if you haven't already.

Re:

[Junta]

You don't get them by opening email or surfing the web these days.

Not true for 'average' computer users. I think many are dubious of email, but if a web site offers an installer package available via a button that says 'your system requires a critical flash update' or 'we have detected a virus, click here to install a removal program', you bet way too many people click and trust.

Re:

[Runefox]

AVG started going downhill at 8, and then nose-dived at 9 when they had the focus stealing [avg.com] issue and another that a coworker of mine reported regarding the Outlook/Exchange plugin failing to update and causing Outlook to crash on startup (this was also a widespread issue, but I don't believe it got as much press seeing as most organizations using Outlook or the Exchange plugin aren't using AVG). Worse was their response to the issue, which as I recall was initially lazy denial.

This now hardly surprises me.

Re:

[anyGould]

Why is /. not blaming this on M$?

Not that people won't try, but this one is pretty clearly on AVG - if you're going to make your updates mandatory, make damn sure that you don't have any showstopper bugs in there.

I'm guessing they'll be busily pointing to the fine print that says "even if we deliberately screwed your computer up, it's not our fault"