Windows Much Safer After Microsoft Killed Autorun
A safer, more idiot proof autorun.
Autorun is one way for malware to trick a user into installing some nefarious software from removable storage media. An executable could reside on a USB flash drive and, when inserted into a PC, would prompt the user to click the autorun file.
Back in February, Microsoft released an update that curbed autorun behavior for all supported Windows platforms stretching back to Windows XP SP3 to Windows Vista SP2 (Windows 7 already had a "fixed" autorun behavior and Windows XP SP2 was no longer supported through updates).
When comparing stats before and after the Microsoft update, we clearly see that blocking the autorun of removable storage had a significant effect on the infection rate. It may have been a tweak to stop a certain action on the users' part, but it was certainly effective.
Read more on Technet
- Firefox 5 Officially Released; Download it Here!
- BestConfigs Is Back, And Powered By You!
- Valve Games May Be Coming to OnLive
- Deals for June 20: 17.3" Dell Vostro i5 460M $518
- Team Fortress 2 May Be Going F2P
- Latest Windows 8 Leak Shows New Keyboard
- HP Shipping a Mouse That Connects Using Wi-Fi
- Microsoft Makes Justin Bieber Windows 7 Theme
- Would Steve Ballmer Leave Microsoft After Win 8?
- Deals for June 21: 15.6" Dell XPS 15 i5 $699.99
- City of Heroes Going Free to Play
- id Considering Quake Reboot, Going Back to Roots
- Nvidia Intros Beta Driver Supporting SLI on AMD 900 Series
- AMD Won't Endorse SYSmark 2012 Benchmark
- Intel Releases ULV 17-watt Sandy Bridge CPUs
- BAPCo Bites Back at AMD's Departure
- Staples Selling PCs with Old User Data Still Intact
- id Software Launching RAGE Early... As a Comic?
The mystery is why it was enabled for removable devices in the first place. Seems like a rather obvious risk with no widespread practical purpose.
It was a convenience feature, much like how a window pops up every time you insert a CD or DVD.
I completely realize the convenience factor, but the issue I had was how difficult it was to turn off in XP. In Win7, it's simple to disable...XP, not so much.
"Windows Much Safer After Microsoft Killed Autorun"
Damn right!
I never had autorun enabled...
The words "Windows" and "safe" in the same sentence? I thought it wasn't possible....?
1. I'm impressed at how low the infection rates are period.
2. That my friends is why Windows is the world's premier operating system; a culture of continuous improvement based on measurable metrics.
Huge move by Microsoft !
The words "Windows" and "safe" in the same sentence? I thought it wasn't possible....?
Just to clearify, windows is not "safe" it's just now a bit "safer"...
This "article" looks to me like no other but Microsoft propaganda.
Now if Microsoft would do something to stop infections thru the internet that would be something huge. But locally on my own PC? I have no fear of infections ever, not even a cold.
It will be much safer when it doesn't "autorun" itself!
The words "Windows" and "safe" in the same sentence? I thought it wasn't possible....?
Why? Do you need some help or instruction on how to configure your systems?
Now if Microsoft would do something to stop infections thru the internet that would be something huge. But locally on my own PC? I have no fear of infections ever, not even a cold.
The biggest spread of infections I've seen in my College is through USB Flash Drives.
Remember people, if you're going to share, use protection!
At least the "give an icon" feature of the autorun still works, so it's all good for me, lol.
Cheers!
unfortunately there are still millions of morons -erm- users out there who keep opening every other mail they get and every link they see, sorry but MS can't be held responsible for people being dumb
Again, the biggest problem is the person who touched the keyboard.
I did not wait for microsoft to disabled that darn feature. Its annoying and unsafe
The biggest spread of infections I've seen in my College is through USB Flash Drives.Remember people, if you're going to share, use protection!
Don't put your USB stick in someone's USB port if they don't have protection or if you don't know what disease you have!
One has to step back in time almost 15 years when MS brought out Autorun - it wasnt a horrible idea for that time.
The feature has been subverted by the malware kids along with the blinding stupidity of people who click on anything. Today you would be an idiot to have Autorun on. Forget Autorun, my mom would still click on any file called grandmothers_cookbook.* even if she didnt ask for it.
I swear bricks could be taught to be smarter about these files...
1. I'm impressed at how low the infection rates are period.
If you look at the qualifiers in that chart title such as a. reported by MSRT and b. Major Auto-Run Abusing Families (which might mean anything MS wants it to mean) there is probably a much, much higher infection rate.
Just to clearify, windows is not "safe" it's just now a bit "safer"...
If you know how to properly configure your system it is.
Trolling much?
The problem isn't the computer or the OS. 99% of the time, it's the fault of the object sitting between the keyboard and the chair. Give MS a break and don't accuse them for something they have little control over.
Shocking!
File this one in the "who-da-thunk-it" file.
I never understood why they have so many "autorun" hooks within their OSes:
c:\autoexec.bat
c:\config.sys
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_CURRENT_USER\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
Services
WIN.INI
SYSTEM.INI
DOSSTART.BAT
WINSTART.BAT
All these things do is allow "vendors" to put crap on your computer that runs all the time. I don't think Adobe needs to be able to nag me in realtime. I remember the days when these were called TSR (terminate and stay resident). This is where most viruses, adware, malware, bloatware, and gemneral crapware like to go. I remember cleaning AOL off of someones computer manually. Those assholes put an icon or hook everywhere they possible could. I paid for this computer, I really dont want all this crap on it.
Anyway, enough ranting. If anyone knows of a plain text comprehensive list of all known start-when-the-computer-starts hooks that can kick off executable code, that would be great. Maybe even something that spans all the Windows versions.
The label in the vertical axis of the graph doesn't make sense.
Never liked autorun feature. Always disable it immediately after any windows installation.
I'm curious why Windows XP SP2 saw such a large infection rate reduction during the same time period comparisons, given that it was not changed. If we apply that change rate as a baseline to the other versions, then the decreases are not as great.
Wait until there's AutoLinux. Then virus problems will really drop.
That was always the first thing I would disable since it was so darn annoying.
This got me on a mission. I just discovered autoruns (Sysinternals). Same concept as msconfig, but much more comprehensive.
I'm curious why Windows XP SP2 saw such a large infection rate reduction during the same time period comparisons, given that it was not changed. If we apply that change rate as a baseline to the other versions, then the decreases are not as great.
Good point, but then again MSFT wants to pat themselves on the back as the ones that have descresed infection rates...
unfortunately there are still millions of morons -erm- users out there who keep opening every other mail they get and every link they see, sorry but MS can't be held responsible for people being dumb
Remember, there are two major industries in the world that refer to their customers as "users". One is the computer industry, and the other is the illegal drug trade. . . draw the line between the dots!