Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

Discussion in 'other anti-virus software' started by Secondmineboy, Jan 30, 2016.

  1. roger_m

    roger_m Registered Member

    Joined:
    Jan 25, 2009
    Posts:
    8,627
    @Krusty13 It wasn't scanning as far as I know.
     
  2. atomomega

    atomomega Registered Member

    Joined:
    Jul 27, 2010
    Posts:
    1,292
    It feels really light, minimal activity shown in Process Explorer. Maybe your setup doesn't like it?
     
  3. MisterB

    MisterB Registered Member

    Joined:
    May 31, 2013
    Posts:
    1,267
    Location:
    Southern Rocky Mountains USA
    It might be an issue with older machines. All my core 2 duos have Windows 7 and I don't have Windows 10 on anything less than an i5. I do have a Windows 10 VM that I've only given 2 cores to and I haven't had any Defender slowdowns with it either.
     
  4. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    8,013
    I've got 10 and WD on a 6 year old core 2 duo with no problems at all...
     
  5. The Seeker

    The Seeker Registered Member

    Joined:
    Oct 24, 2005
    Posts:
    1,338
    Location:
    Adelaide
    If this happens, I'll simply move to another free AV solution.
     
  6. taleblou

    taleblou Registered Member

    Joined:
    Jan 9, 2010
    Posts:
    1,349
    your mistake is this. This is also AV-test mistake too. In windows 10 WD works with IE and edge smart screen and win 10 own screen for executing unknown and unsafe files to give a SOLID protection. AV-test does not use this and they only test the WD by itself. Still WD does a great job.

    I suggest if you want to use WD in win 10 then use it with edge or IE. Edge is better. For solid protection and do not disable windows own smart anti-exe screen for unknown files.
     
  7. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    you would consider edge more secure than IE which has security zones and can e.g. set javascript off by default?
     
  8. waking

    waking Registered Member

    Joined:
    Jan 25, 2016
    Posts:
    176
    First, I must repeat what I pointed out earlier: the AV-Test numbers being quoted are for
    tests under Win 8.1 and not Win 10. In that respect I think WD's much better scores at the
    end of 2015 than at the start of that year indicate that MS is working on improving WD's
    accuracy. I'm sure they aren't doing that just to keep their developers occupied. It
    suggests that better scores in these tests is one indicator of better protection.

    I think it may be worth noting that Microsoft themselves at least imply that one may benefit
    from value-added 3rd party AV/AM products even under Win10 by posting links to their sites
    on one of their Win10 web sites:

    Consumer security software providers
    http://windows.microsoft.com/en-US/windows/antivirus-partners#AVtabs=win10

    I should also point out that any security enhancements built into Win10 and its components
    such as Edge don't improve the protection of WD as against other AVs. They benefit all
    users of Win10 regardless of which AV/AM product they're running, if any. Therefore this
    hardened security in Win10 is not in itself a factor that can help in comparing products.
     
  9. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
  10. waking

    waking Registered Member

    Joined:
    Jan 25, 2016
    Posts:
    176
    And?? From which you conclude what? That it doesn't get any better? No-one has claimed
    that WD doesn't provide *any* protection. I certainly have never said or implied that.
    It's just a question of degrees of protection. WD "helps to protect" ...
     
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    And??

    Where does "... Microsoft themselves at least imply that one may benefit
    from value-added 3rd party AV/AM products even under Win10 by posting links to their sites
    on one of their Win10 web sites"?
     
  12. SnowWalker

    SnowWalker Registered Member

    Joined:
    Apr 2, 2012
    Posts:
    287
    Location:
    USA
    MS probably doesn't have anything to lose by continuing to give links to other AVs. As far as I can see, they don't lose anything financially if you turn off WD and use a third party. They won't be as likely to be considered a monopoly and accused of anti-trust violations, or whatever, if people use third party AVs. And there are always people who will get infected no matter what AV they are using, and MS can more legitimately say it's not their fault if they were using a third party AV. Even if they get infected using WD, MS can say that was the consumers choice for not using one of the other AVs the MS site directs them to.

    So what does MS have to lose by providing links to other AVs whether Defender is any good or not?
     
  13. Macstorm

    Macstorm Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    2,642
    Location:
    Sneffels volcano
    Then, according to you, other products (such as Avast) "totally protects you", right?
     
  14. Martin_C

    Martin_C Registered Member

    Joined:
    Dec 4, 2014
    Posts:
    525
    @waking :

    Ok. So you tried to pull out a partial test result in an attempt to make your third-party favorite look better.
    Ridiculous considering that the OS blocked 99,541% of everything in the test set on its own.

    Next you tries to spin a story saying third-party AV must be superior, because you have noticed a list of available AV.
    Again ridiculous. You must be confusing kindness with weakness.

    The third-party AV industries has been very active for years and years with their propaganda, which results in some users like yourself believes that IT security are made from 50% magic and 50% fairy dust both of which are locked in a special safe that only the third-party AV industry has the combination for.

    In reality however, IT security comes from talent and hard work. Both of which Microsoft has plenty.

    But we get it. You prefer third-party snake oil.
    So you just continue using whatever makes you feel warm and fuzzy.

    In the meantime, the rest of the earths population has noticed that the OS blocks 99,541% of everything malicious in the test.

    Therefore the earth population (excluding you of course) do not need to install third-party snake oil.

    The OS can protect itself perfectly fine on its own, and every end user can simply install OS and enjoy the OS as it was intended to work.

    That is great news to every user, no matter if they use their system for work or entertainment.

    Another benefit of native security are that it is always in sync with the rapid development process introduced with Windows-as-a-Service.

    The third-party AV industry on the other hand are still happily using 15 years old libraries with multiple known vulnerabilities, they are still disabling countless features in the OS causing instability and malfunctions, they still break well established security features in browsers, mail clients and media players, they still take years and years to implement support for new security features introduced in Windows.

    The only thing the third-party AV industry has always been fast and talented at, are to publish fancy PDFs with amazing colors and cool new words so their users could at least have that false feeling of security.
     
  15. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    Martin I agree with you in that they break browser security mechanisms, and that they can break core windows functions.

    But the 15 year old library thing is news to me, any way to elaborate?
     
  16. Azure Phoenix

    Azure Phoenix Registered Member

    Joined:
    Nov 22, 2014
    Posts:
    1,556
    I don't think he's implying any solution gives you 100% protection on everything. Simply that it is important to understand the strengths and weaknesses of whatever security software you are using, be it from Microsoft or a 3rd party.

    @walking
    You can correct me if I'm wrong.

    I think what walking is saying is that, yes, Windows Defender is good at detecting over 90% based on signatures. That's because the reality is that nowadays thanks to sites like Virustotal and Microsoft being a powerful company it isn't hard for them to get signatures, and thus get good results in that area.

    However, Windows Defender doesn't any zero-day protection(or if it does it isn't at the same level as others), so it is understandable that other security solutions would do better in that area.

    There's nothing wrong if people want to use Windows Defender. Simply that we should(as i already said) learn what its strength and weaknesses are in order to better prepare ourselves.
     
  17. ance

    ance formerly: fmon

    Joined:
    May 5, 2013
    Posts:
    1,360
    Windows Defender is getting better and better so other AV companies need good marketing. Total protection, Global protection, Super internet security protection ... :D However, I think I won't buy or recommend any AV licences again, it's not worth the money ...
     
  18. elapsed

    elapsed Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    7,076
    IE & Edge have nothing to do with it. WD scans incoming files from any browser, and on win 10 smartscreen is system-wide and doesn't care what browser you use.
     
  19. taleblou

    taleblou Registered Member

    Joined:
    Jan 9, 2010
    Posts:
    1,349
    But when you download a file in IE or edge and when it finished they scan it and let you know, but other browsers do not do that. Thats what I meant. IE and edge scans all files after download finishes and give you the result. Other browser do not do that. or have their own.
     
  20. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    But with Win10 if you download and save it to your download folder with any browser Smart Screen will scan the file when you go to use it.
     
  21. CHEFKOCH

    CHEFKOCH Registered Member

    Joined:
    Aug 29, 2014
    Posts:
    395
    Location:
    Swiss
    Even without SmartScreen and without Edge, Windows Defender does it's job, it regular gets updates (I often check with Windows UpdaterMinitool) and sometimes it get's updates each hour. So there is not much difference in the signature thing I think. Overall it works well without that I get annoying popups or something, for beginners this is exactly a good solution to not confuse them with false positive if you asking me, I randomly compromised my test system with different samples and everyone was detected so I see nothing much to complain about except maybe an advanced GUI/Scheduler to get similar gimmicks like in other products (e.g. heuristic deep and such).

    here is also a little context menu tweak to get rickt-click scanning per explorer (should work also with latest Win 10 previews but untested on them since I'm using Enterprise).

    Code:
    Windows Registry Editor Version 5.00
    
    ; Add Folder Scan
    [HKEY_CLASSES_ROOT\Folder\shell\WindowsDefender]
    "Icon"="%ProgramFiles%\\\\Windows Defender\\\\EppManifest.dll"
    "MUIVerb"="Scan with Windows Defender"
    
    [HKEY_CLASSES_ROOT\Folder\shell\WindowsDefender\Command]
    @="cmd.exe /s /c \"\"C:\\Program Files\\Windows Defender\\MpCmdRun.exe\" -scan -scantype 3 -SignatureUpdate -file \"%1 \"\" & pause"
    
    ; Add File Scan
    [HKEY_CLASSES_ROOT\*\shell\WindowsDefender]
    "Icon"="%ProgramFiles%\\\\Windows Defender\\\\EppManifest.dll"
    "MUIVerb"="Scan with Windows Defender"
    
    [HKEY_CLASSES_ROOT\*\shell\WindowsDefender\Command]
    @="cmd.exe /s /c \"\"C:\\Program Files\\Windows Defender\\MpCmdRun.exe\" -scan -scantype 3 -SignatureUpdate -file \"%1 \"\" & pause"
    For me the complaining are on a high level, as long it detects stuff that are really dangerous it's 'enough' because I highly doubt that a 'normal' user are that compromised every day.
     
  22. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    1,131
    Location:
    Baden Germany
    And don't forget to unlock the anti PUPs signatures.

    Code:
    Windows Registry Editor Version 5.00
    
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\MpEngine]
    "MpEnablePus"=dword:00000001
     
  23. elapsed

    elapsed Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    7,076
    It will be scanned by Defender no matter what browser you use. Gimmick UI features mean nothing.
     
  24. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
    That's not in the settings?!
     
  25. CHEFKOCH

    CHEFKOCH Registered Member

    Joined:
    Aug 29, 2014
    Posts:
    395
    Location:
    Swiss
    Nope it's only within Registry (because it was designed to be an optional feature) but I agree maybe we get an option in the future I'm sure someone asked already to include it. :)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.