Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.
Okay, so that makes it a bad feature?
I'm not saying that but rather M$ has not released any info about the feature since its introduction, no one knows how stable or effective it is, etc. There's just nothing out there. Please correct me if you can find any current info about it.
Edit: I did find this from 2021 https://www.thecloudtechnologist.co...er-running-in-a-sandbox-mp_force_use_sandbox/
The last paragraph is the issue in a nutshell:
The only answer one can find is M$ early statement that it wasn't needed because there were no reported incidents where Defender was disabled.
Okay thanks for this Bertazzone. From the brief research I've done, it's still a beta feature. It's supposed to protect itself against malicious injection, and since it's caused no issues for me since I enabled it a few years ago, I'll just leave it be.
Already have settled on the best browser experienced in many years- Chrome Stable. Dropped Vivaldi permanently.
Both supported with NoScript + UBlockOrigin-Auto Cookie Delete-One of them with Canvas Blocker
Windows 10 Home 1909
Windows 10 Pro 21H1
Full Bitlocker encryption
Firefox w/uBlock Origin and LocalCDN addons
OSArmor with additional Protections enable
Windows Defender w/Hard_Configurator, SRP enabled and Protection Level set to High
Malwarebytes Windows Firewall Control
UAC set to Maximum
BIOS: password-protected, Memory Protection, Intel Virtualization & Intel VT-d- enabled
Several Group Policy settings enabled to harden Windows
Linux MX-19.4 running from a 16Gb pendrive with Persistence
Firefox w/uBlock Origin & LocalCDN addons
firejail firefox -no-remote
apparmor enforced default profiles
ufw enforced default-deny incoming
Added: Courtesy @cruelsister setting- Far lighter this version than I imagined. But solid as ever.
That didn't last long. Mind you I added Comodo very latest FW version component only. And though it is as strong as ever I noticed on my low end units (4Gb Memory) it began horribly affecting video playback. The energy drain it demands was simply too much for a 9 year old Gateway. Uninstalled then re enabled WD plus WVSX and everything improved. So my consensus and conclusion is that Comodo in any form is best suited to machines, and O/S versions likely that have more up to date hardware to support it.
On Win 10...
Deep Freeze, Kaspersky Cloud Free, UBO extension, Last Pass, Patch My PC, Privacy Eraser, O&O ShutUp 10, Surfshark VPN.
Thaw out every Wednesday for updates, modifications to bookmarks, and general maintenance, etc.
Easy peasy. Oh, so light and clean as a whistle.
Only WD and Adguard Premium here. Keepass for my passwords and OneDrive for cloud backup.
BTW, about Bitlocker, does it protect the whole drive? But I must say that Win 10 is really quite a stable OS, at the moment I'm running 9 security tools in realtime and still no problems. So PatchGuard, which was introduced in Win Vista, was a good idea after all. Now those security tools can't patch the kernel at the same time anymore LOL. I've currently added KeyScrambler and Malwarebytes Anti-Exploit for testing without any problems.
My entire Windows partition is protected.
OK I see, but I have never really understood this. So does this mean that everytime that you log-in to your PC, your whole drive with all of the data needs to be decrypted and how long will this take? Because I didn't even know that data on most modern smartphones (Android and iOS) get encrypted automatically, or perhaps I misunderstood. But I don't think many people encrypt data on their PC and Bitlocker isn't even present on Win 10 Home.
W.10 Home x64 21H1
Local Account - Standard user - Limited permissions
UAC maximum - Always notify
Onedrive,Cortana,Advertising ID,Web Search - disabled
Usage of location data for Cortana disabled
Removed some Windows optional features.
Microsoft Defender Firewall hardened with H_C.
Microsoft Defender hardened with Configure Defender
Ransomware protection - disabled
No run in a sandbox
Core Isolation: Memory integrity - disabled
Some softwares hardened with maximum AE protection
All Windows Exploit Protection options - enabled
MS Edge --disable-webgl
Block scripts loaded via document.write
Experimental Tracking Prevention Features
Super Duper Secure Mode *** New ***
MS Store - Decentraleyes
Chrome Store - UBO - Hard Mode
My laptop has a TPM chip, so it "unlocks" the encryption automatically at login with no noticeable delay that I'm aware of. The only downside to disk encryption, for me anyway, is that I have to suspend it on those occasions when I image my drive. Not a big deal, really, as the encryption is automatically enforced again at the next login.
I forgot to mention the TPM means the disk can only be unlocked on the device it's installed on, so a miscreant can't just remove the drive and unlock it on a different device.
My security program :
Eset Nod32 Antivirus
Malwarebytes Premium Lifetime
Hitman Pro Alert
internet browser : Chrome
System Utility Software :
jv16 PowerTools Lifetime
Ashampoo WinOptimizer 19
OS: Windows 10 21H1 x64
AM: ESET Internet Security
Backup: Macrium Reflect with Image Guardian
Content: uBlock Origin in Firefox
DNS: Quad9 and Cloudflare
Scanners: HitmanPro, Norton Power Eraser
OK, cool that there is no delay, but I suppose it also depends on how much data needs to be encrypted and decrypted. I have never really encrypted data on my machines but I see there are a couple of third party tools that offer this, but they won't encrypt the whole drive, instead they will allow you to make secure containers, still need to play with it.
My Windows partition is 142 GB on a SATA hdd with a little less than half of it used space. Of course I would expect much faster boot times if it was an SSD.
I think this soft will stun most people here on this page ( https://www. belarc.com/AdvisorDownload ) just run it when it's finish it will open a browser of your choosing and will present to you tons of information on your system, then press the percentage circle on the top left and the results there is what is going to cause a stir. Also press expand all the good the bad and the ugly resides there with tons of information on how to go about correcting it.
Belarc Advisor has been around for a looooong time. I used it many moons ago, so long ago that I hardly remember what it looked like.
It's true but they upgraded it so i think you should give it a spin.
OK, I think I'll give it a shot soon. Thanks.
I'd love to settle on WD with a few of Andy Ful's hardening tools but WD just runs like treacle on my Windows 10 PC so I've reverted to the core setup which has served me well & without issue for years, even though they're not all the most popular products these days...
Avast Free (core shields only) in Hardened Mode
Malwarebytes Premium (lifetime licence)
Andy Ful's Firewall & Simple Windows Hardening Tools
AdGuard for Windows (using Quad9 DNS-over-Https)
Macrium Reflect v8
KeePassXC & LastPass Password Managers
On Demand Tools also available: (I've never had to use any of these to sort an issue but very occasionally I scan PC with them)
Emsisoft Emergency Kit, Kaspersky Virus Removal Tool, Malwarebytes AdwCleaner & Norton Power Eraser
Everything plays nicely together, computer runs smoothly and they've done the job so I will just stick with them.
Switched to Bitdefender AV
Windows updates on
Backup monthly on an external hd
Separate names with a comma.