Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

Discussion in 'other anti-virus software' started by Secondmineboy, Jan 30, 2016.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    13,215
    Location:
    Here
    IMO it will probably indeed be less vendors on market. It also depends on decisions made by other big players (Google, Facebook, Amazon, Apple). If they will try to enter market by acquisition of current vendors there might be even more competition. Who knows what time will bring.
     
  2. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    3,885
    Location:
    Under a bushel ...
    Agree.

    I'm OK with your second option, but hopefully still smaller independent Emsisoft along with the first list of 'big guys' ...
     
  3. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    361
    Location:
    Brooklyn, NY
    Yes, Emsisoft, I hope is still around. It's like Firefox, stubbornly not giving in to the monopolistic big ones. We need diversity in software, like everyting else.
     
  4. Eggnog

    Eggnog Registered Member

    Joined:
    Nov 17, 2012
    Posts:
    129
    Location:
    United States
    I've been running Windows Defender on Win 10 for quite some time with absolutely no problems, and I surf quite heavily. Recently, I installed Hard_Configurator and set it to defaults just because I felt like it. I may keep it, I may not. But I do kind of like it so far. For me my interest in 3rd party alternatives to WD has waned. I haven't seen a reason yet to pay for something else again, WD seems to be well on the way to being just what Win 10 users need it to be. .
     
  5. Davy49

    Davy49 Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    11
    Location:
    USA - MS
    Hi,
    I also still pretty confident using the windows 10 built-in security product..but after watching this video on youtube: https://www.youtube.com/watch?v=VXtTgP8JkSk from one of the user's I'm subscribed to now I'm wondering if I need to add something else to my protection.
    David
     
    Last edited by a moderator: Jan 31, 2020
  6. Azure Phoenix

    Azure Phoenix Registered Member

    Joined:
    Nov 22, 2014
    Posts:
    1,154
    Was controlled folder enabled in that test?
     
  7. Gandalf_The_Grey

    Gandalf_The_Grey Registered Member

    Joined:
    Jan 31, 2012
    Posts:
    639
    Location:
    The Netherlands
    No, it was not.
     
  8. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    294
    Location:
    Milan, Italia
    This "test" was done with no internet connection and is simply another in a long line of "Let's bash Windows Defender" by this guy. As someone on another forum said, in part:

    "If the purpose of this video was to demonstrate that WD free features (no ATP) are not suited to the enterprise environment, then it is a pretty good demonstration. Of course, this is a well known fact (without any demonstration) because WD protection highly depends on the cloud backend (Cloud delivered protection, Block at First Sight, SmartScreen)."

    And Controlled Folder Access was not used in this test. Leo @ TPSC never tests WD appropriately, neglecting the fact that it depends on all of the above features, including Controlled Folder Access. His tests are defective for this reason and the fact that he doesn't educate his viewers about how his tests are done, or about WD features themselves.

    If you want to take full advantage of WD's capabilities you may use ConfigureDefender, Group Policy, powershell commands, etc. to do so. I find CD to be the easiest method. You may find it here: https://github.com/AndyFul/ConfigureDefender

    Stay safe, not paranoid - my friend!
     
  9. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    213
    Location:
    Bulgaria
    The above statements are true but you can always check and add Appcheck or KART in addition to your current setup and do daily backups to an external hard drive (just in case).
     
  10. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    294
    Location:
    Milan, Italia
    You may also use Hard_Configurator if you want to harden W10. It can be used as default-deny with a number of different configuration profiles. Extensive malware testing has been done with its "Recommended setting". You may also harden Windows' built-in exploit protection for browsers and other internet-facing apps. If you're interested in the latter option you may check https://malwaretips.com/threads/umbras-lockdown-security-2020.97589/ for an example of browser hardening.
     
  11. Davy49

    Davy49 Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    11
    Location:
    USA - MS
    Hi,
    While I do appreciate all of your constructive criticism's, you might want to double-check the video again because leo actually performed his test two different ways. One without an internet connection & one with an internet connection, of when his vm test computer did have a internet connection it had better results. While I respect his testing, sometimes he does tend to not have all of the facts/features enabled properly. I hope you can see by my statement here that I'm taking a middle of the road stance here, I actually feel as though like others have mentioned in here that if we is enabled properly that it's a very good product.
    David

     
  12. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    294
    Location:
    Milan, Italia
    Even so, my other points are still pertinent. How can it be a ransomware test without CFA?Check out his "Windows Sandbox" video. It's a real piece of work! He has no clue.
     
  13. Davy49

    Davy49 Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    11
    Location:
    USA - MS
    Hi Bertazzone,
    To be honest I really like what I call your 'positive constructive criticism' , he also seems to kind of push the hitman pro software. Honestly..since I'm a windows 10 insider build tester, it's my opinion that microsoft has really upped their game as far as improving windows defender to make it as viable as it is today. In a moment of weakness and tied with having a old person moment, I installed hitman pro on my desktop computer so I could at least evaluate it. Have you ever tried it, and if so what did you think of it ? Another thing that bothers me is the fact of how pc magazine rates kaspersky free higher than ms windows defender being used in windows 10. The MAIN thing with any security software is use commonsense and be careful of the site's you visit.
    David
     
  14. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    294
    Location:
    Milan, Italia
    @Davy49 I take all reviews and testing, especially YouTube testing with a huge dose of salt. Yes K is good but, again, it's the comparisons and judgements made about it. I use HMP along with EEK but use them based on forum discussions, as much as anything. Otherwise I have no strong opinion about it because I don't get infected. It is pretty darn fast, which is nice.

    Definitely! :thumb:
     
  15. Davy49

    Davy49 Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    11
    Location:
    USA - MS
    Hi,
    What is HMP & EEK ? Of course I'm not trying to play dumb..by the way, have you ever tried a linux distro.. and if so which one ? I've always wanted to learn more about linux, I'd even consider dual booting a distro along with windows 10. Or I could set up a virtual machine.
    Thanks
    David
     
  16. Azure Phoenix

    Azure Phoenix Registered Member

    Joined:
    Nov 22, 2014
    Posts:
    1,154
    HMP - HitmanPro
    EEK - Emsisoft Emergency Kit
     
  17. Davy49

    Davy49 Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    11
    Location:
    USA - MS
    Hi,
    Thanks so much for the clarification, I'm so glad that I'm a member here in the forum's. Being safe on the internet and life in general is essential to me, as a side note both of our son's work for justice department of the federal government. As a parent of course I'm kind of nosey sometimes but they can't share much information with me, I have got to meet several fbi agent's though.
    David
     
  18. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    7,910
    Location:
    U.S.A.
    I am far from a fan of PC Security Channel testing methods. That said, he was very straight forward in the video on how he tested WD.

    He did not enable CFA because:

    1. It's not enabled by default.
    2. It's a royal pain in the butt to configure properly as documented by the numerous postings in this forum on the subject.

    As far as testing WD w/no Internet access, A-V Comparatives does the same in their full spectrum malware test. Although in the A-V C test, it is only done for documentation purposes only with no penalty accessed for missed detection's in that mode.
     
  19. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    294
    Location:
    Milan, Italia
    CFA is poorly implemented but I have no problems with it enabled. I may be the exception to the rule because I use very few 3rd party softs, but I see others using it on other forums. I have set up with the usual protected folders plus these additional ones:

    Capture.PNG

    Simple, added built-in protection ! :thumb:
     
  20. Eggnog

    Eggnog Registered Member

    Joined:
    Nov 17, 2012
    Posts:
    129
    Location:
    United States
    I just have CFA set up with the typical protected folders and I have absolutely no issues with it. I have a couple of other folders I want to set up with it, but I don't think I'll have any issues with them. I'm just using WD and Hard_Configurator set to recommended settings. Maybe that has something to do with it.
     
  21. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    2,785
    Location:
    Canada
    Agreed. It's a kind of half baked, amateurish solution, just like their Windows Defender firewall. Both could be so much better.
     
  22. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    7,910
    Location:
    U.S.A.
    This thread pretty much sums up CFA issues: https://www.tenforums.com/antivirus.../96309-controlled-folder-access-problems.htmlhttps://www.tenforums.com/antivirus-firewalls-system-security/96309-controlled-folder-access-problems.html . Now project this to the typical Win 10 nob user.

    CFA actually works quite similar to conventional HIPS processing in that anything that touches CFA protected folders need to be whitelisted. This in itself can create security issues if malware can inject code into one of those whitelisted processes. Many of which run at medium integrity level making such activity trivial to perform.

    Bottom line - on a scale of 1 - 5, CFA provides level 2 at best ransomware protection.
     
    Last edited: Feb 2, 2020
  23. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    361
    Location:
    Brooklyn, NY
    Hello.

    Can anyone please confirm such a rapid quick scan by Defender?

    really quik scan.PNG

    I know the times vary depending on circumstances but I find this unusual, even for a mere 16000-odd files. There was an update to the antimalware platform a few days ago but an optimized Quick Scan was not listed in the changelog.

    There have been times the scanner seemed to fly from one extreme to another due to various issues. Thanks for any info. Oh, temporarily back on v. 1909-- build 18363.693
     
  24. Dark_Hanzo

    Dark_Hanzo Registered Member

    Joined:
    Jan 9, 2009
    Posts:
    204
    Location:
    CA
    Using the latest Windows Defender version (4.18.2001.10)

    Untitled.png
     
  25. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    5,504
    Location:
    USA
    Agreed. CFA is pretty worthless. I've seen it bypassed. In person.
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.