Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

It is interesting to check if it is possible even with OleViewDotNet:

https://googleprojectzero.blogspot.com/2018/04/windows-exploitation-tricks-exploiting.html

 

Sandbox:

0 = Off
1 = On

 

Windows Defender Bug Needs a Restart, Not Shutdown, To Enable Sandbox
November 1, 2018
https://www.bleepingcomputer.com/ne...eds-a-restart-not-shutdown-to-enable-sandbox/

 

Nice catch.

It's really worth the effort for some like @Didier Stevens to evaluate at length. Kudos for a keen eye to that feature issue.

 

Why people would shutdown and turn on after a tweak rather than restart, this is out of my understanding...

 

Right. It's not even correct to call it a bug.

 

To find bugs? By thinking out of the box you can find all kind of bugs that developer didn't think to check for. Great effort from Didier

 

Is Fast Startup a factor here? Is this also true if it is not enabled? I know Fast Startup messes up a lot of other things.

 

Yes I know, it is what I do as a software tester. But this one I admit, shutting down/turn on instead of restart to apply a tweak was not so conventional. I may find it only if I had an urgency and had to leave without having time to restart lol.

 

I, for example, usually only shutdown and start because my laptop would otherwise not boot windows, when doing just a restart. It has something to do with my BIOS not cutting power to my SSD or whatever... (Irrelevant of what I try to boot from) I have no idea. I ignore it.
Using restart would add an unecessary step to get it to boot: Power-off on post screen and power-on again.

Maybe I'm not alone?

 

Ha, I got the same problem on my netbook, that I rarely use. Totally forgot about it. My doesn't even come to POST screen, it just doesn't shutdown completely, so I have to shut it down with power button. Of course it only happens when I try to restart a system.

 

It just started seemingly at random at some point. I didn't even do anything with the BIOS. What could possibly cause this? Hardware damage? (Intels ghostly ME? xD)

 

Format the disk, do a clean install then see if it still happens.

 

For me it started out of the blue also. There was no update that caused it for me, it seems that it is hardware or BIOS related.

I installed 3 different OSs and the problem remains. IMO it's not software related.

 

Updating the BIOS?

 

restart leaves remnants in the memory while shutdown clears it out fully.

 

Its the opposite, only a restart clears "everything" in Windows 10.


https://www.howtogeek.com/243901/the-pros-and-cons-of-windows-10s-fast-startup-mode/

 

If you have hibernation on. I always deactivate that immediately because it's junk to me.

That didn't help in my case.

 

Installed last version from vendors website and it didn't help. It's not very important to me as I don't use it much.

 

Minimalist ... it doesn't... and it's a real big stretch here... it doesn't happen to have coil-whine, does it?

 

To those having issues with reboot/shutdown:

Press and hold the shift key, than klick reboot.
A screen with several options will appear.
Select power down.

Maybe it helps...

 

No it's not noticeable on this small netbook.

 

Some security experts have long been proposed sandboxing AV engine, and it appears only vuln-after-vuln finally drove them to consider it seriously. Ofc it's better than other AV companies who don't even consider it at all, as the same AV engine usually protects sensitive businesses tho such org often have other measures.