Microsoft Admits That Third-Party Antivirus Is More Effective Than MSE

By DarkNet
in Back Page News

 Share

Recommended Posts

Mentor

Riggers

Posted
Posted

Well this seems to have gone round in circles a few times. Microsoft could easily make MSE nearer in detection rates to the other AV alternatives it`s just this would take a fair amount of resources. They would need a dedicated team scouring malware domains, testing, creating and releasing signatures on an hourly basis. Also people/automation working on better detection of malware families so specific sigs don`t need creating.

One thing to remember when talking about bloat, memory usage is only a small part of the story. Some AV`s will keep the majority of their sigs in memory if available (up to a certain amount) whereas others will have to access them from disc and we all know accessing something from memory is quicker! So just because your AV uses a miniscule amount of memory doesn`t mean it is light. Normally you`ll have to try it for yourself as different settings can also have a big impact, scanning on execution, reading, writing, etc, etc...

 

As has been said before the most important part of the whole equation sits right between your ears ;)

 

I do seem to have had to clean quite a lot of computers with MSE on lately, more so (it seems) than when it was first released. This may be due to the fact Defender is now included in 8/8.1 so the writers make sure it isn`t detected!

Grand Master

Growled Member

Posted
  • Member
Posted

I'm talking about average users that use Windows not Linux users. :p

 

I know. I was teasing. I am still amazed that we need anti-virus in this day and time, regardless of the OS. I am sitting here at work on my Windows box now.  

Grand Master

articuno1au

Posted
Posted

That would be because people are scum bags. It's not a technical question.

 

If we want people to be able to do stuff with their computers, we have to deal with others being *******s.

Grand Master

LimeMaster

Posted
Posted

I know. I was teasing. I am still amazed that we need anti-virus in this day and time, regardless of the OS. I am sitting here at work on my Windows box now.

Yeah I guess! It isn't really something that should be needed, but unfortunately it is due to virus writers and due to the fact that more than fifty percent of users don't take care when on the internet. :/

Grand Master

Growled Member

Posted
  • Member
Posted

Yeah I guess! It isn't really something that should be needed, but unfortunately it is due to virus writers and due to the fact that more than fifty percent of users don't take care when on the internet. :/

 

I don't think it is needed. I'm of the opinion that a lot of what these anti-virus do is scam people into believing they need them. Also, people would rather have convenience over security. That said, Google makes Chrome OS so that it scans the system at startup and if any system file is not right then it gets replaced with the correct one. They all could do that.

Grand Master

Max Norris

Posted
Posted

That said, Google makes Chrome OS so that it scans the system at startup and if any system file is not right then it gets replaced with the correct one. They all could do that.

Interesting idea, but I see two flaws with that concept on a "full" desktop OS. One is the obvious, if malware takes that scanner out or tricks the scanner into thinking a file is good then it's rendered useless. For me the bigger problem would be performance though.. ChromeOS is basically a browser and is quite lightweight, so there wouldn't be that much to scan. Waiting on a complete system scan for a full blown desktop operating system is going to have a huge hit on startup time, regardless of which OS it is. I'd be willing to bet something that like would get disabled by the majority of users just because of the inconvenience of waiting for a few minutes for their system to boot versus a few seconds.
Grand Master

articuno1au

Posted
Posted

Interesting idea, but I see two flaws with that concept on a "full" desktop OS. One is the obvious, if malware takes that scanner out or tricks the scanner into thinking a file is good then it's rendered useless. For me the bigger problem would be performance though.. ChromeOS is basically a browser and is quite lightweight, so there wouldn't be that much to scan. Waiting on a complete system scan for a full blown desktop operating system is going to have a huge hit on startup time, regardless of which OS it is. I'd be willing to bet something that like would get disabled by the majority of users just because of the inconvenience of waiting for a few minutes for their system to boot versus a few seconds.

Windows 8 essentially does that with secure boot.

 

It checks that the files are signed etc >.< Has the same effect.

Grand Master

LimeMaster

Posted
Posted

I don't think it is needed. I'm of the opinion that a lot of what these anti-virus do is scam people into believing they need them. Also, people would rather have convenience over security. That said, Google makes Chrome OS so that it scans the system at startup and if any system file is not right then it gets replaced with the correct one. They all could do that.

Suppose.

The only problem with that is since Windows Updates replace system files and it might mistakenly think the files replaced is bad, which would cause some problems. 

Grand Master

Max Norris

Posted
Posted

Windows 8 essentially does that with secure boot.

It's already been beaten, never mind that only somewhat helps systems that actually use it and have it enabled to begin with, namely people running into problems running a non-Windows OS.
Grand Master

Growled Member

Posted
  • Member
Posted

Interesting idea, but I see two flaws with that concept on a "full" desktop OS. One is the obvious, if malware takes that scanner out or tricks the scanner into thinking a file is good then it's rendered useless. 

 

That's why the scanner doesn't need to be local but in the cloud, or at least somewhere that nothing can ever touch it.

 

 

For me the bigger problem would be performance though.. ChromeOS is basically a browser and is quite lightweight, so there wouldn't be that much to scan. Waiting on a complete system scan for a full blown desktop operating system is going to have a huge hit on startup time, regardless of which OS it is. I'd be willing to bet something that like would get disabled by the majority of users just because of the inconvenience of waiting for a few minutes for their system to boot versus a few seconds.

 

That's why I say people chose convenience over security. You only boot up once a day, so what if it takes a  few minutes?

Grand Master

Max Norris

Posted
Posted

That's why the scanner doesn't need to be local but in the cloud, or at least somewhere that nothing can ever touch it.

Brings its own overhead, never mind problems stemming from connectivity issues. If I take my laptop out of range from my network, how's that going to work? (Plus there's the usual "NSA backdoor!!" nonsense if somebody wants to go there, I don't but /shrug on here I'm not surprised by anything anymore, that's not directed at you.)

 

That's why I say people chose convenience over security. You only boot up once a day, so what if it takes a  few minutes?

Well that's purely personal preference of course. Me, I'll take my 15ish second boot time, and haven't had to deal with an oops as far as security goes in ~10 years, never mind it doesn't do jack for people who don't power down their system at all except maybe that once-per-month update. Out of about 15 desktop/server systems here only two ever actually get a full restart/powerdown as they don't have battery backups attached to them, barring a Windows/*Nix kernel update of course. Relying on protection that only runs once a month isn't terribly secure, especially for the malware that doesn't start up until after the system boots anyway, not all of them are rootkits.
Grand Master

+Ryster Subscriber²

Posted
  • Subscriber²
Posted

I suppose admitting you've got a problem is the first step down the road to fixing that problem.

 

Maybe they'll devote a few more resources towards developing MSE now?

Grand Master

Growled Member

Posted
  • Member
Posted

...., and haven't had to deal with an oops as far as security goes in ~10 years...

 

Same here. I rarely have any problems here at work on Windows. It's been years since we've gotten any viruses and we send and receive a ton of email every day and use a browser constantly. I've ran Windows 7 at home until recently and I've never had to install any anti-virus on it. That is what leads me to believe that a lot of this anti-virus scare is just that, a scare tactic.

Rising Star

Crimson Rain

Posted
Posted

If they couldn't write a secure OS, what makes you think they can plug the holes any better?

 

It's like asking an engineer why their building fell down. If they knew, they wouldn't have let it happen.

 

Also, I'm inclined to think there is some pressure to be had there >.>

Stop talking out of your ass. x86 systems by design allows any arbitrary code and deep system level access.

 

Can you write a virus for Windows RT?

 

MSE was one of the best antivirus when they put effort on it. Recently they are not focusing on it; that's why it has been going downhill. I think it is a bad decision on their part.

Proficient

Chemaz

Posted
Posted

Did anyone really read the article? It mentions that the reason they've slipped on the tests, and why they're near the bottom is that they have shifted focus from the tests to real world threats and up and coming threats. Its says they spent a large amount of time and money on trying to pass those av tests to "look" good, while the software might actually not be that good in a real life situation.

 

So does make you think that some of the AV companies at the top may just actually be focusing on passing the tests, and dont give a crap about it working well in a normal day to day situation

Veteran

+Fulcrum Subscriber¹

Posted
  • Subscriber¹
Posted

I don't think MSFT ever intended MSE to replace, not even COMPETE with 3rd party AV. If we recall the dilemmas Microsoft was facing: bad publicity revolving around seemingly less secure OS than competitors and antitrust lawsuits.

 

MSE has been a very successful product for MSFT by reducing bad publicity and I think it has to stay marginal to save them from any further antitrust lawsuits.

Grand Master

articuno1au

Posted
Posted

Stop talking out of your ass. x86 systems by design allows any arbitrary code and deep system level access.

 

Can you write a virus for Windows RT?

 

MSE was one of the best antivirus when they put effort on it. Recently they are not focusing on it; that's why it has been going downhill. I think it is a bad decision on their part.

Yes you can you ignoramus ****wit.

 

You know how we know that? You can root the device, arbitrary code can then be executed.

 

More to the point, this has absolutely nothing to do with the instruction set the chip executes, otherwise Android would be malware free as well. Have I mentioned that there is Malware for ia86 chips also?

 

You are the worst kind of poster. You are simultaneously wrong and being an *******. Even better than that, you took something out of context to attack. My point was that there's a benefit to third parties being in control of the anti-malware work.

 

If Microsoft could have blocked it (or had thought to), they would have done it in their operating system. It's likely they will in future versions, but getting the people who wrote the OS to look for problems with the operating system, as I said, like asking an engineer why their building fell down. They wouldn't have built it that way on purpose.

 

Next time you want to take a swipe, at least be right.

 

  • 1 month later...
Grand Master

LUTZIFER

Posted
Posted

I'm not to concerned. In all the years I've been using computers, I've gotten 2 minor viruses which I've manually removed myself.

And I've been dealing with warez and such since 1995, and porn sites.

Although I in a porn sites aren't the culprits for viruses, many people think that's how you get them.

I feel very safe with MSE and Malwarebytes Pro, and my own brain. ;)

Grand Master

Noir Angel

Posted
Posted

MSE/Defender is crap (and they still haven't fixed the bug that causes slowdowns in folders with a lot of EXE's after about 5 years), but it certainly beats having no antivirus at all, a lot of users are still plenty stupid and it's a good thing to have it in Windows out of the box. Of course I usually install Avast for anyone the moment they ask for my help but I can't help everyone :P

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Win11Debloat 2026.06.14

      By Copernic · Posted

      Win11Debloat 2026.06.14 by Razvan Serea Win11Debloat is a lightweight, easy to use PowerShell script that allows you to quickly declutter and customize your Windows experience. It can remove pre-installed bloatware apps, disable telemetry, remove intrusive interface elements and much more. The script also includes many features that system administrators and power users will enjoy. Such as a powerful command-line interface, support for Windows Audit mode and the option to make changes to other Windows users. All changes made by Win11Debloat can be easily reversed, and most removed apps can be restored via the Microsoft Store. A full guide on how to undo the changes is available here. Win11Debloat features: Below is an overview of the key features and functionality offered by Win11Debloat. Please refer to the wiki for more information about the default settings preset. Remove a wide variety of preinstalled apps. Click here for more info. Disable telemetry, diagnostic data, activity history, app-launch tracking & targeted ads. Disable tips, tricks, suggestions & ads across Windows. Disable Windows location services & app location access. Disable Find My Device location tracking. Disable 'Windows Spotlight' and tips & tricks on the lock screen. Disable 'Windows Spotlight' desktop background option. Disable ads, suggestions and the MSN news feed in Microsoft Edge. Hide Microsoft 365 ads on the Settings 'Home' page, or hide the 'Home' page entirely. Disable & remove Microsoft Copilot. Disable Windows Recall. Disable Click to Do, AI text & image analysis tool. Prevent AI service (WSAIFabricSvc) from starting automatically. Disable AI Features in Edge. Disable AI Features in Paint. Disable AI Features in Notepad. Disable the Drag Tray for sharing & moving files. Restore the old Windows 10 style context menu. Turn off Enhance Pointer Precision, also known as mouse acceleration. Disable the Sticky Keys keyboard shortcut. Disable Storage Sense automatic disk cleanup. Disable fast start-up to ensure a full shutdown. ...and more. Once you’ve downloaded the Win11Debloat file (Get.ps1), just follow these quick steps: Locate the Get.ps1 script file. Right-click the file and select Run with PowerShell from the context menu. If prompted by User Account Control (UAC), select Yes to grant the script the necessary administrative permissions. Win11Debloat 2026.06.14 changes: This is a minor release that hopefully addresses the false positives in Windows Defender and Bitdefender that prevented users from downloading and/or running Win11Debloat. Refactor Get-RegFileOperations.ps1 to address false positives by @Raphire in #626 Add logging around WinGet app retrieval and increase timeout to 20s by @Raphire Download: Win11Debloat 2026.06.14 | Open Source View: Win11Debloat Home Page | Screenshots 1| 2 Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • what other retro software do yall use

      By C:Amie · Posted

      Still using Microsoft Money 2005 in 2026 here!
    • what other retro software do yall use

      By +Eternal Tempest · Posted

      I have a couple to mention, and they still run great on Windows 11 Adobe Lightroom Version 2 Alcohol 120% CLZ Book, Comic, Game, Movie, & Music Collector (PC - No longer sold / Grandfathered in - now mobile apps/online only) DVDDecrypter ISO Buster Pro version 1.9.1 (Still supports HD-DVD too) Nero Burning Rom 8 (Only the burning software, no backup, media converter, etc)   OpenAL (Runtime) - GuildWars 1 Reforged still uses it for 3d headphone audio PowerDVD 12 Ultra SPTD (SCSI Pass through Direct Driver) UltraISO Windows Media Encoder 9 WinImage You can tell I still sport an optical drive    
    • Linux 7.1 arrives with an NTFS overhaul and major hardware performance boosts

      By zikalify · Posted

      Linux 7.1 arrives with an NTFS overhaul and major hardware performance boosts by Paul Hill The founder of the Linux kernel has just announced the availability of Linux 7.1. This is a stable version of the kernel that will now be tested by various Linux distributions before it is shipped to users through update managers. Some users, like those on Debian, for example, might not get it for a long time, if at all, while Fedora users can expect it in the near future. With Linux 7.1 out on time, the merge window for Linux 7.2 is now open, giving contributors the opportunity to send in major new features that have been waiting for the last two months. Torvalds warned that he is currently travelling and will be in another timezone, so timing for the merge window may be irregular due to timezone differences and limited internet access. Torvalds said that he has already fetched early pull requests to allow him to do some offline work, but the travel could still cause disruption. Right now, he is not planning to extend the release, but did consider it. He said he might later regret not extending, though. In terms of this last week of development for Linux 7.1, Torvalds said there were no major or alarming changes. This week consisted mostly of smaller driver updates to GPU, networking, and sound, networking fixes, trace tooling fixes, and misc minor fixes. The shortlog this week lists fixes for driver bugs, memory leaks, I/O and USB fixes, networking and RDMA fixes, DRM/graphics fixes, and tooling and verification improvements. Specific fixes include USB series heap-overflow and buffer overflow fixes, and multiple use-after-free, memory-leak, and refcount corrections across subsystems such as i2c, zram, gpio, and net. There are fixes for graphics drivers, including amdgpu, i915, and virtio, as well as hypervisor and virtualization tweaks affecting mshv, vmbus, and hyperv. According to Phoronix, anyone running Linux 7.1 should look out for the new NTFS driver, Intel FRED for improved performance on Panther Lake and future CPUs, faster graphics with Intel Arc Battlemage, and improvements for older AMD Radeon GPUs. If you are running Linux on your computer and everything is fine, then you don’t need to worry about updating to Linux 7.1 as a priority; just wait for it to be pushed to you. If you have tried Linux on hardware but it didn’t work properly, trying again with a distro that uses Linux 7.1 could cause Linux to work on your machine, thanks to the new hardware support.
    • Microsoft hides these secret Windows 11 performance boost settings available on every PC

      By contevo · Posted

      you can also do this with this tool: PowerSettingsExplorer made by mbk1969 at 3dguru forum.. I found it by accident researching on modern standby and annoying quirks of it in 2022

  • Recent Achievements

    • Week One Done
      rolfus earned a badge
      Week One Done
    • One Month Later
      Leroy Jethro Gibbs earned a badge
      One Month Later
    • Conversation Starter
      flexorcist earned a badge
      Conversation Starter
    • One Month Later
      AndreaB earned a badge
      One Month Later
    • One Month Later
      agatameier earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      507
    2. 2
      +Edouard
      197
    3. 3
      PsYcHoKiLLa
      139
    4. 4
      ATLien_0
      90
    5. 5
      Steven P.
      81
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!