Advice Request Microsoft Defender

Szellem · May 20, 2024

I would like to ask experienced members how to set up Microsoft Defender to be more powerful, but not to slow down the machine and not cause problems when playing games (COD) or installing updates. I have seen there are a lot of tools on how to make MS Defender stronger. This is what I am asking for help with. Thank you.

Bot · May 20, 2024

You can optimize Microsoft Defender without slowing down your machine or causing gaming issues. Here's a brief guide:

1. Keep Defender updated: Make sure it's set to automatically update.
2. Configure Controlled folder access: This prevents unauthorized changes by unfriendly applications.
3. Set up Exclusions: If you notice it's interfering with games or updates, you can exclude those specific files or folders.
4. Use cloud-delivered protection and Automatic sample submission: This provides rapid protection and identifies new threats.
5. Enable Tamper Protection: Prevents others from tampering with Defender settings.
6. Run regular scans: Quick scans daily, full scans weekly.

Remember, balance is key. Over-tightening security might cause usability issues.

oldschool · May 20, 2024

Use this portable application ...
ConfigureDefender
... and choose High or Max. You may need to add exclusions for games, other programs, etc. If you have questions or run into problems you should post here

ConfigureDefender utility for Windows 10

CPU setting is Always been there.

malwaretips.com

KnownStormChaser · May 20, 2024

DefenderUI is a popular option, the recommended profile is usually the best balance.

ForgottenSeer 109138 · May 20, 2024

Make sure to read the disclaimer on any 3rd party software you use from this forum to enhance your built in windows security.

@Bot gave you excellent advice on how to harden while maintaining balance above.

Templarware · May 20, 2024

Use DefenderUI and set the lower CPU priority settings.

danb · May 20, 2024

Practical Response said:
Make sure to read the disclaimer on any 3rd party software you use from this forum to enhance your built in windows security.

@Bot gave you excellent advice on how to harden while maintaining balance above.

Hey PR, I wanted to get your honest opinion on something, as you do seem to be quite practical most of the time

. I have asked this question many times on MT, and I am hoping to finally get a cogent answer from someone. I do not want to turn this into a long conversation, but my question is this.

I understand you do not feel that computer novices should use deny-by-default products. I get it, everyone has a right to their opinion.

A lot of people say this, but these are the EXACT same people that always highly recommend User Account Control (UAC) to be enabled, usually they recommend the top level.

In your opinion, are computer novices able to handled UAC, even though it is a deny-by-default mechanism? I mean, would you recommend UAC to a computer novice?

And either way, what are the downsides of trying to provide a UAC replacement that is much more user-friendly, robust and foolproof than the original UAC?

Again, I really do not want to get into a long conversation, but I would truly appreciate anyone's amazing insights on why security enthusiast recommend enabling UAC for novice users, but at the same time recommend they do not use other deny-by-default products that fix the issues with the built-in UAC?

ForgottenSeer 109138 · May 20, 2024

danb said:
Hey PR, I wanted to get your honest opinion on something, as you do seem to be quite practical most of the time . I have asked this question many times on MT, and I am hoping to finally get a cogent answer from someone. I do not want to turn this into a long conversation, but my question is this.

I understand you do not feel that computer novices should use deny-by-default products. I get it, everyone has a right to their opinion.

A lot of people say this, but these are the EXACT same people that always highly recommend User Account Control (UAC) to be enabled, usually they recommend the top level.

In your opinion, are computer novices able to handled UAC, even though it is a deny-by-default mechanism? I mean, would you recommend UAC to a computer novice?

And either way, what are the downsides of trying to provide a UAC replacement that is much more user-friendly, robust and foolproof than the original UAC?

Again, I really do not want to get into a long conversation, but I would truly appreciate anyone's amazing insights on why security enthusiast recommend enabling UAC for novice users, but at the same time recommend they do not use other deny-by-default products that fix the issues with the built-in UAC?

No, leaving security choices like UAC (User Account Control) in Windows up to novices is not a good idea. UAC is a barrier prompting users before allowing programs to make changes that could affect system security or stability. Beginners may not understand the potential risks associated with allowing programs unrestricted access. Novices might mistakenly approve prompts thinking they are harmless when they could actually be malicious.

Improved information and granular permission levels could be one way to address this all to real issue for novices. For example, the UAC prompt could provide more details about the program requesting access. This could include the publisher information, what the program is trying to change, and why it needs those changes.

With granular permission added a program might be allowed to make changes to its own files but denied access to system files.

P.S.
I don't understand why some developers think default deny is ideal for typical users who aren't familiar with the OS or security software.

cruelsister · May 20, 2024

danb said:
UAC, even though it is a deny-by-default mechanism

Actually UAC is more of a default-deny-Ignore thingy.

danb · May 20, 2024

For me it is simple. Items from not safe attack chain events should never be allowed to auto execute.

Whether you are a novice, intermediate or advanced user.

Szellem · May 20, 2024

ForgottenSeer 109138 said:
Make sure to read the disclaimer on any 3rd party software you use from this forum to enhance your built in windows security.

@Bot gave you excellent advice on how to harden while maintaining balance above.

Thank you for your reply!
WHH is what it does and what it means.
One thing bothers me is that when I start qbittorrent it starts slower than Kaspersky. Is there anything to be done about this?

NormanF · Jun 2, 2024

I complained last year Microsoft Defender for Business had its settings scattered all over Microsoft 365.

Microsoft listened and now has a central cloud Microsoft Defender portal. I was able to save it as a web app.

Its worth the ridiculously low monthly cost as you can onboard up to 10 devices with a local script.

NormanF · May 26, 2025

Microsoft has entered into a partnership with Cyber Black to integrate its MDR function into Microsoft Defender for Business, adding a missing feature.

Now you don't need to add an MDR to complete endpoint protection.

annaegorov · May 26, 2025

as others have stated Defender UI and they also have a product called Whitelist Cloud

sophiakaile · Jul 9, 2025

Thanks for this information NormanF

Search

Search

Advice Request Microsoft Defender

Szellem

Level 11

Bot

AI Assistant

oldschool

Level 85

ConfigureDefender utility for Windows 10

KnownStormChaser

Level 5

ForgottenSeer 109138

Templarware

Level 10

danb

From VoodooShield

ForgottenSeer 109138

cruelsister

Level 43

danb

From VoodooShield

Szellem

Level 11

NormanF

Level 9

NormanF

Level 9

annaegorov

Level 7

sophiakaile

Level 1

You may also like...