New
#50
The one in Post #45 above from @Bree in the link https://www.amtso.org/feature-settin...-applications/
The one in Post #45 above from @Bree in the link https://www.amtso.org/feature-settin...-applications/
Hi,
I have two questions:
1. if Defender is set to use Audit Mode (Audit Mode - will detect PUAs, but will not block them) what advantages does this have?
2. Have there been any tests or comparisons of Defender's PUA abilities/detection versus other well-known security applications?
Essentially, I am asking whether or not it is worth enabling this feature.
Thanks!
Hello Brink,
I just had a quick question regarding this article here if you don't mind.
Ok so, Microsoft makes it quite clear that you need to enable PUA protection before Windows will block the threats from being downloaded, but what it doesn't mention is whether you need this PUA protection enabled before it will detect the PUAs during Windows Defender scans.
Any idea if the PUAs are detected and removed in standard Windows Defender scans?
Yes, with PUA detection enabled in Defender a normal scan finds PUAs too. If you don't enable PUA detection as per this tutorial they are not detected.
I have a couple of known PUAs tucked away in a password protected .zip file. I get them out occasionally for testing. It has to be a password protected .zip file because a normal scan would find them, even in a .zip file.
It's been a while since I last tested PUA detection, so I have just extracted them and ran a manual scan on the folder holding them. Still working in 1903....
...and after taking the recommended actions it now says:
Last edited by Bree; 11 Jul 2019 at 09:58.