I like WHHL more; simplicity lures to use security; some prefer B for not having too many options in settings.
Bitdefender Total Security or Microsoft Defender — Who Wins for Everyday PC Users?
- Thread starter Bot
- Start date
They removed a lot of settings, there used to be Real-Time Protection slider with 4-5 levels, Active Virus (later Threat) Control slider with 3 levels and IDS (an AVC spin-off) slider under firewall with 5 levels. They removed all that but BD is still one of the more settings-rich AVs. They had HIPS at one point (very basic, just 4-5 type of alerts including AutoStart creation) and they had Data Loss Prevention. All gone. TuneUps are gone. Backup is gone. They started as Norton 360 and ended up as ZoneAlarm Next-Gen
Did not use the paid version; I use only free software; free B has few settings.They removed a lot of settings, there used to be Real-Time Protection slider with 4-5 levels, Active Virus (later Threat) Control slider with 3 levels and IDS (an AVC spin-off) slider under firewall with 5 levels. They removed all that but BD is still one of the more settings-rich AVs. They had HIPS at one point (very basic, just 4-5 type of alerts including AutoStart creation) and they had Data Loss Prevention. All gone. TuneUps are gone. Backup is gone. They started as Norton 360 and ended up as ZoneAlarm Next-Gen
View attachment 290011
View attachment 290012
And let's not forget the winner of 2 Academy Awards (or at least 1) - Smart App Control.
WD. Less problems & add Andy Ful's tools and your sweet.
I'll never use BD again after it removed WF when uninstalling the free version after fresh OS install. Honestly what garbage, really what kind of software does that?
I'll never use BD again after it removed WF when uninstalling the free version after fresh OS install. Honestly what garbage, really what kind of software does that?
The SOLITUDE guy likes WHHL... Whisky Helps Hide Loneliness!
They eliminated whatever it was, it doesn't matter, Bitdefender is still the best and most powerful antivirus that exists. It bothers whoever it bothers.They removed a lot of settings, there used to be Real-Time Protection slider with 4-5 levels, Active Virus (later Threat) Control slider with 3 levels and IDS (an AVC spin-off) slider under firewall with 5 levels. They removed all that but BD is still one of the more settings-rich AVs. They had HIPS at one point (very basic, just 4-5 type of alerts including AutoStart creation) and they had Data Loss Prevention. All gone. TuneUps are gone. Backup is gone. They started as Norton 360 and ended up as ZoneAlarm Next-Gen
View attachment 290011
View attachment 290012
I like it, although not using it currently; I can do all the job by GP.The SOLITUDE guy likes WHHL... Whisky Helps Hide Loneliness!
Can you conveniently block shortcuts?
In practice is impossible to apply similar protection to WHHLight via GP (GPO) - too many rules required. There is also a problem with applying WDAC whitelisting (on Windows Home).
Some GPO rules might not work as intended (especially SRP rules). However, simple GPO setups can also do the job.
Last edited:
If I double click malicious shortcut, what this shortcut is going to do?
Launch malicious script, right?
As scripts are blocked outside system space using AppLocker, the malicious process will be aborted.
Does Bitdefender use Sandbox, I think they have it in their endpoint solution, but I couldn't find anything about it in their home version.
It can run anything, including shellcode.
AppLocker cannot block shortcuts.
but it can block scripts which shortcuts launch to complete the malicious process.
Of course WHHL has the advantage of blocking the malicious cascade at an earlier stage, but eventually it will blocked either by WHHL or AppLocker script rules.
Unfortunately, AppLocker can only restrict some scripts (mainly .ps1, .bat, .cmd, .vbs, and .js). Other script types (Python, Lua, Autoit, etc.), scriptlets (.chm, .hta, etc.), and many files with active content (more than 100 file types can be used) are unsupported. Those files can bypass AppLocker (although they often need shortcuts, especially Python, Lua, Autoit, etc.).
However, if you additionally block several popular LOLBins (like those suggested by Microsoft in WDAC), probably about 90% attacks can be covered in some way.
Last edited:
I use SAC and I can manually create SRP and modify the file types restricted, but it is not an easy task especially for below than average use, where WHHL comes to make this enforcement an easy job.
I enjoy fiddling with GPs.
Someone already wrote on the forum:500 mb of definitions copied twice (and again and again on every update) certainly don’t please me, it triggers my OCD.
And they put the whole database in a package on Mac OS too.
Microsoft Defender has higher chances with me, if I remember right the intelligence was around 250 MB? And updates once a day. In the meantime the cloud does the heavy lifting.
1. BD will deplete the signature database.
2. BD isn't the only one that has to download a lot of data – apparently Eset does too (someone wrote about this).
3. You don't need to set updates every hour, especially since BD relies primarily on ATC, not signatures. I have mine set to every 6 hours. For example, a friend of mine, whose computer never shuts down, has it set to every 12 hours. I know someone who has it set to every 24 hours, and in practice, it updates only once – right after the system boots.
The depletion is done once a year on a staged basis and usually Bitdefender very quickly fills up the database as well.
Yes, Eset was also reported to have massive writings in terms of data on reboot, the issue was reported by @SeriousHoax as well.
The ATC behavioural profiles are updates as part of the virus signatures.
I know they're updated. However, BD isn't primarily based on signatures, but on behavior. So you don't have to update every hour like ESET does.
Yes. Exactly. @SeriousHoax
According to Bitdefender OEM documentation and telemetry, vast majority of detections are based on their pre-execution engine.
Bitdefender is NOT primarily based on behaviour, every single layer contributes. The AVs that are primarily based on behaviour are Webroot and Trend Micro.
You may also like...
-
ESET vs. Bitdefender vs. Kaspersky — Which Is the Best for Home Users in 2025?- Started by Bot
- Replies: 32
-
Bitdefender Free vs Avast Free in 2025: Full Review, Pros & Cons, Which to Choose?
- Started by Bot
- Replies: 26
-
Paid vs Free Antivirus in 2026: What are you using, and is it worth paying for?
- Started by Bot
- Replies: 159