Cannot permamently disable defender

Discussion in 'Windows Operating Systems' started by Foliage, Feb 7, 2020.

  1. Foliage

    Foliage Member

    Joined:
    Jan 22, 2002
    Messages:
    32,081
    Location:
    Sleepwithyourdadelaide
    I have Windows 10 enterprise x64 1903 18362.592 which has been installed for at least 6 months.

    I had windows defender disabled via group policy. Since a recent update defender real time scanning gets turned on every time I reboot.

    This is my group policy settings
    [​IMG]
    [​IMG]
    [​IMG]

    Why is Defender turning itself back on at reboot? How can I force it to stay off? I do lots of development and the real time scanning interferes with benchmarks and slows out build process down massively. I tried the exclusion folders but it doesn't respect these settings when doing a real time scan.
     
  2. power

    power Member

    Joined:
    Apr 20, 2002
    Messages:
    61,450
    Location:
    brisbane
    that a machine or user policy and is it applying correctly when you use a gpresult? or is this a local policy?
     
  3. OP
    OP
    Foliage

    Foliage Member

    Joined:
    Jan 22, 2002
    Messages:
    32,081
    Location:
    Sleepwithyourdadelaide
    Just a local group for my own machine. Its not part of a domain or anything else.

    How do I check with gpresult?
     
  4. power

    power Member

    Joined:
    Apr 20, 2002
    Messages:
    61,450
    Location:
    brisbane
    gpresult /r will work as if you were joined to a domain and getting group policies from a dc.

    defender should be able to be disabled with a machine policy under administrative templates - windows components - windows defender
     
  5. Sphinx2000

    Sphinx2000 Member

    Joined:
    Sep 16, 2001
    Messages:
    8,404
    Location:
    Brisbane
  6. OP
    OP
    Foliage

    Foliage Member

    Joined:
    Jan 22, 2002
    Messages:
    32,081
    Location:
    Sleepwithyourdadelaide
    Im not on a domain, its just a single PC on its own.

    Those screenshots are from exactly where you said. So it was disabled this way and it worked for several months, since a recent update it seems to ignore group policy.
    [​IMG]

    I don't want to totally disable defender, just real time scanning.
     
  7. power

    power Member

    Joined:
    Apr 20, 2002
    Messages:
    61,450
    Location:
    brisbane
    what did gpresult bring back? I assumed you were not on a domain, the command is the same for local secpol as well as group.

    i haven't tried to disable rts so it will be interesting to see how you solve this.
     
  8. philquad

    philquad Member

    Joined:
    Jan 22, 2004
    Messages:
    1,071
    Location:
    nelson bay
    wouldnt disabling the defender service do it?
     
  9. CAPT-Irrelevant

    CAPT-Irrelevant Member

    Joined:
    Sep 7, 2007
    Messages:
    6,897
    Location:
    Sydney
    What you want to achieve probably cannot be done with Windows Defender. The AV is basically on or off. If you want that level of granular management, you may have to go 3rd party, or go a step up above WD.
     
  10. OP
    OP
    Foliage

    Foliage Member

    Joined:
    Jan 22, 2002
    Messages:
    32,081
    Location:
    Sleepwithyourdadelaide
    It can be done and I had done it previously for several months.

    You can see here that the level of granularity is available.

    https://i.imgur.com/SXbg9qz.png

    You can also see in the group policy settings there is one for disabling defender entirely and one for just disabling real time scanning.
     

Share This Page

Advertisement: