Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [windows-defender]

32 questions
0
votes
1 answer

Clear Windows Defender History in in Windows 11 22H2 22621.2215 and later is not possible

I want to delete the Windows Defender History in Windows 11 22H2 22621.2215. In particular, accessing the folder C:\ProgramData\Microsoft\Windows Defender\Scans is not possible. It seems that Microsoft has specially secured access to this folder.…
Michael.H
  • 1
  • 2
0
votes
0 answers

Windows Defender Anti-Malware / Anti-Virus Does Not Reliably Update

Problem: Windows Domain environment with Windows 10 workstations that will not reliably update Windows Defender. I use ACAS to scan my environment weekly, and every week at least a few of these workstations will report that they have not updated…
The ITea Guy
  • 321
  • 1
  • 6
  • 16
0
votes
1 answer

Virus scanner in Azure App Service

Is there any virus scanner installed on Azure App Service machines? When my web application is receiving a file, is it scanned on the wire? Or could I save it to disk, wait 2 seconds and if it disappears, assume that the machine's antivirus had…
Mathias Rönnlund
  • 205
  • 4
  • 8
0
votes
0 answers

Windows Defender suddenly using all CPU -- Windows Server 2019

I have a Windows Server 2019 virtual machine hosted on Azure. For the last two or three days, web applications hosted there have been very slow. Yesterday I started digging into it, and found that Windows Defender (MsMpEng.exe, and MsSense.exe to a…
Luis Alonso Ramos
  • 43
  • 1
  • 3
  • 8
0
votes
2 answers

Where is Defender CSP in Windows configuration designer?

I'm trying to create a provisioning package for test PCs and I'm having hard time finding Defender CSP in Windows Configuration Designer. at first I downloaded Windows Configuration designer from Microsoft store, there was no Defender CSP, only a…
user995120
0
votes
0 answers

No domain profile in Windows Defender Firewall

We've moved from an on site server to online at our company, and we've had our user profiles rebuilt on our PC's so that we use Azure based profiles instead of domain profiles. I'm having issues trying to get some programs to connect to the…
AutoBaker
  • 178
  • 8
0
votes
0 answers

How to disable Tamper Protection (Windows 10 IoT Enterprise 21H2) during deployment?

Is there a way to disable Tamper Protection of Windows Defender on Windows 10 IoT Enterprise 21H2 during image deployment ? I use unattend.xml file to deploy Windows 10 IoT and I would need to disable Tamper Protection in order to restrict as much…
Paolo.Papanikolaou
  • 1
0
votes
1 answer

Device not reporting to Windows Defender ATP

I ran a script to offboard the PC and onboard the PC after deleting the reg key and everything in the cyber folder using the sysInternals tools. Now that I have onboarded the PC. I have waited for just under a day. Does anyone else have any…
Amar172
  • 11
  • 2
0
votes
1 answer

Windows defender ransomware protection and SQL Server

Our small company has organized several levels of virus protection for Windows servers, but there are always fears that this is not enough. Is it correct to configure Windows Defender Ransomware Proteсtion to directories with data and transaction…
Aries
  • 101
  • 1
0
votes
1 answer

Exchange Online - Reporting on blocked users

There is a feature in Exchange Online which blocks users from being able to send email when they send too many emails in a time period. It usually triggers either when a user sends a load of emails via Mail Merge or when their account gets…
Norphus
  • 165
  • 1
  • 3
  • 12
0
votes
1 answer

Whitelist mailboxes from being blocked from sending emails due to the "User restricted from sending email" alert policy in microsoft365 security?

I have a couple of mailboxes that are periodically being blocked from sending emails due to the "User restricted from sending email" alert policy within the security and compliance center in microsoft 365. I can unblock them fine, but would like to…
Blimey
  • 1
  • 1
0
votes
1 answer

How can you connect Azure Cloud Services (Classic) Defender to Azure Security Centre?

Given Azure Cloud Services (Classic, not Extended Support) using Family 6 (Windows 2019). Windows Defender is enabled and scanning files. How can the logs and scan results be surfaced to the Azure Portal, ideally Security Centre / Monitor. "The…
Michael Blake
  • 101
  • 2
0
votes
1 answer

What flavor of Defender do I get on my computer

I see many terminologies when it comes to Windows Defender. For example, this document has references to Microsoft Defender Antivirus and also Microsoft Defender for Endpoint. Also, I read a few places about Microsoft Defender Advanced Thread…
whoami
  • 101
0
votes
0 answers

MDATP installation in Docker on Linux Image

Was anyone able to install MDATP on a Linux Docker image? We tried CentOS, Debian, and Ubuntu and all have the same issue. I installed MDATP successful when the Linux box is a full host but not in Docker. I am following these instructions:…
qc_234578909
  • 1
  • 1
0
votes
0 answers

Windows Defenders - Antimalware - Exclude Directory from Scan

I looked at this article: https://www.windowscentral.com/how-exclude-files-and-folders-windows-defender-antivirus-scans, but my Windows 2019 Datacenter server server doesn't look anything like there screen shot. On my system it looks like this, and…
NealWalters
  • 1,333
  • 8
  • 19
  • 39
1
2
3